ASA logging

Unanswered Question
May 6th, 2009
User Badges:

Hi all


I need to log any external attack to the ASA. To do this i have issued the folowing commands:

logging enable

logging timestamp

logging buffer-size 100000

logging buffered warnings

access-list acl-out extended deny ip any any log warnings


The problem is that i get some lines in my buffer regarding some denyed external traffic from acl-out but if i perform an online port scaner or try to establish a TCP connection from an unauthorized address i get no lines regarding this.

Anyone can give me some idea?


Thank you


Miquel


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
nomair_83 Wed, 05/06/2009 - 04:10
User Badges:
  • Bronze, 100 points or more

check if there is any command where you can call acl-out with logging?


like logging access-list acl-out(assuming)




msantiveri Wed, 05/06/2009 - 06:12
User Badges:

Hi nomair.

There are no options like you kindly suggest. I think that the ACL are already called with the argument "log warnings" in the acl.

Gracias!

I'm trying with logging list qith no success

More ideas?

Thank you very much

Actions

This Discussion