Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss
3750 Port based ACL logging
0 views
Skip to first unread message
Kent
May 15, 2008, 2:00:23 AM5/15/08
to
Hi all,
With the below test config I can't seem to generate a single log entry
from the ACL. Has anyone had experience in logging with port based
ACL's on the 3750? With the below config the icmp traffic is being
dropped - just not logged.
With the below test config I can't seem to generate a single log entry
from the ACL. Has anyone had experience in logging with port based
ACL's on the 3750? With the below config the icmp traffic is being
dropped - just not logged.
3750 running Adv IP Services...
interface GigabitEthernet1/0/25
switchport access vlan 701
switchport mode access
ip access-group TEST in
ip access-list extended TEST
deny icmp any any log
permit ip any any log
ip access-list log-update threshold 1
"show access-lists hardware counters" does show drops and I cant ping
through this interface with the ACL applied. It just wont log any ACE
entry matches.
Cheers
Kent.
Bo...@hotmail.co.uk
May 15, 2008, 3:49:40 AM5/15/08
to
Have you configured logging?
logg buffered <level> ! <-- debugging enables all
no logg console ! <-- I suggest
Post output of sh logg if unsure.
Kent
May 15, 2008, 9:24:22 PM5/15/08
to
Yes.
0 new messages