Applying Access Control to Router Interfaces
Viewing ACLs and ACPs
5-50
Command
show ip policy-sessions
show ip policy-sessions
<policyname>
show ip policy-stats
Displaying ACLs
To view all of the ACLs that are configured on the ProCurve Secure Router,
move to the enable mode context and enter:
Syntax: show access-lists
If you are in a different context (other than the basic mode context), you can
use the do command:
Syntax: do show access-lists
As Figure 5-16 shows, this command lists the following information for
each ACL:
type of ACL—standard or extended
all entries in the ACLs
number of packets matched to each entry
ProCurve# show access-lists
Extended IP access list Internet
permit tcp any
permit tcp any
permit tcp any
permit tcp any
permit tcp any
permit tcp any
Extended IP access list WAN1
permit udp any
deny
tcp any
permit tcp host 192.168.20.1
Figure 5-16. Displaying All the ACLs Configured on the Router
Explanation
displays the total number of sessions associated with
ACPs, the number of sessions per ACP, and detailed
information about each device that has established a
session
displays the number of sessions associated with the
specified ACP and information about each device that has
established a session
displays statistics about the policies, such as the number
of sessions and the number of sessions allowed
any eq www
(300 matches)
any eq smtp
(1 matches)
any eq pop3
(0 matches)
any eq ftp
(0 matches)
any eq ftp-data (0 matches)
any eq domain
(0 matches)
any eq rip
(42 matches)
any eq telnet
(0 matches)
any
(0 matches)