cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1972
Views
0
Helpful
3
Replies

ASA 5500 series - Implicit deny

tobascojojo
Level 1
Level 1

Hi All,

I had a quick question regarding implicit denies on ASA5500. Are implicit deny rules logged? Or does an explicit deny rule have to be configured to log all dropped packets?

Thanks in advance for any help.

1 Accepted Solution

Accepted Solutions

Collin Clark
VIP Alumni
VIP Alumni

Implicit is not logged (CLI) and if you configure explicit, it can log.

Hope that helps.

View solution in original post

3 Replies 3

guibarati
Level 4
Level 4

When you look at realtime log monitor through ASDM it will show you the deny enteries even if it's caused by an implicit rule.

Collin Clark
VIP Alumni
VIP Alumni

Implicit is not logged (CLI) and if you configure explicit, it can log.

Hope that helps.

Thanks all! Responses were very helpful.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: