Procedure
PurposeCommand or Action
Enters global configuration mode.switch# configure terminal
Step 1
Changes the ACL TCAM region size.hardware access-list tcam region {
ifacl | {ipv6-qos | qos} | {ipv6-racl |
racl} tcam_size
Step 2
• ifacl—Configures the size of the interface ACL
(ifacl) TCAM region. The maximum number of
entries is 1500.
• qos—Configures the size of the quality of service
(QoS) TCAM region.
• racl—Configures the size of the router ACL
(RACL) TCAM region.
• tcam_size—TCAM size. The range is from 0 to
2,14,74, 83, 647 entries.
Saves the change persistently through reboots and restarts
by copying the running configuration to the startup
configuration.
copy running-config startup-config
Example:
switch(config)# copy
running-config startup-config
Step 3
Displays the TCAM sizes that will be applicable on the
next reload of the switch.
switch(config)# show hardware
access-list tcam region
Example:
switch(config)# show hardware
access-list tcam region
Step 4
Copies the running configuration to the startup
configuration.
switch(config)# reload
Example:
switch(config)# reload
Step 5
The new size values are effective only upon the
next reload after saving the copy running-config
to startup-config.
Note
The following example shows how to change the size of the RACL TCAM region:
switch(config)# hardware access-list tcam region racl 256
[SUCCESS] New tcam size will be applicable only at boot time.
You need to 'copy run start' and 'reload'
switch(config)# copy running-config startup-config
switch(config)# reload
WARNING: This command will reboot the system
Do you want to continue? (y/n) [n] y
This example shows how to display the TCAM region sizes to verify your changes:
switch(config)# show hardware accesslist tcam region | exclude "0"
IPV4 PACL [ifacl] size = 1024
Cisco Nexus 3600 NX-OS Security Configuration Guide, Release 7.x
96
Configuring IP ACLs
Configuring ACL TCAM Region Sizes
To Next Page
Loading...
