11-27-2018 11:35 AM - edited 02-21-2020 08:30 AM
It seems we don't have the "LOG" entry on any of our access lists. Is there a way to globally turn this on so it logs all access lists to the syslog server or do I have to enter this one by one on the ASA command line or ASDM?
11-27-2018 12:53 PM
Hi,
Try enable logging message 106100 and see are you getting the ACL hit logs in syslog server
HTH
Abheesh
11-27-2018 05:02 PM
11-27-2018 06:19 PM
106100 is a level 6 (informational) message, so you would need your global logging also set to level 6 (or 7) for it to start appearing.
11-27-2018 06:24 PM
11-27-2018 06:27 PM
I'm not suggesting to change the severity of the message but rather your GLOBAL setting.
Can you share the output of "show run logging"?
11-27-2018 06:32 PM
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: