An access list question

Hi all

i've been puzzling a quetion from one of my ccna practical test!! here is the question below:

access-list 120 deny tcp host 192.168.15.4 any eq 21

wrong answer: Host 192.168.15.4 will be denied ftp access to any destination, but will be permitted all other access

correct answer: All traffic from that interface will be denied.

however, i think the 1st answer s not wrong!!!!! wot do u guys think???? please let me know, thnx you!!!

Hi ccnx,

First answer is worng.

as per access list it will block ftp traffic. There is an implicit deny command at the end of every access list. since there is no permit command, this configuration will block all traffic. if u want to allow other traffic u have to apply ip permit any any command after ftp deny.