ACL in my Core

cesarsoares · ‎11-08-2006

Whats problem in application ACL in my network core Cisco Catalyst 4509?

Some document exists with specification for application ACL in CORE or DISTRIBUTION?

Which the best topology for application?

amit-singh · ‎11-08-2006

Hi Friend,

I think what you are looking for is to whether deploy the ACL's on the nwteok core or at the distribution. It all depends on the size of the network and the network design.

In a hierarchical design/3 -ties architecture Core->Distribution -> Access, this job is processed at distribution layer. The Acls processing and the traffic filtering is offloaded to the distribution layer rather then being handled by the Core layer. The overall idea of it is to offload core from processing the unwanted tarrafic and do the filtering of the trafiic which can eventually decrease the performance of a Core switch. We want our core to handle a large amount of traffic and switch it as efficiently it can so the procesing of ACL's, Inter-vlan routing, traffic filtering is done by the distribution layer.

HTH, Please rate if it does.

-amit singh

cesarsoares · ‎11-08-2006

Thanks.

My network has 2 Cat 4509 on Core, and Cat 3560 distribution. My net is meshed.

All the L3 is made in Cat 4509 and ChecPoint is my default gateway.

cesarsoares · ‎11-09-2006

HI,

I have problem of application ACL in my Core?

Whats problem i have the future?