Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
298
Views
0
Helpful
1
Replies

FWSM ACLs Supported (Capacity)

edcano
Level 1
Level 1

‎04-17-2008 12:53 PM - edited ‎03-11-2019 05:33 AM

Currently hosting FWSM 2.3(3) which according to docs has capability of 128,000 ACLs, but the practical number supported is about 85,000.

Are the new versions of of FWSM increasing this capacity?

Labels:
0 Helpful
1 Reply 1

Syed Iftekhar Ahmed
Level 8
Level 8

‎04-17-2008 11:47 PM

The FWSM supports a fixed number of rules for the entire system.For 3.2 code the rule limits are as follows

http://www.cisco.com/en/US/docs/security/fwsm/fwsm32/configuration/guide/specs_f.html#wp1054944

In later releases you can manipulate the rules using

FWSM(config)# resource rule nat 13 acl max filter current fixup current est current aaa 442 console current

Meaning you can reduce for e.g policy nat Aces and allocate memory to ACLs.

Syed

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card