Egress Access-List logging

Unanswered Question

WE moved to a 4500 series core switch(Cisco IOS Software, Catalyst 4500 L3 Switch Software (cat4500-ENTSERVICESK9-M), Version 12.2(31)SGA6, RELEASE SOFTWARE (fc2).

We pasted in our old ACL's and got this message on the Egress ACL.

"The log keyword is not supported on ACLs attached to egress ports on this platform."

WE use the logging to see what ports are being blocked so we can open them up when a user needs them. Now I can't see any hits because it is not logging to my syslog box. All other ACL's log but the egress. Help.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
rkhalil Sun, 08/03/2008 - 19:29

Why you use SYSLOG for this ?

Configure errdisable recovery...


SW(config)#errdisable recovery cause all 60

show the status..

SW#sh errdisable recovery

ErrDisable Reason Timer Status

----------------- --------------

udld Disabled

bpduguard Disabled

security-violatio Disabled

channel-misconfig Disabled

vmps Disabled

pagp-flap Disabled

dtp-flap Disabled

link-flap Disabled

l2ptguard Disabled

psecure-violation Disabled

gbic-invalid Disabled

dhcp-rate-limit Disabled

unicast-flood Disabled

storm-control Disabled

arp-inspection Disabled

loopback Disabled

Timer interval: 300 seconds

Interfaces that will be enabled at the next timeout:




This Discussion