CCNA Exam: ACL # 3

Hi,

1) This is related to CCNA Exam.
2) This is related to the question discussed at one of the prep test
3) The question: " In this network, an access list has been designed to prevent HTTP traffic from the subnet 172.16.16.0/24 from reaching the server at 177.17.17.252"
4) I know the ACL will be:
-deny tcp 172.16.16.0 0.0.0.255 172.17.17.252 0.0.0.0 eq 80
-permit ip any any
5) My question: Does this ACL will result in the same effect if we put the other way round, such as
-permit ip any any
-deny tcp 172.16.16.0 0.0.0.255 172.17.17.252 0.0.0.0 eq 80
6)If it is wrong, what is the effect of the later ACL?
7) Thank you

Tjie

tjieAsked:
Who is Participating?
 
atlas_shudderedSr. Network EngineerCommented:
No Tije, the second ACL will allow all traffic.  Each packet that hits the ACL will be allowed through with the first line, never reaching the second or the implicit deny all which follows.
0
 
fritz5150Commented:
Atlas is 100% correct ACL's are processed from the top down. The first ACL that matches will allow the traffic through unimpeded. The second ACL will never be processed by the router or switch.

0
 
tjieAuthor Commented:
- Yes, the one that i thought
- Once i made a typo mistake and continued and wrote it again after the following row; i should delete it at  the first place
- Thank you for the confirmation from both of you
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.