Cisco Cisco Packet Data Interworking Function (PDIF) Guía Para Resolver Problemas
show active-charging
show active-charging fw-and-nat policy name ▀
Cisco ASR 5000 Series Statistics and Counters Reference ▄
OL-22990-02
show active-charging fw-and-nat policy name
Table 72.
show active-charging fw-and-nat policy name
Command Output Descriptions
Field
Description
Service Name
Name of the Active Charging Service.
Firewall Policy Name
Name of the Firewall-and-NAT Policy.
Firewall Status
Indicates whether Stateful Firewall is enabled or disabled in the Firewall-and-NAT
policy.
policy.
NAT Status
Indicates whether NAT is enabled or disabled in the Firewall-and-NAT policy.
Firewall and NAT Action Priorities
Ruledef Name
Name of the access ruledef.
Type
Indicates the ruledef type.
FD: Firewall Dynamic Ruledef — Predefined and disabled rules that can be
enabled/disabled by the policy server.
enabled/disabled by the policy server.
FS: Firewall Static Ruledef — Predefined and enabled rules that cannot be
modified by the policy server.
modified by the policy server.
FSDP: Firewall Static & Dynamic Ruledef —Predefined and enabled rules
that can be enabled/disabled by the policy server.
that can be enabled/disabled by the policy server.
Priority
Priority of the access ruledef in the Firewall-and-NAT policy.
Charging-action
The charging action configured with the access ruledef.
Port-trigger aux-ports:direction
The auxiliary ports open for traffic, and the direction from which the auxiliary
connection is initiated.
connection is initiated.
NAT-Realm
Name of the NAT realm.
Firewall Configuration
Dos-Protection
Source-Route
Indicates status of protection against IP Source Route IP Option attacks.
Win-Nuke
Indicates status of protection against Win Nuke attacks.
Mime-Flood
Indicates status of protection against MIME Flood attacks.
FTP-Bounce
Indicates status of protection against FTP Bounce attacks.
IP-Unaligned-Timestamp
Indicates status of protection against IP Unaligned Timestamp attacks.
TCP-Window-Containment
Indicates status of protection against TCP Window Containment.
Teardrop
Indicates status of protection against Teardrop attacks.
UDP Flooding
Indicates status of protection against UDP Flooding attacks.