I use a Cisco ASA 5520 with version 8.2(2)
What I want to do ist to log some of the ACEs configured.
How it works:
# logging enable
# logging trap informational
# logging host inside x.x.x.x
# access-list inside_access_in extended permit ip any any log
# logging trap errors
# access-list inside_access_in extended permit ip any any log errors
In this case my syslog server does not get theese 6-106100 messages. But why?
Changing the severity of this message does not work either:
# logging message 106100 level errors
INFO: Please use the access-list command to change the severity level of this syslog
Pls. remove that acl line and then put it back again with the changed logging level.
It will work and show you 106100 in error level.
The reason is that when the log is hit for that traffic and when you change the level it doesn't take the newly changed level until traffic stops flowing matching the acl.