Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

PACL and performance

Has anyone had any experience with using PACLs on the 4500 series switches? I'd like to apply an acl that denies inbound icmp on a large percentage of switch ports, but I'm unsure about how this will affect overall switch performance.

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: PACL and performance

There will be no impact to forwarding performance. The traffic due to icmp would be reduced - saving cpu of destination devices and reducing bw utilization by the extra traffic. The reason is that ACL processing in done in hardware (follow configuration guidelines).

http://www.cisco.com/univercd/cc/td/doc/product/lan/cat4000/12_1_19/config/secure.htm

3 REPLIES
Cisco Employee

Re: PACL and performance

There will be no impact to forwarding performance. The traffic due to icmp would be reduced - saving cpu of destination devices and reducing bw utilization by the extra traffic. The reason is that ACL processing in done in hardware (follow configuration guidelines).

http://www.cisco.com/univercd/cc/td/doc/product/lan/cat4000/12_1_19/config/secure.htm

Cisco Employee

Re: PACL and performance

There will be no impact to forwarding performance. The traffic due to icmp would be reduced - saving cpu of destination devices and reducing bw utilization by the extra traffic. The reason is that ACL processing in done in hardware (follow configuration guidelines).

http://www.cisco.com/univercd/cc/td/doc/product/lan/cat4000/12_1_19/config/secure.htm

New Member

Re: PACL and performance

Thanks for the info and for forwarding the link.

Rich

235
Views
0
Helpful
3
Replies