- Community Home
- >
- Networking
- >
- Switching and Routing
- >
- Comware Based
- >
- ACL Logging
-
- Forums
-
- Advancing Life & Work
- Advantage EX
- Alliances
- Around the Storage Block
- HPE Ezmeral: Uncut
- OEM Solutions
- Servers & Systems: The Right Compute
- Tech Insights
- The Cloud Experience Everywhere
- HPE Blog, Austria, Germany & Switzerland
- Blog HPE, France
- HPE Blog, Italy
- HPE Blog, Japan
- HPE Blog, Middle East
- HPE Blog, Russia
- HPE Blog, Saudi Arabia
- HPE Blog, South Africa
- HPE Blog, UK & Ireland
-
Blogs
- Advancing Life & Work
- Advantage EX
- Alliances
- Around the Storage Block
- HPE Blog, Latin America
- HPE Blog, Middle East
- HPE Blog, Saudi Arabia
- HPE Blog, South Africa
- HPE Blog, UK & Ireland
- HPE Ezmeral: Uncut
- OEM Solutions
- Servers & Systems: The Right Compute
- Tech Insights
- The Cloud Experience Everywhere
-
Information
- Community
- Welcome
- Getting Started
- FAQ
- Ranking Overview
- Rules of Participation
- Tips and Tricks
- Resources
- Announcements
- Email us
- Feedback
- Information Libraries
- Integrated Systems
- Networking
- Servers
- Storage
- Other HPE Sites
- Support Center
- Aruba Airheads Community
- Enterprise.nxt
- HPE Dev Community
- Cloud28+ Community
- Marketplace
-
Forums
-
Blogs
-
Information
-
English
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
06-04-2018 06:57 PM
06-04-2018 06:57 PM
ACL Logging
Hi team,
We are a Cisco shop who have just bought some HPE 5940's which to my understanding run Comware 7.
My question is around ACL logging and I want to know how everyone does it? In the Cisco world we just log our ACl deny's to a syslog server, and then grep all the info we need. Comware doesn't seem to have this functionality.
In the example below, from one of our Cisco Switches, we can easily see what IP address is blocked, the port and what ACL blocked thew traffic. Please tell me Comware can do this? And if not how to do you troubleshoot ACL issues? Thanks in advance.
system-172.xxx.xxx.xxx.log:Jun 5 10:20:30 172.xxx.xxx.xxx 3572603: Jun 5 10:20:29: %SEC-6-IPACCESSLOGP: list inXXX-ACL denied udp 172.xxx.xxx.xxx(138) -> 172.xxx.xxx.xxx(138), 1 packet
- Tags:
- ACLs
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
06-05-2018 11:33 PM
06-05-2018 11:33 PM
Re: ACL Logging
Add the "counting" or "logging" keyword to the access rule line (straight after the deny, I think) and see if it accepts it.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Email to a Friend
- Report Inappropriate Content
06-20-2018 07:12 AM
06-20-2018 07:12 AM
Re: ACL Logging
just made a post about this also!!!! Having the same issue in teyting to troubleshoot an ACL. Have you found out the command to view it or see in the log??
Hewlett Packard Enterprise International
- Communities
- HPE Blogs and Forum
© Copyright 2021 Hewlett Packard Enterprise Development LP