If ip access-group is configured on an interface but the access list referred to does not exist, there are some old versions of IOS that would enforce the default deny any. But it has been the action of IOS for a long time that if the access list does not exist to permit any.
Be aware that as soon as the access list exists with a single statement that there is also the default deny any. This may become an issue if you are doing maintenance on an access list and have removed it so you can rebuild it. When you remove it, the action becomes permit any. But when you add the first statement to rebuild it there is a deny any at the end of the access list.
We are pleased to announce availability of Beta software for 16.6.3.
16.6.3 will be the second rebuild on the 16.6 release train targeted
towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are
looking for early feedback from customers befor...
Introduction Featured Speakers Luis Espejel is the Telecommunications
Manager of IENova, an Oil & Gas company. Currently he works with Cisco
IOS® and Cisco IOS XE platforms, and NX to some extent. He has also
worked as a Senior Engineer with the Routing P...
In this session you can learn more about Layer 3 multicast and the best
practices to identify possible threats and take security measures. It
provides an overview of basic multicast, the best security practices for
use of this technology, and recommendati...