I need to log any external attack to the ASA. To do this i have issued the folowing commands:
logging buffer-size 100000
logging buffered warnings
access-list acl-out extended deny ip any any log warnings
The problem is that i get some lines in my buffer regarding some denyed external traffic from acl-out but if i perform an online port scaner or try to establish a TCP connection from an unauthorized address i get no lines regarding this.
Anyone can give me some idea?