[c-nsp] access lists on 3550
Pierfrancesco Caci
p.caci at seabone.net
Wed Oct 20 07:59:22 EDT 2004
:-> "Kinczli" == Kinczli Zoltán <Zoltan.Kinczli at Synergon.hu> writes:
> hello,
> unless
> you use the 'log' keyword AND
> traffic is
> w/o IP options AND
TTL> 2 AND
> packs do not require fragmentation AND
> your switch has enough TCAM resource
> (check for FM-3-UNLOADING msgs in syslog)
> than yes, ACL will be done in HW.
Uh, a lot of "if"s but that's what I wanted to know.
I'll be running a plain bogon filtering access list, so I should be
well within the capability of the hardware.
Thank you and all the others who replied too
Pf
> rgds
> --zoltan
> -----Original Message-----
> From: Stork, D.H. (Duncan) [mailto:d.h.stork at minlnv.nl]
> Sent: Wednesday, October 20, 2004 1:20 PM
> To: cisco-nsp at puck.nether.net
> Cc: 'Pierfrancesco Caci'
> Subject: RE: [c-nsp] access lists on 3550
> Does your question mean if it is possible to add access-lists in a Cisco
> 3550, then the answer is yes.
> If you mean if the access-lists use systemrecources (hardware), then the
> answer is that accesslists always use system recourses to process.
> With kind regards,
> Duncan
> -----Oorspronkelijk bericht-----
> Van: Pierfrancesco Caci [mailto:p.caci at seabone.net]
> Verzonden: woensdag 20 oktober 2004 11:16
> Aan: cisco-nsp at puck.nether.net
> Onderwerp: [c-nsp] access lists on 3550
> Do the 3550s process access lists in hardware ?
> Pf
> --
> ----------------------------------------------------------------------------
> ---
> Pierfrancesco Caci | Network & System Administrator - INOC-DBA: 6762*PFC
> p.caci at seabone.net | Telecom Italia Sparkle -
> http://etabeta.noc.seabone.net/
> Linux paperino 2.4.20 #1 Mon Dec 2 17:02:14 CET 2002 i686 GNU/Linux
> _______________________________________________
> cisco-nsp mailing list cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
> _______________________________________________
> cisco-nsp mailing list cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
> Ez az üzenet és a hozzá kapcsolódó fájlok, tervezetek kizárólag a
> Címzettnek szólnak, a bennük foglalt információk bizalmasak, melyek
> titokban maradásához a Synergon Informatika Rt.-nek jogilag méltányolható
> érdeke fuzodik. Amennyiben valamely hiba folytán Ön nem a címzettje ennek a
> levélnek, kérjük, semmisítse meg, és értesítse az üzenet küldojét. Az
> üzenet az elküldés elott vírusellenorzésen esett át, de a vírusmentességére
> nincs semmilyen garancia, ezért kérjük, ellenorizze azt!
> DISCLAIMER
> This e-mail and any attached files are confidential and may be legally
> privileged. The content of this e-mail is subject of efforts by Synergon to
> maintain its confidentiality. Also this e-mail is intended for the sole use
> of the individual or entity to whom it is addressed. If you are not the
> addressee, and received this transmission in error please delete this
> e-mail and notify its sender immediately. This e-mail message has been
> checked for computer viruses but it could still be infected. Please test it
> for viruses before use.
--
-------------------------------------------------------------------------------
Pierfrancesco Caci | Network & System Administrator - INOC-DBA: 6762*PFC
p.caci at seabone.net | Telecom Italia Sparkle - http://etabeta.noc.seabone.net/
Linux paperino 2.4.20 #1 Mon Dec 2 17:02:14 CET 2002 i686 GNU/Linux
More information about the cisco-nsp
mailing list