Solved: Re: Possible to Export L3 Drop with API or Other Method?

Sean-M · ‎08-09-2022

I'll preface this by saying I am sysadmin, not a network engineer but I have been given read-access to the ACO console so I can review the L3 drop/permit logs. I am looking for an automated way to export the logs so my co-workers can also see them. Has anyone implemented something similar?

Sergiu.Daniluk · ‎08-10-2022

Hi @Sean-M

Yes you can export the L2/L3 drop/permit logs using GET requests to their respective URIs:

https://{{APIC_IP}}/api/node/class/ndbgs/acllog/tn-{{TENANT_NAME}}/acllogDropL2Pkt.json
https://{{APIC_IP}}/api/node/class/ndbgs/acllog/tn-{{TENANT_NAME}}/acllogDropL3Pkt.json
https://{{APIC_IP}}/api/node/class/ndbgs/acllog/tn-{{TENANT_NAME}}/acllogPermitL2Pkt.json
https://{{APIC_IP}}/api/node/class/ndbgs/acllog/tn-{{TENANT_NAME}}/acllogPermitL3Pkt.json

Stay safe,

Sergiu

View solution in original post

Kasun Bandara · ‎08-09-2022

you can use syslog. are you mean ACI as your product?

if it is, you can use log directive setting

Please rate this and mark as solution/answer, if this resolved your issue
Good luck
KB

Sergiu.Daniluk · ‎08-10-2022

Hi @Sean-M

Yes you can export the L2/L3 drop/permit logs using GET requests to their respective URIs:

https://{{APIC_IP}}/api/node/class/ndbgs/acllog/tn-{{TENANT_NAME}}/acllogDropL2Pkt.json
https://{{APIC_IP}}/api/node/class/ndbgs/acllog/tn-{{TENANT_NAME}}/acllogDropL3Pkt.json
https://{{APIC_IP}}/api/node/class/ndbgs/acllog/tn-{{TENANT_NAME}}/acllogPermitL2Pkt.json
https://{{APIC_IP}}/api/node/class/ndbgs/acllog/tn-{{TENANT_NAME}}/acllogPermitL3Pkt.json

Stay safe,

Sergiu