Hi,

I guess on Notifications level you would essentially only see Deny messages of traffic blocked by interface ACL.

Informational messages by default contain connection/translation build/teardown messages.

Have you perhaps configured separate logging setting on the actual ACL rules that might have been modified so that they stopped logging?

- Jouni

i have checked a few times for an errant setting but i must be blind in one eye and can't see out of the other as nothing stands out as being wrong.  not sure what to look for.

Would you be able to post a full sanitised running config for us to look over?

--
Please remember to rate and select a correct answer

i will put a sanitized copy of the running config up but it will take me about 5 more hours before i am able to do so... thanks for taking the time to look at this...

hi Marius,

before posting the running configuration...  in the configuration -> device management -> syslog setup there are hundreds of syslog id's with their various logging levels set.  the problem we've been dealing with is the level 5 messages - Notifications.  browsing through this level via a doc from the cisco website it appears there are many messages set to level 4 and higher for the logging level.  i do not know the actual syslog id's that are used to log web browsing activity but do you suppose this could be a cause for my dilemma?  if so, which of the id's are used for trapping the logs for web browsing?

here is the "sanitized" version of my running configuration      

hi marius...  i discovered the issue last night... For some reason, the http service policy and the http inspection map disappeared.  i recreated them and all is good… the only issue now since it's working is i can't remember how i had it setup to display on the asdm console the source ip, source port, destination ip and destination port.  anyway, i'll post that into a new request after i take a little time to read up...  thanks for the help