Absolutely, by large how large do you mean? Several thousand lines? Remember that ACL processing means you have to process switch in many cases. I've seen this quite commonly. If your device supports it you can try enabling acl compilation. What type of hardware are you experience this on? ----- Original Message ----- From: "Andrew Hodgson" <andrew@hodgsonfamily.org> To: "Blind sysadmins list" <blind-sysadmins@lists.hodgsonfamily.org> Sent: Monday, May 03, 2010 2:48 PM Subject: [Blind-sysadmins] ACLS on Cisco routers Hi all, Have any of you seen performance degradation when using a large access list on a Cisco router (actually layer 3 managed switch)? I am getting connection dropouts under high load to various database servers in a VLAN managed by these ACLs, and want to discount this. Thanks. Andrew. _______________________________________________ Blind-sysadmins mailing list Blind-sysadmins@lists.hodgsonfamily.org http://lists.hodgsonfamily.org/mailman/listinfo/blind-sysadmins