01-05-2017 08:31 PM - edited 03-08-2019 08:49 AM
All,
When attempting to configure a test ACL to log
example:
interface GigabitEthernet6/15
switchport mode access
ip access-group hit42 out
ip access-list extended hit42
permit ip host 10.85.97.131 host 10.85.96.101 log (add log )
" The log keyword is not supported on ACLs attached to egress ports on this platform."
The current version image on the switch is:"bootflash:cat4500-ipbasek9-mz.122-53.SG.bin"
Can someone let me know if this keyword ("log") is available in a more recent version of the IOS image for this platform which I can upgrade to and please recommend a version to upgrade to get this feature?
Thank you,
Solved! Go to Solution.
01-06-2017 12:02 AM
Not supported
The input IP ACL logging option is supported, although logging is not supported for output IP ACLs, and MAC ACLs.
http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst4500/12-2/25ew/configuration/guide/conf/secure.html#wp1071445
01-06-2017 12:02 AM
Not supported
The input IP ACL logging option is supported, although logging is not supported for output IP ACLs, and MAC ACLs.
http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst4500/12-2/25ew/configuration/guide/conf/secure.html#wp1071445
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide