I find a strange situation.

In the router, when I configure the access-list for protecting worm port like followings. If I configure these access-lists, servers connected to this router is well operating. But, when I delete access-list configuration, servers will be downed. What is the cause ?

interface Vlan200

ip address 203.237.0.5 255.255.255.0

ip access-group 101 in

ip access-group 102 out

access-list 101 remark "Bagle.U Worm"

access-list 101 deny tcp any any eq 4751

access-list 101 remark "WORM_Agobot.gen"

access-list 101 deny tcp any any eq 135

access-list 101 remark "WORM_MYDOOM.b"

access-list 101 deny tcp any any eq 1080

access-list 101 deny tcp any any eq 3218

access-list 101 deny tcp any any eq 10080

access-list 101 remark "WORM_MYDOOM.A"

access-list 101 deny tcp any any eq 3127

access-list 101 remark "SPYBOT.S

access-list 101 deny tcp any any eq 31031

access-list 101 remark "Wout32.Bagle , Mirc"

access-list 101 deny tcp any any eq 6667

access-list 101 remark "Wout32.Sobig.worm.F"

access-list 101 deny udp any any range 995 999

access-list 101 remark "Wout32.Welchia.worm"

access-list 101 deny tcp any any eq 707

access-list 101 deny udp any any eq 2048

access-list 101 remark "W32.Blaster.Worm"

access-list 101 deny tcp any any eq 4444

access-list 101 remark "Backdoor.IRC.Cirebot"

access-list 101 deny tcp any any eq 57005

access-list 101 deny udp any any eq 57005

access-list 101 deny tcp any any range 1235 1238

access-list 101 remark "Kita Worm"

access-list 101 deny udp any any eq 1204

access-list 101 deny tcp any any eq 593

access-list 101 deny tcp any any eq 28290

access-list 101 deny tcp any any eq 12345

access-list 101 remark "Bagle.P"