Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2581
Views
5
Helpful
3
Replies

ACI Contract Permit/Deny Syslog Logging - Not Working

Go to solution
maced129
Level 1
Level 1

‎01-22-2021 11:16 AM

Hello,

 

We are trying to get our contracts between EPGs to log the deny and permit traffic as seen within the Tenant > $tenant > Operational > Packets > L3 Permits/L3 Denys.

 

According to the obscure documentation it seems that one of the key things that needs to happen to send these logs to syslog is to reassign the default logging facility to "information" and enable the fabric monitoring policy. We see syslog on our syslog server, just not for the contract permits and denys. Changing the default to facility to "information" did not work and we have gone down a rabbit hole of enabling the monitoring policy in every possible place (Fabric/Fabric Access/Tenant/AP/EPG/BD) and still no luck. I don't see the messages popping up in /var/log/external/messages on the leafs either..

 

 

Any ideas?

 

Thanks

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
maced129
Level 1
Level 1

‎01-22-2021 01:56 PM

Agh....seems to be a bug with our current version of Leafs

 

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvv11292

View solution in original post

3 Replies 3

Go to solution
Sergiu.Daniluk
VIP Alumni
VIP Alumni

‎01-22-2021 01:11 PM

Hi @maced129 

If you wish to start the contract logging, you need to enable the log directive under the filter chain:

Screenshot 2021-01-22 230934.png

Double click on the filter entry from contract subject.

 

Stay safe,

Sergiu

0 Helpful

Go to solution
maced129
Level 1
Level 1
In response to Sergiu.Daniluk

‎01-22-2021 01:20 PM

Unfortunately, no luck there - all contracts applied to the EPG have log directive enabled. 

0 Helpful

Go to solution
maced129
Level 1
Level 1

‎01-22-2021 01:56 PM

Agh....seems to be a bug with our current version of Leafs

 

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvv11292

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents

Save 25% on Day-2 Operations Add-On License