From: Scotty (trig@xxxxxxx)
Date: Sat Jan 01 2000 - 01:01:01 GMT-3
I believe that with the later versions of code access lists are fast switched
not process switched so the processor doesnt have to process each packet.
Also, if you have a MSFC or PFC you can do layer 3 access lists at layer two
speeds if the "flow" meets the critera.
Scotty
Jeff Sapiro <jsapiro@wnmail.wndev.att.com> wrote:
Before and after after applying the acl to the interface you can do a 'show
proc cpu' from the command line to see the performance impact. After the
list
has been in a while you can also see hits on individual lines with 'show ip
(or other protocol) access-list'
-Jeff
Leonardo Gebbia wrote:
> Hi All,
> Does someone of you know if is there a tool for assess the performance
> impact due to the use of ACL (standard, extended and reflexive).
> Is there anywhere a paper which describes some results on this study?
>
> Any idea will be good.
>
> Thank you and have a nice day
>
> Leonardo Gebbia
> I.C.T. Consulting S.r.l.
> Via V. Pisani 22, 20124 Milano, Italy
> mobile +39 0335 7424953
> office +39 02 67642250
> fax +39 02 67642243
> e-mail: mailto:gebbia@ictc.it
>
> ------------------------------------------------------------------------
> Name: winmail.dat
> winmail.dat Type: application/ms-tnef
> Encoding: base64
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 08:23:57 GMT-3