[c-nsp] Sup2T interface ACL limitations

Phil Mayers p.mayers at imperial.ac.uk
Fri Dec 20 08:36:51 EST 2013


On 16/12/13 14:26, "Rolf Hanßen" wrote:

>> These are all pretty basic questions; you might want to re-read the docs
>> a few times to get a better understanding.
>
> Unfortunatelly the docs only describe the theory.

I wrote a long answer, but decided on a short one:

Very large ACLs e.g. with 100k entries aren't that common. It's an odd 
thing to do, IMHO, and you should speak to your Cisco account manager / 
SE to get feedback from the platform team on the scale limits.

You could see if there's an SRND, or something similar to the "Verified 
Scale" configuration for Nexus, which give hard numbers of ACL scalability.

Personally, I wouldn't do what you're doing - a 100k ACE ACL is just 
asking for trouble.


More information about the cisco-nsp mailing list