Chapter 1
Configuring Security Access Control Lists
Inbound and Outbound ACLs
Note
OL-16202-01
Traffic that flows across an interface in the ACE can be controlled in two ways:
You can control traffic that enters the ACE by attaching an inbound ACL to
•
the source interface.
You can control traffic that exits the ACE by attaching an outbound ACL to
•
the destination interface.
To allow any traffic to enter the ACE, you must attach an inbound permit ACL to
an interface; otherwise, the ACE automatically refuses all traffic that enters that
interface. By default, traffic can exit the ACE on any interface unless you restrict
it by using an outbound ACL, which adds restrictions to those ACLs already
configured in the inbound ACL.
Inbound and outbound refer to the application of an ACL on an interface, either
to traffic entering the ACE on an interface or traffic exiting the ACE on an
interface.
Cisco 4700 Series Application Control Engine Appliance Security Configuration Guide
ACL Configuration Examples
1-35