Cisco Catalyst 6500 Series Configuration Manual page 92

Configuring Resource Management
You must reload both the active and redundant modules at the same time.
Note
The resource acl-partition command is available in multiple mode only, not in single mode.
•
The active module and redundant module must be rebooted together. Traffic loss occurs because both
Note
the active and the redundant modules are down at the same time.
The maximum number of rules of each type is a function of number of partitions.
•
For example, when the number of partitions is 12, the following apply:
Max Filter rules–606
Max Established rules–121
Max AAA rules–1213
Max ACL rules–9704
Max Console Access rules–363
Max PolicyNAT rules–606
To map a context to a specific partition, enter the following command in multiple mode:
allocate-acl-partition partition-number
Use the no form of the command to remove the mapping.
This example shows how to allocate contexts and ACL partitions.
This example shows how ACL partition #0 is shared by contexts "bandn" and "borders" while the
remaining contexts share ACL paritition number 1. The following sample shows how to partition ACL
memory into two partitions:
FWSM(config)# resource acl-partition 2
FWSM(config)# context bandn
FWSM(config-context)# allocate-acl-partition 0
FWSM(config)# context borders
FWSM(config-context)# allocate-acl-partition 0
FWSM(config)# context mompopa
FWSM(config)# context mompopb
FWSM(config)# context mompopc
FWSM(config)# context mompopd
Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Configuration Guide
5-18
Chapter 5 Managing Security Contexts
OL-6392-01