03-04-2009 02:37 AM - edited 03-11-2019 08:00 AM
Hello,
If I read the documentation, I have to go to ACL Editor/Access Rules, and click "Log matches against this entry"
However, my statefull rules are configured under ACL Editor/Firewall Rules, and there I do not have the option "Log matches against this entry".
Any idea?
thx Karien
03-05-2009 12:29 AM
Hi Karien,
Which document are you referring to?
Alex Yeung
03-05-2009 12:40 AM
To the help in the SDM
03-05-2009 01:01 AM
can you provide a link? or is in the Help menu in SDM?
Alex Yeung
03-05-2009 01:06 AM
Yes, the help menu in SDM
03-10-2009 04:09 AM
Hello,
I opened a case@cisco, and firewall accepts are not logged. A workaround you can use is to use audit-trail with parameter map.
In future, it will be possible to activate audit-trail generally, while now it still has to be enabled per class-map
Case closed
03-10-2009 05:40 AM
Hi, on the ZoneBased Firewall you can see logs. All you have to do, is to manually apply class class-default on every policy map you have defined.
Example:
!
policy-map type inspect in-out-policy
class class-default
drop log
!
When you do this to all policy maps, you will see all packets that are droped.
Regards.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide