[c-nsp] nexus logging L3 ACL and mac source ?
Tóth András
diosbejgli at gmail.com
Thu Jun 27 17:54:32 EDT 2013
Hi Jeffrey,
The MAC address of the packet will not be visible in the ACL logs. You can
see the port where the logged packet was received, then you can check the
learnt MACs on the port to narrow it down.
Check the following link for further details about ACL logging on Nexus:
https://supportforums.cisco.com/community/netpro/network-infrastructure/switching/blog/2010/11/18/nexus-7000-acl-logging-oal
Best regards,
Andras
On Mon, Jun 24, 2013 at 3:29 PM, Jeffrey G. Fitzwater
<jfitz at princeton.edu>wrote:
> In IOS when we had an L3 ACL with "deny log-input" the log entry would
> show the VLAN and MAC SRC for ACE hit….
>
> %SEC-6-IPACCESSLOGP: list router-in denied udp n.n.n.n(137) (Vlan176
> 00de.adee.675a) -> n.n.n.n(137), 67 packets
>
>
> But in NX-OS this does not appear possible with 6.1.2.
>
>
>
> FIXES in NX-OS 6.2.1
>
>
>
> I see from bug doc that in NX-OS 6.2.1 logging will now show vlan name,
> and if it was from a DENY or PERMIT action; But no mention if the SRC MAC
> is part of these changes.
> https://tools.cisco.com/bugsearch/bug/CSCth67151
> https://tools.cisco.com/bugsearch/bug/CSCte69784
>
>
> Does anybody know if there will be a way to see the SRC MAC when a DENY
> LOG or PERMIT log ACE is hit in NX-OS 6.2.1?
>
>
>
> Thanks for any help.
>
>
>
>
> Jeff FItzwater
> OIT Network Systems
> Princeton University
> _______________________________________________
> cisco-nsp mailing list cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>
More information about the cisco-nsp
mailing list