2.2.7 Set 'logging source interface'

Information

Specify the source IPv4 or IPv6 address of system logging packets

This is required so that the router sends log messages to the logging server from a consistent IP address.

Solution

Bind logging to the loopback interface.

hostname(config)#logging source-interface loopback {<em>loopback_interface_number</em>}

Impact:

Logging is an important process for an organization managing technology risk and establishing a consistent source of messages for the logging host is critical. The 'logging source interface loopback' command sets a consistent IP address to send messages to the logging host and enforces the logging process.

See Also

https://workbench.cisecurity.org/benchmarks/17130

Item Details

Category: AUDIT AND ACCOUNTABILITY

References: 800-53|AU-3, 800-53|AU-3(1), 800-53|AU-7, 800-53|AU-12, CSCv7|6.3

Plugin: Cisco

Control ID: 9e853620aacf25ba5507b979d847085c8c88384e66dc6a9ae701a54267fd295c