Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Egress Access-List logging

WE moved to a 4500 series core switch(Cisco IOS Software, Catalyst 4500 L3 Switch Software (cat4500-ENTSERVICESK9-M), Version 12.2(31)SGA6, RELEASE SOFTWARE (fc2).

We pasted in our old ACL's and got this message on the Egress ACL.

"The log keyword is not supported on ACLs attached to egress ports on this platform."

WE use the logging to see what ports are being blocked so we can open them up when a user needs them. Now I can't see any hits because it is not logging to my syslog box. All other ACL's log but the egress. Help.

1 REPLY
New Member

Re: Egress Access-List logging

Why you use SYSLOG for this ?

Configure errdisable recovery...

Example:

SW(config)#errdisable recovery cause all 60

show the status..

SW#sh errdisable recovery

ErrDisable Reason Timer Status

----------------- --------------

udld Disabled

bpduguard Disabled

security-violatio Disabled

channel-misconfig Disabled

vmps Disabled

pagp-flap Disabled

dtp-flap Disabled

link-flap Disabled

l2ptguard Disabled

psecure-violation Disabled

gbic-invalid Disabled

dhcp-rate-limit Disabled

unicast-flood Disabled

storm-control Disabled

arp-inspection Disabled

loopback Disabled

Timer interval: 300 seconds

Interfaces that will be enabled at the next timeout:

--

Raul

316
Views
0
Helpful
1
Replies
CreatePlease to create content