I've configured as below
--
thx
dsu
no ip access-list ext ACL_TELNET_FROM_R5_VLAN5
ip access-list ext ACL_TELNET_FROM_R5_VLAN5
permit tcp any any eq telnet
permit tcp any eq telnet any
exit
class-map CM_ARP
match proto arp
class-map CM_IPPREC_6
match prec 6
class-map CM_TELNET
match ip address name ACL_TELNET_FROM_R5_VLAN5
exit
policy-map CPP_INPUT
class CM_ARP
police rate 100 pps
class CM_IPPREC_6
police rate 50 pps
class CM_TELNET
drop
control-plane
service-policy input CPP_INPUT
But I'm not seeing any hit on the policy-map for TELNET session nor ARP. I can even successfully telnet this from other routers.
Rack17R1# sh ip access-lists
Extended IP access list ACL_TELNET_FROM_R5_VLAN5
10 permit tcp any any eq telnet
20 permit tcp any eq telnet any
Is this IOS bug?
Rack17R1#sh ver | i image
System image file is "flash:c2600-adventerprisek9-mz.124-10.bin"
thx
dsu