How to enable logging of packets that match an Access-list statement to a syslog server
i have an ASA 5516 firewall where i have configured some access rules to filter traffic, i want to log packets that match an access-list statement with the log keyword, the logs need to be sent to a syslog server but i only need to send logs for the access-list and not all logging, i notice there is a class option on the on the logging command that filters the logs but am not sure which option to use for logging access-list hits. Below is a what i get from the ASA:
NBS-BT-DC-ASA5516-PRODUCTION(config)# logging trap notifications class ?
configure mode commands/options: auth User Authentication bridge Transparent Firewall ca PKI Certificate Authority citrix Citrix Client config Command Interface csd Secure Desktop cts Cisco TrustSec dap Dynamic Access Policy eigrp EIGRP Routing ha Failover ids Intrusion Detection System ip IP Stack ipaa IP Address Assignment np Network Processor ospf OSPF Routing rip RIP Routing rm Resource Manager rule-engine Rule Engine session User Session snmp SNMP ssl SSL stack svc SSL VPN Client sys System tag-switching Service Tag Switching vm VLAN Mapping vpdn PPTP and L2TP session vpn IKE and IPSec vpnc VPN client vpnfo VPN Failover vpnlb VPN Load Balancing webfo WebVPN Failover webvpn WebVPN client NBS-BT-DC-ASA5516-PRODUCTION(config)# NBS-BT-DC-ASA5516-PRODUCTION(config)# sh access-list | i any any
access-list OUT line 28 extended permit ip any any log
Listen: https://smarturl.it/CCRS8E37Follow us: twitter.com/ciscochampionSometimes, situations require temporary fixes. Sometimes, the network becomes an afterthought in overall office design and planning. In either situation, it may require netw...
In this special edition of the Insider Series, we hear from Cisco partners who have taken steps to be more eco-friendly and sustainable. We hear what inspires ASHRAE, Southwire, Igor, and NTT to create a workplace that is centered around people and how th...
We know that the Type-1 LSA describes the link type connected to the router, the neighbor router and the subnet number.In this topology, assume we dont have a Type-2 LSA, so each router will create its own Type-1 LSA, the Type-1 LSA will describe the neig...
Here are some commonly asked questions and answers to help with your adoption of Cisco DNA Center Wireless. Subscribe to this post to stay up-to-date with the latest Q&A and recommended Ask the Experts (ATXs) sessions to attend.
Q. I have a Cisco Appl...
Why IETF changed and inverted OSPF Type-7 LSA VS Type-5 LSA election In RFC 3101 compared to OLD RFC 1587?Many people learns that the Type-7 LSA and Type-5 election (ON Versus OE routes) depends on RFC 3101 for NSSA published in 2003 and RFC 1587 for NSSA...