I have an access-list, that looks similar to this:
ip access-list extended TestACL
deny ip 188.8.131.52 0.255.255.255 any log-input
permit ip any any
When IOS logs hits against this ACL, it doesn't log the port numbers:
1568837: Aug 31 15:39:19.552 EDT: %SEC-6-IPACCESSLOGP: list TestACL denied tcp 184.108.40.206(0) (Serial0/0 ) -> 220.127.116.11(0), 1 packet
I realize this is by design to speed things up, and IOS is discarding the packet before even reading the port information. But how could I actually make it log the port numbers?
My ACL basically denies a lot of stuff and has a statement at the bottom allowing everything else.