Access Control List (Acl) Engineering Rules; Ecmp Groups - Cisco ASR 5500 System Administration Manual

Hide thumbs Also See for ASR 5500:
Table of Contents

Advertisement

Engineering Rules
• The total number of entries per table and per chassis is limited to 256.
• Although you can use service names that are identical to those configured in different contexts on the

Access Control List (ACL) Engineering Rules

The following rules apply to Access Control Lists:
• The maximum number of rules per ACL is 128.
• The maximum number of ACL rules applied per port is 128.
• The maximum number of ACL rules applied per context is 1,024.
• The maximum number of ACL rules per IPSec policy is 1.
• The maximum number of IPSec ACL rules per context is 1,024.
• The maximum number of IPSec ACL rules per crypto map is 8.
• The maximum number of ACLs you can configure per context is limited by the number of rules allowed
• The maximum number of ACLs applied to an IP access group is 1, whether it is configured for a port

ECMP Groups

The maximum number of ECMP groups are as follows:
• For releases prior to 17.0, StarOS supports a maximum of 512 groups.
• For release 17.0 and higher, StarOS supports a maximum of 2048 groups.
Large numbers of services greatly increase the complexity of management and may
Caution
affect overall system performance. Therefore, you should not configure a large number
of services unless your application absolutely requires it. Please contact your Cisco
service representative for more information.
same system, this is not a good practice. Services with the same name can lead to confusion and difficulty
in troubleshooting problems, and make it difficult to understand the output of show commands.
within each ACL. If each ACL contained the maximum number of rules (128), the maximum number
of ACLs per context is 8 (128 X 8 ACLs = 1,024 ACL rules per context).
or context. Since the maximum number of IP access groups you can apply to an interface or context is
16, the following calculations apply:
• For each interface/port: 8 rules per ACL multiplied by 16 IP access groups = 128 (the ACL rules
limit per port)
• For each context: 64 rules per ACL multiplied by 16 IP access groups = 1,024 (the ACL rules limit
per context)
Access Control List (ACL) Engineering Rules
ASR 5500 System Administration Guide, StarOS Release 21.5
311

Advertisement

Table of Contents
loading

Table of Contents