Your SlideShare is downloading. ×
Objectives•   extended IP access lists•   Create named access lists                                www.cbtvid.com         ...
OSI Reference Model                           www.cbtvid.com                      Extended ACL Page 2
IP Packet            From TCP/IP Protocol Suite p.180 by Behrouz Forouzan McGrawHill                                      ...
TCP Segment         From TCP/IP Protocol Suite p.282 by Behrouz Forouzan McGrawHill                                   www....
Extended ACL •   Can filter by source IP address,     destination IP address, protocol type,     and application port numb...
EACL• Extended ACL must be configured on the router or firewall  closest to the source• Extended ACLs must be applied to t...
Scenario           PC2                        smtp                       smtp                      www.cbtvid.com         ...
Summary •   Extended ACLs work in the third and forth layer of OSI     Reference Model. •   Extended ACLs work by checking...
ReferenceMcQuerry, Stephen. (2008) Interconnecting Cisco Network Devices,Part 1 (ICND1): CCNA Exam 640-802 and ICND1 Exam ...
Upcoming SlideShare
Loading in...5
×

Extended ACL

624

Published on

Published in: Technology, Education
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
624
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
26
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Transcript of "Extended ACL"

  1. 1. Objectives• extended IP access lists• Create named access lists www.cbtvid.com Extended ACL Page 1
  2. 2. OSI Reference Model www.cbtvid.com Extended ACL Page 2
  3. 3. IP Packet From TCP/IP Protocol Suite p.180 by Behrouz Forouzan McGrawHill www.cbtvid.com Extended ACL Page 3
  4. 4. TCP Segment From TCP/IP Protocol Suite p.282 by Behrouz Forouzan McGrawHill www.cbtvid.com Extended ACL Page 4
  5. 5. Extended ACL • Can filter by source IP address, destination IP address, protocol type, and application port number • This granularity allows you to design extended IP access lists that: ○ Permit or deny a single type of IP protocol ○ Filter by a particular port of a particular protocol www.cbtvid.com Extended ACL Page 5
  6. 6. EACL• Extended ACL must be configured on the router or firewall closest to the source• Extended ACLs must be applied to the Interface closest to the source www.cbtvid.com Extended ACL Page 6
  7. 7. Scenario PC2 smtp smtp www.cbtvid.com Extended ACL Page 7
  8. 8. Summary • Extended ACLs work in the third and forth layer of OSI Reference Model. • Extended ACLs work by checking the source and destination IP addresses and ports. www.cbtvid.com Extended ACL Page 8
  9. 9. ReferenceMcQuerry, Stephen. (2008) Interconnecting Cisco Network Devices,Part 1 (ICND1): CCNA Exam 640-802 and ICND1 Exam 640-822, 2ndEdition Cisco Press ISBN: 978-1-58705-462-4Kelly Cannon, Kelly Caudle ,Anthony V. Chiarella (2009) CCNA Guideto Cisco Networking Fundamentals, International Edition, 4th EditionISBN-13:9780840031198 www.cbtvid.com Extended ACL Page 9

×