I have the following test setup :
internet----ASA----ACE(a user context)---client.
I have some problems with icmp messages being dropped and some traffic that is not allowed.
How can i debug blocked traffic on the ACE ? I can't put a "log" entry on the end of an access-list rule neither can i debug ip traffic.
What should i do ?