Blocking on a router

Unanswered Question
Jun 6th, 2007

If I want to enable a router to block traffic based on a triggered signature from an IPS sensor, and that router currently doesn't have an existing ACL on the interface that will participate in the block, will the ACL be dynamically created? What I'm trying to account for is the blocking of all traffic with the implicit deny all at the end of any ACL.

thank you,


I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
WILLIAM STEGMAN Wed, 06/06/2007 - 12:11

nevermind, I threw caution to the wind and tried it on our production environment and can say it adds ip permit any any to the end of the dynamic ACL.


This Discussion