I don't have access to a PIX at the moment but I think that using TCP only 1025-65535 will work *but* with UDP you can choose to use priviledged ports under 1024....:) I could be wrong but I think that's where all this confusion is kicking in...
Take care... --- Paul Stewart Network Solutions Specialist Nexicom Inc. -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Douglas, Stuart Sent: Wednesday, January 29, 2003 8:23 AM To: [EMAIL PROTECTED] Subject: RE: syslogging PIX data Interesting...for what it's worth, I'm running 515e's with v6.1(4) and their using udp 514. -----Original Message----- From: Paul Fontenot [mailto:[EMAIL PROTECTED]] Sent: Tuesday, January 28, 2003 7:31 PM To: [EMAIL PROTECTED] Subject: RE: syslogging PIX data If you tell my PIX 525 to use any port below 1025 it WILL tell you that is out of range and show you a usable range of '1025-65535' -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Stacy Brandenburg Sent: Tuesday, January 28, 2003 4:27 PM To: [EMAIL PROTECTED] Subject: Re: syslogging PIX data From CCO: "This guide only describes syslog messages for version 4.3(2) and later logging host [interface] ip_address [protocol/port] Specifies a host that receives the syslog messages. The PIX Firewall can now send messages across UDP or TCP (as specified by setting the protocol variable). The default UDP port is 514. The default TCP port is 1468." So if you use the UDP/514 - that hould work just fine. Perhaps I misunderstood and you WANT to use TCP, instead of UDP for some reason. Which you can. However, UDP/514 works like a champ. I use it for 535's and 525's that run multiple GigE interaces and that generate *alot* of log output, and never seem to have issues with lost log info. Hopefully the previous post will help you with getting syslog server to run on the TCP port. Good luck, -- ======================================================== = Stacy J. Brandenburg Red Hat Inc. = = Sr. Network Engineer http://www.redhat.com = = 919-754-3700 x44313 [EMAIL PROTECTED] = ======================================================== -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe https://listman.redhat.com/mailman/listinfo/redhat-list -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe https://listman.redhat.com/mailman/listinfo/redhat-list -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe https://listman.redhat.com/mailman/listinfo/redhat-list
BEGIN:VCARD VERSION:2.1 N:Stewart;Paul FN:Paul Stewart ([EMAIL PROTECTED]) ORG:Nexicom Inc. TITLE:Network Solutions Specialist TEL;WORK;VOICE:(705) 932-4127 TEL;WORK;FAX:(705) 932-2329 ADR;WORK:;;5 King Street;Millbrook;Ontario;L0A 1G0;Canada LABEL;WORK;ENCODING=QUOTED-PRINTABLE:5 King Street=0D=0AMillbrook, Ontario L0A 1G0=0D=0ACanada URL;WORK:http://www.nexicom.net EMAIL;PREF;INTERNET:[EMAIL PROTECTED] REV:20030122T185420Z END:VCARD
