every VPN connection site to site or SSL or Remote access usually the might face problems that need your troubleshooting and diagnosing
the process may need your access to CLI and enable logging and debugging in order to find the problem which might be in right time when the user had the problem
so in here i will create configuration steps that help you receive the logs from your Firewall [ ASA ] to your email account
in this case you can check logs for failed connections at your inbox and you can find the error codes and check what the issue from there....
1. add the source of the emails to be send from and the destination of the emails that would be your email account
to do that from ASDM :
Configuration > device management > logging > email setup
then add source email address and then add destination email
2. create your event list that will be used to identify events and severity to be monitored
configuration > device management > logging > event lists
add your list and name it and choose the events that you will need to be triggered for in our case we will choose for example : SSL, VPN, Auth
then Now you have to enable this list
Go to Logging Filters and choose E-mail logging in the path Configuration > device management > logging > logging filters
choose the E-Mail loggin from the options available in the page
then click on Edit
choose the event list from the drop box, which you created in event list before
choose Ok and apply then save configurations
you should now receive emails in your inbox for the authentication process of remote access VPN and if there is any problem with authentication which will help you identify if there is a problem and how to solve it depends on error code and description
the logs should be something like this
<165>Jun 09 2016 13:12:00: %ASA-5-713120: Group =
HIS_VPN, Username = name, IP = x.x.x.x, PHASE 2 COMPLETED
(msgid=a0779307)
hope this was helpful
No comments:
Post a Comment