Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
900
Views
0
Helpful
1
Replies

NTP ACL order of processing - Match-All

Valeriehsh
Level 1
Level 1

‎09-04-2021 12:39 AM

Can you please explain what the second part means? An example would be appreciated. Both seems to mean the same to me.

 

"• Without the match-all keyword, the packet gets evaluated against the access groups (in the order mentioned below) until it finds a permit. If a permit is not found, the packet is dropped.
• With match-all keyword, the packet gets evaluated against all the access groups (in the order mentioned below) and the action is taken based on the last successful evaluation (the last access group where an ACL is configured)."

https://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus9000/sw/93x/system-management/b-cisco-nexus-9000-series-nx-os-system-management-configuration-guide-93x/b-cisco-nexus-9000-series-nx-os-system-management-configuration-guide-93x_chapter_0...

 

First point means the packet will go through Peer > Server > Query and assuming there is a a permit in Server, it'll process and stop there? Isn't this the same as the second point where "action is taken"?

 

Thanks!

2 people had this problem
Labels:
0 Helpful
1 Reply 1

Georg Pauwen
VIP
VIP

‎09-04-2021 02:04 AM

Hello,

 

when I read through this, it indeed looks like with or without match-all, the same action is taken. I don't see the difference either...

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card