Re: SDM and ZoneBasedFirewall on 3825: How to View Firewall logs

kdepijper · ‎03-04-2009

Hello,

If I read the documentation, I have to go to ACL Editor/Access Rules, and click "Log matches against this entry"

However, my statefull rules are configured under ACL Editor/Firewall Rules, and there I do not have the option "Log matches against this entry".

Any idea?

thx Karien

Alex Yeung · ‎03-05-2009

Hi Karien,

Which document are you referring to?

Alex Yeung

kdepijper · ‎03-05-2009

To the help in the SDM

Alex Yeung · ‎03-05-2009

can you provide a link? or is in the Help menu in SDM?

Alex Yeung

kdepijper · ‎03-05-2009

Yes, the help menu in SDM

kdepijper · ‎03-10-2009

Hello,

I opened a case@cisco, and firewall accepts are not logged. A workaround you can use is to use audit-trail with parameter map.

In future, it will be possible to activate audit-trail generally, while now it still has to be enabled per class-map

Case closed

zenon_electronics · ‎03-10-2009

Hi, on the ZoneBased Firewall you can see logs. All you have to do, is to manually apply class class-default on every policy map you have defined.

Example:

!

policy-map type inspect in-out-policy

class class-default

drop log

!

When you do this to all policy maps, you will see all packets that are droped.

Regards.

SDM and ZoneBasedFirewall on 3825: How to View Firewall logs?