sh access-list output 'check' ?

Unanswered Question
May 2nd, 2007

I can't find anything on CCO or Google to explain the 'check==378' in the output below.

router#sh access-list 1

Standard IP access list 1

permit 10.25.0.0, wildcard bits 0.0.0.255 check=378

This is just a snippet. Other ACLs on the same router do not have the 'check' field - just this one, which is an access-class ACL on the vty. See config below:

access-list 1 permit 10.25.0.0 0.0.0.255

!

line vty 0 4

access-class 1 in

Also, Cisco Output Interpreter just chokes on this output. The router is a 1721 running 12.2(8)T5.

Please advise. - Jonathan

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
royalblues Wed, 05/02/2007 - 07:42

Jonathan,

The access-list in question must be having a log keyword at the end.

The check =378 actaully means that the access-list has been referred to 378 times.

You can use the clear access-list counters command (check =0)and then try the telnet access from the subnet. Then issue the sh access-list command. the check counter would have incremented.

HTH, rate if it does

Narayan

Actions

This Discussion