https://community.hpe.com/t5/other-hpe-product-questions/5406r-zl2-acl-logging-not-working/m-p/7185510#M5932 <P>Hi everyone,</P><P>we have a 5406r zl2 as a core switch in use. Besides others, there are 2 VLANs for certain servers (2) and for guests (8).&nbsp; There's an extended ACL on VLAN 8 with, besides others, the following entry:&nbsp;</P><P>10 deny ip 192.168.8.0 0.0.0.255 192.168.2.0 0.0.0.255 log</P><P>show debug returns the following:</P><P><EM>Debug Logging</EM></P><P><EM>Source IP Selection: Outgoing Interface</EM><BR /><EM>Origin identifier: Outgoing Interface IP</EM><BR /><EM>Destination:</EM><BR /><EM>Logging --</EM><BR /><EM>192.168.2.55</EM><BR /><EM>Protocol = UDP</EM><BR /><EM>Port = 514</EM><BR /><EM>Facility = syslog</EM><BR /><EM>Severity = info</EM><BR /><EM>System Module = all-pass</EM><BR /><EM>Priority Desc =</EM></P><P><EM>Time-stamp: System-Uptime</EM></P><P><EM>Enabled debug types:</EM><BR /><EM>acl log</EM></P><P>The SysLog server is reachable, we do get some basic syslog entries like "Port XY is now on-/offline" from the 5406r on it but there are not entries for the ACL hits. The Hit Count on the ACE rises when i do some testing but nothing is sent to the syslog server. Did i miss some additional setting?</P><P>&nbsp;</P><P>Best regards,</P><P>Dom</P><P>&nbsp;</P><P>&nbsp;</P> Thu, 30 Mar 2023 08:37:33 GMT domwo 2023-03-30T08:37:33Z https://community.hpe.com/t5/other-hpe-product-questions/5406r-zl2-acl-logging-not-working/m-p/7185510#M5932 <P>Hi everyone,</P><P>we have a 5406r zl2 as a core switch in use. Besides others, there are 2 VLANs for certain servers (2) and for guests (8).&nbsp; There's an extended ACL on VLAN 8 with, besides others, the following entry:&nbsp;</P><P>10 deny ip 192.168.8.0 0.0.0.255 192.168.2.0 0.0.0.255 log</P><P>show debug returns the following:</P><P><EM>Debug Logging</EM></P><P><EM>Source IP Selection: Outgoing Interface</EM><BR /><EM>Origin identifier: Outgoing Interface IP</EM><BR /><EM>Destination:</EM><BR /><EM>Logging --</EM><BR /><EM>192.168.2.55</EM><BR /><EM>Protocol = UDP</EM><BR /><EM>Port = 514</EM><BR /><EM>Facility = syslog</EM><BR /><EM>Severity = info</EM><BR /><EM>System Module = all-pass</EM><BR /><EM>Priority Desc =</EM></P><P><EM>Time-stamp: System-Uptime</EM></P><P><EM>Enabled debug types:</EM><BR /><EM>acl log</EM></P><P>The SysLog server is reachable, we do get some basic syslog entries like "Port XY is now on-/offline" from the 5406r on it but there are not entries for the ACL hits. The Hit Count on the ACE rises when i do some testing but nothing is sent to the syslog server. Did i miss some additional setting?</P><P>&nbsp;</P><P>Best regards,</P><P>Dom</P><P>&nbsp;</P><P>&nbsp;</P> Thu, 30 Mar 2023 08:37:33 GMT https://community.hpe.com/t5/other-hpe-product-questions/5406r-zl2-acl-logging-not-working/m-p/7185510#M5932 domwo 2023-03-30T08:37:33Z https://community.hpe.com/t5/other-hpe-product-questions/5406r-zl2-acl-logging-not-working/m-p/7185514#M5933 <P>Hello&nbsp;<a href="https://community.hpe.com/t5/user/viewprofilepage/user-id/2132587">@domwo</a>,&nbsp;</P> <P>Thank you for writing to us!&nbsp;&nbsp;</P> <P>&nbsp;<SPAN>HPE Networking forum has moved to Aruba Airheads Community and for HPE networking and Aruba product queries, request you to visit and post your query here:&nbsp;<A tabindex="-1" title="https://community.arubanetworks.com/discussion" href="https://community.arubanetworks.com/discussion" target="_blank" rel="noopener noreferrer nofollow" aria-label="Link Aruba Airheads Community">Aruba Airheads Community</A>&nbsp;</SPAN></P> <P>You can refer to the below link as well for more details:</P> <P><A href="https://community.hpe.com/t5/Announcements/HPE-Networking-forum-migration-to-Aruba-Airheads-community-Nov/m-p/7150664" target="_blank" rel="noopener">HPE Networking forum migration to Aruba Airheads c... - Hewlett Packard Enterprise Community</A></P> Thu, 30 Mar 2023 08:35:27 GMT https://community.hpe.com/t5/other-hpe-product-questions/5406r-zl2-acl-logging-not-working/m-p/7185514#M5933 Sunitha_Mod 2023-03-30T08:35:27Z