Verifying That Two-Color Policers Are Operational
Purpose
Verify that two-color policers in firewall filter configurations are working properly.
Action
Use the show firewall policer operational mode command to verify
that the policers are working properly:
user@switch> show firewall policer Filter: egress-vlan-watch-employee Filter: ingress-port-filter Filter: ingress-port-limit-tcp-icmp Policers: Name Packets icmp-connection-policer 10 tcp-connection-policer 539 Filter: ingress-vlan-rogue-block Filter: ingress-vlan-limit-guest
Meaning
The show firewall policer command displays the names of all firewall
filters and policers that are configured. For each policer that is specified in a filter configuration,
the output field shows the current packet count for all packets that exceed the specified
rate limits.