Cisco Systems 10000 Network Router User Manual


  Open as PDF
of 624
 
25-5
Cisco 10000 Series Router Software Configuration Guide
OL-2226-23
Chapter 25 Configuring Template ACLs
Monitoring and Maintaining the Template ACL Configuration
Example 25-2 shows four Attribute 242 IP data filter entries.
Example 25-2 RADIUS Attribute 242 IP Data Filter Entries
Ascend-Data-Filter=”ip in drop”
Ascend-Data-Filter=”ip out forward tcp”
Ascend-Data-Filter=”ip out forward tcp dstip 10.0.200.3/16 srcip 10.0.200.25/16
dstport!=telnet”
Ascend-Data-Filter=”ip out forward tcp dstip 10.0.200.3/16 srcip 10.0.200.25/16 icmp”
Monitoring and Maintaining the Template ACL Configuration
To monitor and maintain the configuration of the Template ACL feature, enter any of the following
commands in EXEC mode:
Configuration Examples for Template ACLs
Template ACLs are activated only for per-user ACLs configured through RADIUS Attribute 242. For
more examples of configuring RADIUS attributes, see
Chapter 16, “Configuring RADIUS Features.”
access-list template Command
To enable Template ACL processing, use the access-list template command in global configuration
mode. To disable Template ACL processing, use the no form of the command.
The Template ACL feature is enabled by default. The default number of rules for Template ACL status
is 100, which is larger than most ACLs configured using Attribute 242.
Command Purpose
Router# show access-list template summary
Displays information about all Template ACLs.
Router# show access-list template acl-name
Displays information about the named Template ACL.
Router# show access-list template exceed number
Displays the name of all Template ACLs serving as the parent
for more than number child ACLs.
Router# show access-list template tree
Displays information about the entries in the Red-Black data
tree.
Router# show pxf cpu access security
Displays PXF security ACL statistics.
This command does not display statistics for individual child
ACLs that are associated with a Template ACL. This
command displays the Template ACL parent, with the total
statistics for all the associated children ACLs.
 previous next