Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Webcast-Catalyst9k
New Member

non existent ACL blocks traffic

hello,

we have a standard ACL applied to our router vty lines.

Yesterday we had a problem on one of our MSFC2.

The ACL 85 was not configured at all on the router

but the statement 'access-class 85 in' was configured on the vty line and all traffic was blocked. After we configured the ACL85 on the router, the vty lines where accessible again.

If i apply a non-existent ACL to an interface, is there a 'deny any' by default?

1 REPLY

Re: non existent ACL blocks traffic

Hi

Itz the default behaviour if u dont have the ACL statements and have an access-group configured it will ofcourse drop or wont allow the traffic traversal via the interface where its applied...

We had seen enough problems like this by accidently removing the ACL before removing the access-group from the interface level config..

regds

266
Views
0
Helpful
1
Replies
CreatePlease to create content