Cisco FirePOWER ASA 5500 series Configuration Manual page 814

Configuring and Managing Logs
Sending All Messages in a Class to a Specified Output Destination
When you configure all messages in a class to go to a type of output destination, this configuration
overrides the configuration in the specific output destination command. For example, if you specify that
messages at level 7 should go to the log buffer, and you also specify that ha class messages at level 3
should go to the buffer, then the latter configuration takes precedence.
To configure the security appliance to send an entire system log message class to a configured output
destination, enter the following command:
hostname(config)# logging class message_class {buffered | console | history | mail |
monitor | trap} [severity_level]
Where the message_class argument specifies a class of system log messages to be sent to the specified
output destination. See
The buffered, history, mail, monitor, and trap keywords specify the output destination to which system
log messages in this class should be sent. The history keyword enables SNMP logging. The monitor
keyword enables Telnet and SSH logging. The trap keyword enables syslog server logging. Select one
destination per command line entry. If you want to specify that a class should go to more than one
destination, enter a new command for each output destination.
The severity_level argument further restricts the system log messages to be sent to the output destination
by specifying a severity level. For more information about message severity levels, see the
Levels" section on page
The following example specifies that all system log messages related to the class ha (high availability,
also known as failover) with a severity level of 1 (alerts) should be sent to the internal logging buffer.
hostname(config)# logging class ha buffered alerts
Table 42-2
each class.
Table 42-2 System Log Message Classes and Associated Message ID Numbers
Class
ha
rip
auth
bridge
config
sys
session
ip
snmp
vpdn
vpn
ospf
np
Cisco Security Appliance Command Line Configuration Guide
42-16
Table 42-2
42-23.
lists the system log message classes and the ranges of system log message IDs associated with
Definition
Failover (High Availability)
RIP Routing
User Authentication
Transparent Firewall
Command interface
System
User Session
IP Stack
SNMP
PPTP and L2TP Sessions
IKE and IPSec
OSPF Routing
Network Processor
for a list of system log message classes.
System Log Message ID Numbers
101, 102, 103, 104, 210, 311, 709
107, 312
109, 113
110, 220
111, 112, 208, 308
199, 211, 214, 216, 306, 307, 315, 414, 604, 605, 606, 610,
612, 614, 615,701, 711
106, 108, 201, 202, 204, 302, 303, 304, 305, 314, 405, 406,
407, 500, 502, 607, 608, 609, 616, 620, 703, 710
209, 215, 313, 317, 408
212
213, 403, 603
316, 320, 402, 404, 501, 602, 702, 713, 714, 715
318, 409, 503, 613
319
Chapter 42 Monitoring the Security Appliance
"Severity
OL-10088-01