Doubt on ACL

Unanswered Question
Jan 23rd, 2007
User Badges:

hi,


what is use of Log [optional] cmd in the accesslist.

does it logs the voilation of Access-list, if so , is there any cmd/method, to find out who has voilated the Accless list (hit/matched the ACL statement).

is there any way we can make out the IP source that voilated the list.


regards

Shashi

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
smothuku Tue, 01/23/2007 - 02:48
User Badges:
  • Silver, 250 points or more

Hi Shashi ,


Hope the below link explains helps you in clearing YOUR doubt.

Use of log(optional):


Optional) Causes an informational logging message about the packet that matches the entry to be sent to the console. (The level of messages logged to the console is controlled by the logging console command.)


The message includes the access list number, whether the packet was permitted or denied; the protocol, whether it was TCP, UDP, ICMP or a number; and, if appropriate, the source and destination addresses and source and destination port numbers. The message is generated for the first packet that matches, and then at 5-minute intervals, including the number of packets permitted or denied in the prior 5-minute interval.


The logging facility might drop some logging message packets if there are too many to be handled or if there is more than one logging message to be handled in 1 second. This behavior prevents the router from crashing due to too many logging packets. Therefore, the logging facility should not be used as a billing tool or an accurate source of the number of matches to an access list.



http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/np1_r/1rprt2/1rip.htm#wp1017448


Thanks,

Satish


Actions

This Discussion