cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
513
Views
0
Helpful
1
Replies

non existent ACL blocks traffic

amadeus
Level 1
Level 1

hello,

we have a standard ACL applied to our router vty lines.

Yesterday we had a problem on one of our MSFC2.

The ACL 85 was not configured at all on the router

but the statement 'access-class 85 in' was configured on the vty line and all traffic was blocked. After we configured the ACL85 on the router, the vty lines where accessible again.

If i apply a non-existent ACL to an interface, is there a 'deny any' by default?

1 Reply 1

spremkumar
Level 9
Level 9

Hi

Itz the default behaviour if u dont have the ACL statements and have an access-group configured it will ofcourse drop or wont allow the traffic traversal via the interface where its applied...

We had seen enough problems like this by accidently removing the ACL before removing the access-group from the interface level config..

regds

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: