Manualshelf

Administrator Guide

ManualsBrandsDell ManualsAccess PlatformsC9010 Modular Chassis Switch
921922923924925926927928929930
You can activate flow-based monitoring for a monitoring session by entering the flow-based enable
command in the Monitor Session mode. When you enable this capability, traffic with particular flows that are
traversing through the ingress and egress interfaces are examined and, appropriate ACLs can be applied in both
the ingress and egress direction. Flow-based monitoring conserves bandwidth by monitoring only specified traffic
instead all traffic on the interface. This feature is particularly useful when looking for malicious traffic. It is available
for Layer 2 and Layer 3 ingress and egress traffic. You may specify traffic using standard or extended access-lists.
This mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port.
The source port is the monitored port (MD) and the destination port is the monitoring port (MG).
Related
Commands
permit (for Standard IPv6 ACLs) – configures a filter to forward IPv6 packets.
show cam-usage
Display the amount of memory space used and available in each CAM partition (including Layer 2 ACL, Layer 3 ACL, and IPv4Flow).
Syntax
show cam-usage [acl | router | switch]
Parameters
acl
(OPTIONAL) Enter the keyword acl to display Layer 2 and Layer 3 ACL CAM usage.
router
(OPTIONAL) Enter the keyword router to display Layer 3 CAM usage.
switch
(OPTIONAL) Enter the keyword switch to display Layer 2 CAM usage.
Command Modes
EXEC
EXEC Privilege
Command History
Version Description
9.11.0.0 The show cam-usage command is updated to display ECMP group count information.
9.5.(0.0) Introduced on the Z9500.
9.3.(0.0) Introduced on the S4810, S4820T, Z9000 and MXL.
Usage Information The following regions must be provided in the show cam-usage output:
L3AclCam
L2AclCam
V6AclCam
The following table describes the output fields of the show cam-usage command.
Table 5. Output fields of the show cam-usage command
Field Description
LineCard Number of the line card that contains information on
ACL VLAN groups
Portpipe The hardware path that packets follow through a
system for ACL optimization
CAM-Region Type of area in the CAM block that is used for ACL
VLAN groups
Total CAM space Total amount of space in the CAM block
Used CAM Amount of CAM space that is currently in use
Available CAM Amount of CAM space that is free and remaining to be
allocated for ACLs
Example 1: Output
of the show cam-
usage Command
Stackunit|Portpipe| CAM Partition | Total CAM | Used CAM |Available
CAM
IPv6 Access Control Lists (IPv6 ACLs) 929