The issue happens when you want to run Netflow and Microflow policing at the same time.
It is sometimes observed that Netflow fails to start exporting when a Microflow policer is already active. The Microflow policer continues to work. Alternatively, a Microflow policer does not function when Netflow is already enabled on a Catalyst 6500 and the policer configuration is applied. Netflow continues to function since it was enabled first.
The following are the limitations regarding NDE and microflow policers:
Full flow microflow policer works only when NDE is configured to Src, Dest, Dest-Src or Full.
Src-only / Dest-only Microflow policer will not work, when NDE is configured.
The only condition that allows the NDE and Microflow policer to work is to use the mls flow ip full command in global configuration mode which configures the flow mask for NDE. The Microflow policers do not match any IPv6 traffic.
Note : If you use mls flow ip full command it will consume more memory in MLS because it will have more entries based on layer 4 information. It is recommended to keep the size of the MLS cache below 32K entries. To keep the size of the MLS cache down, enable mls aging fast.
Before the upgrade, I was able to SSH into a level 15 user and it would land me directly to # without using enable. After upgrading to from 16.3.8 to 16.9.4, my level 2 account can still SSH in but level 15 user account gets % login invalid. So I try...
What design is generally recommended for an office with approx 400 client devices. We have about 10 x access L2 switches (2960x) and are not sure whether to go with 1 x L3 stack (4 x 9300 switches) or maybe 2 x stacks (of 2 x 9300 switches). We are thinki...
After I create a VLAN i can no longer access the GUI.port 1 - trunk connected to routerport 2 - access, PCThe switch is connected to an Edgerouter.I'm sure it's something simple, but I'm new to VLANs and can't figure it out.
Hi Folks, I have posted my config below for a little advice/suggestions.This is 1 of 2 Cisco 887 routers which feed into a Cisco 2960 switch were I have mapped the access ports to VLANs as below. I have a few questions as I had planned to use Ether C...