[c-nsp] logging traffic

Rodney Dunn rodunn at cisco.com
Thu Aug 30 08:40:24 EDT 2007


Please use #1.

#3 causes process switching and that's a very bad thing to do.

Rodney

On Thu, Aug 30, 2007 at 04:41:58PM +0800, Lincoln Dale (ltd) wrote:
> > I need to log traffic going trougth cisco 3825 router to syslog server.
> > Not all traffic data, i only need to log new connections.
> > How can i do this?
> 
> there's a few ways you could accomplish this, but I'd recommend option (1):
> 
> 1. NetFlow export
> 
> 2. IP accounting
> 
> 3. an ACL with 'log', something like:
> 	access-list 101 permit tcp any any established
> 	access-list 101 permit tcp any any log
> 	access-list 101 permit ip any any
> 
> 
> cheers,
> 
> lincoln.
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/


More information about the cisco-nsp mailing list