08-30-2019 11:35 AM
so as a 'youthful' netadmin looking to expand what I know, I'm reading CCNP routing content & going through some review questions. in using a distribute-list to refer to an access list, does the implied "deny any any" at the end of an access list still exist in applying an ACL for use in a distribute-list as it does in other application of access lists?
tia. regards,
JS
Solved! Go to Solution.
08-30-2019 12:28 PM
Hi @John_S209 ,
Yes, in every ACL there is implicit denial at the end.
Look at the example in this guide:
https://www.cisco.com/c/en/us/support/docs/ip/interior-gateway-routing-protocol-igrp/9105-34.html
access-list 1 permit 1.0.0.0 0.255.255.255 router rip distribute-list 1 in
Any inbound RIP update is checked against access-list 1 and only routes that match a 1.xxx.xxx.xxx format are put in the routing table.
It is understood that networks that do not match what is allowed by the ACL, come to implicit denial and are not allowed
Regards
08-30-2019 12:28 PM
Hi @John_S209 ,
Yes, in every ACL there is implicit denial at the end.
Look at the example in this guide:
https://www.cisco.com/c/en/us/support/docs/ip/interior-gateway-routing-protocol-igrp/9105-34.html
access-list 1 permit 1.0.0.0 0.255.255.255 router rip distribute-list 1 in
Any inbound RIP update is checked against access-list 1 and only routes that match a 1.xxx.xxx.xxx format are put in the routing table.
It is understood that networks that do not match what is allowed by the ACL, come to implicit denial and are not allowed
Regards
08-30-2019 01:28 PM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide