corrected / clarified, I knew
should've consulted my little black book on this one...CCNA factoids to know (according to the good book of Cisco) :
- standard ACLs are put close to the source and extended ACLs are put close to the destination.
For some reason CCNA
WILL drill these two points into you.
- ACLs are processed in top-down order
- there is an implicit deny at the end of every list, but as cramer pointed out, it depends on the
way the ACL is constructed
- ACLs use the wildcard mask, ie. "permit 192.168.1.0 0.0.0.255" would permit anything matching pattern
192.168.1.[anything]. The way to think of how this operates is for a 0 means that particular bit will
be checked for a match, while a 1 means it will not be checked for a match.
Thanks for the correction cramer
EDIT : wanted to ask where you came across about an 'implicit permit'. First time I've heard of it.
Regards