Firewall Wizards mailing list archives
Re: PIX VPN Logging question
From: Robert Driscoll <rjdriscoll () comcast net>
Date: Thu, 27 Mar 2008 19:11:55 -0700
There is another access_list that lists all the offices, it gets applied to a "NAT 0" rule. I have tried to do append log 4 and log disable as well. I wonder if its a case where I need to add it to all the entries in the access_list. Message: 7 Date: Thu, 27 Mar 2008 09:31:12 +0100 (CET) From: <nico () telecable es> Subject: Re: [fw-wiz] PIX VPN Logging question To: Firewall Wizards Security Mailing List <firewall-wizards () listserv icsalabs com> Message-ID: <7982635639nico () telecable es> Content-Type: TEXT/PLAIN; charset=ISO-8859-1 Hello Robert, Just a guess... You have configured the log 4 in the access-list outside_cryptomap_10, but the access-list wich is triggering the log of that traffic is a different access-list (the one you are applying in let's say your "inside" interface). Best regards, -- Nicol?s Victorero Mier Robert Driscoll escribi?:
access-list outside_cryptomap_10 permit ip 10.1.0.0 255.255.255.0 10.1.1.0 255.255.255.0 log 4 Any ideas would be greatly appreciated. Thanks!
_______________________________________________ firewall-wizards mailing list firewall-wizards () listserv icsalabs com https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- PIX VPN Logging question Robert Driscoll (Mar 24)
- <Possible follow-ups>
- Re: PIX VPN Logging question nico (Mar 27)
- Re: PIX VPN Logging question Robert Driscoll (Mar 28)