`show port-access policy`

Syntax

show port-access policy <POLICY-NAME>

Description

Shows various aspects of policies and their current usage. Details of a policy including the content of a specific policy is shown.

Following are the possible values for policy types:

Local—User configured policy
Downloaded—Downloaded user policy
RADIUS—Policy obtained from the RADIUS server

Following are the possible values for policy status:

Applied—Policy is successfully applied in the hardware.
Rejected—Policy is not supported in the hardware.
In-Progress—Policy is being processed in the hardware.
Failed—Displayed when the switch fails to apply the policy configuration because the TCAM resources are unavailable or full.

NOTE:

If a policy is configured without any action, the show command will represent such an entry with the action as permit.

Command context

Operator (>) or Manager (#)

Parameters

<POLICY-NAME>: Specifies the policy name.

Authority

Operators or Administrators or local user group members with execution rights for this command. Operators can execute this command from the operator context (>) only.

Examples

Showing information for all policies:

switch(config)# show port-access policy

Access Policy Details:
======================

Policy Name   : CLEARPASS-REDIRECT
Policy Type   : Local
Policy Status : Applied

SEQUENCE    CLASS                        TYPE ACTION
----------- ---------------------------- ---- ----------------------------------
2           dhcp                         ipv4 permit
3           clearpass-web                ipv4 cir kbps 1024 cbs 2048
                                              exceed drop
4           web-traffic                  ipv4 redirect captive-portal

Policy Name   : CLEARPASS-REDIRECT-COPY
Policy Type   : Local
Policy Status : Rejected

SEQUENCE    CLASS                        TYPE ACTION
----------- ---------------------------- ---- ----------------------------------
2           dhcp                         ipv4 permit
3           clearpass-web                ipv4 cir kbps 1024 cbs 2048
                                              exceed drop
4           web-traffic                  ipv4 redirect captive-portal

Policy Name   : test_policy3_test_role-3001-2
Policy Type   : Downloaded
Policy Status : In-Progress

SEQUENCE    CLASS                        TYPE ACTION
----------- ---------------------------- ---- ----------------------------------
10          test_class3_test_role-3001-2 ipv4 ip-precedence 2 local-priority 4
20          test_class4_test_role-3001-2 ipv4 dscp 7

Showing information for a particular policy:

switch(config)# show port-access policy CLEARPASS-REDIRECT

Access Policy Details:
======================

Policy Name   : CLEARPASS-REDIRECT
Policy Type   : Local
Policy Status : Applied

SEQUENCE    CLASS                        TYPE ACTION
----------- ---------------------------- ---- ----------------------------------
2           dhcp                         ipv4 permit
3           clearpass-web                ipv4 cir kbps 1024 cbs 2048
                                              exceed drop
4           web-traffic                  ipv4 redirect captive-portal