IPV6 PACL [ipv6-ifacl] size = 1024
MAC PACL [mac-ifacl] size = 2048
IPV4 Port QoS [qos] size = 640
IPV6 Port QoS [ipv6-qos] size = 256
IPV4 RACL [racl] size = 2048
IPV6 RACL [ipv6-racl] size = 1024
IPV4 L3 QoS [l3qos] size = 640
IPV6 L3 QoS [ipv6-l3qos] size = 256
SPAN [span] size = 96
Ingress COPP [copp] size = 128
Redirect v4 size = 1024
Redirect v6 size = 2048
Reverting to the Default TCAM Region Sizes
Procedure
PurposeCommand or Action
Enters global configuration mode.switch# configure terminal
Step 1
Reverts the configuration to the default ACL
TCAM size.
switch(config)# no hardware profile tcam
region {arpacl | e-racl} | ifacl | ipsg | qos}
|qoslbl | racl} | vacl } tcam_size
Step 2
(Optional)
Saves the changes persistently through reboots
and restarts by copying the running
configuration to the startup configuration.
switch(config)# copy running-config
startup-config
Step 3
Reloads the switch.switch(config)# reload
Step 4
The following example shows how to revert to the default RACL TCAM region sizes:
switch(config)# no hardware profile tcam region racl 256
[SUCCESS] New tcam size will be applicable only at boot time.
You need to 'copy run start' and 'reload'
switch(config)# copy running-configur startup-config
switch(config)# reload
WARNING: This command will reboot the system
Do you want to continue? (y/n) [n] y
Configuring ACLs on Virtual Terminal Lines
To restrict incoming and outgoing connections for IPv4 or IPv6 between a Virtual Terminal (VTY) line and
the addresses in an access list, use the access-class command in line configuration mode. To remove access
restrictions, use the no form of this command.
Follow these guidelines when configuring ACLs on VTY lines:
•
Set identical restrictions on all VTY lines because a user can connect to any of them.
•
Statistics per entry is not supported for ACLs on VTY lines.
Cisco Nexus 3600 NX-OS Security Configuration Guide, Release 7.x
97
Configuring IP ACLs
Reverting to the Default TCAM Region Sizes
To Next Page
Loading...
