Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Attention: The Community will be in read-only mode on 12/14/2017 from 12:00 am pacific to 11:30 am.

During this time you will only be able to see content. Other interactions such as posting, replying to questions, or marking content as helpful will be disabled for few hours.

We apologize for the inconvenience while we perform important updates to the Community.

New Member

sl_def_acl ?

Hi to all,

Does anyone knows what is this access list (sl_def_acl) ?

I've found it making a "sh accces-list" command on a 837 Cisco router (IOS Version 12.3(4)).

It seems to be taken in consideration if applied with the inspection command.

There is a way in order to remove it?

Thanks for your precious attention.

1 ACCEPTED SOLUTION

Accepted Solutions
Silver

Re: sl_def_acl ?

This is the "Secure Login Default ACL". This access list is not applied on any of the interfaces and this is a new security feature added to the latest version of IOS. If a brute force attack is launched against the router, it can be configured to apply this ACL to the VTY,AUX & CON lines to prevent access after a configured amount of failed login attempts.

The link that describes it's use is

http://www.cisco.com/en/US/products/sw/iosswrel/ps5207/products_feature_guide09186a00801d1cb3.html

Since this is a part of the IOS, guess the only way to remove it would be to change the IOS running on your router to 12.2. But I don't see any need to do this if it does not affect the router.

2 REPLIES
Silver

Re: sl_def_acl ?

This is the "Secure Login Default ACL". This access list is not applied on any of the interfaces and this is a new security feature added to the latest version of IOS. If a brute force attack is launched against the router, it can be configured to apply this ACL to the VTY,AUX & CON lines to prevent access after a configured amount of failed login attempts.

The link that describes it's use is

http://www.cisco.com/en/US/products/sw/iosswrel/ps5207/products_feature_guide09186a00801d1cb3.html

Since this is a part of the IOS, guess the only way to remove it would be to change the IOS running on your router to 12.2. But I don't see any need to do this if it does not affect the router.

New Member

Re: sl_def_acl ?

Thanks a lot for your reply.

3851
Views
0
Helpful
2
Replies
CreatePlease to create content