Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Access-list syntax

Folks,

I'm trying to allow syslog messages from a 1721 but i can't get it working - i've already had a good response but i still can't quite get it right.

Here's my setup:

router:

tunnel int - 145.1.1.10/24

Bri0 int - 145.1.2.10/24

F/a int - 10.1.1.10/24

my pc - 20.1.1.5/24

i have an access-list on the Fast Ethernet int with a line to let the syslog messages thru, i've tried a few syntax changes but i think this should be it but still no joy

access-list 101 permit udp host 20.1.1.5 host 10.1.1.10 eq syslog

the list is applied to the Fast Ethernet int as access-group 101 in & i have my statement at the top of a list allowing a number of IPs thru to the other sitde of the tunnel

thanks for the help & patience

1 ACCEPTED SOLUTION

Accepted Solutions
Silver

Re: Access-list syntax

you may also want to add the logging source-interface 10.1.1.10 command , This way the source address for your logging will be the FE ip afddress that is permitted in your ACL

4 REPLIES
Silver

Re: Access-list syntax

do you have a logging source interface statement on the box , I think you have your SA & DA address reversed . the source of the syslog is going to be the router and the destination is going to be your syslog server

New Member

Re: Access-list syntax

no i don't have a logging source command, i have a logging 20.1.1.5 command to direct syslog messages to my pc which is running the syslog server

thanks

i'll try to reverse my statement & see what happens

Silver

Re: Access-list syntax

you may also want to add the logging source-interface 10.1.1.10 command , This way the source address for your logging will be the FE ip afddress that is permitted in your ACL

New Member

Re: Access-list syntax

Thanks for your assistance- its all working perfectly now!

262
Views
0
Helpful
4
Replies
CreatePlease login to create content