Administrator Guide
Layer 2 Switching Commands 284
Syntax
show ip access-lists [
accesslistname
]
•
accesslistname
—
The name used to identify the IP ACL.
Default Configuration
This command has no default configuration.
Command Mode
Privileged Exec mode, Configuration mode and all Configuration submodes
User Guidelines
This command displays information about the attributes “icmp-type”, “icmp-
code”, “igmp-type,” “fragments,” “routing,” and “source and destination L4
port ranges.” It displays the committed rate, committed burst size and the
ACL rule hit count of packets matching the ACL rule. This matching packet
counter value rolls over upon reaching the maximum value
(18446744073709551615 or 2
64
-1).
For an ACL with multiple match rules, processing occurs in order until a rule
is matched. Only the counter associated with the matching rule is
incremented. (e.g., consider an ACL with three rules, rule 1 does not match,
and rule 2 is matched. Rule 3 is not processed. The counters for rule 1 and
rule 3 are not incremented.)
If an ACL rule is configured with a rate limit, the counter value is the
matched packet count (i.e., both the forwarded and dropped packets are
counted). If an ACL rule is configured without a rate limit, the counter value
is the count of either the permitted or denied packets.
ACL counters do not interact with diffserv policies. ACL counters do not
interact with PBR counters.
Command History
Updated in 6.3.0.1 firmware.
Examples
The following example displays the configured IP ACLs.
console#show ip access-lists
2CSNXXX_SWUM204.book Page 284 Monday, January 25, 2016 1:25 PM