Re: Network-Object Maximum?

shawnmchenry · ‎05-25-2006

Is there a maximum number of network objects that can be in an object-group?

Fernando_Meza · ‎05-25-2006

Hi ... there is not limit that I am aware of.

akorolkov · ‎05-25-2006

I did have a 18000 line object-group, had no problem but manage it.

a.kiprawih · ‎05-25-2006

Hi,

In PIX, there is no limit on the no of ACLs. It is very much depending on the size of your configuration file. Maximum config file size is 2MB.

This size is related to the Flash Memory space. Remember, your flash is needed to store firewall image and PDM (or ASDM for new 7.x).

Check your Flash Memory for the remaining available space.

For the PIX 525 and PIX 535, the maximum configuration file size limit is increased to 2 MB for PIX Firewall software versions 5.3(2) and later. For other PIX Firewall platforms and earlier software versions, the maximum configuration file size limit is 1 MB except for the PIX 501, which is limited to a 256 KB configuration file size. However, if you are using PIX Device Manager (PDM), Cisco recommend no more than a 100 KB configuration file because larger configuration files can interfere with the performance of PDM on your workstation.

While configuration files up to 2 MB are now supported on the PIX 525 and PIX 535, be aware that such large configuration files can reduce system performance. For example, a large configuration file is likely to noticeably slow execution times in the following situations:

* While executing commands such as write term and show conf

* Failover (the configuration synchronization time)

* During a system reload

http://www.cisco.com/en/US/partner/products/sw/secursw/ps2120/prod_release_note09186a008057b902.html

Hope this helps.

Rgds,

AK

a.kiprawih · ‎05-25-2006

BTW (missing part), network objects/object-group also belongs to the configuration file.