Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
603
Views
0
Helpful
1
Replies

Ports/vlan w/o need for acl

Go to solution
viningele
Level 3
Level 3

‎01-21-2014 06:46 PM

On a port or vlan that doesn't need acl filtering is it more effecient to have nothing or a single permit ip any any?  I understand that there's a default implied deny ip any any to block anything not allowed in a proceeding permit statement  but I assume that only applies if an acl is assigned so I would think if you're going to just permit ip any any in an acl with out any denying before it i's better not to waste any processor time running packets through an acl filter since there's nothing to be rejected anyway.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Tom Watts
VIP Alumni
VIP Alumni

‎01-23-2014 08:14 AM

Hi Vini, if I interpret correctly, there is no need for an acess list as it just takes system resources for no need.

-Tom
Please mark answered for helpful posts

-Tom Please mark answered for helpful posts http://blogs.cisco.com/smallbusiness/

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Tom Watts
VIP Alumni
VIP Alumni

‎01-23-2014 08:14 AM

Hi Vini, if I interpret correctly, there is no need for an acess list as it just takes system resources for no need.

-Tom
Please mark answered for helpful posts

-Tom Please mark answered for helpful posts http://blogs.cisco.com/smallbusiness/
0 Helpful
Customers Also Viewed These Support Documents