You could hack (or patch) the management firmware to be a bit more (pseudo)random about it, though it would still be pseudorandom LFSR/Xorshift with a (long) repetition cycle. Or make it dependant upon an external factor (if the modulo 12 of the cumulative sum of all observed packet-de...
The entire ACL is stopped when a match is made? So further packets with non matching ip addresses are processed by restarting the ACL list processing from the top? Yes, once a match is made that is it, no more entries in the acl are checked. Each packet is checked in isolation against...