Cisco 3845 logging to syslog server

Unanswered Question
Dec 23rd, 2008
User Badges:

Hi, On the Cisco 3845 Integrated Services Router, I have a Zoned-Based Firewall set up. For testing purposes, I would like to log some "permitted" packets as well as "denied" packets that the firewall is allowing through or prohiting from passing the firewall. I see that there is a way to log the denials, but what I do not see is a way to log permitted packets to the syslog. Obviously, I probably do not want to do this in production, but would like to see my permitted packets in the syslog for our development testing. Is there a way to do this? This option does not appear to be available in SDM, can I do this using the CLI?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
letsgomets Tue, 12/23/2008 - 11:39
User Badges:

You can just append log at the end of each line of your access list. That should do it.

If you want to see if you ACL is getting hits just do a "show access-list"

There you can see the hit counts

cauley.shane Tue, 12/23/2008 - 17:32
User Badges:

I think letsgomets is correct, if you add "log" to the end of the extended access-list it should throw to the syslog.

Shane Cauley

Cheyenne, Wyoming


This Discussion