Configuration examples for template acls, Access-list template command – Cisco 10000 User Manual

Page 489

Advertising
background image

22-5

Cisco 10000 Series Router Software Configuration Guide

OL-2226-23

Chapter 22 Configuring Template ACLs

Monitoring and Maintaining the Template ACL Configuration

Example 22-2

shows four Attribute 242 IP data filter entries.

Example 22-2 RADIUS Attribute 242 IP Data Filter Entries

Ascend-Data-Filter=”ip in drop”

Ascend-Data-Filter=”ip out forward tcp”

Ascend-Data-Filter=”ip out forward tcp dstip 10.0.200.3/16 srcip 10.0.200.25/16

dstport!=telnet”

Ascend-Data-Filter=”ip out forward tcp dstip 10.0.200.3/16 srcip 10.0.200.25/16 icmp”

Monitoring and Maintaining the Template ACL Configuration

To monitor and maintain the configuration of the Template ACL feature, enter any of the following
commands in EXEC mode:

Configuration Examples for Template ACLs

Template ACLs are activated only for per-user ACLs configured through RADIUS Attribute 242. For
more examples of configuring RADIUS attributes, see

Chapter 16, “Configuring RADIUS Features.”

access-list template Command

To enable Template ACL processing, use the access-list template command in global configuration
mode. To disable Template ACL processing, use the no form of the command.

The Template ACL feature is enabled by default. The default number of rules for Template ACL status
is 100, which is larger than most ACLs configured using Attribute 242.

Command

Purpose

Router# show access-list template summary

Displays information about all Template ACLs.

Router# show access-list template acl-name

Displays information about the named Template ACL.

Router# show access-list template exceed number

Displays the name of all Template ACLs serving as the parent
for more than number child ACLs.

Router# show access-list template tree

Displays information about the entries in the Red-Black data
tree.

Router# show pxf cpu access security

Displays PXF security ACL statistics.

This command does not display statistics for individual child
ACLs that are associated with a Template ACL. This
command displays the Template ACL parent, with the total
statistics for all the associated children ACLs.

Advertising
Popular Brands
Popular manuals