Assume that the statistics on ping packets from 10.1.1.0/24 need to be collected on the interface Ethernet0/0/1 or GigabitEthernet0/0/1. The configuration is as follows:
# Configuration the acl rule.
[HUAWEI]
acl number 3333 [HUAWEI-acl-adv-3333]
rule 5 permit icmp source 10.1.1.0 0.0.0.255 [HUAWEI-acl-adv-3333]
quit # Configuration the traffic classifier.
[HUAWEI]
traffic classifier test [HUAWEI-classifier-test]
if-match acl 3333 [HUAWEI-classifier-test]
quit
# Configuration the traffic behavior:
[HUAWEI] <strong>traffic behavior test</strong> [HUAWEI-behavior-test] <strong>statistic enable</strong> [HUAWEI-behavior-test] <strong>quit</strong>
# Configuration the traffic policy.
[HUAWEI]
traffic policy test [HUAWEI-trafficpolicy-test]
classifier test behavior test [HUAWEI-trafficpolicy-test]
quit
# Apply the traffic policy:
- # Apply the traffic policy test to the S2700 or S3700.
[HUAWEI] <strong>interface ethernet0/0/1</strong>
[HUAWEI-Ethernet0/0/1] <strong>traffic-policy test inbound</strong>
- # Apply the traffic policy test to the S5700.
[HUAWEI] <strong>interface gigabitethernet0/0/1</strong>
[HUAWEI-GigabitEthernet0/0/1] <strong>traffic-policy test inbound</strong>
After the configuration, run the
display traffic policy statistics interface interface-type interface-number command to view the traffic statistics. To re-collect traffic statistics, run the
reset traffic policy statistics interface interface-type interface-number command to clear existing traffic statistics first.
NOTE:
- The S2700 or S3700 can collect statistics only on incoming packets.
- The S5700 can collect statistics on incoming and outgoing packets, but cannot collect statistics on packets sent from its own CPU.
S5700 Switch Thunder link com
we have three isp connected cisco 1841 router
we have configured route-map and policy
isp1 source ip use isp1 gateway
isp2 source ip use isp2 gateway
isp3 source ip use isp3 gateway
configuration as follows
ip access-list extended isp1
permit ip X.X.X.X 0.0.0.15 any
ip access-list extended isp2
permit ip X.X.X.X 0.0.0.15 any
ip access-list extended isp3
permit ip X.X.X.X 0.0.0.15 any
where x = isp ip subnet according isp ip
route-map test permit 10
match ip address isp1
set ip next-hop x.x.x.x (next hop of isp1 IP)
route-map test permit 20
match ip address isp2
set ip next-hop x.x.x.x (next hop of isp2 IP)
route-map test permit 30
match ip address isp3
set ip next-hop x.x.x.x (next hop of isp3 IP)
on interface
ip policy route-map test
after adding the above configuration am not able ping any of the public
on interface
ip policy route-map test
after adding the above configuration am not able ping any of the public IPs from same router and my isp are also telling they were not able to ping our IP
But am adding a default route on the router am able ping any IPs from the same router (0.0.0.0 0.0.0.0 isp1 gateway or isp2 or isp3 )
please give the solution for this i can't give default route on the router because my policy ISP1 want use ISP1 one likewise
sathya
!
×