Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Debug WLC ACL Denied Statement

Hello,

I'm trying to work out how to debug an ACL I've created on a 4404 WLC, specifically I want to monitor what packets are being denied by the ACL as something that should be working isn't

I've created an explicit deny statement at the end of the ACL and verified that the counter increases each time I try the problem software update.

What I can't work out is how to get the WLC to tell me what packets are being denied by the explicit deny statement, all I can find are 'show acl' commands which just give me the counts.

The equivalent on a router would be debug ip packet acl and adding the log keyword onto an ACE.

Any help would be appreciated, I suppose I could configure a SPAN session on the WLC uplink to the switch but that seems overkill?

Thanks,

Dave

Everyone's tags (4)
1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Debug WLC ACL Denied Statement

Try:

WLC>debug packet logging acl ip ?

2 REPLIES
Cisco Employee

Debug WLC ACL Denied Statement

Try:

WLC>debug packet logging acl ip ?

New Member

Debug WLC ACL Denied Statement

Thanks for the reply, I couldn't get the command working exactly as I wanted but can see it should work!

Dave

2659
Views
0
Helpful
2
Replies
CreatePlease to create content