[nsp] Cat3750G, IP ACL filtering
John Ferriby
john at ferriby.com
Sat Mar 6 07:23:13 EST 2004
> The experience from 3550 is that ACL counters do *not* work. You need
> to check the actual traffic (with a sniffer, a software router where
> counters *do* work, or similar) to see if the ACL is blocking what you
> want it to block.
>
> > ... and the flow cache is also not populated at all ("show ip
> cache flow"
> > yields *no* output).
I have found that standard acls count, but extended don't. At least
by my observation on our units, which are 3750G-24.
You're right regarding netflow - it's not supported. An annoyance at
the least.
-John
More information about the cisco-nsp
mailing list