×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

Wanting to see logging for ASA 5510 Permits

Unanswered Question
Feb 10th, 2012
User Badges:



I have a rule which permits traffic to a web server and logging is enabled.  But when I go to syslog I am only seeing traffic which has been

denied.  What needs to change to be able to see the logged traffic on permit rules?  Thanks.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Marvin Rhoads Fri, 02/10/2012 - 19:24
User Badges:
  • Super Silver, 17500 points or more
  • Hall of Fame,
  • Cisco Designated VIP,

    2017 Firewalling, Network Management, VPN

You might have logging globally set to something higher priority than 6 (e.g., 5 or lower numerically). What are you using to display syslog?


You can see the ACE hits using the command line by the following:


"

To display the hit counters and a timestamp value for an access list, use the show access-list command

in privileged EXEC mode.


show access-list id_1 [...[id_2]] [brief]

"

Actions

This Discussion