[c-nsp] NPE G1, CEF and ACLs and high CPU
Stephen Kratzer
kratzers at pa.net
Thu Sep 4 14:56:01 EDT 2008
On Thursday 04 September 2008 13:00:01 Mateusz Błaszczyk wrote:
> My question is - does this (tcp, udp ports) could force the router to
> execute the ACL in CPU?
> Or is it something else?
The 'log' keyword will cause matching packets to not be CEF switched. Also, if
you're denying a lot of traffic from a certain source, you might want to just
bit-bucket it rather than sending ICMP responses.
Stephen Kratzer
Network Engineer
CTI Networks, Inc.
More information about the cisco-nsp
mailing list