https://community.cisco.com/t5/network-security/acl-operation/m-p/766952#M964191 <HTML><HEAD></HEAD><BODY><P>Already established connections do not get checked by access-list. So, even if you remove the access-list, the existing connections will still continue to work. However, new connections may be affected depending on the traffic flow e.g if traffic is going from higher security to lower security, it will be permitted but traffic from lower to higher will be blocked.</P></BODY></HTML> Thu, 30 Aug 2007 12:01:37 GMT hsajwan 2007-08-30T12:01:37Z https://community.cisco.com/t5/network-security/acl-operation/m-p/766949#M964187 <P>What will happen if delete the access list acl_outbound that still is applied to the inside interface, traffic will stop or will flow freely n pix? </P><P>access−group acl_outbound in interface inside</P><P>Thanks in advance</P><P></P> Mon, 11 Mar 2019 11:04:07 GMT https://community.cisco.com/t5/network-security/acl-operation/m-p/766949#M964187 adriatikb 2019-03-11T11:04:07Z https://community.cisco.com/t5/network-security/acl-operation/m-p/766950#M964188 <HTML><HEAD></HEAD><BODY><P>The traffic will stop. </P><P></P><P>You need an ACL to define the IP traffic that is allowed through the interface. If you want to change the ACL completely you could configure a new ACL (with a different name) and then use the command'access-group NEW_ACL_NAME in interface inside' to apply it. There should be no interruption to traffic flow (assuming the new ACL is configured correctly).</P></BODY></HTML> Thu, 30 Aug 2007 10:43:38 GMT https://community.cisco.com/t5/network-security/acl-operation/m-p/766950#M964188 plwalsh 2007-08-30T10:43:38Z https://community.cisco.com/t5/network-security/acl-operation/m-p/766951#M964189 <HTML><HEAD></HEAD><BODY><P>assuming that i did not configure the nje ACL and a leave the old ALC applied on that insede interface? </P><P>what happen?</P><P>thanks</P><P></P><P></P><P> </P></BODY></HTML> Thu, 30 Aug 2007 11:59:55 GMT https://community.cisco.com/t5/network-security/acl-operation/m-p/766951#M964189 adriatikb 2007-08-30T11:59:55Z https://community.cisco.com/t5/network-security/acl-operation/m-p/766952#M964191 <HTML><HEAD></HEAD><BODY><P>Already established connections do not get checked by access-list. So, even if you remove the access-list, the existing connections will still continue to work. However, new connections may be affected depending on the traffic flow e.g if traffic is going from higher security to lower security, it will be permitted but traffic from lower to higher will be blocked.</P></BODY></HTML> Thu, 30 Aug 2007 12:01:37 GMT https://community.cisco.com/t5/network-security/acl-operation/m-p/766952#M964191 hsajwan 2007-08-30T12:01:37Z