Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
952
Views
0
Helpful
8
Replies

ACL question (1)

rezaalikhani
VIP
VIP

‎01-21-2006 03:06 AM - edited ‎03-03-2019 01:31 AM

Please explain the LOG syntax in the following command:

access-list access-list-number

{deny | permit}

source [source-wildcard] [log]

Thanx

reza

Labels:
0 Helpful
8 Replies 8

pkhatri
Level 11
Level 11

‎01-21-2006 06:03 AM

The use of the 'log' keyword causes an informational logging message about the packet that matches the entry to be sent to the console. (The level of messages logged to the console is controlled by the 'logging console' command.)

The message includes the access list number, whether the packet was permitted or denied, the source address, and the number of packets. The message is generated for the first packet that matches, and then at 5-minute intervals, including the number of packets permitted or denied in the prior 5-minute interval.

Hope that helps - pls rate the post if it does.

Regards,

Paresh

0 Helpful

rezaalikhani
VIP
VIP
In response to pkhatri

‎01-21-2006 09:00 PM

Thanks for your reply. please explain the "logging message" command with an example.

Thanx

Reza

0 Helpful

pkhatri
Level 11
Level 11
In response to rezaalikhani

‎01-21-2006 09:09 PM

Hi Reza,

The 'logging console [severity-level]' command determines the nature of the messages logged to the console. The severity levels available are:

emergencies (0)

alerts (1)

critical (2)

errors (3)

warnings (4)

notifications (5)

informational (6)

debugging (7)

By default, all levels up to level 7 (debugging) are sent to the console. So, for example, if you configure 'logging console 6', debug messages will not be displayed (only level 0-6 will be displayed).

For your ACL logging, you need to use a level of 6 or 7, otherwise no information is logged or displayed.

Therefore, if you are using defaults, you should be fine and will see the ACL logging messages.

Hope that helps - pls rate the post if it does.

Regards,

Paresh

0 Helpful

rezaalikhani
VIP
VIP
In response to pkhatri

‎01-21-2006 09:32 PM

From your reply; emergencies are always displayed however I mention for example the 6 mode. Right?

0 Helpful

pkhatri
Level 11
Level 11
In response to rezaalikhani

‎01-21-2006 09:45 PM

Yes, emergency messages are always displayed.

If you use 6, your ACL logs will be displayed.

Hope that helps...

Pls remember to rate posts.

Paresh.

0 Helpful

rezaalikhani
VIP
VIP
In response to pkhatri

‎01-21-2006 09:59 PM

Now when I issue the "no logging console" command and use the debug command, does debugging output appears on the console?

0 Helpful

pkhatri
Level 11
Level 11
In response to rezaalikhani

‎01-21-2006 10:30 PM

"no logging console" will completely disable logging to the console - even emergency messages will not be displayed.

Paresh

0 Helpful

rezaalikhani
VIP
VIP
In response to pkhatri

‎01-22-2006 12:50 AM

Thanks for your good reply.

0 Helpful
Customers Also Viewed These Support Documents