cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
513
Views
0
Helpful
6
Replies

SDM and ZoneBasedFirewall on 3825: How to View Firewall logs?

kdepijper
Level 1
Level 1

Hello,

If I read the documentation, I have to go to ACL Editor/Access Rules, and click "Log matches against this entry"

However, my statefull rules are configured under ACL Editor/Firewall Rules, and there I do not have the option "Log matches against this entry".

Any idea?

thx Karien

6 Replies 6

Alex Yeung
Cisco Employee
Cisco Employee

Hi Karien,

Which document are you referring to?

Alex Yeung

To the help in the SDM

can you provide a link? or is in the Help menu in SDM?

Alex Yeung

Yes, the help menu in SDM

Hello,

I opened a case@cisco, and firewall accepts are not logged. A workaround you can use is to use audit-trail with parameter map.

In future, it will be possible to activate audit-trail generally, while now it still has to be enabled per class-map

Case closed

Hi, on the ZoneBased Firewall you can see logs. All you have to do, is to manually apply class class-default on every policy map you have defined.

Example:

!

policy-map type inspect in-out-policy

class class-default

drop log

!

When you do this to all policy maps, you will see all packets that are droped.

Regards.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: