Router Access Lists

The router access list does not affect the MLS flow. After the packets hit the access list, any subsequent packets will be MLS switched. The role of the access list is in the initial flow. If the router access list denies the traffic from Host1 to Host2, the MLS entry will never be created.

If the log parameter is enabled in the access list, all traffic will be process switched. The log parameter can be CPU intensive and dramatically affect the performance of the router. The access list 1 is created to log all IP traffic that traverses through the router. This is only for testing purposes and should not be enabled in the production network. If the log parameter will be used, ensure that it is very specific and granular (see ...

Get Cisco LAN Switching Fundamentals now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.