On 04/06/2008, at 10:05 PM, Robert Blayzor wrote: > ACL's are very basic and are not stateful in any way Reflexive ACLs are kind of a "poor mans" stateful filter. I use them in a couple of places and they are effective, but they can and do become very big and unwieldly. They wont replace a proper stateful firewall though.