Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

pix - log through acl

Hi, is it possible to log information about outgoing packets from a specific ip address.. mayby through acl ?? I want to be sure there is no ingoing or outgoing traffic to or from this ip address.. because traffic should remain inside (but before I stop it I want to be sure there is really no inside-outside traffic)

3 REPLIES

Re: pix - log through acl

Yes you can do this with an access-list.

Scenario: Log all communication of a specific IP Source on the internal interface to a syslog server and all other traffic is logged in warning level.

example:

access-list inside-acl permit ip 192.168.1.10 any log informational interval 120

access-list inside-acl permit ip any any

access-group inside-acl in interface inside

#Note that you need to ajust the acl with your existing one.

#Syslog setup:

logging host inside 192.168.1.100

logging trap info

sincerely

Patrick

Community Member

Re: pix - log through acl

ERROR: invalid IP address any

I already have:

access-list inside-acl permit ip any any

..but when I configure..

access-list inside-acl permit ip 192.168.1.10 any log informational interval 120

it gives me that error, why?

Community Member

Re: pix - log through acl

of course I changed 192.168.1.10 using the real ip

105
Views
4
Helpful
3
Replies
CreatePlease to create content