Specifications
Creating and Committing a Security ACL
RoamAbout Mobility System Software Configuration Guide 15-11
Viewing Security ACL Details
YoucandisplaythecontentsofoneorallsecurityACLsthatarecommitted.
Examples
TodisplaythecontentsofallcommittedsecurityACLs,typethefollowingcommand:
RBT-8100# show security acl info
ACL information for all
set security acl ip acl-999 (hits #2 0)
----------------------------------------------------
1. deny IP source IP 192.168.0.1 0.0.0.0 destination IP any
2. permit IP source IP 192.168.0.2 0.0.0.0 destination IP any enable-hits
set security acl ip acl-2 (hits #1 0)
----------------------------------------------------
1. permit L4 Protocol 115 source IP 192.168.1.11 0.0.0.0 destination IP
192.168.1.15 0.0.0.0 precedence 0 tos 0 enable-hits
YoucanalsoviewaspecificsecurityACL.Forexample,toviewacl‐2,typethefollowing
command:
RBT-8100# show security acl info acl-2
ACL information for acl-2
set security acl ip acl-2 (hits #1 0)
----------------------------------------------------
1. permit L4 Protocol 115 source IP 192.168.1.11 0.0.0.0 destination IP
192.168.1.15 0.0.0.0 precedence 0 tos 0 enable-hits
Displaying Security ACL Hits
OnceyoumapanACL,youcanviewthenumberofpacketsithasfiltered,ifyouincludedthe
keywordhits.(Forinformationonsettinghits,see“SettingaSourceIPACL”onpage 15‐4.)
Examples
Typethefollowingcommand:
RBT-8100# show security acl hits
ACL hit-counters
Index Counter ACL-name
----- -------------------- --------
1 0 acl-2
2 0 acl-999
5 916 acl-123
TosamplethenumberofhitsthesecurityACLsgenerate,youmustspecifythenumberofseconds
betweensamples.Forexample,tosamplethehitsgeneratedevery180 seconds,typethefollowing
commands:
RBT-8100# hit-sample-rate 180
RBT-8100# show security acl hits
ACL hit-counters
Index Counter ACL-name
----- -------------------- --------
1 31986 acl-red
2 0 acl-green