Cisco Nexus 9000 Series Configuration Manual page 281
Nx-os security configuration guide, release 9.x
Hide thumbs
Also See for Nexus 9000 Series:
- Configuration manual (276 pages) ,
- Troubleshooting manual (126 pages) ,
- Quick start configuration manual (6 pages)
Table of Contents
Advertisement
Configuring IP ACLs
To set the size of the ingress IPv6 RACL TCAM region on a Cisco Nexus 9500 Series switch, perform one
of two options.
Option #1
Reduce the ingress IPv4 RACL by 512 entries (1536 - 512 = 1024) and add an ingress IPv6 RACL with 512
entries—This option is preferred.
switch(config)# hardware access-list tcam region racl 1024
Warning: Please reload the linecard for the configuration to take effect
switch(config)# hardware access-list tcam region ipv6-racl 256
Warning: Please reload the linecard for the configuration to take effect
Table 27: Updated TCAM Region Configuration After Reducing the IPv4 RACL (Ingress)
Region Name
IPv4 RACL
IPv6 RACL
IPv4 Layer 3 QoS
SPAN
CoPP
System
Redirect
vPC convergence
Option #2
Remove IPv4 Layer 3 QoS by reducing its size to 0 and add an ingress IPv6 RACL—This option is available
if you are not using IPv4 Layer 3 QoS.
switch(config)# hardware access-list tcam region l3qos 0
Warning: Please reload the linecard for the configuration to take effect
switch(config)# hardware access-list tcam region ipv6-racl 256
Warning: Please reload the linecard for the configuration to take effect
Table 28: Updated TCAM Region Configuration After Removing Layer 3 QoS (Ingress)
Region Name
IPv4 RACL
IPv6 RACL
IPv4 Layer 3 QoS
SPAN
CoPP
System
Redirect
Size
Width
1024
1
256
2
256
2
256
1
256
2
256
2
256
1
512
1
Size
Width
1536
1
256
2
0
2
256
1
256
2
256
2
256
1
Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.x
Configuring TCAM Carving
Total Size
1024
512
512
256
512
512
256
512
4K
Total Size
1536
512
0
256
512
512
256
255
- Quick Links:
- Radius and Tacacs+ Security Protocols
Hide quick links:
Advertisement
Table of Contents
