I am curious if anyone has encountered the 128 ACL entry limit on the MS425. I was installing a 425 Stack in a Datacenter, replacing a Cisco 3750 stack. The MS425 stack was sold as a good, cost effective alternative. When we began to add the ACLs for the 40 VLANS we have, we hit a limit of 128 ACL entries. We have over 500 entries that need to be entered. We have been working on consolidation, but this will only help a little.
Has anyone encountered this, or are we unique? My employer has presence in several datacenters, and this limitation is affecting our replacement plan.
Wow I haven't run into that one. Considering the biggest MS425 has 32 ports, and you can stack them 8 high, you could end up with 256 ports.
It seems crazy you can have more ports than ACL rules.
Agree with @PhilipDAth to double check this with Support and ask them to confirm with Engineering, I believe the MS350 and MS400 platforms typically scale to 96k MAC entries and 4096 ACL entries. I think an ACL limit of 128 entries is on the lower end MS120 models. Perhaps >128 ACLs is a feature gate they need to enable when required, which may also give them the opportunity to catalog such use cases. Also agree that I've only seen corner cases where 500+ ACL entries are required, usually it's either it's a genuine corner case or perhaps there's a more optimal design. Dashboard makes it fairly simple to manage ACLs but 500+ is cumbersome no matter what :-) Share your use case with your Meraki (or Meraki Partner) sales team as well.