i was checking today the document "Troubleshooting High CPU Utilization Due to Interrupts". This talks about cpu load due to long access lists and also talks about using netflow switching with CEF to improve the process of access list and switching, this is the text:
"As a general rule of thumb, any access list with over ten lines is considered long.
Repeatedly going over long access lists is very CPU−intensive. With NetFlow switching, if
the flow is already in the cache, you no longer need to check the access list. So in this case,
NetFlow switching would be useful. You can enable NetFlow switching by issuing the ip
route−cache flow command.
Note that if Cisco Express Forwarding and NetFlow are both configured on an interface,
Cisco Express Forwarding will be used to make a switching decision, and NetFlow cache will
be used to speed up ACL checking and accounting purposes."
This is a document for 7500 series. I would like to know if this can be take as a best practice for other cisco platforms and can be used to improve perfomance when long access lists are applied to an interface, or if there is some limitation about using this.
thanks all for your replies.