Application viewpoint: View router configuration learning notes

In the process of using routes, we often encounter many problems. To solve these problems, we first need to check the router configuration and then according to the previous configuration of the router, confirm the problem.

View router configuration 1: Start log Service

Step 1: start logging on. Note: By default, the logging level is set to 3 (error). the default log level is 3 error)

Step 2: Set the log Level

Step 3: Check log settings

View vro configuration 2: Test log output

Step 1: Send log information to the console port. Logging console 7, quit. This test will generate the following syslog information: 111005: nobody End configuration: OK. This information shows that the configureation mode has been exited. "111005" indicates the information Id. "Nobody" indicates that you log on to the PIX through the console port.

Step 2: stop shipping log information to consoleno logging console 7 and quit.

View router configuration 3. Send syslog information to cache

Step 1: Save the displayed information
Logging buffered severity_level (1-7)

Step 2: View information on the console Port
Show logging

Step 3: Clear the information in the cache to receive new information.
Clear logging

Step 4: stop sending log information to the cache
No logging buffered

View vro configuration 4. Send log information to a telnet session

Step 1: configure a host inside the PIX to allow telnet to the PIX and enter the following command: telnet ip_address [subnet_mask] [if_name] For example, if a host has the IP address 192.168.1.2, the command is: telnet 192.168.1.2 255.255.255.255. Set the idle time for a telnet session. the default value is 5 minutes. the recommended value is 15 minutes.

Step 2: Start a telnet session

Step 3: enable configuration mode (Enter your password at the prompt) configure terminal

Step 4: Start log Settings
Logging monitor severity_level (1-7)

Step 5: Send log information to the tetlnet session terminal monitor this command function only sends log information to the current telnet session. "Logging monitor" sets all telnet session parameters. After this command is executed, log information is sent to each individual telnet session.

Step 6: Send syslogs generated by applications such as ping and web access to the telnet session window.

View router configuration 5. Send syslog information to the Syslog server

When syslog information is sent to a host using TCP or UCP, the host must run a syslog program. There are third-party software in UNIX and Windeow systems. Refer to the configuration manual for Cisco PIX Firewall and VPN to configure syslog. You can set the log message sending method, such as Email, send to a file, and send to a workstation. Follow the steps below to configure the firewall to send log information to a Syslog server.

Step 1: specify a host to receive log information
Logging host [interface] ip_address [tcp [/port] | udp [/port] [format emblem]
For example:
Logging host dmz1 192.168.1.5

Step 2: Set the log level.
Logging trap severity_level (1-7)

Step 3: Use the following command to include the device ID in the information:
Logging device-id {hostname | ipaddress if_name | string text}

View router configuration 6. Send log information to the SNMP administrator for the following Configuration:

Step 1: Set the IP address of the SNMP Administrator
Snmp-server host [if_name] ip_addr

Step 2: Other SNMP server settings are required.
Snmp-server location text
Snmp-server contact text
Snmp-server community key

Refer to the PIX Firewall command to get more information. Use the following settings to configure and send log information to the SNMP server.

Step 1
Snmp-server enable traps

Step 2: Set the log level:
Logging history severity_level (1-7)

Step 3: Disable syslog capture with the following command:
No snmp-server enable traps