--On Friday, July 06, 2001 3:51 PM -0400 [EMAIL PROTECTED] wrote:
> through the list at that point. According to Cisco, there is no limit on
> the number of rules, but of course reality will tell us something
> different.
<ancient-gaffer-mode>
In my day, the PIX had a 400k config size limit. We ran into this limit
pretty hard, and Cisco upped it to 1MB. Eventually (5.x?) they fixed their
flash memory code, and the limit became some reasonable fraction of the
amount of flash you have in the box. Of course, before they fixed state
synch, doing lockstep synch of even 400K took literally hours over the
9.6kbps serial link, so HA was... interesting.
</ancient-gaffer-mode>
So, depending on your hardware/software mix, your limit is somewhere
between 400k and about 14 MB (assuming 16MB flash and about 2MB for the OS
and overhead).
It's amazing how quickly one becomes an old fogey on Internet Time.
--
Carson Gaspar - [EMAIL PROTECTED]
Queen Trapped in a Butch Body
_______________________________________________
Firewalls mailing list
[EMAIL PROTECTED]
http://lists.gnac.net/mailman/listinfo/firewalls
