Why does not a traffic classifier support the And relationship between ACL rules

5

ACL rules may cause conflicts when matching the same elements. For example, if two ACL rules defined in a traffic classifier match VLANs, the And relationship between ACL rules causes matching conflicts and leads to matching failure when VLAN IDs are different.

Other related questions:
Differences between the and and or relationships between rules in a traffic classifier on S series switches
For S series switches (except the S1700), and and or indicate the relationship between rules in a traffic classifier. - and indicates that the relationship between rules is AND. After and is specified, the following situations occur: 1. If a traffic classifier contains ACL rules, packets match the traffic classifier only when the packets match one ACL rule and all the non-ACL rules. 2. If a traffic classifier does not contain an ACL rule, packets match the traffic classifier only when the packets match all the non-ACL rules. - or indicates that the relationship between rules is OR. After or is specified, packets match a traffic classifier as long as the packets match at least one rule. By default, the relationships between rules in a traffic classifier on an S series modular switch and those on an S series fixed switch are OR and AND, respectively. Note: MQC cannot be configured on the S2700SI.

Why is the statistics displayed in the display acl command output 0 after a traffic policy defining an ACL rule and traffic statistics is applied and traffic matches the ACL rule
The display acl command displays statistics on traffic sent to the control plane. The traffic statistics collection function in traffic policies is used to collect statistics on traffic on the forwarding plane. Statistics on traffic sent to the control plane is not collected. After a traffic policy defining an ACL rule and traffic statistics is applied and traffic matches the ACL rule, the statistics displayed in the display acl command output is 0. Run the display traffic-policy statistics command to view statistics on traffic matching a traffic policy applied to an interface.

If you have more questions, you can seek help from following ways:
To iKnow To Live Chat
Scroll to top