No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

FAQ-why traffic would decrease when customer operate acl

Publication Date:  2014-09-12 Views:  88 Downloads:  0
Issue Description
version: S9300 V100R002C00SPC200
patch :S9300 V100R002SPH008
Customer found when he delete/add ACL or traffic-policy, all traffic would decrease. After several seconds, it would be restore automatically.
For example: acl 3111:
acl number 3111
rule 20 permit ip source 10.247.0.0 0.0.255.255
rule 30 permit ip source 10.248.0.0 0.0.255.255
rule 60 permit ip source 10.217.0.0 0.0.255.255
rule 70 permit ip source 10.227.0.0 0.0.255.255
rule 80 permit ip source 10.237.0.0 0.0.255.255
rule 90 permit ip source 10.209.0.0 0.0.255.255
rule 100 permit ip source 10.229.0.0 0.0.127.255
rule 110 permit ip source 10.207.128.0 0.0.3.255
rule 120 permit ip source 10.207.144.0 0.0.7.255
rule 130 permit ip source 10.207.152.0 0.0.3.255
rule 140 permit ip source 10.207.240.0 0.0.15.255
rule 150 permit ip source 10.207.192.0 0.0.1.255
rule 160 permit ip source 10.8.0.0 0.0.255.255
rule 170 permit ip source 10.12.0.0 0.0.255.255
rule 180 permit ip source 10.13.0.0 0.0.255.255
rule 190 permit ip source 10.21.0.0 0.0.255.255
rule 200 permit ip source 10.207.224.0 0.0.15.255
rule 205 permit ip source 10.207.133.0 0.0.0.255
rule 210 permit ip source 10.207.134.0 0.0.1.255
rule 215 permit ip source 10.207.132.0 0.0.0.255
rule permit ip source 10.219.64.0 0.0.127.255
rule permit ip source 10.219.128.0 0.0.63.255
#
When operate as following, this issue would appear:
 
undo rule permit ip source 10.219.64.0 0.0.127.255
undo rule permit ip source 10.219.128.0 0.0.63.255
rule permit ip source 10.219.0.0 0.0.255.255
 

Alarm Information
null
Handling Process
According to configuration, ACL 3111 configure many rules.
The action of rules is re-direct next hop (please refer attachment).
When ACL has any change, current software version could delete all of old rules under this ACL first.
And then re-apply all of rules to chip, and achieve ACL.
So, when customer modifies ACL 3111, current software version could delete all of rules under ACL 3111.
This moment, a lot of traffic can’t match next hop and decrease.

Root Cause
null
Suggestions

END