This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Extreme Networks
- Community List
- Switching & Routing
- ExtremeSwitching (EXOS/Switch Engine)
- No free INGRESS ACL Virtual Slices on X670G2-72x
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
No free INGRESS ACL Virtual Slices on X670G2-72x
No free INGRESS ACL Virtual Slices on X670G2-72x
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
10-07-2019 08:27 AM
Hello,
recently we had a problem with re-configuring VRRP for certain VLAN on one switch working in MLAG configuration:
We do not use either any user-based ACL nor vlan statistics monitor:
There are 4 Slices with no rules used:
Is it normal behavior? How could we release some unused Virtlua Slices ?
The X670G2-72x is running on 22.5.1.7
Regards,
Maciej
recently we had a problem with re-configuring VRRP for certain VLAN on one switch working in MLAG configuration:
code:
...
pibSendVirtualMacSourcePacketsToCPU(1:39, 00:00:5e:00:01:02, 1) - bcm_filter_install(0, 3762) returned "Table full".
...
code:
# show access-list usage acl-slice port 1
Ports 1-72
Stage: INGRESS
Slices: Used: 12 Available: 0
Virtual Slice 0 (physical slice 2) Rules: Used: 1 Available: 511 VLAN statistics
Virtual Slice 1 (physical slice 😎 Rules: Used: 0 Available: 256 user/other
Virtual Slice 2 (physical slice 1) Rules: Used: 1 Available: 511 VLAN statistics
Virtual Slice 3 (physical slice 5) Rules: Used: 0 Available: 256 system
Virtual Slice 4 (physical slice 0) Rules: Used: 3 Available: 509 user/other
Virtual Slice 5 (physical slice 9) Rules: Used: 95 Available: 161 system
Virtual Slice 6 (physical slice 11) Rules: Used: 0 Available: 256 IPv6 MC
Virtual Slice 7 (physical slice 4) Rules: Used: 4 Available: 252 system
Virtual Slice 8 (physical slice 6) Rules: Used: 0 Available: 256 system
Virtual Slice 9 (physical slice 3) Rules: Used: 2 Available: 510 IPv6 MC
Virtual Slice 10 (physical slice 10) Rules: Used: 4 Available: 252 system
Virtual Slice 11 (physical slice 7) Rules: Used: 1 Available: 255 user/other
Stage: EGRESS
Slices: Used: 1 Available: 3
Virtual Slice * (physical slice 0) Rules: Used: 0 Available: 256
Virtual Slice * (physical slice 1) Rules: Used: 0 Available: 256
Virtual Slice * (physical slice 2) Rules: Used: 0 Available: 256
Virtual Slice 3 (physical slice 3) Rules: Used: 4 Available: 252 VLAN statistics
Stage: LOOKUP
Slices: Used: 0 Available: 4
Virtual Slice * (physical slice 0) Rules: Used: 0 Available: 256
Virtual Slice * (physical slice 1) Rules: Used: 0 Available: 256
Virtual Slice * (physical slice 2) Rules: Used: 0 Available: 256
Virtual Slice * (physical slice 3) Rules: Used: 0 Available: 256
Stage: EXTERNAL
Virtual Slice : (*) Physical slice not allocated to any virtual slice.
We do not use either any user-based ACL nor vlan statistics monitor:
code:
#show configuration detail | include access-list
enable access-list refresh blackhole
configure access-list vlan-acl-precedence dedicated
configure access-list rule-compression port-counters dedicated
configure access-list action-resolution multiple
configure access-list zone DOS zone-priority 1
configure access-list zone SYSTEM zone-priority 2
configure access-list zone SECURITY zone-priority 3
configure access-list zone DOS application hal application-priority 1
configure access-list zone DOS application Dos application-priority 2
configure access-list zone SYSTEM application Cli application-priority 1
configure access-list zone SYSTEM application IpSecurity application-priority 2
configure access-list zone SYSTEM application FIPSnooping application-priority 3
configure access-list zone SYSTEM application ESVT application-priority 4
configure access-list zone SYSTEM application NetLogin application-priority 5
configure access-list zone SYSTEM application HealthCheckLAG application-priority 6
configure access-list zone SYSTEM application IdentityManager application-priority 7
configure access-list zone SYSTEM application VMTracking application-priority 8
configure access-list zone SYSTEM application PolicyManager application-priority 9
configure access-list zone SYSTEM application OpenFlow application-priority 10
configure access-list zone SYSTEM application Policy application-priority 11
configure access-list zone SYSTEM application L2PT_PF application-priority 12
configure access-list zone SYSTEM application Snmp application-priority 15
configure access-list zone SYSTEM application Telnet application-priority 16
configure access-list zone SYSTEM application Http application-priority 17
configure access-list zone SYSTEM application Ssh2 application-priority 18
configure access-list zone SYSTEM application VlanManager application-priority 19
configure access-list zone SECURITY application Sentriant application-priority 1
configure access-list zone SECURITY application GenericXml application-priority 2
There are 4 Slices with no rules used:
code:
Virtual Slice 1 (physical slice 😎 Rules: Used: 0 Available: 256 user/other
Virtual Slice 3 (physical slice 5) Rules: Used: 0 Available: 256 system
Virtual Slice 6 (physical slice 11) Rules: Used: 0 Available: 256 IPv6 MC
Virtual Slice 8 (physical slice 6) Rules: Used: 0 Available: 256 system
Is it normal behavior? How could we release some unused Virtlua Slices ?
The X670G2-72x is running on 22.5.1.7
Regards,
Maciej
0 REPLIES 0
