Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
494
Views
0
Helpful
2
Replies

ASA log exception

u.oktay
Level 1
Level 1

‎04-24-2012 09:14 AM - edited ‎03-11-2019 03:57 PM

Hi,

How can i except log generation some ip address on ASA.

I want to filter for generation syslog message for spesific IP address on ASA.

Thanks.

Labels:
0 Helpful
2 Replies 2

u.oktay
Level 1
Level 1

‎04-25-2012 02:42 AM

Do you have any idea this case?

Thanks.

0 Helpful

gaurav bhardwaj
Level 1
Level 1
In response to u.oktay

‎04-25-2012 05:48 AM

yes you can capture for a perticular host and ip

you have to define access-list for that

as instance if you want capture icmp logfor the host 192.168.2.115

then

first make a access-list

access-list 101 permit  icmp host 192.168.2.115 any

then

you have too attach this access-list with capture commend

capture (capture name like newcap) newcap access-list 101 interface (interface name like inside,outside,or dmz1) inside

then the commend is

capture newcap access-list 101 interface inside

then if you ping your inside interface then asa will capture this log

then you can see the log by sh capture (capture name)

sh capture newcap

tell us if it is help you

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card