I have a 3825 router on my customers Border to the Internet. I wish to log both allowed and denied traffic so that it can be sent to our log correlation tool for PCI compliancy.
I have examined the routers log, and it does not contain any information with respect to the "permitted" or "denied" traffic.
I configured the following statement to determine if I could get the results to write to the log, but it failed:
"permit tcp any any established log"
What do I need to configure to have all the "permits and denies" logged.
Is this relevant to the logging level?