[c-nsp] MRTG graphing traffic that hits an ACL

Rubens Kuhl Jr. rubensk at gmail.com
Wed Jul 5 13:01:42 EDT 2006


> > Not sure if this works, but if you really need to find out, you could
> > try to put this traffic into a QoS class, use the "drop" directivy in
> > the appropriate class within a policy-map and monitor the offered rate
> > using QOS-MIB (not sure if we maintain per-class BW in this case, if
> > not, a policer with "drop" as conform- and exceed-action will likely
> > do).
> > But this MIB is not trivial, and this definitly has a performance impact
> > (unless you're already doing QoS)..
>
> Any less painful method to see how much bandwidth a specific type of
> traffic is consuming?

NetFlow ?

Be aware that ACL hit counters are far from the real traffic for some
hardware-assisted platforms (6500/7600 with Sup 2 and Sup3A among
them)...


Rubens


More information about the cisco-nsp mailing list