I have a port acl applied to an uplink port on a 3550-12T switch. The extended ACL is fairly basic. This ACL inspects the packets coming inbound to the (uplink port ,gi 0/1) on the 3550 switch. There are several servers connected to the device. Traffic comes through the uplink (inbound) and gets checked against the ACL , and then heads to a server (IP) depending on the ACL statement (pass or drop). Over time after the 'ip access-group' statement is applied, I can hardly even established a telnet connection to the switch and most of the systems on it experience a lot of connectivity problems.
I know it's not the ACL blocking accessibility. This problem is generated over a few hours or when traffic gets heavy. I thought port acls were hardware based. Is it somehow getting processed by the CPU ?
We are pleased to announce availability of Beta software for 16.6.3. 16.6.3 will be the second rebuild on the 16.6 release train targeted towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are looking for early feedback from custome...