Disabling internal acls for bgp and bfd, Troubleshooting acls – Brocade BigIron RX Series Configuration Guide User Manual
Page 721
BigIron RX Series Configuration Guide
643
53-1002484-04
Disabling internal ACLs for BGP and BFD
22
Disabling internal ACLs for BGP and BFD
To disable internal ACLs for BGP and BFD, use the hw-optimization bgp | bfd command.
To deny BGP traffic on the interface 1/15, enter the following commands.
BigIron RX(config)# interface ethernet 1/15
BigIron RX(config-if-e10000-1/15)# enable
BigIron RX(config-if-e10000-1/15)# hw-optimization bgp
BigIron RX(config-if-e10000-1/15)# exit
Syntax: hw-optimization bgp | bfd
The bgp parameter disables prioritization of BGP packets.
The bfd parameter disables prioritization of BFD packets.
NOTE
After enabling or disabling hw-optimization-disable command, you must execute the ip rebind all
command at the global CONFIG level for the hw optimization to take effect.
NOTE
When hw-optimization-disable command is configured on a port, then the hw optimization will be
applied on all the ports of this packet processor (PPCR).
Troubleshooting ACLs
Use the following methods to troubleshoot an ACL:
•
To determine whether an ACL entry is correctly matching packets, add the log option to the ACL
entry, then reapply the ACL. This forces the device to send packets that match the ACL entry to
the CPU for processing. The log option also generates a Syslog entry for packets that are
permitted or denied by the ACL entry.
•
To determine whether the issue is specific to fragmentation, remove the Layer 4 information
(TCP or UDP application ports) from the ACL, then reapply the ACL.
If you are using another feature that requires ACLs, use the same ACL entries for filtering and for
the other feature.