[c-nsp] c3560 IPv6 and ACL
sthaug at nethelp.no
sthaug at nethelp.no
Mon Nov 16 06:31:56 EST 2009
> We are slowly moving toward IPv6 implementation in production, so I
> came to ACLs. I would want to have some protection for our servers,
> so I went to configure IPv6 ACL, which is based on our IPv4 ACL.
> Problem is, that it looks like I can't make host based ACL entries
> on c3560. If I try to add line for SMTP server I get following:
I seem to remember 3560 has 144 bit TCAM entries - which cannot easily
support 128 bit IPv6 + 16 bit source port + 16 bit destination port.
Steinar Haug, Nethelp consulting, sthaug at nethelp.no
More information about the cisco-nsp
mailing list