no problem. responses from various sources, sometimes overlapping because one hit enter while the other was still thinking and typing, are what make the forum so great. and I am glad that we were both taking the same basic approach in trying to answer this question.
On the same topic i want to get you guys opinion regarding the command the command "ip access-list logging interval" my understanding isthis command should help in enviroments like mine where we have thousands of ACL's logging enable to limits the effects of ACL logging–induced process switching by providing a rate limit for process-switched packets. The interval configured in the command should allow only one packet per interval to be process switched no matter how many log-enabled ACEs exist. Would you recommend this?
Also This functionality requires Cisco Express Forwarding and my concern is we have some platforms with fast-switching enable. any thought guys?
To get a really authoritative answer to this question would need someone from Cisco who has access to the code and can say what the software is really doing. The rest of us can only answer based on what we think the code is doing - but we can not be sure. So here is what I think:
I believe that the effect of the logging interval is to save some overhead in CPU processing by not producing a log record for each individual time that the access list statement is matched. With the first match you get a log record but within the logging interval all other matches do not produce individual log records and you get 1 log record for the interval. So if there were an additional 10 hits you produce 1 log record instead of 10 log records (looks like 90% saving in CPU).
But I do not believe that this has any effect on the process switching of the packets. When there is a match in the access list with the log parameter the packet must still be processed by the CPU to determine whether it is time to create a log record. So the savings is related to producing the actual log records not in processing the packet.
This is actually a pretty cool feature, i didn't even know it existed until I was looking for a solution to advertise a subnet (prefix in BGP talk), only if a certain condition existed. This is exactly what conditional advertisements does
j ai une question j ai achete un routeur cisco 887VA-k9 , je le configuré avec la configuration ci- dessous
si je le lier avec mon pc portable sur l un de ses ports directement ça marche toute est bien ( la connexion internet + m...
Attached policy provides CLI access to the Cisco 4G router over text messaging. Two files are in the attached .tar file:
2. PDF with instructions on how to load and use the .tcl file.