×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

ISE Inline Posture Node ACL limitations

Unanswered Question
Dec 25th, 2013
User Badges:

Dear colleagues,

could you please advise whether any known issues exist with the number of ACL entries limitations when applying on ISE Inline Posture Node for VPN-connections?

We faced with the problem, when ACLs longer than 100 entries cannot be applied on IPN SNS 3415. ISE doesn't indicates any errors, VPN-client status turns "compliant", however "show pep tables accesslist normal" doesn't show any related ACL for the session.

ACLs with up to 99 records apply without any issues.


Thank you for any support,

Denis.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Tarik Admani Mon, 12/30/2013 - 22:27
User Badges:
  • Green, 3000 points or more

Denis,


I did some research and could not find anything related to a dacl limit for the inline node, I remember there being a size limit for the DACL but I can not find that document handy but then i ran into this thread here:


https://supportforums.cisco.com/thread/2219621


Thanks

Tarik Admani
*Please rate helpful posts*

Actions

This Discussion

Related Content