Viewing acl and rate limit counters, Limit – Brocade Communications Systems Brocade ICX 6650 6650 User Manual

Page 170

Advertising
background image

150

Brocade ICX 6650 Security Configuration Guide

53-1002601-01

Enabling and using ACL statistics

Enabling ACL statistics with rate limiting traffic policies

The configuration example in the section

“Enabling ACL statistics”

on page 149 shows how to

enable ACL counting without applying rate limiting. You also can enable ACL counting while defining
a rate limiting traffic policy.

To enable ACL counting while defining traffic policies for fixed rate limiting, enter the following
commands at the global CONFIG level of the CLI.

Brocade(config)# traffic-policy TPD1 rate-limit fixed 1000 count
Brocade(config)# traffic-policy TPD2 rate-limit fixed 10000 exceed-action drop
count

Syntax: [no] traffic-policy TPD-name rate-limit fixed cir-value count

Syntax: [no] traffic-policy TPD-name rate-limit fixed cir-value exceed-action action count

To enable ACL counting while defining traffic policies for adaptive rate limiting, enter the following
commands at the global CONFIG level of the CLI.

Brocade(config)# traffic-policy TPDA4 rate-limit adaptive cir 10000 cbs 1600 pir
20000 pbs 4000 count
Brocade(config)# traffic-policy TPDA5 rate-limit adaptive cir 10000 cbs 1600 pir
20000 pbs 4000 exceed-action permit-at-low-pri count

Syntax: [no] traffic-policy TPD-name rate-limit adaptive cir cir-value cbs cbs-value pir pir-value pbs

pbs-value count

Syntax: [no] traffic-policy TPD-name rate-limit adaptive cir cir-value cbs cbs-value pir pir-value pbs

pbs-value exceed-action action count

Viewing ACL and rate limit counters

When ACL counting is enabled on Brocade ICX 6650, you can use show commands to display the
total packet count and byte count of the traffic filtered by ACL statements. The output of the show
commands also displays the rate limiting traffic counters, which are automatically enabled for
active rate limiting traffic policies.

Use either the show access-list accounting traffic-policy command or the show statistics
traffic-policy command to display ACL and traffic policy counters. The output of both commands is
identical.

The following example shows output from a show access-list accounting command.

Brocade#show access-list accounting traffic-policy tf125c
Traffic Policy tf125c:
Port Regions:
---------------
0 : 1/1/1-1/1/56, 1/3/1-1/3/8, 1/2/1-1/2/4

General Counters:
Port Region# Byte Count Packet Count
---------------- -------------------- --------------------
7 (4/1 - 4/12) 85367040 776064
All port regions 84367040 776064

Rate Limiting Counters (in Packets):

Advertising
Popular Brands
Popular manuals