I need some assistance trying to see what the actual hits are on a specific ruleset on a ASA firewall.
We created a rule required by the server engineers for specific services and ports required. However they were still not able to access or login even though we added the specified ports.
We then created a rule below that matching the first rule but allowed ip/any and the service now works and we see lots of hits on the second ip/any rule.
How can we actually see what the hits are, like source and destination IP's, ports etc?
We do have a syslog server in the environment but this logs actual ASA logs, how do we see the hits on the actual rule?
No no, in the asdm you needed to select the debugging level, by default in cli, if you dont mention the logging level, it takes informational.
You can just give the command that i gave you in the CLI, that woudl set it to informational, or else use the logging level as 7, whihc is for debugging.
do a '?' after log option, it would make it clear.