Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

Globally setting all ACLS to log

We currently receive syslogs (informational) for all connections but have recently deployed an auditing tool that requires that each ACL also be set to log. Is there a way to globally set all ACLs to log?

3 REPLIES

Re: Globally setting all ACLS to log

Hi,

Are you referring to an ASA?

In the ASA you can set the ''log'' keyword at the end of the statement to generate a log for that line. This must be done on all ACEs in the ACL.

Also, you can set the alert-interval for those logs (access-list alert-interval)

Federico.

Community Member

Re: Globally setting all ACLS to log

Thank you for the reply. The issue that we are having is that we currently manage hundreds of ASA's , each with hundreds of ACE's per

ACL. Is there a way to globally set each ACE to log without redoing every single ACL?

Re: Globally setting all ACLS to log

I don't think there's a way to globally enable logging for all the ACLs on the ASA itself, because you normall want to do this on specific ACEs.

However if you use Cisco Security Monitor you might be able to inject such a policy to all ASAs simultaneously.

Federico.

157
Views
0
Helpful
3
Replies
CreatePlease to create content