https://community.cisco.com/t5/network-security/data-interruption-on-acl-s/m-p/1387456#M714597 <HTML><HEAD></HEAD><BODY><P>If the connections are already established then no.</P><P></P><P>The ACL checks are done for new connections and existing ones go through the TCP state checks but not through the ACLs.</P><P></P><P>I hope it helps.</P><P></P><P>PK</P></BODY></HTML> Wed, 07 Apr 2010 14:46:09 GMT Panos Kampanakis 2010-04-07T14:46:09Z https://community.cisco.com/t5/network-security/data-interruption-on-acl-s/m-p/1387455#M714596 <P>We are in the middle of a migration of some services but we need to apply some kind of "basic" security and I was thinking of using ACL's.</P><P>But....</P><P>Will there be any impact on established connections ( interactive and non-interactive ) when I make changes to the ACL ?</P><P></P><P>I need to know what the impact will be on active connections when I remove the ACL from the interface ( to make changes )</P><P>I need to know what the impact will be on active connections when I apply the ACL on the interface ( after changes are made )</P><P></P><P>The connections are very sensitive ( SAP, JBOSS, MQ ) and need a reconnection when interrupted which is not an option to end-users...</P> Mon, 11 Mar 2019 17:29:54 GMT https://community.cisco.com/t5/network-security/data-interruption-on-acl-s/m-p/1387455#M714596 vancampdax 2019-03-11T17:29:54Z https://community.cisco.com/t5/network-security/data-interruption-on-acl-s/m-p/1387456#M714597 <HTML><HEAD></HEAD><BODY><P>If the connections are already established then no.</P><P></P><P>The ACL checks are done for new connections and existing ones go through the TCP state checks but not through the ACLs.</P><P></P><P>I hope it helps.</P><P></P><P>PK</P></BODY></HTML> Wed, 07 Apr 2010 14:46:09 GMT https://community.cisco.com/t5/network-security/data-interruption-on-acl-s/m-p/1387456#M714597 Panos Kampanakis 2010-04-07T14:46:09Z