EasyManua.ls Logo

Cisco Nexus 3600 NX-OS - Page 97

Cisco Nexus 3600 NX-OS
154 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
PurposeCommand or Action
Enters interface configuration mode.
interface ethernet slot/port
Example:
switch(config)# interface ethernet
1/1
switch(config-if)#
Step 5
Enables the filtering of IPv4 traffic on an interface using
the specified ACL. You can apply an ACL to inbound
traffic.
ip access-group name in
Example:
switch(config-if)# ip access-group
logging-test in
Step 6
Updates the configuration and exits interface
configuration mode.
exit
Example:
switch(config-if)# exit
switch(config)#
Step 7
Configures the log-update interval (in seconds) for the
ACL logging process. The default value is 300 seconds.
The range is from 5 to 86400 seconds.
logging ip access-list cache interval
interval
Example:
switch(config)# logging ip
access-list cache interval 490
Step 8
Specifies the maximum number of flows to be monitored
by the ACL logging process. The default value is 8000.
The range of values supported is from 0 to 1048576.
logging ip access-list cache entries
number-of-flows
Example:
switch(config)# logging ip
access-list cache entries 8001
Step 9
If the specified number of packets is logged before the
expiry of the alert interval, the system generates a syslog
message.
logging ip access-list cache threshold
threshold
Example:
switch(config)# logging ip
access-list cache threshold 490
Step 10
Enables the ACL name, the sequence number of ACE,
action, ACL direction, ACL filter type, and the ACL
logging ip access-list detailed
Example:
switch(config)# logging ip
access-list detailed
Step 11
applied interface are displayed in the output of the show
logging ip access-list cache command.
Configures rate limits in packets per second for packets
copied to the supervisor module for ACL logging. The
range is from 0 to 30000.
hardware rate-limiter access-list-log
packets
Example:
switch(config)# hardware
rate-limiter access-list-log 200
Step 12
Cisco Nexus NX-OS 7.0(3)F3(1) does not
support the hardware rate-limiter
access-list-log command.
Note
Cisco Nexus 3600 NX-OS Security Configuration Guide, Release 7.x
83
Configuring IP ACLs
Configuring IPv4 ACL Logging

Table of Contents

Related product manuals