Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Logging ACL entry to Syslog server

I have a simple access-list configured on the outside of an ASA

access-list outside_in permit tcp any host x.x.x.x eq 80

access-list outside_in permit tcp any host x.x.x.x eq 443

access-list outside_in deny ip any any

Could someone please post a sample config showing how I can log all entries that hit the deny statement, and send them to a syslog server?

Thanks in advance

1 REPLY
Red

Logging ACL entry to Syslog server

Hi,

You just need to add a "log" key word after the ACL and then it would be sent to your syslog server.

access-list outside_in deny ip any any log

Hope that helps,

Thanks,

Varun

Thanks, Varun Rao Security Team, Cisco TAC
233
Views
5
Helpful
1
Replies