Managing Memory for Rules
For information about exclusive and non-exclusive partitions, see the
section on page
To set the number of partitions, enter the following command in the system execution space:
Step 2
hostname(config)# resource acl-partition number_of_partitions
Where number_of_partitions is between 1 and 12.
Note
You see the following message:
WARNING: This command leads to re-partitioning of ACL Memory.
It will not take affect until you save the configuration and reboot.
To reload the FWSM so your changes can take effect, enter the following command:
Step 3
hostname(config)# reload
If you are using failover, wait a few seconds before reloading the standby unit as well; the standby unit
does not reload automatically, and the memory partitions must match on both units. Traffic loss can
occur because both units are down at the same time.
Note
Changing the Memory Partition Size
The FWSM lets you set the memory size of each partition.
Changing the partition sizes requires you to reload the FWSM.
Note
Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Configuration Guide using ASDM
4-14
Number of contexts
:5(RefCount:5)
Number of rules
4-27.
The partition numbering starts with 0. So if you have 12 partitions, the partition numbers are 0
through 11. The partition number is used for customizing the memory partition and for assigning
a context to a partition.
If you later enter clear configure all to restore the default configuration, the resource
acl-partition command is not changed back to the default. You must enter the no resource
acl-partition command to restore the default for this command.
If you add a secondary unit at a later date, then after the new secondary unit synchronizes the
configuration, immediately reload the secondary unit so that the memory partitions are the same.
During the initial synchronization, the configuration might not fit properly in the secondary unit
memory partitions, but after reloading, and another configuration synchronization, the
secondary unit will be operational.
:6(Max:53087)
Chapter 4
Configuring Security Contexts
"Configuring a Security Context"
OL-20748-01