Wednesday, November 29, 2017

If I add an ACL on L2 port and and ACL on L3 interface, which one of them has a higher priority?

So let's say I do this

interface vlan 100 ip add 1.1.1.1/24 ip access-group 11 interface fa0/1 description Host=1.1.1.2 switchport access vlan 100 ip access-group 22 access-list 11 10 deny 1.1.1.2 access-list 22 5 permit 1.1.1.2

Which one should work first and why?



at
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)