archivalbackup
Gawd
- Joined
- Oct 12, 2007
- Messages
- 643
In the process of writing some ACL rules, and I am trying to evaluate the existing traffic so I have some Permit IP Log statements to narrow down what normal traffic is going through that I need to write rules for, however, the logs that I am getting do not have port numbers (which I need). Is there a way to get these ACL's to log the source / dst port on a 6500? I do this on routers all the time with no issues, and the VLAN port I am putting the ACLs on is routed by the 6500 so I am not sure why I am not getting port numbers in the logs.
Here is an example of what I am seeing
Here is an example of what I am seeing
Code:
Local7.Info 10.168.64.1 290: *Feb 9 10:01:49: %SEC-6-IPACCESSLOGP: list VLAN20_IN permitted tcp 10.168.80.16(0) -> 10.168.64.124(0), 3010 packets