241
DWS-1008 User’s Manual
D-Link Systems, Inc.
Configuring and Managing Security ACLs
Displaying Security ACL Hits
Once you map an ACL, you can view the number of packets it has filtered, if you included the
keyword
hits
.
Type the following command:
DWS-1008#
show security acl hits
ACL hit-counters
Index Counter
ACL-name
-------------------------------------------
1 0
acl-2
2 0
acl-999
5 916
acl-123
To sample the number of hits the security ACLs generate, you must specify the number of
seconds between samples. For example, to sample the hits generated every 180 seconds,
type the following commands:
DWS-1008#
hit-sample-rate 180
DWS-1008#
show security acl hits
ACL hit-counters
Index Counter
ACL-name
-------------------------------------------
1 31986
acl-red
2 0
acl-green
Clearing Security ACLs
The
clear security acl
command removes the ACL from the edit buffer only. To clear a
security ACL, enter a specific ACL name, or enter
all
to delete all security ACLs. To remove
the security ACL from the running configuration and nonvolatile storage, you must also use
the
commit security acl
command.
For example, the following command deletes
acl-99
from the edit buffer:
DWS-1008#
clear security acl acl-99
To clear
acl-99
from the configuration, type the following command:
DWS-1008#
commit security acl acl-99
success: change accepted