Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

access-list in router


Currently in our network for NAT access we deployed on the 3640 router which some times hang when some spurious traffic generated from LAN or WAN or CPU load

so we are planning to upgrade the NAT Router

for new hardware we need following feature supported

1.NAT with HSRP
2.Hardware capable of handling 300-400 ACL entry
3.CPU performance to handle ACL and NAT

can any one advice me for some cisco router with the feature and also how to avoid the spurious traffic generated from LAN

thanks in advance

Hall of Fame Super Gold

Re: access-list in router

870/880, 1800, 2800, 3800 ISR, 1940, 2900, 3900 ISR2

Cisco Employee

Re: access-list in router

Hi Vinoth,

One of the key factor considered while positioning a platform is Volume of traffic (throughput that a platform can handle). Features like NAT, ACL are CPU intensive and requires attention while positioning the platform.

You may have to identify the throughput requirement and features that you will be enabling. Based on this, decide the router by having a look on the router performance chart.

It is advisible to have CPU less than or around 60% with services enabled. This will give you room for unexpected traffic burst without bring down the network.