Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

SDM and ZoneBasedFirewall on 3825: How to View Firewall logs?

Hello,

If I read the documentation, I have to go to ACL Editor/Access Rules, and click "Log matches against this entry"

However, my statefull rules are configured under ACL Editor/Firewall Rules, and there I do not have the option "Log matches against this entry".

Any idea?

thx Karien

6 REPLIES
Cisco Employee

Re: SDM and ZoneBasedFirewall on 3825: How to View Firewall logs

Hi Karien,

Which document are you referring to?

Alex Yeung

New Member

Re: SDM and ZoneBasedFirewall on 3825: How to View Firewall logs

To the help in the SDM

Cisco Employee

Re: SDM and ZoneBasedFirewall on 3825: How to View Firewall logs

can you provide a link? or is in the Help menu in SDM?

Alex Yeung

New Member

Re: SDM and ZoneBasedFirewall on 3825: How to View Firewall logs

Yes, the help menu in SDM

New Member

Re: SDM and ZoneBasedFirewall on 3825: How to View Firewall logs

Hello,

I opened a case@cisco, and firewall accepts are not logged. A workaround you can use is to use audit-trail with parameter map.

In future, it will be possible to activate audit-trail generally, while now it still has to be enabled per class-map

Case closed

New Member

Re: SDM and ZoneBasedFirewall on 3825: How to View Firewall logs

Hi, on the ZoneBased Firewall you can see logs. All you have to do, is to manually apply class class-default on every policy map you have defined.

Example:

!

policy-map type inspect in-out-policy

class class-default

drop log

!

When you do this to all policy maps, you will see all packets that are droped.

Regards.

126
Views
0
Helpful
6
Replies