Solved: Re: ASA ACE Details

psaravanan · ‎02-28-2011

Hi Experts,

I have one doubt in the ASA firewall. If the number of ACE has increased, it may affect the performance of the ASA.

I have ASA 5510, 256 MB Flash, 1 GB Memory with Security Plus license.

This firewall can support upto howmany ACE without disturb the performance.

If it is a single mode, then how many ACE can use.

If it is a Multiple context mode, then how many ACE can use.

It may usefull for the designing of the Firewall and reduce the ACE.

Thanks in advance.

Regards,

Saravanan

Collin Clark · ‎02-28-2011

There are no approximates, it all depends on your ACLs and the order. Here's a guideline on configuring ACLs for best performance.

Collin Clark · ‎02-28-2011

Every ACE has an effect on the performace of the firewall. There are no hard and fast numbers because the ACE's can be of varying complexity.

psaravanan · ‎02-28-2011

Hi Clark,

Thanks for your reply,

Each ACE and MPF will affect the performance of the firewall.

Is there any approximate number of ACE and MPF.

Everybody said, ACE will affect the performance of the firewall.

Please help me for the design of the rules.

Regards,

Saravanan.

Collin Clark · ‎02-28-2011

There are no approximates, it all depends on your ACLs and the order. Here's a guideline on configuring ACLs for best performance.