Access Rule Download

Unanswered Question
Nov 14th, 2007
User Badges:


i`m testing the Safe Harbor Version 3.1(4).0 for the FWSM and I`m a bit confused. When the compilation is complete after adding an ACE there should be the message: "Access Rules Download Complete: Memory Utilization: < ?%". But this message doesn`t appear in manual commit or auto commit mode. Any ideas?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
jsivulka Tue, 11/20/2007 - 07:11
User Badges:
  • Bronze, 100 points or more

The "FATAL ERROR: Access Rule Download Failed" will happen if the you have lot of ACLs configured and FWSM failed to download the ACL tree to NP due to the bus was too busy or the NP was overloaded. So fwsm will try about 10 times (it's quite some time) and then gave up in adding the new ACL entries and download the previous ACL entries/tree back to NP. Then you will see the Access Rules Download Complete" message". The FWSM 2.3(3.2) and later releases passed Cisco Safe Harbor testing in single routed firewall mode and in single transparent firewall mode.


This Discussion