Detail cisco logging
Vijay Avarachen
vavarachen at gmail.com
Fri Feb 1 22:12:23 CET 2008
Ok I accomplished this outside of FreeRadius. Requires IOS vers > 12.3(4)T
and 12.2(25)S. Here are the important sections from the config:
archive
log config
logging enable
logging size 1000
notify syslog
hidekeys
logging xxx.xxx.xxx.xxx
Reference:
1.
http://www.cisco.com/en/US/products/sw/iosswrel/ps5207/products_feature_guide09186a00801d1e81.html
2. http://www.linuxhomenetworking.com/cisco-hn/syslog-cisco.htm
You can also specify facility (default local7).
Log entries will look like:
Feb 1 04:15:08 172.16.40.204 55: 1d21h: %PARSER-5-CFGLOG_LOGGEDCMD:
User:vavarachen logged command:logging host 172.17.13.215
Feb 1 04:15:41 172.16.40.204 56: 1d21h: %PARSER-5-CFGLOG_LOGGEDCMD:
User:vavarachen logged command:logging facility local7
Feb 1 04:15:54 172.16.40.204 57: 1d21h: %PARSER-5-CFGLOG_LOGGEDCMD:
User:vavarachen logged command:logging on
Hope this helps someone.
Vijay Avarachen
On Feb 1, 2008 1:33 PM, Vijay Avarachen <vavarachen at gmail.com> wrote:
> Hello,
> I have successfully configured freeradius 2.x to do AAA for my Cisco
> Catalyst 3560. Using modules rlm_detail I am able to log when the session
> starts and ends, however I am also interested in logging exactly what
> commands were issued by the user. Does anyone know how I can accomplish
> this?
>
> Thank you,
> Vijay Avarachen
>
> --
> "Knowledge is the only wealth that grows as you spend it, and diminishes
> as you save it."
>
--
"Knowledge is the only wealth that grows as you spend it, and diminishes as
you save it."
-- ancient Sanskrit saying
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20080201/c5048387/attachment.html>
More information about the Freeradius-Users
mailing list