Hello to the community!
I have been confused with this for a while and i would like to get your help!
I have a network topology with an ASA 5520 and a Kiwi Syslog server 9.3.4-eval. I also have a CA server.
I have installed the root CA certificate on both the Kiwi Syslog Server and the ASA.
Also i have generated a certificate request for the Kiwi server which was signed by the CA server and also made a trustpoint on the ASA with that certificate (The signed one)
When i try to send syslogs it doesn't display anything.
I have installed Kiwi SyslogGen and have made some tests.
When i make a test with destination port 1468 (TCP default) it works and displays something on the Kiwi manager.
But when i make a test with destination port 6514 (Default Secure TCP) it fails.
On the command prompt i issued the following:
netstat -ano
there were the following entries regarding syslog:
TCP: 0.0.0.0 1468
UDP: 0.0.0.0:514
But nothing is listening to 6514
What can be the problem? Thank you very much in advance!!
Somethin i saw on the error log:
Unable to bind TCP listener to port 6514 There might be a problem with the certificate provided.
Here are some pictures of the settings:
