User guide
ManageEngine Firewall Analyzer :: User Guide
219
Zoho Corp.
ii. IP Address - the IP address of the syslog server to which logs
have to be sent
iii. Under Protocol, select the UDP radio button
iv. The default UDP port is 514. If you have configured a different
syslog listener port on your syslog server, enter the same port
here.
e. Click Apply
3. Configuring Logging Level
a. Select Configure > Settings > Logging > Other
b. Under Console Level List select Informational so that all report data is
available
c. Click Apply
Configure/Enable SNMP Protocol for Cisco PIX Firewall device
Using CLI Console:
To enable the SNMP Manager running in Firewall Analyzer to make queries to SNMP
Agent running in the firewall:
configure terminal
snmp-server host <interface name> <hostname |IP address of Firewall Analyzer>
If you want to create a new SNMP community use the below command:
configure terminal
snmp-server community <community-string>
Example:
configure terminal
snmp-server community public
Configuring Cisco ASA Versions
1. Telnet to the ASA firewall and enter the enable mode
2. Type the following:
configure terminal
logging enable
logging timestamp
logging trap informational
logging device-id {context-name | hostname | ipaddress
interface_name | string text}
logging host interface_name syslog_ip [udp/<syslog_port>]
3. If there are no URL Reports available in Firewall Analyzer for CISCO ASA, enable
HTTP inspection by executing the following command:
inspect http
Enabling HTTP inspection will generate syslogs with ID 304001. This ID will be
used by Firewall Analyzer to generate URL Reports.