Navigation
Related Documentation
Configuring Logging of AACL Flows
You can configure logging of AACL flows for a given application or for all unknown applications using AACL rules. You must set match-direction to input or input-output for logging to occur.
- Create a rule and term.user@host# edit services aacl rule rule-name term term-name
- Specify selection of an application.[edit services aacl rule rule-name term term-name]user@host# set from applications application-name]
OR
Specify selection of all unknown applications.
[edit services aacl rule <variable>rule-name</variable > term <variable>term-name</variable>]set from application-unknown - In the then statement, specify logging of input
flow.[edit services aacl rule rule-name term term-name]user@host# set then log input-flows]
Example—Configuration of Logging of Input Flows for Unknown Applications
[edit services aacl rule aacl_rule5]match-direction input-output;
term t0 {from {application-unknown;}then {count application;log input-flow;accept;}}
Example—Setup of a Specific Log File
The following example shows how to direct the aacl flow log to a file other than the default syslog file on the Routing Engine file system.
[edit system syslog]
file aacl_log {external any;match aacl-flow-log;}
