beautypg.com

Configuring ipv6 acl accounting – Brocade FastIron Ethernet Switch Security Configuration Guide User Manual

Page 167

background image

Configuring IPv6 ACL accounting

Steps to enable, display, and clear IPv6 ACL accounting

1. To enable IPv6 ACL accounting, use the enable-accounting command.

device(config-ipv6-access-list v6)#enable-accounting

NOTE
When the ACL on which accounting is enabled is shared between multiple interfaces, enable ACL-
PER-PORT-PER-VLAN flag to get statistics at the port level.

2. To display ACL accounting information, use the show access list accounting command. The

accounting statistics is collected every five seconds and is synchronized to standby unit every one
minute.

device#show access-list accounting ve 16 in

IPV4 ACL Accounting Information

devNum[0] => ACL: 10

0: permit any

Hit Count: (1Min) 0 (5Sec) 0

(PktCnt) 0 (ByteCnt) 0

--------------------------------------------------

65535: Implicit Rule deny any any

Hit Count: (1Min) 0 (5Sec) 0

(PktCnt) 0 (ByteCnt) 0

--------------------------------------------------

IPV6 ACL Accounting Information

devNum[0] => ACL: v6

0: permit ipv6 any any

Hit Count: (1Min) 0 (5Sec) 0

(PktCnt) 0 (ByteCnt) 0

-------------------------------------------------

65533: Implicit ND_NA Rule: permit any any

Hit Count: (1Min) 0 (5Sec) 0

(PktCnt) 0 (ByteCnt) 0

-------------------------------------------------

65534: Implicit ND_NS Rule: permit any any

Hit Count: (1Min) 0 (5Sec) 0

(PktCnt) 0 (ByteCnt) 0

-------------------------------------------------

65535: Implicit Rule: deny any any

Hit Count: (1Min) 0 (5Sec) 0

(PktCnt) 0 (ByteCnt) 0

-------------------------------------------------

3. To clear ACL accounting statistics for ACLs configured, choose one of the following options.

• For ACLs configured on a specific interface, use the clear access list accounting command in

the global configuration mode.

• For all ACLs configured in the device, use the clear access list accounting all command in the

global configuration mode.

device(config)#clear access-list accounting ethernet 1/5 in

device(config)#clear access list accounting all

The following example shows how to enable IPv6 ACL accounting.

device(config)# ipv6 access-list v6

device(config-ipv6-access-list v6)# enable-accounting

device(config)# interface ethernet 1/1

device(config-if-1/1)# ipv6 enable

device(config-if-1/1)# ipv6 access-list v6 in

device(config)# write memory

Configuring IPv6 ACL accounting

FastIron Ethernet Switch Security Configuration Guide

167

53-1003088-03

See also other documents in the category Brocade Computer Accessories: