Mon, Sep 25, 2006 at 10:49:21PM -0700, Lance Vermilion:
> John,
> I wish I still had a lab to show you the output of how ordering can affect the ACL. As you probably already know, ACLs work top down and when the line in the ACL that matches first is up front you save x msecs as opposed to the line being the last line in the ACL.
> I would say though that it doesn't matter for the vast majority of people what order the lines are in the ACL as long as the permit/deny order doesn't change. The biggest impact of ACL ordering is for the PIX in my opinion because of gig interfaces.

Yes, I understand this.  Someone, please share an ACL (private e-mail if you
must) that gets buggered by the sorting.  Maybe we just need to more fields
in the sort key. :)

