Swx 3750 TCAM utilization

Unanswered Question
Sep 8th, 2010
User Badges:

Hi,


I have a 3750 IOS 12.2. I have configured a lot of access lists on it as i am using it instead of a firewall. The issue is that the for show platform tcam utilization the size for security/access list table has reached 97 %. 1000/1024.


How can i resolve this issue? What will be best workaround in this situation. This L3 switch has lot of servers behind it and still i have requirements for more ACL.


Also what will happen when the TCAM table reached to it max i.e; 1024?


Thanks

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
vragotha Thu, 09/09/2010 - 01:07
User Badges:
  • Silver, 250 points or more

You can change the SDM template to get more ACEs supported. The Access SDM template maximizes ACL usage and gives a limit upto 2k ACEs


Configure 'sdm prefer access' and reload the box


http://www.cisco.com/en/US/docs/switches/lan/catalyst3750/software/release/12.2_52_se/configuration/guide/swsdm.html


If you need to have more ACEs then you may have to consolidate the ACLs or upgrade hardware, or simply split up the ACLs between this device and others.

Actions

This Discussion