1.1.0 0.0.0.255 any log-input (56 matches)
permit ip 172.16.1.0 0.0.0.255 any log-input (192 matches)
To verify whether uRPF is operational, use the show cef interface
command, as shown in
Example 7-18.
Example 7-18. Verifying uRPF Is Operational
Router# show cef interface
Serial0/0 is up (if_number 3)
...
IP unicast RPF check is enabled
IP CEF switching enabled
The show ip traffic command can be further used to display additional packet counter information for packets
dropped because of uRPF checks, as shown in Example 7-19.
Example 7-19. Verifying Drop Packet Counters
Router# show ip traffic
IP statistics:
...
Drop: 3 encapsulation failed, 0 unresolved, 0 no adjacency
0 no route, 0 unicast RPF, 0 forced drop
NetFlow
NetFlow is a Cisco IOS feature that captures statistics on IP packets flowing through the router and is emerging
as a primary security technology. Cisco is the pioneer in the NetFlow technology and the leader in IP traffic flow
technology. NetFlow provides numerous applications and services: network traffic accounting, user and
application monitoring, usage-based billing, link-usage, network planning, traffic profiling, traffic engineering,
capacity planning, anomaly detection, and security and DoS monitoring capabilities.
Pages:
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396