Scott O'Brien

Logging NAT Translations on the Cisco ASA

Created: 5/8/2014, 6:14:09 AM

It's often handy when dealing with infringement notices and the like to have NAT translations logged.  Sure a better way would be to record netflow from these devices (and include the translations) but for a quick syslog solution, you can always enable by running the following...

logging enable
logging list ToSyslog level critical
logging list ToSyslog message 305011


Messages will look something like:

May 08 13:01:20 %ASA-6-305011: Built dynamic TCP translation from inside: to outside: