Firewall Feature Set Commands
XSR CLI Reference Guide 16-121
Syntax
ip firewall logging event-threshold 0-7
Syntax of the “no” Form
Thenoformofthiscommandsetsfirewallloggingtothedefaultvalue:
no ip firewall logging event-threshold
Default
Level3‐Alldeniesandseriesfaultsarelogged
Mode
Globalconfiguration:XSR(config)#
Example
ThisexamplesetsfirewallloggingforallmessagesNoticelevel:
XSR(config)#ip firewall logging 5
ip firewall network
ThiscommanddefinesanetworkobjectspecifyinganetworkorhostIPaddressoraddressgroup
(baseandsubnetmaskorstartandendIPaddress)thatistaggedasinternalorexternal.Naminga
locationishelpfulinusingthisobjectforrulesindicatinganyinternal/externalnetwork.
Networkobjectsare
referencedbythenamewithinthepolicyandnetworkgroupobjects.Define
networkobjectsforinternalhostsandnetworks.Anameforanyfirewallobjectmustusethese
alpha‐numericcharactersonly:
A‐Z(upperorlowercase),0‐9,-(dash),or _(underscore).
event-
threshold
Eventsofseverityequaltoorlesserthanthes p ecifiedvaluelogasfollows:
• Level0:Emergency
• Level1:Alert
• Level2:Critical‐alarmssuchasfailuretoallocatememoryduringinitializiation
areloggedifsystemloggingisenabledandfirewallloggingissettolevel2
orhigher
• Level3:Error‐abnormal
anddenyalarmsareloggedifsystemloggingisset
atMEDIUMorHIGHandfirewallloggingislevel5orhigher
• Level4:Warning‐normalandpermitalarmsareloggedifsystemloggingis
setatLOWandfirewallloggingislevel4orhigher
• Level5:Notice
• Level6:Information
• Level7:Debug