Great! It works :)
Thank you Ryan
Birsen
-----Original Message-----
From: Ryan O'Connell [mailto:ryan-nsp@complicity.co.uk]
Sent: Wednesday, July 03, 2002 3:46 PM
To: Birsen Ozturk; cisco-nsp@puck.nether.net
Subject: Re: [nsp] Extended access-list doesn't show port numbers!?
On Wed, 3 Jul 2002 15:44:37 +0300 Birsen Ozturk <birsenozturk@turk.net> wrote:
> Hello All
> I have an access list:
>
> ip access-list extended 127
> permit icmp any any
> permit tcp any any log
> permit udp any any log
>
> CISCO#show logging
> Jul 3 15:33:17: %SEC-6-IPACCESSLOGP: list 127 permitted udp
> 192.168.255.6(0) -> 193.168.255.255(0), 3 packets
> Jul 3 15:33:18: %SEC-6-IPACCESSLOGP: list 127 permitted tcp
> 192.168.2.30(0) -> 10.10.110.111(0), 1 packet
> Jul 3 15:33:19: %SEC-6-IPACCESSLOGP: list 127 permitted tcp
> 172.16.133.74(0) -> 192.168.2.20(0), 1 packet
>
> Why ports show 0 (zero)?I want to see port numbers.
The IOS will only show port numbers if it was asked to match against them.
Adding "gt 0" or similar to the end should show port numbers for all traffic.
--
Ryan O'Connell - CCIE #8174
<ryan@complicity.co.uk> - http://www.complicity.co.uk
I'm not losing my mind, no I'm not changing my lines,
I'm just learning new things with the passage of time
This archive was generated by hypermail 2b29 : Sun Aug 04 2002 - 04:12:03 EDT