In any ACL, you can apply an ACL log function to ACEs that have an explicit "deny" action. Then the switch sends ACL logging output to Syslog, if configured, and, optionally, to a console session.
check the Access Security Guide for ArubaOS-Switch guide for 2930s
------------------------------
Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba.
------------------------------
Original Message:
Sent: Jul 24, 2022 10:03 AM
From: Kestutis Sovinis
Subject: Clearpass DUR + 2930F. Access list log?
Thanks, but it does'nt show traffic log.
Original Message:
Sent: Jul 22, 2022 09:14 PM
From: Ariya Parsamanesh
Subject: Clearpass DUR + 2930F. Access list log?
you can get some info about DUR failures with
"show log -r"
------------------------------
Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or Aruba.
Original Message:
Sent: Jul 21, 2022 09:13 AM
From: Kestutis Sovinis
Subject: Clearpass DUR + 2930F. Access list log?
Hello,
I am using Clearpass with 2930F switches and some IAPs. Access lists are downloaded with roles.
Is there a way to view DUR ACL denied traffic?
For example this can be seen on IAPs while issuing command "show log security"