06-19-2009 09:11 AM - edited 03-04-2019 05:11 AM
We have an extended ACL with "deny ip any any log" as the last entry. However, for repeated events like HSRP mutlicast, which we do not permit, we do NOT want to log the HSRP denies b/c we want to reduce our syslog messages. What is the syntax to "deny but NOT log" something like HSRP when we have the "deny ip any any log" as the last line in the ACL.
06-19-2009 09:18 AM
If you want to deny but not log.
access-list 101 deny udp any host 224.0.0.2 eq 1985
Insert that before your deny ip any any log
06-19-2009 09:20 AM
Thank you! I'll give that a try.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide