https://community.cisco.com/t5/network-access-control/guidance-of-the-max-lines-for-dacls-in-ise/m-p/3483708#M528871 <HTML><HEAD></HEAD><BODY><P>Partner is looking for guidance on the max # of lines for port based DACLs.</P><P></P><P>Are there hard numbers for the max # of lines in ISE itself ?</P><P></P><P>Do the switches have per port max or are the there shared numbers across the ports themselves ?</P><P></P><P>Is there any documentation that outlines the numbers per switch ?</P><P></P><P>Thx</P></BODY></HTML> Mon, 26 Jun 2017 18:32:30 GMT mpeeters 2017-06-26T18:32:30Z https://community.cisco.com/t5/network-access-control/guidance-of-the-max-lines-for-dacls-in-ise/m-p/3483708#M528871 <HTML><HEAD></HEAD><BODY><P>Partner is looking for guidance on the max # of lines for port based DACLs.</P><P></P><P>Are there hard numbers for the max # of lines in ISE itself ?</P><P></P><P>Do the switches have per port max or are the there shared numbers across the ports themselves ?</P><P></P><P>Is there any documentation that outlines the numbers per switch ?</P><P></P><P>Thx</P></BODY></HTML> Mon, 26 Jun 2017 18:32:30 GMT https://community.cisco.com/t5/network-access-control/guidance-of-the-max-lines-for-dacls-in-ise/m-p/3483708#M528871 mpeeters 2017-06-26T18:32:30Z https://community.cisco.com/t5/network-access-control/guidance-of-the-max-lines-for-dacls-in-ise/m-p/3483709#M528873 <HTML><HEAD></HEAD><BODY><P>found this post that appears to address the question</P><P></P><P><SPAN style="font-size: 12.0pt; font-family: 'Times New Roman',serif;"><BR /></SPAN></P><P><SPAN style="font-size: 12.0pt; font-family: 'Times New Roman',serif;"><A _jive_internal="true" href="https://community.cisco.com/thread/80527">https://communities.cisco.com/thread/80527</A></SPAN></P></BODY></HTML> Mon, 26 Jun 2017 19:57:08 GMT https://community.cisco.com/t5/network-access-control/guidance-of-the-max-lines-for-dacls-in-ise/m-p/3483709#M528873 mpeeters 2017-06-26T19:57:08Z https://community.cisco.com/t5/network-access-control/guidance-of-the-max-lines-for-dacls-in-ise/m-p/3483710#M528876 <HTML><HEAD></HEAD><BODY><P>Hello</P><P>Unfortunately, there is no official documentation about that. But in this doc <A href="https://community.cisco.com/docs/DOC-63901">ACS vs ISE Comparison</A> the maximum ACL in ISE 2.2 is 8000 (I think the combination between the ACLs and ACEs).</P><P>For the switches you have some limitations because it depends on the performance and the TCAM (Ternary Content Addressable Memory). For example, the Nexus 5000 supports until 1024 for the VLAN ACL for the whole switch and 128 for the Port ACL per Physical Interface.</P><P>I hope that can help.</P><P>Best regards</P></BODY></HTML> Mon, 26 Jun 2017 23:04:13 GMT https://community.cisco.com/t5/network-access-control/guidance-of-the-max-lines-for-dacls-in-ise/m-p/3483710#M528876 B. BELHADJ 2017-06-26T23:04:13Z