Posts in this discussion have

pmet · ‎05-25-2015

Hi community

I would like your help with an issue i am having . I tried searching already to the support community but i couldn't find what i am trying to do .

I am trying to tune the syslogs messages from my firewall devices , cisco asa . And i would like messages for legitimate traffic , for example ntp or snmp not to create syslog messages .

For example for ntp use

I have configured and applied to the first line of the access list the line

access-list dmz100 line 1 extended permit udp 192.168.0.0 255.255.0.0 host 10.192.168.1.200 eq ntp log disable

But my firewall still logs and sends to syslog messages for this communication with Build and Teardown messages

How can i stop these kind of messages only for the specific line of the access-list ? I thought that with the command log disable all the messages regarding this communication would be logged .

Thanks in advanced

Makis

vivek srivastava · ‎05-25-2015

Check below link. Hope that solve your problem.

http://www.cisco.com/c/en/us/support/docs/security/pix-500-series-security-appliances/63884-config-asa-00.html#anc1

pmet · ‎05-25-2015

Hi Vivek

Thanks for your time and you reply .

Unfortunately i cannot use this kind of setup , because the message id for example %ASA-6-302016: Teardown , is the same either for the unwanted access-list . either for other communications .

So i cannot "group" it to list .

Its interesting article and i will have in mind for similar config .

Thanks again

Prodromos

rosaho · ‎07-01-2015

Posts in this discussion have been modified due to possible misconduct. Please refer to the CSC terms of use for more details.

Discard log messages for specific acl line