Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

RE: cisco pix does not log traffic targetted to itself?

From: "Noonan, Wesley" <Wesley_Noonan () bmc com>
Date: Mon, 6 Jan 2003 08:45:00 -0600
Not sure about your first question, as with my PIX when I scan it I get
stuff in the logs (are you sure you are logging at the proper level)?

As for the latter though, yes it deny's all by default (no need to insert
the rule).

HTH

Wes Noonan, MCSE/CCNA/CCDA/NNCSS
Senior QA Rep.
BMC Software, Inc.
(713) 918-2412
wnoonan () bmc com
http://www.bmc.com



-----Original Message-----
From: Toh Kar Lai Catherine [mailto:kltoh () ncs com sg]
Sent: Monday, January 06, 2003 03:53
To: 'firewall-wizards () honor icsalabs com'
Subject: [fw-wiz] cisco pix does not log traffic targetted to itself?

My cisco pix firewall is logging denied traffic normally. However when I
tried using a scanner to scan the cisco pix firewall itself, a few open
ports were discovered but no traffic of the scan was captured in the log.
In
other words, the firewall didn't log my scan activity. What can I do to to
ensure that any activity targetted to my firewall is logged?

Also is it true that the cisco pix firewall deny all traffics that is not
permitted in the rule-base BY DEFAULT? Is there a need to insert a last
rule
that deny any to any?


_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: