Cisco交换机，使用sh ip access-lists命令后，每一台主机后面有个(1 match)，这个是什么意思？

SW3750V2#sh ip access-lists
Extended IP access list ip_acl_out
50 permit ip host 192.168.40.2 any
60 permit ip host 192.168.40.3 any
70 permit ip host 192.168.40.5 any (1 match)
80 permit ip host 192.168.40.6 any
90 permit ip host 192.168.40.7 any (1 match)
240 permit ip host 192.168.20.8 any (1 match)
330 permit ip host 192.168.30.12 any (1 match)
350 permit ip host 192.168.30.15 any (1 match)
370 permit ip host 192.168.30.17 any
380 permit ip host 192.168.30.18 any (1 match)
400 permit ip host 192.168.30.20 any (1 match)
420 permit ip host 192.168.20.9 any
430 permit ip host 192.168.10.4 any
440 permit ip host 192.168.10.3 any
450 permit ip host 192.168.10.5 any
470 permit ip host 192.168.20.10 any
480 permit ip host 192.168.20.2 any
490 permit ip host 192.168.30.16 any
500 permit ip host 192.168.30.19 any
510 permit ip host 192.168.20.11 any
520 permit ip host 192.168.10.253 any
530 permit ip host 192.168.30.14 any
540 permit ip host 192.168.30.21 any
550 permit ip host 192.168.40.14 any (3 matches)
560 permit ip host 192.168.20.22 any

举报该问题

推荐答案 2014-07-07

70 permit ip host 192.168.40.5 any (1 match)这条命令后面的1match的意思是匹配到了1个从主机192.168.40.5 到任意目的IP的IP包

温馨提示：答案为网友推荐，仅供参考

当前网址：http://11.wendadaohang.com/zd/4FFS72SPPPMv2qq8P2.html

其他回答

第1个回答 2014-07-07

就是有流量匹配了这个条ACL

相似回答

CISCO路由器交换机部分命令答：Ppp chap hostname 当用CHAP进行身份验证时,创建一批好像是同一台主机的拨号路由器Ppp chap password 设置一个密码,该密码被发送到对路由器进行身份验证的主机命令对进入路由器的用户名/密码的数量进行了限制Ppp pap sent-username 对一个接口启动远程PAP支持,并且在PAP对同等层请求数据包验证过程中使用sent-username...

大家正在搜

交换机连交换机用access口两台交换机access端口互联 h3c交换机常用命令交换机access改成trunk 交换机accesse口互联交换机access模式华三交换机access 交换机access口VLAN 交换机access口配置