If it is a layer 3 switch try setting up an acl that permits icmp to the
particular switch and logs it and permits all other traffic.
For example R1 is connected to SW1, R1 has the ip add 10.1.1.2, SW1 has
the ip add 10.1.1.1 on vlan100. The following access-list is applied to
interface vlan100;
ip access-list extended TEST_ACL
permit icmp any host 10.1.1.1 echo log
permit ip any any
When pinging the switch from R1 you should see the following SYSLog
Messages;
*Mar 1 00:05:47.545: %SEC-6-IPACCESSLOGDP: list TEST_ACL permitted icmp
10.1.1.2 -> 10.1.1.1 (8/0), 1 packet
You will also be able to view how many time they've pinged the vlan
interface by viewing the vlan using the show ip access-list command;
SW2# show ip access-list
Extended IP access list TEST_ACL
10 permit icmp any host 10.1.1.1 echo log (4 matches)
100 permit ip any any (11 matches)
SW2#
-Matthew George
On Tue, 31 Aug 2010 09:30:06 +0300, cityworm <cityworm_at_gmail.com> wrote:
> Dear All
>
>
> Need Help
>
> If a Network Admin is Pinging to a Cisco Switch from Microsoft Windows
> Command Prompt,
> can we be able to log that PC IP address from which it is pinging the
Cisco
> Switch Either on syslog server or to ACS Server
>
> your help will be highly appreciated
>
>
> Regards
> Anil
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
Blogs and organic groups at http://www.ccie.net
Received on Tue Aug 31 2010 - 08:49:11 ART
This archive was generated by hypermail 2.2.0 : Wed Sep 01 2010 - 11:20:53 ART