Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1072
Views
0
Helpful
1
Replies

Determining filters for contracts

dodgerfan78
Level 1
Level 1

‎02-04-2017 10:28 AM - edited ‎03-01-2019 05:09 AM

Is there a way in ACI to monitor flows with an allow any contract so you can then tighten it down?

Thanks

1 person had this problem
Labels:
0 Helpful
1 Reply 1

Joseph Young
Cisco Employee
Cisco Employee

‎02-06-2017 10:36 AM

There are a couple of different things you can do.

1. Enable 'log' as the directive in the subject of your allow-all contract. These stats can then be viewed from the GUI by going to Tenants>tenant name>Operational>Flows/packets. Additionally these can be viewed from the cli of the switch by using "show logging ip access-list internal packet-log permit". Caveat though...permit logging is only supported on EX series switches.

2. Enable netflow if you have 2.2 running.

3. Buy tetration :)

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card

Save 25% on Day-2 Operations Add-On License