A policy profile can be set to disable an ingress port on the first use of any profile rule assigned to the policy profile. The disable-port feature is disabled by default. Use the set policy profile disable-port command to enable or disable the disable-port feature for the specified policy profile. This command disables the port if any rule for this profile is used. To limit disabling of ports to the first use of a specific policy rule, see Disabling an Ingress Port Per Policy Rule (S-, K-Series).
Use the clear policy disabled-ports to clear ports from the disabled state due to the first use of a policy rule on those ports.
Use the show policy disabled-ports command to display ports that have been disabled by a profile rule enabled for disabled ports.
Use the show policy rule port-hit command to display rule hits that have occurred, displayed on a per port basis.
Use the show policy rule usage-list command to display usage for all rules whether a rule hit has occurred or not. The usage field of this command displays whether a hit has occurred for a listed rule.
Use the clear policy usage-list command to clear statistics displayed in the show policy rule usage-list command. This command only clears displayed statistics.
Print
this page
Email this topic
Feedback
View PDF
Download EPUB