FWSM ACLs Supported (Capacity)

Unanswered Question
Apr 17th, 2008
User Badges:

Currently hosting FWSM 2.3(3) which according to docs has capability of 128,000 ACLs, but the practical number supported is about 85,000.

Are the new versions of of FWSM increasing this capacity?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Syed Iftekhar Ahmed Thu, 04/17/2008 - 23:47
User Badges:
  • Blue, 1500 points or more


The FWSM supports a fixed number of rules for the entire system.For 3.2 code the rule limits are as follows


http://www.cisco.com/en/US/docs/security/fwsm/fwsm32/configuration/guide/specs_f.html#wp1054944


In later releases you can manipulate the rules using


FWSM(config)# resource rule nat 13 acl max filter current fixup current est current aaa 442 console current


Meaning you can reduce for e.g policy nat Aces and allocate memory to ACLs.


Syed

Actions

This Discussion