Filter
Top Products
2-633
Catalyst 6500 Series Switch Command Reference—Release 8.4
OL-6244-01
Chapter 2 Catalyst 6500 Series Switch and ROM Monitor Commands
set security acl log
set security acl log
To configure the security ACL log table, use the set security acl log command.
set security acl log maxflow max_flows
set security acl log ratelimit max_rate
Syntax Description
Defaults The default max_number is 500 packets per second and the default ratelimit is 2500 packets per second.
Command Types Switch command.
Command Modes Normal.
Usage Guidelines The command is supported on systems configured with Supervisor Engine 2 with Layer 3 Switching
Engine II (PFC2) only.
The set security acl log maxflow command tries to allocate a new log table based on the maximum flow
pattern number to store logged packet information. If successful, the new buffer replaces the old one and
all flows in the old table are cleared. If either memory is not enough or the maximum number is over the
limit, an error message is displayed and the command is dropped.
The set security acl log ratelimit command tries to set the redirect rate in packets per second. If the
configuration is over the range, the command is discarded and the range is displayed on the console.
If you want to disable rate limiting for VACL logging, enter a rate argument of 0.
Examples This example shows how to set the maximum flow:
Console> (enable) set security acl log maxflow 322
Log table size set to 322 flow entries.
Console> (enable)
This example shows how to set the rate limit:
Console> (enable) set security acl log ratelimit 3444
Max logging eligible packet rate set to 3444pps.
Console> (enable)
maxflow
max_flows
Specifies the maximum flow pattern number in packets per second; valid values
are from 256 to 2048.
ratelimit
max_rate
Specifies the redirect rate in packets per second; valid values are 0 and from 500
to 5000. See the “Usage Guidelines” section for more information.