Configuring IP ACLs
switch(config)# reload
WARNING: This command will reboot the system
Do you want to continue? (y/n) [n] y
Using Templates to Configure ACL TCAM Region Sizes
You can use create and apply custom templates to configure ACL TCAM region sizes.
For all Cisco Nexus 9200, 9300, and 9500 Series switches and the Cisco Nexus 3164Q, 31128PQ, 3232C,
and 3264Q switches, you can use this procedure or the
to configure ACL TCAM region sizes. However, NFE2-enabled devices (such as the X9432C-S 100G line
card and the C9508-FM-S fabric module) do not support the hardware access-list tcam region command
and must use a template to configure the ACL TCAM region size.
Note
Once you apply a TCAM template, the hardware access-list tcam region command will not work. You must
uncommit the template in order to use the command.
Note
For information on configuring QoS TCAM carving, see the Cisco Nexus 9000 Series NX-OS Quality of
Service Configuration Guide.
SUMMARY STEPS
1. configure terminal
2. [no] hardware profile tcam resource template template-name ref-template {nfe | nfe2 | {l2-l3 | l3}}
3. (Optional) region tcam-size
4. exit
5. [no] hardware profile tcam resource service-template template-name
6. (Optional) show hardware access-list tcam template {all | nfe | nfe2 | l2-l3 | l3 | template-name}
7. (Optional) copy running-config startup-config
8. reload
DETAILED STEPS
Command or Action
Step 1
configure terminal
Example:
switch# configure terminal
switch(config)#
Step 2
Required: [no] hardware profile tcam resource template
template-name ref-template {nfe | nfe2 | {l2-l3 | l3}}
Example:
"Configuring ACL TCAM Region Sizes"
Purpose
Enters global configuration mode.
Creates a template for configuring ACL TCAM region sizes.
nfe—The default TCAM template for Network Forwarding
Engine (NFE)-enabled Cisco Nexus 9300 and 9500 Series,
3164Q, and 31128PQ devices.
Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.x
Using Templates to Configure ACL TCAM Region Sizes
procedure
249