Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
583
Views
5
Helpful
2
Replies

basic distribute-list with access-list

Go to solution
John_S209
Level 1
Level 1

‎08-30-2019 11:35 AM

so as a 'youthful' netadmin looking to expand what I know, I'm reading CCNP routing content & going through some review questions.  in using a distribute-list to refer to an access list, does the implied "deny any any" at the end of an access list still exist in applying an ACL for use in a distribute-list as it does in other application of access lists?

 

tia.  regards, 

 

JS

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
luis_cordova
VIP Alumni
VIP Alumni

‎08-30-2019 12:28 PM

Hi @John_S209 ,

 

Yes, in every ACL there is implicit denial at the end.

Look at the example in this guide:

https://www.cisco.com/c/en/us/support/docs/ip/interior-gateway-routing-protocol-igrp/9105-34.html

 

access-list 1 permit 1.0.0.0 0.255.255.255
 router rip
 distribute-list 1 in

Any inbound RIP update is checked against access-list 1 and only routes that match a 1.xxx.xxx.xxx format are put in the routing table.

 

It is understood that networks that do not match what is allowed by the ACL, come to implicit denial and are not allowed

 

Regards

 

View solution in original post

2 Replies 2

Go to solution
luis_cordova
VIP Alumni
VIP Alumni

‎08-30-2019 12:28 PM

Hi @John_S209 ,

 

Yes, in every ACL there is implicit denial at the end.

Look at the example in this guide:

https://www.cisco.com/c/en/us/support/docs/ip/interior-gateway-routing-protocol-igrp/9105-34.html

 

access-list 1 permit 1.0.0.0 0.255.255.255
 router rip
 distribute-list 1 in

Any inbound RIP update is checked against access-list 1 and only routes that match a 1.xxx.xxx.xxx format are put in the routing table.

 

It is understood that networks that do not match what is allowed by the ACL, come to implicit denial and are not allowed

 

Regards

 

Go to solution
John_S209
Level 1
Level 1
In response to luis_cordova

‎08-30-2019 01:28 PM

@luis_cordova : excellent! exactly what I wanted to confirm.
thank you very much!
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card