cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
634
Views
0
Helpful
1
Replies

cisco WS-C4506- keyword "log" not available for egress ACL

long jun lin
Level 1
Level 1

All,

When attempting to configure a test ACL to log

example:

interface GigabitEthernet6/15
switchport mode access
ip access-group hit42 out

ip access-list extended hit42
permit ip host 10.85.97.131 host 10.85.96.101   log  (add log )

" The log keyword is not supported on ACLs attached to egress ports on this platform."

The current version image on the switch is:"bootflash:cat4500-ipbasek9-mz.122-53.SG.bin"

Can someone let me know if this keyword ("log") is available in a more recent version of the IOS image for this platform which I can upgrade to and please recommend a version to upgrade to get this feature?

Thank you,

1 Accepted Solution

Accepted Solutions

Pranay Prasoon
Level 3
Level 3

Not supported

The input IP ACL logging option is supported, although logging is not supported for output IP ACLs, and MAC ACLs.

http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst4500/12-2/25ew/configuration/guide/conf/secure.html#wp1071445

View solution in original post

1 Reply 1

Pranay Prasoon
Level 3
Level 3

Not supported

The input IP ACL logging option is supported, although logging is not supported for output IP ACLs, and MAC ACLs.

http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst4500/12-2/25ew/configuration/guide/conf/secure.html#wp1071445

Review Cisco Networking for a $25 gift card