Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ACL operation.

What will happen if delete the access list acl_outbound that still is applied to the inside interface, traffic will stop or will flow freely n pix?

access−group acl_outbound in interface inside

Thanks in advance

1 ACCEPTED SOLUTION

Accepted Solutions
New Member

Re: ACL operation.

Already established connections do not get checked by access-list. So, even if you remove the access-list, the existing connections will still continue to work. However, new connections may be affected depending on the traffic flow e.g if traffic is going from higher security to lower security, it will be permitted but traffic from lower to higher will be blocked.

3 REPLIES
New Member

Re: ACL operation.

The traffic will stop.

You need an ACL to define the IP traffic that is allowed through the interface. If you want to change the ACL completely you could configure a new ACL (with a different name) and then use the command'access-group NEW_ACL_NAME in interface inside' to apply it. There should be no interruption to traffic flow (assuming the new ACL is configured correctly).

New Member

Re: ACL operation.

assuming that i did not configure the nje ACL and a leave the old ALC applied on that insede interface?

what happen?

thanks

New Member

Re: ACL operation.

Already established connections do not get checked by access-list. So, even if you remove the access-list, the existing connections will still continue to work. However, new connections may be affected depending on the traffic flow e.g if traffic is going from higher security to lower security, it will be permitted but traffic from lower to higher will be blocked.

113
Views
0
Helpful
3
Replies
CreatePlease login to create content