RE: ASA accouting through ACS for the VPN access from CCIE on 2010-02-09 (Ccielab archives /201002)

From: CCIE <ccie_at_axizo.com>
Date: Tue, 9 Feb 2010 10:57:58 +0200

Can't I preform cut-through proxy for the remote VPN users, then perform
auditing (accounting) for the cut-through proxy?

-----Original Message-----
From: nobody_at_groupstudy.com [mailto:nobody_at_groupstudy.com] On Behalf Of CCIE
Sent: Tuesday, February 09, 2010 10:22 AM
To: 'Farrukh Haroon'
Cc: 'groupstudy'
Subject: RE: ASA accouting through ACS for the VPN access

May be 50 users.

From: Farrukh Haroon [mailto:farrukhharoon_at_gmail.com]
Sent: Tuesday, February 09, 2010 9:03 AM
To: CCIE
Cc: groupstudy
Subject: Re: ASA accouting through ACS for the VPN access

Roughly how many user accounts do you have?

Regards

Farrukh

On Tue, Feb 9, 2010 at 9:40 AM, CCIE <ccie_at_axizo.com> wrote:

Very bad, because doing it at SYSLOG server will not be connected to the
username? I was thinking to have record per username.

-----Original Message-----
From: nobody_at_groupstudy.com [mailto:nobody_at_groupstudy.com] On Behalf Of

Farrukh Haroon
Sent: Monday, February 08, 2010 9:05 PM
To: CCIE
Cc: groupstudy
Subject: Re: ASA accouting through ACS for the VPN access

ACS won't help you that much ..... you could make ACLs for the VPN users
(and enable logging on it). Then analyze them using any syslog analyzer.

Newer ASA versions also support netflow, that might help as well.

Regards

Farrukh

On Mon, Feb 8, 2010 at 9:40 PM, CCIE <ccie_at_axizo.com> wrote:

> Hi,
>
>
>
> I have ACS 4.2 and I would like to utilize it to log the accessed servers
> and services for the Easy VPN remote that connect through my ASA 7.2, I
> enabled accounting at the tunnel group setting, and I get accounting of
the
> start and stop of the VPN sessions, but I need more than just a start and
> stop for the VPN access, I want accounting of the accessed services and
> server while the are connected through the VPN.
>
>
> If anybody have the solution and sure of that I can pay him for that.
>
>
>
> Regards,
>
> Amin
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html

Blogs and organic groups at http://www.ccie.net
Received on Tue Feb 09 2010 - 10:57:58 ART

This archive was generated by hypermail 2.2.0 : Mon Mar 01 2010 - 06:28:35 ART