cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
372
Views
0
Helpful
2
Replies

Maximum ACL Instances in ASA

Mike Wiseman
Level 1
Level 1

Hello,

We run an access service here using the ASA 5545-X and AnyConnect clients. We make extensive use of Dynamic Access Policies to build per-user firewall rules based on membership in authorization groups. As the number of users grows, the total number of ACL instances or objects (not sure what to call them) could get quite large. Is there an upper limit on these? Is there an upper limit on the number of  ACL 'templates' or 'classes' that can be defined?

Thanks,

Mike Wiseman

Information Security

University of Toronto                 

2 Replies 2

Jouni Forss
VIP Alumni
VIP Alumni

Hi,

To my understanding the the only limitation for ACLs in the memory on the ASA. And to my understanding the situation with the new ASA5500-X Series with regards to memory is a lot better than the older models.

This is from a Cisco Live! presentation (click to enlarge)

You can visit and register at https://www.ciscolive365.com/ and you can gain access to a lot of great presentations of different subjects. In some cases you can watch the whole presentation video from the Cisco Live! session.

Hope this helps

- Jouni

Thanks Jouni - good to know.