Hi all,
On a 5900CP-48XG-4QSFP+, rel 2422P01
trying to add ACL's on vlan2 outbound, I've qot this message:
Failed to apply or refresh ACL MGMT rule 240 to the outbound direction of interface Vlan-interface2. The resources are insufficient.
The failing line here is
rule 240 permit udp source 1.2.3.4 0 source-port eq dns
If I 'undo' acl's elsewhere, it will let me put this one, same if I 'undo packet-filter ...' on another interface, it looks like a real resources problem…
Once here, it also fails to apply an ACL on another vlan, even as simple as 'rule permit ip'.
The result of 'display qos-acl resources' is:
Interfaces: XGE1/0/1 to XGE1/0/48, FGE1/0/49 to FGE1/0/52
---------------------------------------------------------------------
Type Total Reserved Configured Remaining Usage
---------------------------------------------------------------------
VFP ACL 1024 512 0 512 50%
IFP ACL 2048 768 11 1269 38%
IFP Meter 1024 384 0 640 37%
IFP Counter 1024 384 0 640 37%
EFP ACL 1024 0 265 759 25%
EFP Meter 512 0 0 512 0%
EFP Counter 512 0 11 501 2%
Interfaces: XGE2/0/1 to XGE2/0/48, FGE2/0/49 to FGE2/0/52
---------------------------------------------------------------------
Type Total Reserved Configured Remaining Usage
---------------------------------------------------------------------
VFP ACL 1024 512 0 512 50%
IFP ACL 2048 768 11 1269 38%
IFP Meter 1024 384 0 640 37%
IFP Counter 1024 384 0 640 37%
EFP ACL 1024 0 265 759 25%
EFP Meter 512 0 0 512 0%
EFP Counter 512 0 11 501 2%
I should have some free resources (759 outbound ACL's remaining if I read well…)
How should I interpret this ?
#ACL