Jim, try using a more specific inspect class-map to match on syslog, such as:
class-map type inspect SYSLOG match protocol syslog You generally dont want to "pass" traffic thats in your default class. Mark On Mon, Sep 12, 2011 at 6:49 AM, Jim Terry <[email protected]> wrote: > hi all, > > the class map was empty and then I got a message that said all > protocols will be inspected. > > JT > > > > On Mon, Sep 12, 2011 at 1:39 AM, Kingsley Charles > <[email protected]> wrote: > > What is the class map configuration? > > > > With regards > > Kings > > > > On Mon, Sep 12, 2011 at 9:39 AM, Jim Terry <[email protected]> wrote: > >> > >> Hi all, > >> > >> I was not able to 'inspect' syslog like this: > >> > >> class-map type inspect cmapall > >> > >> policy-map type inspect pmapout2in > >> class-map type inspect cmapall > >> inspect > >> > >> > >> I had this applied to both interfaces(via my zones) and only when I > >> changed the default class to pass did my syslog go through. > >> > >> Is that correct? I would have assumed my syslog would have been > >> inspected by the 'class-map type inspect cmapall'- since it inspected > >> all protocols. > >> > >> Thanks, > >> > >> JT > >> _______________________________________________ > >> For more information regarding industry leading CCIE Lab training, > please > >> visit www.ipexpert.com > >> > >> Are you a CCNP or CCIE and looking for a job? Check out > >> www.PlatinumPlacement.com > > > > > _______________________________________________ > For more information regarding industry leading CCIE Lab training, please > visit www.ipexpert.com > > Are you a CCNP or CCIE and looking for a job? Check out > www.PlatinumPlacement.com >
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com
