Determining Layer 4 Operation Usage; Determining Logical Operation Unit Usage - Cisco 7604 Configuration Manual

Ios software configuration guide

Hide thumbs Also See for 7604:

Configuration manual (742 pages)

Installation manual (324 pages)

User manual (98 pages)

page of 1011

/ 1011
Contents
Table of Contents
Bookmarks

Table of Contents

Guidelines and Restrictions for Using Layer 4 Operators in ACLs

Determining Layer 4 Operation Usage

You can specify these types of operations:

We recommend that you do not specify more than nine different operations on the same ACL. If you

exceed this number, each new operation might cause the affected ACE to be translated into more than

Use the following two guidelines to determine Layer 4 operation usage:

Logical operation units (LOUs) are registers that store operator-operand couples. All ACLs use LOUs.

There can be up to 32 LOUs; each LOU can store two different operator-operand couples with the

exception of the range operator. LOU usage per Layer 4 operation is as follows:

For example, this ACL would use a single LOU to store two different operator-operand couples:

... Src gt 10 ...

... Dst gt 10

Cisco 7600 Series Router Cisco IOS Software Configuration Guide, Release 12.2SX

gt (greater than)

lt (less than)

neq (not equal)

range (inclusive range)

Layer 4 operations are considered different if the operator or the operand differ. For example, in this

ACL there are three different Layer 4 operations ("gt 10" and "gt 11" are considered two different

Layer 4 operations):

... gt 10 permit

... lt 9 deny

... gt 11 deny

There is no limit to the use of "eq" operators as the "eq" operator does not use a logical

operator unit (LOU) or a Layer 4 operation bit. See the

Unit Usage" section on page 34-8

Layer 4 operations are considered different if the same operator/operand couple applies once to a

source port and once to a destination port. For example, in this ACL there are two different Layer 4

operations because one ACE applies to the source port and one applies to the destination port.

... Src gt 10 ...

... Dst gt 10

gt uses 1/2 LOU

lt uses 1/2 LOU

neq uses 1/2 LOU

range uses 1 LOU

eq does not require a LOU

Understanding Cisco IOS ACL Support

"Determining Logical Operation

for a description of LOUs.

Show Quick Links

Quick Links:
Supported Hardware and Software

Chapters

Table of Contents

7613 7606 7609-s 7600 series

Determining Layer 4 Operation Usage; Determining Logical Operation Unit Usage - Cisco 7604 Configuration Manual

Determining Layer 4 Operation Usage

Determining Logical Operation Unit Usage

Hide quick links:

Chapters

Related Manuals for Cisco 7604

Related Content for Cisco 7604

This manual is also suitable for:

Table of Contents