I am new to security principles,
we have one access-list like
deny icmp any host 192.168.49.255
but do we need that if the default
no ip direct-broadcast enabled?
Thanks in advance
These features do the same thing. The Access List is denying the broadcast to the 192.168.49.xx subnet and the No IP Directed Broadcast is also denying broadcasts to hit the interface of the router. Assuming the Access-Lists is applied to the same interface as the No IP Directed Broadcast, Yes they are doing the same thing. You can remove the statement from the ACL. That would be the most efficient way to streamline your configuration...