Cisco IPS-4255-K9 Installation Guide - Page 324
Logging, Understanding Debug Logging
UPC - 746320951096
View all Cisco IPS-4255-K9 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 324 highlights
Troubleshooting the Appliance Chapter A Troubleshooting Step 8 Step 9 ShunnedAddr Host IP = 10.16.0.0 ShunMinutes = Log in to the CLI of the master blocking sensor host, and using the show statistics network-access command, verify that the block also shows up in the master blocking sensor ARC statistics. sensor# show statistics network-access Current Configuration AllowSensorShun = false ShunMaxEntries = 250 MasterBlockingSensor SensorIp = 10.89.149.46 SensorPort = 443 UseTls = 1 State ShunEnable = true ShunnedAddr Host IP = 10.16.0.0 ShunMinutes = 60 MinutesRemaining = 59 If the remote master blocking sensor is using TLS for web access, make sure the forwarding sensor is configured as a TLS host. sensor# configure terminal sensor(config)# tls trust ip master_blocking_sensor_ip_address For More Information For the procedure to configure the sensor to be a master blocking sensor, refer to Configuring the Sensor to be a Master Blocking Sensor. Logging This section describes debug logging, and contains the following topics: • Understanding Debug Logging, page A-46 • Enabling Debug Logging, page A-47 • Zone Names, page A-50 • Directing cidLog Messages to SysLog, page A-51 Understanding Debug Logging TAC may suggest that you turn on debug logging for troubleshooting purposes. Logger controls what log messages are generated by each application by controlling the logging severity for different logging zones. By default, debug logging is not turned on. If you enable individual zone control, each zone uses the level of logging that it is configured for. Otherwise, the same logging level is used for all zones. A-46 Cisco Intrusion Prevention System Appliance and Module Installation Guide for IPS 7.0 OL-18504-01