[c-nsp] ACL 1000 deny hits per second. Only 10 packets in logfile

Amol Sapkal amolsapkal at gmail.com
Tue Mar 8 09:33:28 EST 2005


I am not sure, but the router will log only a few packets per few
seconds and not all the packets, otherwise the cpu would overload
logging all the packets.

-Amol


On Tue, 8 Mar 2005 09:26:19 -0500, Dave Temkin <dave at ordinaryworld.com> wrote:
> Do you have anything defined for the "logging rate-limit" command?
> 
> On Tue, 8 Mar 2005 15:19:30 +0100 (CET), Roger Wiklund wrote
> > Hi, I have a strange problem.
> >
> > In my access-list i get about 1000 deny hits/s. But when I look in
> > my log I only see about 10 deny packets/minuts. Have I overlooked something?
> >
> > access-list xxx permit ip xxx.xxx.xxx.xxx xxx.xxx.xxx.xxx any
> > access-list xxx deny ip any any log-input
> >
> > //Roger
> > _______________________________________________
> > cisco-nsp mailing list  cisco-nsp at puck.nether.net
> > https://puck.nether.net/mailman/listinfo/cisco-nsp
> > archive at http://puck.nether.net/pipermail/cisco-nsp/
> 
> David Temkin
> 
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
> 


-- 
Warm Regds,

Amol Sapkal

--------------------------------------------------------------------
An eye for an eye makes the whole world blind 
- Mahatma Gandhi
--------------------------------------------------------------------


More information about the cisco-nsp mailing list