beautypg.com

Considerations when implementing this feature, Configuring acl cam sharing for ipv4 acls – Brocade Multi-Service IronWare Security Configuration Guide (Supporting R05.6.00) User Manual

Page 170

background image

152

Multi-Service IronWare Security Configuration Guide

53-1003035-02

ACL CAM sharing for inbound ACLs for IPv4 ACLs (Brocade NetIron XMR and Brocade MLX series devices only)

3

ACL CAM sharing for inbound ACLs for IPv4 ACLs
(Brocade NetIron XMR and Brocade MLX series devices only)

ACL CAM sharing allows you to conserve CAM by sharing it between ports that are supported by the
same packet processor (PPCR). If this feature is enabled globally, you can share CAM space that is
allocated for inbound ACLs between instances on ports that share the same packet processor
(PPCR). For example, if you have bound- inbound ACL 101 to ports 1/1 and 1/5, the ACL is stored in
a single location in CAM and used by both ports.

Table 23

describes which ports share PPCRs and

can participate in ACL CAM sharing.

Considerations when implementing this feature

The following consideration apply when implementing this feature:

If you enable ACL CAM sharing, ACL statistics will be generated per-PPCR instead of per-port. If
you require the statistics per-port granularity for your application, you cannot use this feature.

This feature is only applicable for inbound IPv4 ACLs, IPv6 ACLs, VPNv4 ACLs, Layer-2 ACLs,
and Global PBR policies.

This feature is not applicable for ACL-based rate-limiting and interface-level PBR policies.

This feature cannot be applied to a virtual interface.

CAM entry matching within this feature is based on the ACL group ID.

This feature cannot co-exist with IP Multicast Routing or IP Multicast Traffic Reduction.

Configuring ACL CAM sharing for IPv4 ACLs

NOTE

The enable-acl-cam-sharing command is not supported on Brocade NetIron CES or Brocade NetIron
CER devices.

When enabled, ACL CAM sharing for IPv4 ACLs is applied across all ports in a system. To apply ACL
CAM sharing for IPv4 ACLs globally on a Brocade device, use the following command.

Brocade(config)# enable-acl-cam-sharing

Syntax: [no] enable-acl-cam-sharing

ACL CAM sharing is disabled by default.

TABLE 23

Common ports per PPCR

Module type

PPCR number

Ports supported by PPCR

20 x 1G

PPCR 1

1 - 20

4 x 10G

PPCR 1

1 - 2

PPCR 2

3 - 4

2 x 10G

PPCR 1

1 - 2

See also other documents in the category Brocade Computer Accessories: