Gibt es einen Leistungsvorteil, wenn das in einer erweiterten ACL eingerichtete IP-Zugriffslistenschlüsselwort verwendet wird?? Wird verwendet “gegründet” Machen Sie die Zugriffsliste anfälliger? Haben Sie konkrete Anwendungsbeispiele??

There is no real performance advantage. The keyword establishedsimply means that packets with the acknowledgment (ACK) or reset (RST) bits set are let through. To learn more about ACLs in general, refer to Configuring IP Access Lists.

The establishedkeyword allows the internal hosts to make external TCP connections and to receive the return control traffic. In most scenarios, this type of ACL would be essential on a firewall configuration. The same result can also be achieved either by using Reflexive ACLs or Context-Based Access Control. Refer to Configuring Commonly Used IP ACLsfor some sample configurations.