Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
735
Views
8
Helpful
2
Replies

Number of rules within the PIX

neil.greenfield
Level 1
Level 1

‎09-19-2002 10:44 AM - edited ‎02-20-2020 10:15 PM

Does anyone know if Cisco has a recommendation for the number of rules/access list lines per firewall? I know within Check Point, there is a recommendation for no more than 50 rules per firewall within the Security Policy Rule Base. Looking for an answer for an audit question.

0 Helpful
2 Replies 2

pgolding
Level 1
Level 1

‎09-19-2002 06:33 PM

with pix 6.2 and complied access lists, multi-thousand line lists were tested and worked fine. the real limit is in available memory to compile the list, you need minimum 2M free to compile.

jclemmons
Level 1
Level 1

‎09-25-2002 07:21 PM

I'm running 900+ on PIX525 with no problems at all (other than managing the cotton pickin things ;-0 ).

Cpu is nothing 2-5% tops with approximtely 2000+ connections.

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card