Showing results for 
Search instead for 
Did you mean: 

Who Me Too'd this topic

Catalyste C3750 : %ACLMGR-3-INVALIDPARAM: Invalid ACL type 5 encountered



I have a Catalyst 3750 with Cisco IOS Software, C3750 Software (C3750-IPSERVICES-M), Version 12.2(35)SE5, RELEASE SOFTWARE (fc1). The image file is System image file is "flash:c3750-ipservices-mz.122-35.SE5/c3750-ipservices-mz.122-35.SE5.bin".

The command "show sdm prefer" returns :

#show sdm prefer
The current template is "desktop routing" template.
The selected template optimizes the resources in
the switch to support this level of features for
8 routed interfaces and 1024 VLANs.

  number of unicast mac addresses:                  3K
  number of IPv4 IGMP groups + multicast routes:    1K
  number of IPv4 unicast routes:                    11K
    number of directly-connected IPv4 hosts:        3K
    number of indirect IPv4 routes:                 8K
  number of IPv4 policy based routing aces:         0.5K
  number of IPv4/MAC qos aces:                      0.5K
  number of IPv4/MAC security aces:                 1K

I defined an in-bound IP extended ACL on one of its virual interfaces. No problem so far.

I inserted the fololwing line in this ACL :

  permit udp any any reflect udptraffic

Now the switchs logs  the following messages :

334: 08:55:34: %ACLMGR-3-INVALIDPARAM: Invalid ACL type 5 encountered

These messages disappear as soon as I remove the reflexive ACL. The command "show access-list udptraffic" shows that some traffic is catched by the reflexive ACL. I'm not sure that all of it is catched.

Is there a problem with reflexive ACLs on C3750-IPSERVICES-M, Version 12.2(35)SE5 ?  Is there anything I can do to fix it ?

Thank you very much in advance.


Who Me Too'd this topic