We're running 5548 Switches within our Data Centre, with login block configured as per the lines below.
login block-for 900 attempts 5 within 30
login quiet-mode access-class 15
We're also running another ACL, which is configured on the VTY lines on each Switch. What we're seeing is that when quiet mode feature of login block is activated, ACL 15 is applied to the VTY, as expected. Now at the end of the 900 seconds of the quiet mode period, ACL 15 is removed from the VTY, but the original ACL is not re-applied, which from a security perspective is not great.
Appreciate we're running quite an old version of code - 7.2(0)N1(1) - But has anyone seen any similar such similar behavior? I'm planning to upgrade some Switches to try and resolve, as I expect it to be some sort of bug behavior but wanted to see if others had experienced similar issues in the past
Thanks