Which three statements describe how an ACL processes packets? (Choose three.)

Which three statements describe how an ACL processes packets? (Choose three.)

• A packet is compared with all ACEs in the ACL before a forwarding decision is made.
• A packet that has been denied by one ACE can be permitted by a subsequent ACE.
• An implicit deny at the end of an ACL rejects any packet that does not match an ACE.
• Each ACE is checked only until a match is detected or until the end of the ACL.
• If an ACE is matched, the packet is either rejected or forwarded, as directed by the ACE.
• If an ACE is not matched, the packet is forwarded by default.

Explanation: If the information in a packet header and an ACL statement match, the rest of the statements in the list are skipped, and the packet is permitted or denied as specified by the matched statement. If a packet header does not match an ACL statement, the packet is tested against the next statement in the list. This matching process continues until the end of the list is reached. At the end of every ACL is an implicit “deny any” statement that is applied to all packets for which conditions did not test true and results in a “deny” action.

Exam with this question: 4.5.2 Module Quiz - ACL Concepts