acls not applied to any interfaces on l3 switch

Hi All,

I am working on a L3 switch with about 300 ports and someone created a ton of access-lists, maybe 200 lines worth but none are applied to any interfaces.  

Why would someone spend so much time and not apply any of the acls?  

Just trying to understand, maybe it was not intentional that they did not apply but since I asked around others on my team, no one knows I figured I'd see what others had to say in terms of what comes to mind first.

Who is Participating?
SouljaConnect With a Mentor Commented:
They could have possibly been used for an interface in the past, but you must also remember ALC's aren't just used to enforce security on interfaces but are also used for match traffic for route maps, distribute lists, etc.
pony10usConnect With a Mentor Commented:
One possibility is that they were assigned to interfaces at the time they were created and have not been removed when no longer needed.  We are in the process of cleaning up our routers and L3 switches from just that situation.  

Some technicians get in a hurry and remove the assignment but don't complete the process thinking they will do it later.
Craig BeckConnect With a Mentor Commented:
They may have been created to log certain types of traffic, or to/from specific IP addresses or ports, for example.

You can log traffic in real-time based on an ACL.
rotarypwrAuthor Commented:
All good answers.  Thank you for your guidance.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.