I have a small network of about 300 nodes running on our Cat6513. I want verification of my ACL thoughts. Lets say I have an ACL on my Global inbound port (6/48-in) that states permit ip any
192,13.43.0 0.0.0.127.Now, also in the 6513, I have a vlan (Vlan2). this vlan's IP subnet is 192.13.43.0 0.0.0.127. This Vlan has an ACL on it's inbound port (vlan2-in).
A person tries to connect to 192.13.43.80 over tcp port 53. If
6/48-in has a permit ip any 192.13.43.0 0.0.0.127, But Vlan2-in has a deny tcp any host 192.13.43.80 eq 53, will the packet make it through?I guess the basic question is - since both ACL's reside in the same router, if the first one permits the traffic, does the traffic 'skip' passed the second ACL?
The boss and I have a free lunch riding on this one!