access-list in router

Unanswered Question
Nov 26th, 2009
User Badges:


Currently in our network for NAT access we deployed on the 3640 router which some times hang when some spurious traffic generated from LAN or WAN or CPU load

so we are planning to upgrade the NAT Router

for new hardware we need following feature supported

1.NAT with HSRP
2.Hardware capable of handling 300-400 ACL entry
3.CPU performance to handle ACL and NAT

can any one advice me for some cisco router with the feature and also how to avoid the spurious traffic generated from LAN

thanks in advance

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Leo Laohoo Thu, 11/26/2009 - 23:29
User Badges:
  • Super Gold, 25000 points or more
  • Hall of Fame,

    The Hall of Fame designation is a lifetime achievement award based on significant overall achievements in the community. 

  • Cisco Designated VIP,

    2017 LAN, Wireless

870/880, 1800, 2800, 3800 ISR, 1940, 2900, 3900 ISR2

Nagendra Kumar ... Sun, 11/29/2009 - 08:46
User Badges:
  • Cisco Employee,

Hi Vinoth,

One of the key factor considered while positioning a platform is Volume of traffic (throughput that a platform can handle). Features like NAT, ACL are CPU intensive and requires attention while positioning the platform.

You may have to identify the throughput requirement and features that you will be enabling. Based on this, decide the router by having a look on the router performance chart.

It is advisible to have CPU less than or around 60% with services enabled. This will give you room for unexpected traffic burst without bring down the network.




This Discussion