Last my collegue asked me what is the default ACL when you put access-group on a interface
when looking on cisco.com I found :
If the specified access list does not exist, all packets are passed.
But this is for routers, how is this for ASA firewalls?
Can anyone help us?
The ASA will not let you apply an ACL that is not configured. It will bark
ASA-5505(config)# access-g not-exist in interface inside
ERROR: access-list does not exist
I hope it helps.