Requirements for using IPv6 ACL logging

  • The switch configuration must include an ACL (1) assigned to a port, trunk, or static VLAN interface and (2) containing an ACE configured with the denyaction and the log option.

  • If the RACL application is used, then IPv6 routing must be enabled on the switch.

  • For IPv6 ACL logging to a syslog server:
    • The server must be accessible to the switch and identified in the running configuration.

    • The logging facility must be enabled for syslog.

    • Debug must be configured to:
      • Support ACL messages

      • Send debug messages to the desired debug destination

These requirements are described in more detail under Enabling ACL logging on the switch.