Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
977
Views
0
Helpful
2
Replies

Debug an ACL

Go to solution
cdelafuente31
Level 1
Level 1

‎02-25-2009 03:23 AM - edited ‎03-06-2019 04:13 AM

Hello,

I've configured an ACL in a BVI interface an now is working as intended. But I would like to know which access-list statement matchs with the traffic flowing through the interface.

I've tried with the "debug ip packet <access-list>" but it doesn't show the traffic denied.

Regards,

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
adamclarkuk_2
Level 4
Level 4

‎02-25-2009 03:26 AM

Try adding a log to the end of the ACL, this should force a punt to the CPU.

debug ip packet only shows process switched traffic.

The other "drastic" measure is to turn off cef, but I dont recommend doing that.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
adamclarkuk_2
Level 4
Level 4

‎02-25-2009 03:26 AM

Try adding a log to the end of the ACL, this should force a punt to the CPU.

debug ip packet only shows process switched traffic.

The other "drastic" measure is to turn off cef, but I dont recommend doing that.

0 Helpful

Go to solution
cdelafuente31
Level 1
Level 1
In response to adamclarkuk_2

‎02-25-2009 03:55 AM

The ACL does what I want. The problem is the 5 minute interval between statistics.

Thank you very much.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card