Doubt on correct answer

[Mcdonald Musimwa]

From my understanding In Network ACLs (NACLs), rules are evaluated in order from lowest number to highest, and the first matching rule wins — no exceptions, even if a later rule would seem more general or permissive.

If there is a request from IP: 110.238.109.37

For example in the attached picture

Even though Rule 101 denies the packet rule 100 allows all trafficand since it appears before 101.

In Network ACLs (NACLs), rules are evaluated in order from lowest number to highest, and the first matching rule wins — no exceptions, even if a later rule would seem more general or permissive.

I select that the request will be Allowed since the rule 100 is evaluated before a deny but i was marked wrong. The correct answer was the request will denied , which does not make sense rule 101 will not be reached as the match was found on rule 100

[Nikee-TutorialsDojo]

Hello Mcdonald,

You’re absolutely right, and thank you for pointing this out so clearly.

In Network ACLs (NACLs), rules are indeed evaluated in order from the lowest number to the highest, and the first matching rule determines the outcome, with no exceptions. So, if rule 100 allows the traffic and matches first, the request should be allowed, and rule 101 would not be evaluated.

We’ve already reviewed and updated the item based on this, and the changes will be reflected soon. Thanks again for your careful review and for helping us improve the accuracy of the content!

Best Regards,

Nikee @ Tutorials Dojo