Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1401
Views
0
Helpful
1
Replies

Question about ACL hashing

RonHarnik
Level 1
Level 1

‎02-08-2014 11:43 PM - edited ‎03-11-2019 08:43 PM

Hi folks,

I've got a questiong about ACL hashing on routers and ASAs, on the router I can use the command:

ip access-list logging hash-generation

And as far as I understand the ASA generates a hash for its ACLs by default, is this true? is there some equivalent command on the ASA for ACL hash generation?

Thanks!

Labels:
0 Helpful
1 Reply 1

jgoldyn
Level 1
Level 1

‎02-10-2014 09:49 AM

Ron,

The ASA does generate hash codes automatically.

Here is sample output from the show access-list command.

access-list outside1_access_in line 2 extended permit ip host 1.2.2.1 host 192.168.100.1 (hitcnt=0) 0x4666ea26

more information can be found at the link below.

http://www.cisco.com/en/US/docs/security/asa/syslog-guide/logmsgs.html

  • hash codes—Two are always printed for the object group ACE and the constituent regular ACE. Values are determined on which ACE that the packet hit. To display these hash codes, enter the

Thanks!

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card