[c-nsp] NPE G1, CEF and ACLs and high CPU
Stephen Kratzer
kratzers at pa.net
Thu Sep 4 15:46:23 EDT 2008
On Thursday 04 September 2008 15:12:12 Mateusz Błaszczyk wrote:
> 2008/9/4 Stephen Kratzer :
> > The 'log' keyword will cause matching packets to not be CEF switched.
>
> nope, log is not present.
>
> > Also, if
> > you're denying a lot of traffic from a certain source, you might want to
> > just bit-bucket it rather than sending ICMP responses.
>
> you mean - "no ip unreachables"?
You could match the access list in a route map and set the outbound interface
to Null0.
More information about the cisco-nsp
mailing list