Re: ACL memory space [7:62028]
What router and image is this happening on? John >>> "[EMAIL PROTECTED]" 1/28/03 8:47:57 AM >>> Is there a way to devote separate memory space for ACLs? I just opened a TAC case; but I'm still having problems with my lists getting dropped, I've even went so far as to delete all the entries and reenter only a couple. Scenario: I shell into the router, add one additional host to access-list 1. As soon as I hit enter, all the acls from list one dissappear. It's gotten to the point where the ACL allowing access to the router dissappeared. This is driving me crazy I'm thinking it's a bad image.?.?.? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=62033&t=62028 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: ACL memory space [7:62028]
The router is a 3640. I'm using the following image: c3640-ik9o3s-mz.122-11T -Original Message- From: John Neiberger [mailto:[EMAIL PROTECTED]] Sent: Tuesday, January 28, 2003 10:27 AM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: ACL memory space [7:62028] What router and image is this happening on? John >>> "[EMAIL PROTECTED]" 1/28/03 8:47:57 AM >>> Is there a way to devote separate memory space for ACLs? I just opened a TAC case; but I'm still having problems with my lists getting dropped, I've even went so far as to delete all the entries and reenter only a couple. Scenario: I shell into the router, add one additional host to access-list 1. As soon as I hit enter, all the acls from list one dissappear. It's gotten to the point where the ACL allowing access to the router dissappeared. This is driving me crazy I'm thinking it's a bad image.?.?.? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=62035&t=62028 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: ACL memory space [7:62028]
Hmm you must have some freakin' long ACLs! :-) Still, that's pretty strange behavior. I don't know if the feature is available on that platform but you might try using "access-list compiled" to allow the router to process them more efficiently. I doubt that would even help this problem, though. If you're truly running out of config space try using "service compress-config" to free up some room. It sounds like you may be running into a 'feature' that TAC might be able to help with. John >>> "[EMAIL PROTECTED]" 1/28/03 9:37:22 AM >>> The router is a 3640. I'm using the following image: c3640-ik9o3s-mz.122-11T -Original Message- From: John Neiberger [mailto:[EMAIL PROTECTED]] Sent: Tuesday, January 28, 2003 10:27 AM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: ACL memory space [7:62028] What router and image is this happening on? John >>> "[EMAIL PROTECTED]" 1/28/03 8:47:57 AM >>> Is there a way to devote separate memory space for ACLs? I just opened a TAC case; but I'm still having problems with my lists getting dropped, I've even went so far as to delete all the entries and reenter only a couple. Scenario: I shell into the router, add one additional host to access-list 1. As soon as I hit enter, all the acls from list one dissappear. It's gotten to the point where the ACL allowing access to the router dissappeared. This is driving me crazy I'm thinking it's a bad image.?.?.? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=62037&t=62028 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: ACL memory space [7:62028]
At 4:57 PM + 1/28/03, John Neiberger wrote: >Hmm you must have some freakin' long ACLs! :-) Still, that's >pretty strange behavior. I don't know if the feature is available on >that platform but you might try using "access-list compiled" to allow >the router to process them more efficiently. I doubt that would even >help this problem, though. > >If you're truly running out of config space try using "service >compress-config" to free up some room. > >It sounds like you may be running into a 'feature' that TAC might be >able to help with. > >John There is a problem that affects some large ISPs with extremely long access lists. I've seen Tier 1 routers with large warnings on the console, "DO NOT SAVE RUNNING-CONFIG STARTING-CONFIG". Their lists are too long to have the config fit into NVRAM, but their workaround is always to load configs from TFTP. Do check that you aren't short on NVRAM. This doesn't sound quite the same as your problem, though. > >>>> "[EMAIL PROTECTED]" >1/28/03 9:37:22 AM >>> >The router is a 3640. > >I'm using the following image: c3640-ik9o3s-mz.122-11T > >-----Original Message----- >From: John Neiberger [mailto:[EMAIL PROTECTED]] >Sent: Tuesday, January 28, 2003 10:27 AM >To: [EMAIL PROTECTED]; [EMAIL PROTECTED] >Subject: Re: ACL memory space [7:62028] > > >What router and image is this happening on? > >John > >>>> "[EMAIL PROTECTED]" >1/28/03 8:47:57 AM >>> >Is there a way to devote separate memory space for ACLs? > >I just opened a TAC case; but I'm still having problems with my lists >getting dropped, I've even went so far as to delete all the entries >and >reenter only a couple. > >Scenario: I shell into the router, add one additional host to >access-list >1. As soon as I hit enter, all the acls from list one dissappear. >It's >gotten to the point where the ACL allowing access to the router >dissappeared. This is driving me crazy I'm thinking it's a bad >image.?.?.? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=62046&t=62028 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ACL memory space [7:62028]
If this is the same thread I thought Mike wrote back to me that is was something like 64 lines, that's nothing. If you open a case with Cisco they will probably tell you to upgrade. I'll save you the trouble, try upgrading, 12.2.13T is available :) Dave Howard C. Berkowitz wrote: > At 4:57 PM + 1/28/03, John Neiberger wrote: > >>Hmm you must have some freakin' long ACLs! :-) Still, that's >>pretty strange behavior. I don't know if the feature is available on >>that platform but you might try using "access-list compiled" to allow >>the router to process them more efficiently. I doubt that would even >>help this problem, though. >> >>If you're truly running out of config space try using "service >>compress-config" to free up some room. >> >>It sounds like you may be running into a 'feature' that TAC might be >>able to help with. >> >>John > > > > There is a problem that affects some large ISPs with extremely long > access lists. I've seen Tier 1 routers with large warnings on the > console, "DO NOT SAVE RUNNING-CONFIG STARTING-CONFIG". > > Their lists are too long to have the config fit into NVRAM, but their > workaround is always to load configs from TFTP. Do check that you > aren't short on NVRAM. > > This doesn't sound quite the same as your problem, though. > > >>>>> "[EMAIL PROTECTED]" >>>> >>1/28/03 9:37:22 AM >>> >>The router is a 3640. >> >>I'm using the following image: c3640-ik9o3s-mz.122-11T >> >>-Original Message- >>From: John Neiberger [mailto:[EMAIL PROTECTED]] >>Sent: Tuesday, January 28, 2003 10:27 AM >>To: [EMAIL PROTECTED]; [EMAIL PROTECTED] >>Subject: Re: ACL memory space [7:62028] >> >> >>What router and image is this happening on? >> >>John >> >> >>>>> "[EMAIL PROTECTED]" >>>> >>1/28/03 8:47:57 AM >>> >>Is there a way to devote separate memory space for ACLs? >> >>I just opened a TAC case; but I'm still having problems with my lists >>getting dropped, I've even went so far as to delete all the entries >>and >>reenter only a couple. >> >>Scenario: I shell into the router, add one additional host to >>access-list >>1. As soon as I hit enter, all the acls from list one dissappear. >>It's >>gotten to the point where the ACL allowing access to the router >>dissappeared. This is driving me crazy I'm thinking it's a bad >>image.?.?.? -- David Madland CCIE# 2016 Sr. Network Engineer Qwest Communications 612-664-3367 "You don't make the poor richer by making the rich poorer." --Winston Churchill Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=62061&t=62028 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ACL memory space [7:62028]
Heck, we have one that's over 120 lines long! :-) It's a tad complex. John >>> "MADMAN" 1/28/03 2:25:20 PM >>> If this is the same thread I thought Mike wrote back to me that is was something like 64 lines, that's nothing. If you open a case with Cisco they will probably tell you to upgrade. I'll save you the trouble, try upgrading, 12.2.13T is available :) Dave Howard C. Berkowitz wrote: > At 4:57 PM + 1/28/03, John Neiberger wrote: > >>Hmm you must have some freakin' long ACLs! :-) Still, that's >>pretty strange behavior. I don't know if the feature is available on >>that platform but you might try using "access-list compiled" to allow >>the router to process them more efficiently. I doubt that would even >>help this problem, though. >> >>If you're truly running out of config space try using "service >>compress-config" to free up some room. >> >>It sounds like you may be running into a 'feature' that TAC might be >>able to help with. >> >>John > > > > There is a problem that affects some large ISPs with extremely long > access lists. I've seen Tier 1 routers with large warnings on the > console, "DO NOT SAVE RUNNING-CONFIG STARTING-CONFIG". > > Their lists are too long to have the config fit into NVRAM, but their > workaround is always to load configs from TFTP. Do check that you > aren't short on NVRAM. > > This doesn't sound quite the same as your problem, though. > > >>>>> "[EMAIL PROTECTED]" >>>> >>1/28/03 9:37:22 AM >>> >>The router is a 3640. >> >>I'm using the following image: c3640-ik9o3s-mz.122-11T >> >>-Original Message- >>From: John Neiberger [mailto:[EMAIL PROTECTED]] >>Sent: Tuesday, January 28, 2003 10:27 AM >>To: [EMAIL PROTECTED]; [EMAIL PROTECTED] >>Subject: Re: ACL memory space [7:62028] >> >> >>What router and image is this happening on? >> >>John >> >> >>>>> "[EMAIL PROTECTED]" >>>> >>1/28/03 8:47:57 AM >>> >>Is there a way to devote separate memory space for ACLs? >> >>I just opened a TAC case; but I'm still having problems with my lists >>getting dropped, I've even went so far as to delete all the entries >>and >>reenter only a couple. >> >>Scenario: I shell into the router, add one additional host to >>access-list >>1. As soon as I hit enter, all the acls from list one dissappear. >>It's >>gotten to the point where the ACL allowing access to the router >>dissappeared. This is driving me crazy I'm thinking it's a bad >>image.?.?.? -- David Madland CCIE# 2016 Sr. Network Engineer Qwest Communications 612-664-3367 "You don't make the poor richer by making the rich poorer." --Winston Churchill Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=62062&t=62028 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
