Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
360
Views
0
Helpful
2
Replies

Extended ACL: deny but not log the deny

vwolgel12
Level 1
Level 1

‎06-19-2009 09:11 AM - edited ‎03-04-2019 05:11 AM

We have an extended ACL with "deny ip any any log" as the last entry. However, for repeated events like HSRP mutlicast, which we do not permit, we do NOT want to log the HSRP denies b/c we want to reduce our syslog messages. What is the syntax to "deny but NOT log" something like HSRP when we have the "deny ip any any log" as the last line in the ACL.

Labels:
0 Helpful
2 Replies 2

Gregory Camp
Cisco Employee
Cisco Employee

‎06-19-2009 09:18 AM

If you want to deny but not log.

access-list 101 deny udp any host 224.0.0.2 eq 1985

Insert that before your deny ip any any log

0 Helpful

vwolgel12
Level 1
Level 1
In response to Gregory Camp

‎06-19-2009 09:20 AM

Thank you! I'll give that a try.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card