Ip Acess List question regarding the technotes

mobri09mobri09 Users Awaiting Email Confirmation Posts: 723
in CCNA & CCENT
The little scenerio question for Standard ACL's in the technotes
http://www.techexams.net/technotes/ccna/accesslists.shtml
I might be wrong but shouldn't the ACL be applied to the S1 interface instead of the E0 interface.

Cisco press and Sybex states for Standard ACL's ... it should be closest to the destination.
· Share on FacebookShare on Twitter

Comments

  • NetstudentNetstudent Member Posts: 1,693 ■■■□□□□□□□
    Yes that is a rule of thumb, however in that example there is only one single router with 3 hosts. There is no need to put it on an outbound interface. If you put the ACL as out, then the router will process the packet, and then the ACL will be checked. So you would be wasting some CPU by putting it on the outbound interface. It really depends on the implementation on what is the best solution. There is no "one rule" that fits all situations. Those rules are for best practices.
    There is no place like 127.0.0.1 BUT 209.62.5.3 is my 127.0.0.1 away from 127.0.0.1!
    · Share on FacebookShare on Twitter
  • mobri09mobri09 Users Awaiting Email Confirmation Posts: 723
    gotcha - thank you for the fast reply!
    The technotes are great for access-lists :)
    · Share on FacebookShare on Twitter
Sign In or Register to comment.