71-24
Cisco ASA 5500 Series Configuration Guide using ASDM
OL-20339-01
Chapter 71 Configuring Logging
Log Monitoring
i. Click OK to add the filter settings you have just specified to the Filter By drop-down list in the log
viewers. The filter strings follow a specific format. The prefix FILTER: designates all custom filters
that appear in the Filter By drop-down list. You may still type random text into this field.
The following table shows examples of the format used.
Step 4 To filter syslog messages, choose one of the settings in the Filter By drop-down list, then click Filter in
the toolbar. This setting also applies to all future syslog messages. To clear all filters, click Show All in
the toolbar.
Note You cannot save filters that you have specified with the Build Filter dialog box. These filters are
valid only for the ASDM session during which they were created.
Editing Filtering Settings
To edit filtering settings that you created using the Build Filter dialog box, perform the following steps:
Choose one of the following:
• Revise a filter directly by entering the changes in the Filter By drop-down list.
• Choose a filter in the Filter By drop-down list, then click Build Filter to display the Build Filter
dialog box. To remove the current filter settings and enter new ones, click Clear Filter. Otherwise,
change the settings that appear, and click OK.
Note These filter settings apply only to those defined in the Build Filter dialog box.
• To stop filtering and show all syslog messages, click Show All in the toolbar.
Build Filter Example Filter String Format
Source IP = 192.168.1.1 or 0.0.0.0
Source Port = 67
FILTER: srcIP=192.168.1.1,0.0.0.0;srcPort=67;
Severity = Informational
Destination IP = 1.1.1.1 through 1.1.1.10
FILTER: sev=6;dstIP=1.1.1.1-1.1.1.10;
Syslog ID not in the range 725001 through
725003
FILTER: sysID=!725001-725003;
Source IP = 1.1.1.1
Description = Built outbound
FILTER: srcIP=1.1.1.1;descr=Built outbound
To Next Page
Loading...
Need help?
General
