[c-nsp] Netflow before ACL filters
Rodney Dunn
rodunn at cisco.com
Tue Jul 19 08:46:57 EDT 2005
Netflow happens before the ACL check so you can catch the
packets that are dropped by the ACL (ie: dstif Null).
Rodney
On Tue, Jul 19, 2005 at 10:49:14AM +0300, Kim Onnel wrote:
> Hi,
>
> When i 'sh mls netflow ip', i can see packets that should be filtered on the
> interface, so could this be, because netflow shows me the packets before
> they are filtered by the ACL ?
>
> Regards
> _______________________________________________
> cisco-nsp mailing list cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
More information about the cisco-nsp
mailing list