cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Welcome to Cisco Firewalls Community


176
Views
0
Helpful
0
Replies
Highlighted
Participant

ACL - drops packet & then allows packets

I have a very strange thing going on with an ACL on our routers.

traffic should flow as such: server > client (tcp 12001)

ACL is as follows:

object-group network door-controller-server

host 10.1.1.1

object-group network door-controller-client

host 10.2.2.2

object-group service door-controller-ports

tcp eq 12001

 

ip access-group door-contoller

permit object-group door-controller-ports object-group door-controller-server object-=group door-controller-client log

 

int vlan 300

ip add 10.2.2.1 255.255.255.0

ip access-group door-controller out

 

Strange thing is...... every minute or so we get a denied coming from server going to client on port tcp 12001 (1 packet)

The we get a permitted for exactly the same traffic which allows 6000 packets, then a deny, then a permit etc etc

We're not changing the ACL but it is denying and allowing as it see's fit.

 

Any ideas?