Confused on Reflexive ACL

From: Bob Nelson (nelsnjr@cox.net)
Date: Sun Jul 15 2007 - 23:19:31 ART

• Next message: Serhat Aslan: "Re: Off the topic. What is the equivalent of IOS's "send *" in"
• Previous message: Con Spathas: "RE: vwic-mft-t1 vs vwic2-mft-t1"
• Next in thread: Salau, Yemi: "RE: Confused on Reflexive ACL"
• Maybe reply: Salau, Yemi: "RE: Confused on Reflexive ACL"
• Maybe reply: Eric Dobyns: "RE: Confused on Reflexive ACL"
• Maybe reply: Muhammad Nasim: "Re: Confused on Reflexive ACL"
• Maybe reply: Salau, Yemi: "RE: Confused on Reflexive ACL"
• Maybe reply: Eric Dobyns: "RE: Confused on Reflexive ACL"
• Maybe reply: Salau, Yemi: "RE: Confused on Reflexive ACL"
• Maybe reply: sam s: "RE: Confused on Reflexive ACL"
• Maybe reply: Clay K Auch \(clauch\): "RE: Confused on Reflexive ACL"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

All:

I searched through the archives and did not find what I was looking for. I
looked through the Cisco documentation and found some conflicting
information on the same topic. Here are couple of quick questions:

1. On an exterior interface, is the extended applied in the outbound or
inbound direction? My belief was that if applied in the outbound, that
would create the entry in the nested ACL and allow return traffic back into
the network. Clarify??

2. On an external facing interface, with NAT (outside) configured, will
reflexive ACLs even work?

3. Unsure about the evaluate command. Cisco says the default is not to use
it, but what does it do as opposed to the regular reflexive ACL?

Thanks and regards,

Bob

• Next message: Serhat Aslan: "Re: Off the topic. What is the equivalent of IOS's "send *" in"
• Previous message: Con Spathas: "RE: vwic-mft-t1 vs vwic2-mft-t1"
• Next in thread: Salau, Yemi: "RE: Confused on Reflexive ACL"
• Maybe reply: Salau, Yemi: "RE: Confused on Reflexive ACL"
• Maybe reply: Eric Dobyns: "RE: Confused on Reflexive ACL"
• Maybe reply: Muhammad Nasim: "Re: Confused on Reflexive ACL"
• Maybe reply: Salau, Yemi: "RE: Confused on Reflexive ACL"
• Maybe reply: Eric Dobyns: "RE: Confused on Reflexive ACL"
• Maybe reply: Salau, Yemi: "RE: Confused on Reflexive ACL"
• Maybe reply: sam s: "RE: Confused on Reflexive ACL"
• Maybe reply: Clay K Auch \(clauch\): "RE: Confused on Reflexive ACL"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sat Aug 18 2007 - 08:17:41 ART