Reflexive ACL support in hardware..

Discussion in 'Cisco' started by ratsut@gmail.com, Jun 20, 2007.

  1. Guest

    Hi,

    I am implementing a reflexive acl inbound permit ip any any and an
    evaluate on the outbound (back into the network) on a 6509 with sup3.

    Problem is as soon as I do this I hit 99% processor.... CEF is
    running I have ip route-cache same interface..

    Question is.. is this not supported in hardware? Is there any way to
    limit the processor intensity?!

    TIA!
     
    , Jun 20, 2007
    #1
    1. Advertising

  2. dman1973 Guest

    On Jun 20, 6:47 am, wrote:
    > Hi,
    >
    > I am implementing a reflexive acl inbound permit ip any any and an
    > evaluate on the outbound (back into the network) on a 6509 with sup3.
    >
    > Problem is as soon as I do this I hit 99% processor.... CEF is
    > running I have ip route-cache same interface..
    >
    > Question is.. is this not supported in hardware? Is there any way to
    > limit the processor intensity?!
    >
    > TIA!


    Have you checked your ACL TCAM memory?

    Very useful commands:

    show tcam counts
    show fm summary

    I wonder if you are software switching. We ran into this when doing
    PBR.

    Check out:

    http://www.cisco.com/en/US/products/hw/switches/ps708/products_white_paper09186a00800c9470.shtml


    -Dan
    http://ccie-lounge.blogspot.com
     
    dman1973, Jun 21, 2007
    #2
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Shad T
    Replies:
    0
    Views:
    657
    Shad T
    Jun 29, 2004
  2. DM

    Reflexive ACL on 3750

    DM, May 23, 2006, in forum: Cisco
    Replies:
    3
    Views:
    4,280
  3. RichA
    Replies:
    26
    Views:
    835
    Doug McDonald
    Aug 20, 2007
  4. EdDarby

    FWSM reflexive access lists

    EdDarby, Mar 6, 2008, in forum: Cisco
    Replies:
    0
    Views:
    427
    EdDarby
    Mar 6, 2008
  5. jagg
    Replies:
    2
    Views:
    2,682
    fugettaboutit
    Jan 9, 2009
Loading...

Share This Page