
vpn2#show access-list 117
Extended IP access list 117
    10 permit ip host 217.204.95.134 any
    20 permit ip host 82.110.62.66 any
    30 permit ip host 217.204.95.135 any
    40 permit ip any 10.168.157.0 0.0.0.255

vpn2#sh log
Syslog logging: enabled (0 messages dropped, 3 messages rate-limited,
                0 flushes, 0 overruns, xml disabled, filtering disabled)

No Active Message Discriminator.



No Inactive Message Discriminator.


    Console logging: level critical, 0 messages logged, xml disabled,
                     filtering disabled
    Monitor logging: level debugging, 0 messages logged, xml disabled,
                     filtering disabled
    Buffer logging:  level debugging, 76 messages logged, xml disabled,
                     filtering disabled
    Logging Exception size (4096 bytes)
    Count and timestamp logging messages: disabled
    Persistent logging: disabled

No active filter modules.

ESM: 0 messages dropped

    Trap logging: level warnings, 46 message lines logged
        Logging to 192.168.156.69  (udp port 514,  audit disabled,
              authentication disabled, encryption disabled, link up),
              46 message lines logged,
              0 message lines rate-limited,
              0 message lines dropped-by-MD,
              xml disabled, sequence number disabled
              filtering disabled

Log Buffer (52000 bytes):

*Sep  2 18:14:24.711: %VPN_HW-6-INFO_LOC: Crypto engine: onboard 0  State change
d to: Initialized
*Sep  2 18:14:24.715: %VPN_HW-6-INFO_LOC: Crypto engine: onboard 0  State change
d to: Enabled
*Sep  2 18:14:26.415: %LINEPROTO-5-UPDOWN: Line protocol on Interface ATM0/0/0,
changed state to down
*Sep  2 18:14:26.415: %LINEPROTO-5-UPDOWN: Line protocol on Interface ATM0/1/0,
changed state to down
*Sep  2 18:14:27.599: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthern
et0/0, changed state to down
*Sep  2 18:14:27.999: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthern
et0/1, changed state to down
000007: *Sep  2 19:14:28.563 PCTime: %SYS-6-CLOCKUPDATE: System clock has been u
pdated from 18:14:28 UTC Wed Sep 2 2009 to 19:14:28 PCTime Wed Sep 2 2009, confi
gured from console by console.
000008: *Sep  2 19:14:28.567 PCTime: %SYS-6-CLOCKUPDATE: System clock has been u
pdated from 19:14:28 PCTime Wed Sep 2 2009 to 19:14:28 PCTime Wed Sep 2 2009, co
nfigured from console by console.
000009: *Sep  2 19:14:31.755 PCTime: %LINEPROTO-5-UPDOWN: Line protocol on Inter
face FastEthernet0/0, changed state to up%Warning: Zone-pair/classmap name too l
ong. Truncated to fit 64 bytes. Truncated string is "(sdm-zp-VPNOutsideToInside-
1:sdm-cls-sdm-pol-VPNOutsideToInside-"
000010: *Sep  2 19:14:59.827 PCTime: %LINK-3-UPDOWN: Interface ATM0/1/0, changed
 state to up
000011: *Sep  2 19:15:00.827 PCTime: %LINEPROTO-5-UPDOWN: Line protocol on Inter
face ATM0/1/0, changed state to up
000012: *Sep  2 19:15:03.771 PCTime: %LINEPROTO-5-UPDOWN: Line protocol on Inter
face NVI0, changed state to up
000013: *Sep  2 19:15:04.335 PCTime: %SYS-5-CONFIG_I: Configured from memory by
console
000014: *Sep  2 19:15:05.047 PCTime: %LINK-5-CHANGED: Interface FastEthernet0/1,
 changed state to administratively down
000015: *Sep  2 19:15:05.363 PCTime: %SYS-5-RESTART: System restarted --
Cisco IOS Software, 1841 Software (C1841-ADVENTERPRISEK9-M), Version 12.4(24)T1,
 RELEASE SOFTWARE (fc3)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2009 by Cisco Systems, Inc.
Compiled Fri 19-Jun-09 13:52 by prod_rel_team
000016: *Sep  2 19:15:05.367 PCTime: %SNMP-5-COLDSTART: SNMP agent on host vpn2
is undergoing a cold start
000017: *Sep  2 19:15:05.427 PCTime: %SSH-5-ENABLED: SSH 1.99 has been enabled
000018: *Sep  2 19:15:05.587 PCTime: %CRYPTO-6-ISAKMP_ON_OFF: ISAKMP is OFF
000019: *Sep  2 19:15:05.587 PCTime: %CRYPTO-6-GDOI_ON_OFF: GDOI is OFF
000020: *Sep  2 19:15:05.587 PCTime: %CRYPTO-6-ISAKMP_ON_OFF: ISAKMP is OFF
000021: *Sep  2 19:15:05.587 PCTime: %CRYPTO-6-GDOI_ON_OFF: GDOI is OFF
000022: *Sep  2 19:15:05.587 PCTime: %CRYPTO-6-ISAKMP_ON_OFF: ISAKMP is ON
000023: *Sep  2 19:15:08.803 PCTime: %SYS-6-LOGGINGHOST_STARTSTOP: Logging to ho
st 192.168.156.69 port 514 started - CLI initiated
000024: *Sep  2 19:15:18.751 PCTime: %LINK-3-UPDOWN: Interface ATM0/0/0, changed
 state to up
000025: *Sep  2 19:15:19.751 PCTime: %LINEPROTO-5-UPDOWN: Line protocol on Inter
face ATM0/0/0, changed state to up
000026: *Sep  2 19:15:46.091 PCTime: CCE: CCE 7 tuple table adding data to inval
id hash entry.
000027: *Sep  2 19:17:31.931 PCTime: %CRYPTO-4-IKMP_NO_SA: IKE message from 217.
204.95.134 has no SA and is not an initialization offer
000028: *Sep  2 19:17:54.579 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (16) detected - resetting session 192.168.157.70:57312 208.43.225.3:80
 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockpar
am
000029: *Sep  2 19:17:55.611 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (16) detected - resetting session 192.168.157.70:59401 208.43.225.3:80
 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockpar
am
000030: *Sep  2 19:17:56.559 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (15) detected - resetting session 192.168.157.70:50347 64.156.132.140:
80 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockp
aram
000031: *Sep  2 19:18:03.579 PCTime: %APPFW-4-HTTP_METHOD: HTTP method (post) ma
tched - resetting session 192.168.157.70:41865 64.156.132.140:80 on zone-pair sd
m-zp-in-out class sdm-protocol-http appl-class sdm-app-httpmethods
000032: *Sep  2 19:18:03.919 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (15) detected - resetting session 192.168.157.70:52504 216.239.59.138:
80 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockp
aram
000033: *Sep  2 19:18:36.111 PCTime: %APPFW-4-HTTP_PROTOCOL_VIOLATION: HTTP prot
ocol violation (0) detected - resetting session 192.168.157.70:43165 64.156.132.
195:80 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-bl
ockparam
000034: *Sep  2 19:18:39.495 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (16) detected - resetting session 192.168.157.70:45479 208.43.225.3:80
 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockpar
am
000035: *Sep  2 19:18:40.459 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (16) detected - resetting session 192.168.157.70:52613 208.43.225.3:80
 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockpar
am
000036: *Sep  2 19:18:40.899 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (15) detected - resetting session 192.168.157.70:58251 66.235.133.1:80
 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockpar
am
000037: *Sep  2 19:18:41.343 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (15) detected - resetting session 192.168.157.70:34892 64.156.132.140:
80 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockp
aram
000038: *Sep  2 19:18:44.823 PCTime: CCE: CCE 7 tuple table adding data to inval
id hash entry.
000039: *Sep  2 19:19:11.855 PCTime: %APPFW-4-HTTP_METHOD: HTTP method (post) ma
tched - resetting session 192.168.157.70:59828 64.156.132.140:80 on zone-pair sd
m-zp-in-out class sdm-protocol-http appl-class sdm-app-httpmethods
000040: *Sep  2 19:19:12.119 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (15) detected - resetting session 192.168.157.70:57048 216.239.59.138:
80 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockp
aram
000041: *Sep  2 19:19:15.947 PCTime: CCE: CCE 7 tuple table adding data to inval
id hash entry.
000042: *Sep  2 19:19:18.831 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (16) detected - resetting session 192.168.157.70:38525 208.43.225.3:80
 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockpar
am
000043: *Sep  2 19:19:20.311 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (15) detected - resetting session 192.168.157.70:54187 204.11.109.24:8
0 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockpa
ram
000044: *Sep  2 19:19:21.475 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (16) detected - resetting session 192.168.157.70:49292 208.43.225.3:80
 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockpar
am
000045: *Sep  2 19:19:21.735 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (15) detected - resetting session 192.168.157.70:33062 204.11.109.24:8
0 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockpa
ram
000046: *Sep  2 19:19:22.059 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (15) detected - resetting session 192.168.157.70:37956 66.235.133.1:80
 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockpar
am
000047: *Sep  2 19:19:22.067 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (15) detected - resetting session 192.168.157.70:47779 64.156.132.140:
80 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockp
aram
000048: *Sep  2 19:19:26.839 PCTime: CCE: CCE 7 tuple table adding data to inval
id hash entry.
000049: *Sep  2 19:20:11.511 PCTime: %APPFW-4-HTTP_METHOD: HTTP method (post) ma
tched - resetting session 192.168.157.24:1388 64.156.132.140:80 on zone-pair sdm
-zp-in-out class sdm-protocol-http appl-class sdm-app-httpmethods
000050: *Sep  2 19:20:16.375 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (16) detected - resetting session 192.168.157.24:1396 208.43.92.218:80
 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockpar
am
000051: *Sep  2 19:20:17.227 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (15) detected - resetting session 192.168.157.24:1400 204.11.109.24:80
 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockpar
am
000052: *Sep  2 19:20:18.559 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (16) detected - resetting session 192.168.157.24:1406 208.43.92.218:80
 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockpar
am
000053: *Sep  2 19:20:18.791 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (15) detected - resetting session 192.168.157.24:1408 204.11.109.24:80
 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockpar
am
000054: *Sep  2 19:20:19.079 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (15) detected - resetting session 192.168.157.24:1411 64.156.132.140:8
0 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockpa
ram
000055: *Sep  2 19:20:19.191 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (15) detected - resetting session 192.168.157.24:1413 66.235.133.33:80
 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockpar
am
000056: *Sep  2 19:20:19.315 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (15) detected - resetting session 192.168.157.24:1415 64.156.132.140:8
0 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockpa
ram
000057: *Sep  2 19:20:32.911 PCTime: %APPFW-4-HTTP_PROTOCOL_VIOLATION: HTTP prot
ocol violation (0) detected - resetting session 216.239.59.103:80 192.168.157.24
:1463 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blo
ckparam
000058: *Sep  2 19:20:44.495 PCTime: %APPFW-4-HTTP_METHOD: HTTP method (post) ma
tched - resetting session 192.168.157.70:37675 199.7.55.72:80 on zone-pair sdm-z
p-in-out class sdm-protocol-http appl-class sdm-app-httpmethods
000059: *Sep  2 19:21:12.051 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (16) detected - resetting session 192.168.157.70:49352 208.43.225.3:80
 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockpar
am
000060: *Sep  2 19:21:13.179 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (16) detected - resetting session 192.168.157.70:35279 208.43.225.3:80
 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockpar
am
000061: *Sep  2 19:21:13.927 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (15) detected - resetting session 192.168.157.70:37525 64.156.132.140:
80 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockp
aram
000062: *Sep  2 19:21:16.407 PCTime: CCE: CCE 7 tuple table adding data to inval
id hash entry.
000063: *Sep  2 19:21:21.307 PCTime: %APPFW-4-HTTP_METHOD: HTTP method (post) ma
tched - resetting session 192.168.157.70:53207 64.156.132.140:80 on zone-pair sd
m-zp-in-out class sdm-protocol-http appl-class sdm-app-httpmethods
000064: *Sep  2 19:21:35.983 PCTime: %APPFW-4-HTTP_METHOD: HTTP method (post) ma
tched - resetting session 192.168.157.70:35306 64.156.132.140:80 on zone-pair sd
m-zp-in-out class sdm-protocol-http appl-class sdm-app-httpmethods
000065: *Sep  2 19:22:00.227 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (15) detected - resetting session 192.168.157.70:56410 88.221.32.170:8
0 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockpa
ram
000066: *Sep  2 19:22:00.335 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (15) detected - resetting session 192.168.157.70:50086 88.221.32.170:8
0 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockpa
ram
000067: *Sep  2 19:22:25.723 PCTime: %APPFW-4-HTTP_METHOD: HTTP method (post) ma
tched - resetting session 192.168.157.70:60450 216.239.59.102:80 on zone-pair sd
m-zp-in-out class sdm-protocol-http appl-class sdm-app-httpmethods
000068: *Sep  2 19:24:13.299 PCTime: %APPFW-4-HTTP_PROTOCOL_VIOLATION: HTTP prot
ocol violation (0) detected - resetting session 204.69.199.39:80 192.168.157.24:
1660 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-bloc
kparam
000069: *Sep  2 19:24:16.419 PCTime: CCE: CCE 7 tuple table adding data to inval
id hash entry.
000070: *Sep  2 19:24:21.767 PCTime: %APPFW-4-HTTP_PROTOCOL_VIOLATION: HTTP prot
ocol violation (0) detected - resetting session 204.69.199.39:80 192.168.157.24:
1661 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-bloc
kparam
000071: *Sep  2 19:25:57.755 PCTime: %APPFW-4-HTTP_PROTOCOL_VIOLATION: HTTP prot
ocol violation (0) detected - resetting session 204.69.199.39:80 192.168.157.70:
57004 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blo
ckparam
000072: *Sep  2 19:26:23.147 PCTime: %APPFW-4-HTTP_METHOD: HTTP method (post) ma
tched - resetting session 192.168.157.70:47763 204.69.199.39:80 on zone-pair sdm
-zp-in-out class sdm-protocol-http appl-class sdm-app-httpmethods
000073: *Sep  2 19:26:23.419 PCTime: %APPFW-4-HTTP_DEOBFUSCATION: Deobfuscation
signature (15) detected - resetting session 192.168.157.70:37633 216.239.59.138:
80 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blockp
aram
000074: *Sep  2 19:27:27.379 PCTime: %APPFW-4-HTTP_PROTOCOL_VIOLATION: HTTP prot
ocol violation (0) detected - resetting session 204.69.199.39:80 192.168.157.70:
58912 on zone-pair sdm-zp-in-out class sdm-protocol-http appl-class sdm-http-blo
ckparam
000075: *Sep  2 19:28:39.279 PCTime: %CRYPTO-4-IKMP_NO_SA: IKE message from 213.
139.4.50 has no SA and is not an initialization offer