1) You only need no manualy add the deny any any to see the counter of all filtered traffic. (I do that)
2) You can see permited and denied traffic using log in debug or informational mode
logging enable
logging timestamp
logging buffer-size 1048576
logging buffered informational
And use sh log
to see it.
Guido.
Please rate all the helpful comments.