Cisco ASA Series Cli Configuration Manual page 599
Software version 9.0 for the services module
Hide thumbs
Also See for ASA Series:
- Configuration manual (429 pages) ,
- Getting started (31 pages) ,
- Mount and connect (12 pages)
Table of Contents
Advertisement
Chapter 1
Configuring Logging for Access Lists
Default Settings
Table 1-1
Table 1-3
Parameters
numbers
secs
Managing Deny Flows
To configure the maximum number of deny flows and to set the interval between deny flow alert
messages (106100), enter the following command:
Command
access-list deny-flow-max number
Example:
hostname(config)# access-list
deny-flow-max 3000
To set the amount of time between syslog messages (number 106101), which identifies that the
maximum number of deny flows was reached, enter the following command:
Command
access-list alert-interval secs
Example:
hostname(config)# access-list
alert-interval 200
Monitoring Deny Flows
To monitor access lists, enter one of the following commands:
Command
show access-list
show running-config access-list
lists the default settings for managing deny flows.
Default Parameters for Managing Deny Flows
Purpose
Sets the maximum number of deny flows.
The numbers argument specifies the maximum number, which can be
between 1 and 4096. The default is 4096.
Purpose
Sets the time, in seconds, between syslog messages.
The secs argument specifies the time interval between each deny flow
maximum message. Valid values are from 1 to 3600 seconds. The default
is 300 seconds.
Default
The numbers argument specifies the maximum
number of deny flows. The default is 4096.
The secs argument specifies the time, in seconds,
between syslog messages. The default is 300.
Purpose
Displays access list entries by number.
Displays the current running access list
configuration.
Cisco ASA Series CLI Configuration Guide
Managing Deny Flows
1-7
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
