05-06-2009 03:23 AM - edited 03-11-2019 08:27 AM
Hi all
I need to log any external attack to the ASA. To do this i have issued the folowing commands:
logging enable
logging timestamp
logging buffer-size 100000
logging buffered warnings
access-list acl-out extended deny ip any any log warnings
The problem is that i get some lines in my buffer regarding some denyed external traffic from acl-out but if i perform an online port scaner or try to establish a TCP connection from an unauthorized address i get no lines regarding this.
Anyone can give me some idea?
Thank you
Miquel
05-06-2009 04:10 AM
check if there is any command where you can call acl-out with logging?
like logging access-list acl-out(assuming)
05-06-2009 06:12 AM
Hi nomair.
There are no options like you kindly suggest. I think that the ACL are already called with the argument "log warnings" in the acl.
Gracias!
I'm trying with logging list qith no success
More ideas?
Thank you very much
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide