Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Impact of ACL's applied to 130 individual subinterfaces

Wondering if anyone has info on the impact of applying an ACL to 130 subinterfaces on a 7206 router? Have anyone done this before? Any significant performance problem? Each interface is a FR Pt-Pt. I'm applying the ACL per Cisco Security Advisory.

2 REPLIES
Bronze

Re: Impact of ACL's applied to 130 individual subinterfaces

If the filtered traffic is going to be related only with one subinterface, you need to apply the ACL to that subinterface. If however the filtered traffic is going to be related with all the subinterfaces you need to apply the ACL to the interface. Generally, applying an ACL to an interface is prefered

New Member

Re: Impact of ACL's applied to 130 individual subinterfaces

From my understanding, if the global interface (i.e., Serial0) does not have an IP address, an ACL cannot be applied. Also, if S0 did have an IP address, the ACL will only be applied to that interface (S0). It will not be applied to S0.1, S0.2, ...etc. Isn't this true? My main concern is the impact to the router's processing capability if the ACL is applied to 130 sub-interfaces.

240
Views
0
Helpful
2
Replies
CreatePlease to create content