Enabling ACL logging on the switch

  1. If you are using a server, use the logging <ip-addr> command to configure the server IPv4 address. Ensure that the switch can access any server you specify.
  2. Use logging facility to enable the logging for operation.
  3. Use the debug destination command to configure one or more log destinations. Destination options include logging and session. For more information on debug, see the “Troubleshooting” section of the management and configuration guide for your switch.
  4. Use debug acl or debug all to configure the debug operation to include ACL messages.
  5. Configure one or more ACLs with the deny or permit action and the log option.