Modifying acl tcam size, Table 16-2 – Cisco 15327 User Manual

16-5

Ethernet Card Software Feature and Configuration Guide, R7.2

Chapter 16 Configuring Access Control Lists

Modifying ACL TCAM Size

Modifying ACL TCAM Size

You can change the TCAM size by entering the sdm access-list command. For more information on ACL
TCAM sizes, see the

“Configuring Access Control List Size in TCAM” section on page 15-3

.

Example 16-1

provides an example of modifying and verifying ACLs.

Note

To increase the ACL TCAM size, you must decrease another region’s TCAM size, such as IP,
IP multicast, or L2 switching.

Caution

You will need to increase the TCAM size if you see the following error message:

Warning:Programming TCAM entries failed

Please remove last ACL command to re-activate ACL operation.

!<ACL number or name> <IP or IPX> <INPUT_ACL or OUTPUT_ACL> from TCAM group for !<interface>

Please see the documentation to see if TCAM space can be

increased on this platform to alleviate the problem.

Example 16-1 Monitor and Verify ACLs

Router# show ip access-lists 1

Standard IP access list 1

permit 192.168.1.1

permit 192.168.1.2

Table 16-2

Applying ACL to Interface

Command

Purpose

ip access-group

{

access-list-number | name} {in | out}

Controls access to an interface.