Tons of UDP denies for multicast traffic--Urgent

Answered Question
Apr 24th, 2009
User Badges:
  • Purple, 4500 points or more


I have a TON of traffic that's being logged to my syslog server from an ASA that's not even in production yet. Is there a way that I can keep these messages from being logged? The message code is the standard deny message that I need to log. Here's an example:

Deny udp src INSIDE:GO-VMWARE6/7013 dst identity: by access-group "INSIDE" [0x0, 0x0]

Any ideas? These are constant, and I've had about 5000 (just what I tailed out of the log) in the last couple of hours.



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (2 ratings)
John Blakley Fri, 04/24/2009 - 08:13
User Badges:
  • Purple, 4500 points or more

What I ended up doing, since the ASA was denying the traffic anyway, was create a deny statement in my acl and then disabling logging to the destination. Works well, and now I have to find out why these two servers are multicasting traffic.




This Discussion