03-04-2009 02:37 AM - edited 03-11-2019 08:00 AM
Hello,
If I read the documentation, I have to go to ACL Editor/Access Rules, and click "Log matches against this entry"
However, my statefull rules are configured under ACL Editor/Firewall Rules, and there I do not have the option "Log matches against this entry".
Any idea?
thx Karien
03-05-2009 12:29 AM
Hi Karien,
Which document are you referring to?
Alex Yeung
03-05-2009 12:40 AM
To the help in the SDM
03-05-2009 01:01 AM
can you provide a link? or is in the Help menu in SDM?
Alex Yeung
03-05-2009 01:06 AM
Yes, the help menu in SDM
03-10-2009 04:09 AM
Hello,
I opened a case@cisco, and firewall accepts are not logged. A workaround you can use is to use audit-trail with parameter map.
In future, it will be possible to activate audit-trail generally, while now it still has to be enabled per class-map
Case closed
03-10-2009 05:40 AM
Hi, on the ZoneBased Firewall you can see logs. All you have to do, is to manually apply class class-default on every policy map you have defined.
Example:
!
policy-map type inspect in-out-policy
class class-default
drop log
!
When you do this to all policy maps, you will see all packets that are droped.
Regards.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: