- Community Home
- >
- Networking
- >
- Switching and Routing
- >
- Comware Based
- >
- Re: ACL Logging
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-04-2018 06:57 PM
тАО06-04-2018 06:57 PM
ACL Logging
Hi team,
We are a Cisco shop who have just bought some HPE 5940's which to my understanding run Comware 7.
My question is around ACL logging and I want to know how everyone does it? In the Cisco world we just log our ACl deny's to a syslog server, and then grep all the info we need. Comware doesn't seem to have this functionality.
In the example below, from one of our Cisco Switches, we can easily see what IP address is blocked, the port and what ACL blocked thew traffic. Please tell me Comware can do this? And if not how to do you troubleshoot ACL issues? Thanks in advance.
system-172.xxx.xxx.xxx.log:Jun 5 10:20:30 172.xxx.xxx.xxx 3572603: Jun 5 10:20:29: %SEC-6-IPACCESSLOGP: list inXXX-ACL denied udp 172.xxx.xxx.xxx(138) -> 172.xxx.xxx.xxx(138), 1 packet
- Tags:
- ACLs
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-05-2018 11:33 PM
тАО06-05-2018 11:33 PM
Re: ACL Logging
Add the "counting" or "logging" keyword to the access rule line (straight after the deny, I think) and see if it accepts it.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-20-2018 07:12 AM
тАО06-20-2018 07:12 AM
Re: ACL Logging
just made a post about this also!!!! Having the same issue in teyting to troubleshoot an ACL. Have you found out the command to view it or see in the log??