JacBackus
asked on
Logging of single acl rule on Cisco ASA to syslog server
On a Cisco ASA, how can send only logging from a single access control list rule to a syslog server.?
Configuration with ASDM please
- Jac
Configuration with ASDM please
- Jac
ASKER
Thanks Istvan!
The current logging configuration is this:
logging enable
logging list message106100 level informational
logging list message106100 message 106100
logging asdm informational
logging host inside 10.31.44.3
logging permit-hostdown
logging class session trap warnings
logging class vpn trap notifications
logging class rule-engine trap notifications
I will remove the 'logging class' entries.
All (extended) access-lists a are configured with 'log default' because this is the ASDM default. Must I change this to 'log disable' for alle other access-list lines? So only logging from the desired acl will go to the syslog server and nothing else?
- Jac
The current logging configuration is this:
logging enable
logging list message106100 level informational
logging list message106100 message 106100
logging asdm informational
logging host inside 10.31.44.3
logging permit-hostdown
logging class session trap warnings
logging class vpn trap notifications
logging class rule-engine trap notifications
I will remove the 'logging class' entries.
All (extended) access-lists a are configured with 'log default' because this is the ASDM default. Must I change this to 'log disable' for alle other access-list lines? So only logging from the desired acl will go to the syslog server and nothing else?
- Jac
This question needs an answer!
Become an EE member today
7 DAY FREE TRIALMembers can start a 7-Day Free trial then enjoy unlimited access to the platform.
View membership options
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
You need the following:
Open in new window