On Thursday 04 September 2008 13:00:01 Mateusz Błaszczyk wrote: > My question is - does this (tcp, udp ports) could force the router to > execute the ACL in CPU? > Or is it something else?
The 'log' keyword will cause matching packets to not be CEF switched. Also, if you're denying a lot of traffic from a certain source, you might want to just bit-bucket it rather than sending ICMP responses. Stephen Kratzer Network Engineer CTI Networks, Inc. _______________________________________________ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/