[tac_plus] Re: Multiple groups, multiple ACL-s
Karen Durinyan
karen.durinyan at gmail.com
Fri Apr 2 11:53:11 UTC 2010
Dear Gabor,
I mean after omitting "return"...
If I do not have return in the end of ACL it is equivalent deny .*
And after that:
>>I can login only on to router which is defined in acl of 1st group i.e. in my
case it is racc1. Access to edge1 is denied.
--
Bests,
Karen
On Friday 02 April 2010 16:38:00 Kiss Gabor (Bitman) wrote:
> > > Another test: what happens if you omit "return .*" lines from ACL-s?
> >
> > If I omit "return .*" (which is equivalent deny .* as I understand) I can
>
> No, it is not.
> "return" means: "do not decide now but continue search in the config tree".
>
> Gabor
More information about the tac_plus
mailing list