08-30-2013 02:47 PM - edited 03-07-2019 03:14 PM
I just installed a new cisco 2921 router on a remote MPLS location. I applied an acl to the wan port of the 2921 and I am not getting any "hit counts" on the acl even though the last statement on the acl is "any any". Is there something I need to activate on the router?
interface GigabitEthernet0/0
ip address 10.110.174.21 255.255.255.0
ip access-group test in
ip accounting output-packets
duplex auto
speed auto
ip access-list extended test
permit ip 10.241.50.0 0.0.0.255 host 10.110.174.20
permit ip 10.241.50.0 0.0.0.255 host 10.110.174.21
permit ip any any
Extended IP access list test
10 permit ip 10.241.50.0 0.0.0.255 host 10.110.174.20
11 permit ip 10.241.50.0 0.0.0.255 host 10.110.174.21
20 permit ip any any
08-31-2013 10:40 PM
Hi,
Kindly add the 'log' keyword at the end of the ACE.
20 permit ip any any log
Sent from Cisco Technical Support iPad App
09-01-2013 04:14 AM
Dear Mark ,
just add in the ACL and apply it
20 permit ip any any log
Rate it use full post
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: