11-01-2016 03:36 PM - edited 03-08-2019 08:00 AM
Hello all. Is it possible to run a debug or create and ACL to see which packets are going to the CPU as opposed to being handled by hardware? On the switch itself I only have two ACLs one for vty access and the other for snmp access. Moreover, I'll "clear access-list counters" then run the command "show access-list hardware counters" and get output like below
switch_rm12#sh access-list hardware counters
L3 ACL INPUT Statistics
All Drop: frame count: 3
All Bridge Only: frame count: 0
All Forwarding To CPU: frame count: 336
All Forwarded: frame count: 5464
All Drop And Log: frame count: 0
All Bridge Only And Log: frame count: 0
All Forwarded And Log: frame count: 0
All IPv6 Drop: frame count: 0
All IPv6 Bridge Only: frame count: 0
All IPv6 Forwarding To CPU: frame count: 0
All IPv6 Forwarded: frame count: 66
All IPv6 Drop And Log: frame count: 0
All IPv6 Bridge Only And Log: frame count: 0
All IPv6 Forwarded And Log: frame count: 0
11-01-2016 10:07 PM
What switch is this?
11-02-2016 07:43 AM
Its a layer 2, access switch. Oh, I forgot to mention I don't have "log" configured after the ACL lines.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide