When I do a show access-list on my 6509 I have the following entries:
deny x.x.x.x , wildcard bits x.x.x.x (6 matches) check=4219
I know the matches info is provided when you put the 'log' entry in the config. But under some of the standard acl, it will list this "check=" info. I haven't been able to find any info on it. Anybody know what it is?
From "Cisco IOS Security Command Reference, Release 12.2SX" for the command "show access-lists"
"An access list counter counts how many packets are allowed by each line of the access list. This number is displayed as the number of matches. Check denotes how many times a packet was compared to the access list but did not match. "
Hope this helps! Please use the rating system.