Downloadable ACLs Overview DACLs are pushed from ISE to network devices during authorization. Sample DACLs PERMIT-ALL permit ip any any PERMIT-LIMITED permit udp any any eq 53 permit tcp any any eq 443 permit tcp any any eq 80 deny ip any any DENY-ALL deny ip any any log Creating DACLs Navigate to Policy > Results > Authorization > Downloadable ACLs Click Add Enter name and ACL content Save Considerations Syntax varies by NAD platform Test on each platform type Keep ACLs simple and readable Use logging sparingly (performance) Authorization Profiles Conditions Overview