Symptom
Ports goes to error disabled due to insufficient TCAM resource when box is reloaded.
Conditions
TCAM usage for a region is greater than 50% before reload.
Workaround
For reload to work ensure the ING-RACL size is big enough so that TCAM utilization is less than 50%. If the TCAM usage is greater than 50% the behavior can be inconsistent on reload.
Further Problem Description
Explanation:
The TCAM for RACL is 1792.
ip access-group ipv4_acl in (403 entries)
ipv6 traffic-filter ipv6_acl in (586 entries)
service-policy type qos input policy_L3 no-stats
The utilization can be as high as 77%:
Ingress RACL 403 1389 22.49 >>>> V4 ACL added on E1/49
Ingress RACL 989 803 55.19 >>>> V6 ACL added on E1/49
Ingress RACL 1390 402 77.57 >>>> V4 ACL added on E1/50 (no label sharing hence IPV4 401 entries need extra space due to different label)
Ingress RACL 989 803 55.19 >>>> V6 ACL added on E 1/50 (label shared since same config on both interfaces, hence back to 55%)
When QOS is added to this matrix, when QOS-IPV4 RACL & IPV6 RACL are applied on E 1/49 they have a common label.
When the same IPV4 RACL & IPV6 RACL are applied on E1/50 a new label is allocated and total space usage in RACL TCAM will shoot above 100% i.e 989 entries used by E1/49 and 989 entries to be needed by E1/50.
