Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
3773
Views
15
Helpful
6
Replies

What happens if you don't apply an access list to an interface? Does it have any affect on trafic?

Go to solution
David Kosek
Level 1
Level 1

‎03-27-2018 08:23 AM - edited ‎03-08-2019 02:25 PM

I have quite a few switches that the previous admin created ACLs on but didn't assign them to an interface. These are mostly standard ACLs. Do those ACLs affect traffic? 

1 person had this problem
Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Reza Sharifi
Hall of Fame
Hall of Fame

‎03-27-2018 08:28 AM

If ACL is not applied to a physical interface or an SVI, it will not have any effect.

HTH

View solution in original post

Go to solution
gs.skills
Level 1
Level 1

‎03-27-2018 08:29 AM - edited ‎03-27-2018 08:34 AM

Hello,

be aware that ACLs could be used for others purposes others than interface traffic filtering: like NAT, VLAN ACL, Policy Based Routing, filtering vty line access,...

So its perfectly valid to have some ACLs not applied to interfaces.

[EDIT]and many of those features do affect traffic[/EDIT]

Regards, Guillaume

View solution in original post

6 Replies 6

Go to solution
Reza Sharifi
Hall of Fame
Hall of Fame

‎03-27-2018 08:28 AM

If ACL is not applied to a physical interface or an SVI, it will not have any effect.

HTH

Go to solution
gs.skills
Level 1
Level 1

‎03-27-2018 08:29 AM - edited ‎03-27-2018 08:34 AM

Hello,

be aware that ACLs could be used for others purposes others than interface traffic filtering: like NAT, VLAN ACL, Policy Based Routing, filtering vty line access,...

So its perfectly valid to have some ACLs not applied to interfaces.

[EDIT]and many of those features do affect traffic[/EDIT]

Regards, Guillaume

Go to solution
Richard Burts
Hall of Fame
Hall of Fame
In response to gs.skills

‎03-27-2018 08:39 AM

Guillaume makes an important point (+5 for that) and I would like to emphasize it. The general answer to the original question is that if an access list is not applied then it will not affect anything. But we need to remember that an access list can be used for many things other than traffic filtering on an interface using ip access-group.

 

HTH

 

Rick

HTH

Rick
0 Helpful

Go to solution
Deepak Kumar
VIP Alumni
VIP Alumni

‎03-27-2018 08:38 AM

Hi, 

As you mention that he was created some ACL but didn't apply then it is waste of time. But make sure that there are many features/way to use ACL. Maybe he was used in Line VTY, route-map, debug testing, control panel etc. 

 

Regards,

Deepak Kumar

Regards,
Deepak Kumar,
Don't forget to vote and accept the solution if this comment will help you!
0 Helpful

Go to solution
Joseph W. Doherty
Hall of Fame
Hall of Fame

‎03-27-2018 10:46 AM

Might an unused ACL affect traffic? Possibly, but very, very (very) unlikely.

In the case where an ACL isn't being used for any purpose, it still consumes RAM (the running config). RAM used to store an ACL is RAM unavailable for other usage. Again, though, very, very (very) unlikely.
0 Helpful

Go to solution
David Kosek
Level 1
Level 1

‎06-05-2018 12:44 PM

Thanks for the replies!

0 Helpful
Top