Application Security Log - Cisco OL-4015-08 User Manual

Firewall Status
Number of Attempts Denied by Firewall
Attempts Denied by Firewall Table
%SEC-6-IPACCESSLOGDP: list 100 denied icmp 171.71.225.148->10.77.158.140 (0/0), 3 packets
Update Button
Monitoring Firewall with an non-Administrator view user account

Application Security Log

Cisco Router and Security Device Manager Version 2.2 User's Guide
32-14
Shows the number of connection attempts rejected by the firewall.
Shows a list of connection attempts denied by the firewall. This table includes the
following columns:
Time column
•
Shows the time that each denied connection attempt occurred.
• Description column
Contains the following information about the denied attempt: log name,
access rule name or number, service, source address, destination address, and
number of packets. An example follows:
Polls the router and updates the information shown on the screen with current
information.
Firewall monitoring requires that logging buffered be enabled on the router. If
logging buffered is not enabled, login to SDM using an Administrator view
account or using a non-view based privilege level 15 user account and configure
logging.
To configure logging in SDM, go to Additional Tasks > Router Properties >
Logging.
If logging has been enabled, and you have specified that alarms be generated when
the router encounters traffic from applications or protocols that you have
specified, those alarms are collected in a log that can be viewed from this window.
The following is example log text for instant messenging applications:
Chapter 32 Viewing Router Information
OL-4015-08