send acl logs to syslog without having "log" in each acl statement
is it possible to send acl logs to syslog server without having "log" in each acl statement.
i.e. "permit ip any any" -> I need to send hits (source/destionation ip/port) for this statement to syslog server without adding "log" at the end of this statement. is it possible? how to do it? i don't want to add it since "log" in acl statements eats up alot of cpu process.
send acl logs to syslog without having "log" in each acl stateme
There's not a way that I'm aware of. ACL entries don't log to the buffer unless you specify the log command. As you stated, if you log everything, you'll likely kill the router. You can log them, but also rate limit the messages if you need to which I've had to do in the past in order to catch traffic going through the router that didn't match any acls.
To do that, you can enable "ip access-list log-update threshold threshold-in-msgs".
This is actually a pretty cool feature, i didn't even know it existed until I was looking for a solution to advertise a subnet (prefix in BGP talk), only if a certain condition existed. This is exactly what conditional advertisements does
j ai une question j ai achete un routeur cisco 887VA-k9 , je le configuré avec la configuration ci- dessous
si je le lier avec mon pc portable sur l un de ses ports directement ça marche toute est bien ( la connexion internet + m...
Attached policy provides CLI access to the Cisco 4G router over text messaging. Two files are in the attached .tar file:
2. PDF with instructions on how to load and use the .tcl file.