Cisco 7604 Configuration Manual page 84
Catalyst 6500 series switch and cisco 7600 series router firewall services module configuration guide using the cli
Hide thumbs
Also See for 7604:
- Configuration manual (1011 pages) ,
- Installation manual (324 pages) ,
- User manual (98 pages)
Table of Contents
Advertisement
Managing Memory for Rules
Est Data
AAA
Console
-----------+---------+----------+---------
Total
Partition Limit - Configured Limit = Available to allocate
Note
To view the number of rules currently being used so you can plan your reallocation, enter the following
Step 2
command:
hostname(config)# show np 3 acl count partition_number
Where partition_number is between 0 and 11 by default. If you changed the number of partitions, the
partition numbering starts with 0. So if you have 10 partitions, the partition numbers are 0 through 9.
For example, the following is sample output from the show np 3 acl count command, and shows the
number of inspections (Fixup Rule) close to the maximum of 9216. You might choose to reallocate some
access list rules (ACL Rule) to inspections.
hostname(config)# show np 3 acl count 0
-------------- CLS Rule Current Counts --------------
CLS Filter Rule Count
CLS Fixup Rule Count
CLS Est Ctl Rule Count
CLS AAA Rule Count
CLS Est Data Rule Count
CLS Console Rule Count
CLS Policy NAT Rule Count
CLS ACL Rule Count
CLS ACL Uncommitted Add
CLS ACL Uncommitted Del
...
Note
To identify the partition you want to customize, enter the following command in the system execution
Step 3
space:
hostname(config)# resource partition number
Where number is between 0 and 11 by default. If you changed the number of partitions, the partition
numbering starts with 0. So if you have 10 partitions, the partition numbers are 0 through 9.
Step 4
To reallocate rules between features, enter the following command. If you increase the value for one
feature, then you must decrease the value by the same amount for one or more features so the total
number of rules does not exceed the system limit. See
for the total number of rules allowed.
Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Configuration Guide using ASDM
4-20
96
96
1345
1345
384
384
19219
19219
19219
-
19219
If you increase the size of a partition but have not yet reloaded, the maximum number of rules
remains at the old smaller size. You have to reload to see the increased limits. If you decrease
the size of a partition but have not yet reloaded, the new smaller number of rules is reflected right
away.
:
:
:
:
:
:
:
:
:
:
The established command creates two types of rules, control and data. Both of these types are
shown in the display, but you allocate both rules by setting the number of established
commands; you do not set each rule separately.
96
2690
768
=
0
0
9001
4
15
4
16
0
30500
0
0
Step 1
to use the show resource rule command
Chapter 4
Configuring Security Contexts
OL-20748-01
- Quick Links:
- C H a P T E...
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
