show port-access policy
Syntax
show port-access policy <POLICY-NAME>
Description
Shows various aspects of policies and their current usage. Details of a policy including the content of a specific policy is shown.
Following are the possible values for policy types:
Local—User configured policy
Downloaded—Downloaded user policy
RADIUS—Policy obtained from the RADIUS server
Applied—Policy is successfully applied in the hardware.
Rejected—Policy is not supported in the hardware.
In-Progress—Policy is being processed in the hardware.
Failed—Displayed when the switch fails to apply the policy configuration because the TCAM resources are unavailable or full.
If a policy is configured without any action, the
show
command will represent such an entry with the action as
permit
.
Command context
Operator (>
) or Manager (#
)
Parameters
<POLICY-NAME>
Specifies the policy name.
Authority
Operators or Administrators or local user group members with execution rights for this command. Operators can execute this command from the operator context (>) only.
Examples
Showing information for all policies:
switch(config)# show port-access policy Access Policy Details: ====================== Policy Name : CLEARPASS-REDIRECT Policy Type : Local Policy Status : Applied SEQUENCE CLASS TYPE ACTION ----------- ---------------------------- ---- ---------------------------------- 2 dhcp ipv4 permit 3 clearpass-web ipv4 cir kbps 1024 cbs 2048 exceed drop 4 web-traffic ipv4 redirect captive-portal Policy Name : CLEARPASS-REDIRECT-COPY Policy Type : Local Policy Status : Rejected SEQUENCE CLASS TYPE ACTION ----------- ---------------------------- ---- ---------------------------------- 2 dhcp ipv4 permit 3 clearpass-web ipv4 cir kbps 1024 cbs 2048 exceed drop 4 web-traffic ipv4 redirect captive-portal Policy Name : test_policy3_test_role-3001-2 Policy Type : Downloaded Policy Status : In-Progress SEQUENCE CLASS TYPE ACTION ----------- ---------------------------- ---- ---------------------------------- 10 test_class3_test_role-3001-2 ipv4 ip-precedence 2 local-priority 4 20 test_class4_test_role-3001-2 ipv4 dscp 7
Showing information for a particular policy:
switch(config)# show port-access policy CLEARPASS-REDIRECT Access Policy Details: ====================== Policy Name : CLEARPASS-REDIRECT Policy Type : Local Policy Status : Applied SEQUENCE CLASS TYPE ACTION ----------- ---------------------------- ---- ---------------------------------- 2 dhcp ipv4 permit 3 clearpass-web ipv4 cir kbps 1024 cbs 2048 exceed drop 4 web-traffic ipv4 redirect captive-portal