Just wondered if there is a maximum number of lines on an access-list. I currently have an access-list of around 850 lines on a 4506 switch which is becoming unmanageable. I'm concerned we might reach a point where we can add no more lines to the access-list. I'm therefore proposing we give access to whole subnets rather than individual ip's. I just need some ammunition for my proposal so any other reasons why we should reduce its size would be appreciated.