• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 405
  • Last Modified:

Pix logging

I would like my pix to log packets blocked by an access-list and then be able to view them. How can I do this?
0
jaysonfranklin
Asked:
jaysonfranklin
1 Solution
 
nodiscoCommented:
hi

just add the "log" option at the end of your acl

e.g.

access-list fromoutside permit tcp any host x.x.x.x log

The default logging level is 6 for acls so you can view the hits by:
logging on
logging console 6
(monitors level 6 logs)

If you want to do this all of the time - you are better of using a syslog server - like Kiwi syslog

hth
0
 
jaysonfranklinAuthor Commented:
Cool. Thanks a lot. however, she i say sh log, i get a bunch of goobly gop. is there a command that will show me only logging from a specific access list. i dont care about all the other stuff. tearing down udp connections, etc.

0

Featured Post

Get expert help—faster!

Need expert help—fast? Use the Help Bell for personalized assistance getting answers to your important questions.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now