beautypg.com

Displaying acl log entries, Qos options for ip acls – Brocade BigIron RX Series Configuration Guide User Manual

Page 713

background image

BigIron RX Series Configuration Guide

635

53-1002484-04

QoS options for IP ACLs

22

Displaying ACL log entries

The first time an entry in an ACL denies a packet and logging is enabled for that entry, the software
generates a Syslog message and an SNMP trap. Messages for packets denied by ACLs are at the
warning level of the Syslog.

When the first Syslog entry for a packet denied by an ACL is generated, the software starts an ACL
timer. After this, the software sends Syslog messages every 1 to 10 minutes, depending on the
value of the timer interval. If an ACL entry does not permit or deny any packets during the timer
interval, the software does not generate a Syslog entry for that ACL entry.

NOTE

For an ACL entry to be eligible to generate a Syslog entry for denied packets, logging must be
enabled for the entry. The Syslog contains entries only for the ACL entries that deny packets and
have logging enabled.

To display Syslog entries, use one of the following methods.

Enter the following command from any CLI prompt.

QoS options for IP ACLs

QoS options enable you to perform QoS for packets that match the ACLs. Using an ACL to perform
QoS is an alternative to the following methods.

Directly setting the internal forwarding priority based on incoming port, VLAN membership, and
so on. (This method is described in

“Assigning QoS priorities to traffic”

on page 484.)

Enabling the IP ToS-based QoS feature described in

“Configuring ToS-based QoS”

on page 486.

NOTE

If you use an ACL on an interface, ToS-based QoS assumes that the ACL will perform QoS for all
packets except the packets that match the permit ip any any ACL.

BigIron RX(config)# show logging

Syslog logging: enabled (0 messages dropped, 0 flushes, 0 overruns)

Buffer logging: level ACDMEINW, 38 messages logged

level code: A=alert C=critical D=debugging M=emergency E=error

I=informational N=notification W=warning

Static Log Buffer:

Oct 13 16:24:29:N:Switch Fabric 5 temperature 59.875 C degrees is normal

Dynamic Log Buffer (50 lines):Oct 13 17:19:36:I:running-config was changed from

telnet client 192.168.9.181

Oct 13 17:06:18:I:running-config was changed from telnet client 192.168.9.181

Oct 13 16:57:44:I:ACL: entry modified from telnet session

Oct 13 16:57:40:I:ACL: entry modified from telnet session

Oct 13 16:57:32:I:ACL: entry added from telnet session

Oct 13 16:53:04:I:ACL: 10 modified from telnet session

.

.

.

See also other documents in the category Brocade Computer Accessories: