[j-nsp] snmp count for arp policer?
Eric Van Tol
eric at atlantech.net
Fri Jul 29 07:04:27 EDT 2011
> -----Original Message-----
> From: juniper-nsp-bounces at puck.nether.net [mailto:juniper-nsp-
> bounces at puck.nether.net] On Behalf Of Clarke Morledge
> Sent: Tuesday, July 12, 2011 11:07 AM
> To: juniper-nsp at puck.nether.net
> Subject: [j-nsp] snmp count for arp policer?
>
> On an IP interface (on a router like the MX), you can configure
> filters to
> count different types of IP packets. But there does not appear to be
> a
> way to count ARP packets, since they do not have an IP header.
>
> I would like to be able to have some type of ARP packet counter per
> interface that I can query with SNMP, just like you would with the IP
> counters via filters that can be programmed into the router hardware.
>
> The closest thing I can find that might do it is using an ARP
> policer.
> Unfortunately, this will only catch packets that hit some limit on
> your
> policer. This is better than nothing, but not great. From the
> CLI, you
> can look at the number of hits on the __default_arp_policer__, which
> I
> assume will get superceded by any interface specific ARP policer. In
> this
> context, the "show policer" output via the CLI is helpful:
I have run into the same issue. I'm using an M7i and some Ethernet subinterfaces are hitting the default ARP policer. I configured a more sane policer and I'd like to track which interfaces this is happening on, but there doesn't seem to be a way to do it through SNMP.
-evt
More information about the juniper-nsp
mailing list