From: Xiangrong Wang (xiangrow@cisco.com)
Date: Thu Jun 24 2004 - 16:46:02 GMT-3
Well, this was introduced by the 'login enhancement' starting from 12.3(4)T.
This is a bug actually, because it's an internal ACL, and should not show
up either in running-config nor "show access-list". The defect was already
resolved and will be integrated in new T train images soon.
thanks,
Xiangrong
At 10:00 AM 06/24/04 -0500, Zachary Hinz wrote:
>Hello,
>
>I just received and installed a brand new (not refurbished) router and it
>has an ACL on it that isn't applied and doesn't show up in the config. It
>can only be seen by issuing the command "show ip access-lists." The
>router is a 2621XM with the VPN AIM in it. It is running
>c2600-advipservicesk9-mz.123-4.T4.bin. The name of the ACL that displays
>is "sl_def_acl." I've googled it and get no info on this ACL. It don't
>see that it is applied anywhere and it hasn't taken any hits. Here is the ACL.
>
>Extended IP access list sl_def_acl
> 10 deny tcp any any eq telnet log
> 20 deny tcp any any eq www log
> 30 deny tcp any any eq 22 log
> 40 permit ip any any log
>
>Anyone have any info on this.
>
>Zac Hinz
>CCIE 12,419
This archive was generated by hypermail 2.1.4 : Sat Jul 03 2004 - 19:40:49 GMT-3