- 论坛徽章:
- 0
|
PIX#show logging\r\nSyslog logging: enabled\r\n Facility: 20\r\n Timestamp logging: enabled\r\n Standby logging: enabled\r\n Debug-trace logging: disabled\r\n Console logging: disabled\r\n Monitor logging: disabled\r\n Buffer logging: level warnings, 9990570 messages logged\r\n Trap logging: level informational, facility 20, 184951462 messages logged\r\n Logging to inside 10.225.68.66\r\n History logging: disabled\r\n Device ID: disabled\r\n Mail logging: disabled\r\n ASDM logging: level informational, 184951472 messages logged\r\n, 0x0]\r\nJun 26 2009 15:35:40: %PIX-4-106023: Deny udp src wan:10.236.145.173/26872 dst inside:10.225.80.67/6004 by access-group \"aclwan\" [0x0, 0x0]\r\nJun 26 2009 15:35:40: %PIX-4-106023: Deny udp src inside:10.225.68.22/137 dst wan:10.225.161.62/137 by access-group \"aclinside\" [0x0, 0x0]\r\nJun 26 2009 15:35:40: %PIX-4-106023: Deny udp src wan:10.236.133.23/4301 dst inside:10.225.68.15/161 by access-group \"aclwan\" [0x0, 0x0]\r\nJun 26 2009 15:35:40: %PIX-4-106023: Deny udp src wan:10.236.133.23/4301 dst inside:10.225.68.15/161 by access-group \"aclwan\" [0x0, 0x0]\r\nJun 26 2009 15:35:41: %PIX-4-106023: Deny tcp src Merck:10.225.73.115/2747 dst outside:125.251.26.196/80 by access-group \"aclMek\" [0x0, 0x0]\r\nJun 26 2009 15:35:41: %PIX-4-106023: Deny udp src inside:10.225.68.22/137 dst wan:219.70.55.2/137 by access-group \"aclinside\" [0x0, 0x0]\r\nJun 26 2009 15:35:41: %PIX-4-106023: Deny tcp src inside:10.225.106.185/1118 dst outside:213.61.45.102/1820 by access-group \"aclinside\" [0x0, 0x0]\r\nJun 26 2009 15:35:41: %PIX-4-106023: Deny tcp src wan:10.237.125.70/4078 dst inside:10.225.68.3/445 by access-group \"aclwan\" [0x0, 0x0]\r\nJun 26 2009 15:35:41: %PIX-4-106023: Deny tcp src wan:10.236.145.244/3378 dst inside:10.225.68.3/445 by access-group \"aclwan\" [0x0, 0x0]\r\n..............\r\n\r\n只是一些不符合指定ACL而被deny的记录,请问接下来该怎么查?或者查些什么?\n\n[ 本帖最后由 fairysky 于 2009-6-26 15:46 编辑 ] |
|