«
»

How do I log what traffic is being denied for a certain IP address in a cisco router?

What command would I enter in a inbound ACL to figure out what traffic is being blocked to a particular internal nat mapping. Also, what is the command to look at the log? Thanks for your help!

Similar Posts:

    None Found

  • Share/Bookmark

No related posts.

This entry was posted on Wednesday, December 16th, 2009 at 3:23 pm and is filed under Uncategorized. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

One Response to “How do I log what traffic is being denied for a certain IP address in a cisco router?”

  1. By default all access lists have a "deny ip any any" line added at the end of every ACL (it is implicit so may not see it when you do a show access-list)

    If you add the following command to the end of your ACL

    "deny ip any any log" (format is different for type of ACL) but the log is important. (you can add the log comand to the end of any entry and it will log for that entry)

    The router will start logging all failed attempts(assuming you have logging turned on "ip logging") to the terminal (need to be on console or type in terminal monitor)

    The command to look at the logs is show log

    The above will help you find all IP addresses that are denied on the interface you have applied the Access List to.

Leave a Reply

Powered by Yahoo! Answers