Name: Cisco Catalyst 3750-E
Brand: Cisco
Rating: 4 (1 reviews)

To Next Page

To Previous Page

35-23

Catalyst 3750-E and 3560-E Switch Software Configuration Guide

OL-9775-08

Chapter 35 Configuring Network Security with ACLs

Configuring IPv4 ACLs

Use one of these workarounds:

• Modify the ACL configuration to use fewer resources.

• Rename the ACL with a name or number that alphanumerically precedes the ACL names or

numbers.

To determine the specialized hardware resources, enter the show

platform layer4 acl map privileged

EXEC command. If the switch does not have available resources, the output shows that index 0 to

index 15 are not available.

For more information about configuring ACLs with insufficient resources, see CSCsq63926 in the Bug

oolkit.

For example, if you apply this ACL to an interface:

permit tcp

source source-wildcard

destination destination-wildcard

range 5 60

permit tcp

source source-wildcard

destination destination-wildcard

range 15 160

permit tcp

source source-wildcard

destination destination-wildcard

range 115 1660

permit tcp

source source-wildcard

destination destination-wildcard

And if this message appears:

ACLMGR-2-NOVMR: Cannot generate hardware representation of access list [chars]

The flag-related operators are not available. To avoid this issue,

• Move the fourth ACE before the first ACE by using ip access-list resequence global configuration

command:

permit tcp

source source-wildcard

destination destination-wildcard

permit tcp

source source-wildcard

destination destination-wildcard

range 5 60

permit tcp

source source-wildcard

destination destination-wildcard

range 15 160

permit tcp

source source-wildcard

destination destination-wildcard

range 115 1660

• Rename the ACL with a name or number that alphanumerically precedes the other ACLs (for

example, rename ACL 79 to ACL 1).

You can now apply the first ACE in the ACL to the interface. The switch allocates the ACE to available

apping bits in the Opselect index and then allocates flag-related operators to use the same bits in the

hardware memory.

IPv4 ACL Configuration Examples

This section provides examples of configuring and applying IPv4 ACLs. For detailed information about

compiling ACLs, see the Cisco IOS Security Configuration Guide, Release 12.2 and to the Configuring

IP Services” section in the “IP Addressing and Services” chapter of the Cisco IOS IP Configuration

Guide, Release 12.2.

• ACLs in a Small Networked Office, page 35-24

• Numbered ACLs, page 35-25

• Extended ACLs, page 35-25

• Named ACLs, page 35-26

• Time Range Applied to an IP ACL, page 35-26

• Commented IP ACL Entries, page 35-26

• ACL Logging, page 35-27

Other manuals for Cisco Catalyst 3750-E

Getting Started Guide26 pages

Questions and Answers:

Need help?

Do you have a question about the Cisco Catalyst 3750-E and is the answer not in the manual?

Cisco Catalyst 3750-E Specifications

General

Series	Catalyst 3750-E
Switching Capacity	32 Gbps
Stacking Bandwidth	32 Gbps
StackWise Plus	Yes
Layer Support	Layer 3
MAC Address Table Size	12, 000 entries
RAM	256 MB
Flash Memory	64 MB
Memory	256 MB DRAM, 64 MB Flash
Operating Temperature	32 to 113°F (0 to 45°C)
Ports	48 10/100/1000 Ethernet ports
Form Factor	Rack-mountable
Jumbo Frame Support	Yes
Input Voltage	100 to 240 VAC
Storage Temperature	-25 to 70 °C
Relative Humidity	10 to 90% non-condensing