[f-nsp] acls on foundry devices
Mike Allen
mkallen at gmail.com
Mon Jan 31 19:29:32 EST 2005
Hi Anil,
The MG8 and the FI4802 use different OS images, so there are just
different features in each. The cam entries refers to the number of
entries in the layer 4 cam that are being used per acl. Really what
you are seeing is just a difference in display, the FI4802 is giving
you a little more info.
Mike
On Thu, 27 Jan 2005 11:39:26 GMT, anil at kadium.us <anil at kadium.us> wrote:
>
> Hi,
>
> We are using Foundry BigIron(MG8) and FastIron 4802-PREM devices in our datacenter. I'm new to foundry. I want to know the difference between applying acls on physical interfaces and virtual interfaces w.r.t both BigIron and FI4802. I observed that when we apply acls on FI4802 and do "sh access-list xxx" it's displays as below with some rule cams: (I applied this acl to a virtual routing interface)
>
> FI4802#sh access-list xxx
> Show ACL counter List......
> ACL counter List : 1290 bytes
>
> Extended IP access list xxx (Total rule cams used: 32)
> permit tcp any any eq 25(Rule cams used: 1)
> permit tcp any any established (Rule cams used: 1)
>
> But if you apply an acl on BigIron to a physical interface and do "sh access-list xxx", it did not display any rule cam info. Why is it so? Any ideas?
>
> Thanks,
> Anil
>
> _______________________________________________
> foundry-nsp mailing list
> foundry-nsp at puck.nether.net
> http://puck.nether.net/mailman/listinfo/foundry-nsp
>
More information about the foundry-nsp
mailing list