FAQ-Why the Count of a Matched ACL Deny Rule Is Blank When Packets Match the ACL Deny Rule Referenced in IPSec in Transparent Transmission

Publication Date:  2015-07-02 Views:  183 Downloads:  0
Issue Description
Why the Count of a Matched ACL Deny Rule Is Blank When Packets Match the ACL Deny Rule Referenced in IPSec in Transparent Transmission?
Solution
When packets match the shareflow delivered based on the ACLs referenced by IPSec, the packets are IPSec-encapsulated. However, when the packets match the shareflow based on a deny rule, packets do not match the referenced ACL. Therefore, the count of matched ACL deny rule is zero.

END