11-27-2018 11:35 AM - edited 02-21-2020 08:30 AM
It seems we don't have the "LOG" entry on any of our access lists. Is there a way to globally turn this on so it logs all access lists to the syslog server or do I have to enter this one by one on the ASA command line or ASDM?
11-27-2018 12:53 PM
Hi,
Try enable logging message 106100 and see are you getting the ACL hit logs in syslog server
HTH
Abheesh
11-27-2018 05:02 PM
11-27-2018 06:19 PM
106100 is a level 6 (informational) message, so you would need your global logging also set to level 6 (or 7) for it to start appearing.
11-27-2018 06:24 PM
11-27-2018 06:27 PM
I'm not suggesting to change the severity of the message but rather your GLOBAL setting.
Can you share the output of "show run logging"?
11-27-2018 06:32 PM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide