CLI Guide

ManualsBrandsDell ManualsAccess PlatformsFN IO Module

181

182

183

184

185

186

187

188

189

190

You can activate ow-based monitoring for a monitoring session by entering the flow-based enable

command in the Monitor Session mode. When you enable this capability, trac with particular ows that are

traversing through the ingress and egress interfaces are examined and, appropriate ACLs can be applied in both

the ingress and egress direction. Flow-based monitoring conserves bandwidth by monitoring only specied trac

instead all trac on the interface. This feature is particularly useful when looking for malicious trac. It is available

for Layer 2 and Layer 3 ingress and egress trac. You may specify trac using standard or extended access-lists.

This mechanism copies all incoming or outgoing packets on one port and forwards (mirrors) them to another port.

The source port is the monitored port (MD) and the destination port is the monitoring port (MG).

Related Commands

permit — congures a MAC address lter to pass packets.

seq — congures a MAC address lter with a specied sequence number.

mac access-list extended

Name a new or existing extended MAC access control list (extended MAC ACL).

Syntax

mac access-list extended access-list-name [cpu-qos]

Parameters

access-list-name Enter a text string as the MAC access list name, up to 140 characters.

cpu-qos Enter the keyword cpu-qos to assign this ACL to control plane trac only (CoPP).

Defaults None

Command Modes CONFIGURATION

Supported Modes Full–Switch

Command History

Version Description

9.9(0.0) Introduced on the FN IOM.

8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.

Usage Information

The number of entries allowed per ACL is hardware-dependent. For detailed specications on entries allowed per

ACL, refer to your line card documentation.

Example

Dell(conf)#mac-access-list access-list extended TestMATExt

Dell(config-ext-macl)#remark 5 IPv4

Dell(config-ext-macl)#seq 10 permit any any ev2 eq 800 count bytes

Dell(config-ext-macl)#remark 15 ARP

Dell(config-ext-macl)#seq 20 permit any any ev2 eq 806 count bytes

Dell(config-ext-macl)#remark 25 IPv6

Dell(config-ext-macl)#seq 30 permit any any ev2 eq 86dd count bytes

Dell(config-ext-macl)#seq 40 permit any any count bytes

Dell(config-ext-macl)#exit

Dell(conf)#do show mac accounting access-list snickers interface g0/47 in

Extended mac access-list snickers on TenGigabitEthernet 0/12

seq 10 permit any any ev2 eq 800 count bytes (559851886 packets

191402152148bytes)seq 20 permit any any ev2 eq 806 count bytes

(74481486 packets 5031686754bytes)seq 30 permit any any ev2 eq 86dd count

bytes (7751519 packets 797843521 bytes)

Related Commands

mac access-list standard — congures a standard MAC access list.

184 Access Control Lists (ACL)