I wish there's a consistency in Cisco world handling exceptions. Permit and denies use has always drove me mad. What about "deny" in the ACL when we want to exempt hosts/networks from being matched in the class-map and permit when we want to match them. And if doing ASA then one has to flip things around...
Eugene On Aug 22, 2012, at 8:41 PM, "Karthik sagar" <[email protected]> wrote: > Just FYI, > > On ASA , it works the other way around with the 'filter' command. We need to > specify the traffic for which filtering will be applied. > With IOS-CBAC, the access-list is actually the "exception list". > > Regards, > Karthik _______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com
