I have my asa logging to a linux box but it won't log acl events.
I've done countless acl's in cisco routers, for example with an entry like below I see all the incoming web traffic.
access-list 100 permit tcp any gt 1023 host x.x.x.x eq 80 log
As stated the asa is syslogging basic stuff so I have that correct, the problem is it won't log this.
access-list Internal_access_out extended permit ip any any log
access-list Internal_access_in extended permit ip any any log
access-group Internal_access_in in interface Internal
access-group Internal_access_out out interface Internal