[nsp] Cat6500 reflexive ACL issues.

[terry]

I'm having an issue on a hybrid 6509 with reflexive access lists. There
are about 4 VLAN interfaces currently that have reflexive ACL's
configured.

I'm getting the following errors every so often:

ACL-3-TCAMFULL:Acl engine TCAM table is full
2002 Nov 26 09:31:26 EST -05:00 %ACL-3-RACLMAPCOMMITFAIL:Failed to map
Router ACL to VLAN xxx

I first started seeing this when I accidentally had HSRP traffic on one of
the VLAN interfaces reflecting into a reflexive list.  Upon fixing that,
the errors stopped.  This was a few weeks ago.  Then today, the errors
appeared a few times again, which is interesting because nothing has
changed recently.

I'm concerned by the output of "show fm reflexive", which shows hundreds
of entries despite "show ip access-list" showing only a handful of
reflexive entries.  Does anyone have any details on how to interpret the
output of "show fm reflexive"?  Couldn't find anything useful on Cisco's
site.

Being that this switch has two MSFC1's, I'm guessing that the limit of 512
reflexive ACL entries is what's causing the problems here.  What I don't
understand is why the above two commands seem to contradict each other
regarding the reflexive entries.

If anyone has any insight, I'd appreciate it.

Thanks,
Terry