Re: VACL - two methods...

From: Tarun Pahuja (pahujat@gmail.com)
Date: Mon Jun 11 2007 - 20:47:52 ART

• Next message: Mike Kraus \(mikraus\): "RE: VACL - two methods..."
• Previous message: Brian Dennis: "Re: VACL - two methods..."
• Maybe in reply to: Mike Kraus \(mikraus\): "VACL - two methods..."
• Next in thread: Mike Kraus \(mikraus\): "RE: VACL - two methods..."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Mike,
          I guess you got the answer already. In VACLs, When a flow matches
a permit ACL entry, the associated action is taken and the flow is not
checked against the remaining sequences. When a flow matches a deny ACL
entry, it will be checked against the next ACL in the same sequence or the
next sequence. If a flow does not match any ACL entry and at least one ACL
is configured for that packet type, the packet is denied.

HTH,
Tarun Pahuja
CCIE#7707(R&S,Security,SP,Voice,Storage),CCSI

• Next message: Mike Kraus \(mikraus\): "RE: VACL - two methods..."
• Previous message: Brian Dennis: "Re: VACL - two methods..."
• Maybe in reply to: Mike Kraus \(mikraus\): "VACL - two methods..."
• Next in thread: Mike Kraus \(mikraus\): "RE: VACL - two methods..."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sun Jul 01 2007 - 17:24:48 ART