02-05-2008 04:12 AM - edited 03-09-2019 08:02 PM
Hi all,
I am new to security principles,
we have one access-list like
deny icmp any host 192.168.49.255
but do we need that if the default
no ip direct-broadcast enabled?
Thanks in advance
Gobinath.
Solved! Go to Solution.
02-05-2008 04:26 AM
These features do the same thing. The Access List is denying the broadcast to the 192.168.49.xx subnet and the No IP Directed Broadcast is also denying broadcasts to hit the interface of the router. Assuming the Access-Lists is applied to the same interface as the No IP Directed Broadcast, Yes they are doing the same thing. You can remove the statement from the ACL. That would be the most efficient way to streamline your configuration...
02-05-2008 04:26 AM
These features do the same thing. The Access List is denying the broadcast to the 192.168.49.xx subnet and the No IP Directed Broadcast is also denying broadcasts to hit the interface of the router. Assuming the Access-Lists is applied to the same interface as the No IP Directed Broadcast, Yes they are doing the same thing. You can remove the statement from the ACL. That would be the most efficient way to streamline your configuration...
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide