SlideShare a Scribd company logo

Ip Access Lists

C
CCNAResources

This document summarizes IP access control lists (ACLs), including the syntax for standard and extended ACLs, supported source/destination definitions, TCP/UDP port definitions, options for applying and troubleshooting ACLs. Standard ACLs filter based on source IP address while extended ACLs can also filter based on protocol, source/destination ports, flags, and other options. Numbers, names, sequences and actions (permit, deny) are used to configure individual ACL rules.

Technology
1 of 1
Download to read offline
IP ACCESS LISTS CCNA4.com Standard IP ACL Syntax Actions ! Legacy syntax permit Allow matched packets access-list <number> {permit | deny} <source> [log] deny Deny matched packets ! Modern syntax remark Record a config comment ip access-list standard {<number> | <name>} [<sequence>] {permit | deny} <source> [log] evaluate Evaluate a reflexive ACL Extended IP ACL Syntax ! Legacy syntax access-list <number> {permit | deny} <protocol> <source> [<ports>] <destination> [<ports>] [<options>] ! Modern syntax ip access-list extended {<number> | <name>} [<sequence>] {permit | deny} <protocol> <source> [<ports>] <destination> [<ports>] [<options>] ACL Numbers Source/Destination Definitions 1-99 any Any address IP standard 1300-1999 host <address> A single address 100-199 IP extended <network> <mask> Any address matched by the wildcard mask 2000-2699 200-299 Protocol IP Options 300-399 DECnet dscp <DSCP> Match packets with the given DSCP value 400-499 XNS fragments Check non-initial fragments 500-599 Extended XNS option <option> Match packets with the specified IP option 600-699 Appletalk precedence <0-7> Match packets with the given precedence value 700-799 Ethernet MAC ttl <count> Match packets with the given Time To Live 800-899 IPX standard TCP/UDP Port Definitions 900-999 IPX extended eq <port> Equal to neq <port> Not equal to 1000-1099 IPX SAP lt <port> Less than gt <port> Greater than 1100-1199 MAC extended range <port> <port> Matches a range of port numbers 1200-1299 IPX summary Miscellaneous Options TCP Options reflect <name> Create a reflexive ACL ack Match ACK flag time-range <name> Enable rule only during the specified time range fin Match FIN flag Applying ACLs to Restrict Traffic psh Match PSH flag interface FastEthernet0/0 rst Match RST flag ip access-group {<number> | <name>} {in | out} syn Match SYN flag Troubleshooting urg Match URG flag show access-lists {<number> | <name>} established Match packets in a pre- established session show ip access-lists {<number> | <name>} show ip access-lists interface <interface> Logging Options show ip access-lists dynamic log Log ACL entry matches show ip interface [<interface>] log-input Log matches with ingress interface and source MAC show time-range [<name>] by Jeremy Stretch v1.1

Recommended

Ios i pv4_access_lists
Ios i pv4_access_listsIos i pv4_access_lists
Ios i pv4_access_listsMohamed Gamel
 
Arp Dan Ipconfig Syntax
Arp Dan Ipconfig SyntaxArp Dan Ipconfig Syntax
Arp Dan Ipconfig Syntaxguestcc37e8c
 
Cisco vs. huawei CLI Commands
Cisco vs. huawei CLI CommandsCisco vs. huawei CLI Commands
Cisco vs. huawei CLI CommandsBootcamp SCL
 
Dhcp commandas
Dhcp commandasDhcp commandas
Dhcp commandasLuis Martinez
 
DNS, DHCP Configuration
DNS, DHCP Configuration DNS, DHCP Configuration
DNS, DHCP Configuration Anik Saha
 
Scapy
ScapyScapy
ScapyMohamed Gamel
 
Mysql
MysqlMysql
MysqlHAINIRMALRAJ
 
Dhcpsession
DhcpsessionDhcpsession
Dhcpsessionguest648519
 

Recommended

Ios i pv4_access_lists
Ios i pv4_access_listsIos i pv4_access_lists
Ios i pv4_access_listsMohamed Gamel
 
Arp Dan Ipconfig Syntax
Arp Dan Ipconfig SyntaxArp Dan Ipconfig Syntax
Arp Dan Ipconfig Syntaxguestcc37e8c
 
Cisco vs. huawei CLI Commands
Cisco vs. huawei CLI CommandsCisco vs. huawei CLI Commands
Cisco vs. huawei CLI CommandsBootcamp SCL
 
Dhcp commandas
Dhcp commandasDhcp commandas
Dhcp commandasLuis Martinez
 
DNS, DHCP Configuration
DNS, DHCP Configuration DNS, DHCP Configuration
DNS, DHCP Configuration Anik Saha
 
Scapy
ScapyScapy
ScapyMohamed Gamel
 
Mysql
MysqlMysql
MysqlHAINIRMALRAJ
 
Dhcpsession
DhcpsessionDhcpsession
Dhcpsessionguest648519
 
Sockets intro
Sockets introSockets intro
Sockets introAviNash ChaVhan
 
Network configuration
Network configurationNetwork configuration
Network configurationengshemachi
 
Sockets
SocketsSockets
SocketsRajesh Kumar
 
ops300 Week8 gre
ops300 Week8 greops300 Week8 gre
ops300 Week8 gretrayyoo
 
Termux commands-list
Termux commands-listTermux commands-list
Termux commands-listDhanushR24
 
Protocol
ProtocolProtocol
ProtocolPrem Sahu
 
Npc08
Npc08Npc08
Npc08vamsitricks
 
Socket programming in C
Socket programming in CSocket programming in C
Socket programming in CDeepak Swain
 
Linux
LinuxLinux
Linuxmerlin deepika
 
Linux
LinuxLinux
LinuxYuvaraja Rajenderan
 
Socket programming in c
Socket programming in cSocket programming in c
Socket programming in cMd. Golam Hossain
 
Socket Programming it-slideshares.blogspot.com
Socket Programming it-slideshares.blogspot.comSocket Programming it-slideshares.blogspot.com
Socket Programming it-slideshares.blogspot.comphanleson
 
Linux com
Linux comLinux com
Linux comMohanKumar Palanichamy
 
Linux Commands
Linux CommandsLinux Commands
Linux Commandslucita cabral
 
Disable sharing Option for folder
Disable sharing Option for folderDisable sharing Option for folder
Disable sharing Option for folderNagarajan Kamalakannan
 
Install Linux CentOS 6 x86_64 - minimum installation
Install Linux CentOS 6 x86_64 - minimum installationInstall Linux CentOS 6 x86_64 - minimum installation
Install Linux CentOS 6 x86_64 - minimum installationMehdi Poustchi Amin
 
Ccna Wireless Study Guide
Ccna Wireless Study GuideCcna Wireless Study Guide
Ccna Wireless Study GuideCCNAResources
 
Ubuntu Practice and Configuration
Ubuntu Practice and ConfigurationUbuntu Practice and Configuration
Ubuntu Practice and ConfigurationManoj Sahu
 
Self Test Study Guide Sample
Self Test Study Guide SampleSelf Test Study Guide Sample
Self Test Study Guide SampleLiquidHub
 
Dba i 9i
Dba i 9iDba i 9i
Dba i 9iDanyer Valencia Llamoca
 
Kanchilug
KanchilugKanchilug
KanchilugNagarajan Kamalakannan
 
Net practicals lab mannual
Net practicals lab mannualNet practicals lab mannual
Net practicals lab mannualAbhishek Pathak
 

More Related Content

What's hot

Network configuration
Network configurationNetwork configuration
Network configurationengshemachi
 
ops300 Week8 gre
ops300 Week8 greops300 Week8 gre
ops300 Week8 gretrayyoo
 
Termux commands-list
Termux commands-listTermux commands-list
Termux commands-listDhanushR24
 
Socket programming in C
Socket programming in CSocket programming in C
Socket programming in CDeepak Swain
 
Socket Programming it-slideshares.blogspot.com
Socket Programming it-slideshares.blogspot.comSocket Programming it-slideshares.blogspot.com
Socket Programming it-slideshares.blogspot.comphanleson
 

What's hot (14)

Sockets intro
Sockets introSockets intro
Sockets intro
 
Network configuration
Network configurationNetwork configuration
Network configuration
 
Sockets
SocketsSockets
Sockets
 
ops300 Week8 gre
ops300 Week8 greops300 Week8 gre
ops300 Week8 gre
 
Termux commands-list
Termux commands-listTermux commands-list
Termux commands-list
 
Protocol
ProtocolProtocol
Protocol
 
Npc08
Npc08Npc08
Npc08
 
Socket programming in C
Socket programming in CSocket programming in C
Socket programming in C
 
Linux
LinuxLinux
Linux
 
Linux
LinuxLinux
Linux
 
Socket programming in c
Socket programming in cSocket programming in c
Socket programming in c
 
Socket Programming it-slideshares.blogspot.com
Socket Programming it-slideshares.blogspot.comSocket Programming it-slideshares.blogspot.com
Socket Programming it-slideshares.blogspot.com
 
Linux com
Linux comLinux com
Linux com
 
Linux Commands
Linux CommandsLinux Commands
Linux Commands
 

Viewers also liked

Install Linux CentOS 6 x86_64 - minimum installation
Install Linux CentOS 6 x86_64 - minimum installationInstall Linux CentOS 6 x86_64 - minimum installation
Install Linux CentOS 6 x86_64 - minimum installationMehdi Poustchi Amin
 
Ccna Wireless Study Guide
Ccna Wireless Study GuideCcna Wireless Study Guide
Ccna Wireless Study GuideCCNAResources
 
Ubuntu Practice and Configuration
Ubuntu Practice and ConfigurationUbuntu Practice and Configuration
Ubuntu Practice and ConfigurationManoj Sahu
 
Self Test Study Guide Sample
Self Test Study Guide SampleSelf Test Study Guide Sample
Self Test Study Guide SampleLiquidHub
 
Net practicals lab mannual
Net practicals lab mannualNet practicals lab mannual
Net practicals lab mannualAbhishek Pathak
 
Outlook 2007-pop
Outlook 2007-popOutlook 2007-pop
Outlook 2007-popBingkeSoft
 

Viewers also liked (12)

Disable sharing Option for folder
Disable sharing Option for folderDisable sharing Option for folder
Disable sharing Option for folder
 
Install Linux CentOS 6 x86_64 - minimum installation
Install Linux CentOS 6 x86_64 - minimum installationInstall Linux CentOS 6 x86_64 - minimum installation
Install Linux CentOS 6 x86_64 - minimum installation
 
Ccna Wireless Study Guide
Ccna Wireless Study GuideCcna Wireless Study Guide
Ccna Wireless Study Guide
 
Ubuntu Practice and Configuration
Ubuntu Practice and ConfigurationUbuntu Practice and Configuration
Ubuntu Practice and Configuration
 
Self Test Study Guide Sample
Self Test Study Guide SampleSelf Test Study Guide Sample
Self Test Study Guide Sample
 
Dba i 9i
Dba i 9iDba i 9i
Dba i 9i
 
Kanchilug
KanchilugKanchilug
Kanchilug
 
Net practicals lab mannual
Net practicals lab mannualNet practicals lab mannual
Net practicals lab mannual
 
Outlook 2007-pop
Outlook 2007-popOutlook 2007-pop
Outlook 2007-pop
 
DBA ORACLE 9i II
DBA ORACLE 9i IIDBA ORACLE 9i II
DBA ORACLE 9i II
 
Efi booting
Efi bootingEfi booting
Efi booting
 
how to install fedora core 10
how to install fedora core 10how to install fedora core 10
how to install fedora core 10
 

Similar to Ip Access Lists

Ios i pv4_access_lists
Ios i pv4_access_listsIos i pv4_access_lists
Ios i pv4_access_listsSwapnil Kapate
 
Ios i pv4_access_lists
Ios i pv4_access_listsIos i pv4_access_lists
Ios i pv4_access_listsDaniPea7
 
11 module configuring novell ipx
11 module configuring novell ipx11 module configuring novell ipx
11 module configuring novell ipxAsif
 
commandes_CHEAT_SH_2.pdf
commandes_CHEAT_SH_2.pdfcommandes_CHEAT_SH_2.pdf
commandes_CHEAT_SH_2.pdfAchRaf264021
 
Cisco ACL
Cisco ACLCisco ACL
Cisco ACLfaust0
 
Computer network (4)
Computer network (4)Computer network (4)
Computer network (4)NYversity
 
Basic ip traffic management with access control lists
Basic ip traffic management with access control listsBasic ip traffic management with access control lists
Basic ip traffic management with access control listsSourabh Badve
 
Student Name _________________________________ Date _____________SE.docx
Student Name _________________________________ Date _____________SE.docxStudent Name _________________________________ Date _____________SE.docx
Student Name _________________________________ Date _____________SE.docxemelyvalg9
 
Ntp cheat sheet
Ntp cheat sheetNtp cheat sheet
Ntp cheat sheetcsystemltd
 
1 SEC450 ACL Tutorial This document highlights.docx
1 SEC450 ACL Tutorial This document highlights.docx1 SEC450 ACL Tutorial This document highlights.docx
1 SEC450 ACL Tutorial This document highlights.docxdorishigh
 
Chapter10ccna
Chapter10ccnaChapter10ccna
Chapter10ccnarobertoxe
 
A10_CompactTrainingv5.pdf (1).pdf
A10_CompactTrainingv5.pdf (1).pdfA10_CompactTrainingv5.pdf (1).pdf
A10_CompactTrainingv5.pdf (1).pdfneoalt
 

Similar to Ip Access Lists (20)

Ios i pv4_access_lists
Ios i pv4_access_listsIos i pv4_access_lists
Ios i pv4_access_lists
 
Acl
AclAcl
Acl
 
Ios i pv4_access_lists
Ios i pv4_access_listsIos i pv4_access_lists
Ios i pv4_access_lists
 
11 module configuring novell ipx
11 module configuring novell ipx11 module configuring novell ipx
11 module configuring novell ipx
 
TCPDUMP
TCPDUMPTCPDUMP
TCPDUMP
 
Acl cisco
Acl ciscoAcl cisco
Acl cisco
 
Acl cisco
Acl ciscoAcl cisco
Acl cisco
 
Tcpdump
TcpdumpTcpdump
Tcpdump
 
commandes_CHEAT_SH_2.pdf
commandes_CHEAT_SH_2.pdfcommandes_CHEAT_SH_2.pdf
commandes_CHEAT_SH_2.pdf
 
Cisco ACL
Cisco ACLCisco ACL
Cisco ACL
 
Tcpdump
TcpdumpTcpdump
Tcpdump
 
Computer network (4)
Computer network (4)Computer network (4)
Computer network (4)
 
Basic ip traffic management with access control lists
Basic ip traffic management with access control listsBasic ip traffic management with access control lists
Basic ip traffic management with access control lists
 
Student Name _________________________________ Date _____________SE.docx
Student Name _________________________________ Date _____________SE.docxStudent Name _________________________________ Date _____________SE.docx
Student Name _________________________________ Date _____________SE.docx
 
Ntp cheat sheet
Ntp cheat sheetNtp cheat sheet
Ntp cheat sheet
 
Chapter10ccna
Chapter10ccnaChapter10ccna
Chapter10ccna
 
1 SEC450 ACL Tutorial This document highlights.docx
1 SEC450 ACL Tutorial This document highlights.docx1 SEC450 ACL Tutorial This document highlights.docx
1 SEC450 ACL Tutorial This document highlights.docx
 
Chapter10ccna
Chapter10ccnaChapter10ccna
Chapter10ccna
 
Chapter10ccna
Chapter10ccnaChapter10ccna
Chapter10ccna
 
A10_CompactTrainingv5.pdf (1).pdf
A10_CompactTrainingv5.pdf (1).pdfA10_CompactTrainingv5.pdf (1).pdf
A10_CompactTrainingv5.pdf (1).pdf
 

More from CCNAResources

Building Scalable Cisco Internetworks (Bsci)
Building Scalable Cisco Internetworks (Bsci)Building Scalable Cisco Internetworks (Bsci)
Building Scalable Cisco Internetworks (Bsci)CCNAResources
 
Ccna Wireless Study Guide
Ccna Wireless Study GuideCcna Wireless Study Guide
Ccna Wireless Study GuideCCNAResources
 
Subneting And Summarization
Subneting And SummarizationSubneting And Summarization
Subneting And SummarizationCCNAResources
 
Subneting And Summarization
Subneting And SummarizationSubneting And Summarization
Subneting And SummarizationCCNAResources
 
1000 Ccna Questions And Answers
1000 Ccna Questions And Answers1000 Ccna Questions And Answers
1000 Ccna Questions And AnswersCCNAResources
 
Quick Guide Layer 2 Switching
Quick Guide Layer 2 SwitchingQuick Guide Layer 2 Switching
Quick Guide Layer 2 SwitchingCCNAResources
 
Quick Guide Ip Routing
Quick Guide Ip RoutingQuick Guide Ip Routing
Quick Guide Ip RoutingCCNAResources
 
Ccna Wireless Resources
Ccna Wireless ResourcesCcna Wireless Resources
Ccna Wireless ResourcesCCNAResources
 
Ccna Quick Notes –VLANs
Ccna Quick Notes –VLANsCcna Quick Notes –VLANs
Ccna Quick Notes –VLANsCCNAResources
 
Ccna Commands In 10 Minutes
Ccna Commands In 10 MinutesCcna Commands In 10 Minutes
Ccna Commands In 10 MinutesCCNAResources
 
Lab08 Rip Routing (Ccna4.Com)
Lab08 Rip Routing (Ccna4.Com)Lab08 Rip Routing (Ccna4.Com)
Lab08 Rip Routing (Ccna4.Com)CCNAResources
 
Lab09 Rip Routing (Ccna4.Com)
Lab09 Rip Routing (Ccna4.Com)Lab09 Rip Routing (Ccna4.Com)
Lab09 Rip Routing (Ccna4.Com)CCNAResources
 
Eigrp Summary (Ccna4.Com)
Eigrp Summary (Ccna4.Com)Eigrp Summary (Ccna4.Com)
Eigrp Summary (Ccna4.Com)CCNAResources
 

More from CCNAResources (16)

Iscw Cram Sheet
Iscw Cram SheetIscw Cram Sheet
Iscw Cram Sheet
 
Building Scalable Cisco Internetworks (Bsci)
Building Scalable Cisco Internetworks (Bsci)Building Scalable Cisco Internetworks (Bsci)
Building Scalable Cisco Internetworks (Bsci)
 
Ip Access Lists
Ip Access ListsIp Access Lists
Ip Access Lists
 
Ccna Wireless Study Guide
Ccna Wireless Study GuideCcna Wireless Study Guide
Ccna Wireless Study Guide
 
Subneting And Summarization
Subneting And SummarizationSubneting And Summarization
Subneting And Summarization
 
Subneting And Summarization
Subneting And SummarizationSubneting And Summarization
Subneting And Summarization
 
1000 Ccna Questions And Answers
1000 Ccna Questions And Answers1000 Ccna Questions And Answers
1000 Ccna Questions And Answers
 
Quick Guide VLANs
Quick Guide VLANsQuick Guide VLANs
Quick Guide VLANs
 
Quick Guide Layer 2 Switching
Quick Guide Layer 2 SwitchingQuick Guide Layer 2 Switching
Quick Guide Layer 2 Switching
 
Quick Guide Ip Routing
Quick Guide Ip RoutingQuick Guide Ip Routing
Quick Guide Ip Routing
 
Ccna Wireless Resources
Ccna Wireless ResourcesCcna Wireless Resources
Ccna Wireless Resources
 
Ccna Quick Notes –VLANs
Ccna Quick Notes –VLANsCcna Quick Notes –VLANs
Ccna Quick Notes –VLANs
 
Ccna Commands In 10 Minutes
Ccna Commands In 10 MinutesCcna Commands In 10 Minutes
Ccna Commands In 10 Minutes
 
Lab08 Rip Routing (Ccna4.Com)
Lab08 Rip Routing (Ccna4.Com)Lab08 Rip Routing (Ccna4.Com)
Lab08 Rip Routing (Ccna4.Com)
 
Lab09 Rip Routing (Ccna4.Com)
Lab09 Rip Routing (Ccna4.Com)Lab09 Rip Routing (Ccna4.Com)
Lab09 Rip Routing (Ccna4.Com)
 
Eigrp Summary (Ccna4.Com)
Eigrp Summary (Ccna4.Com)Eigrp Summary (Ccna4.Com)
Eigrp Summary (Ccna4.Com)
 

Recently uploaded

CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):comworks
 
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024BookNet Canada
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationRidwan Fadjar
 
SIEMENS: RAPUNZEL – A Tale About Knowledge Graph
SIEMENS: RAPUNZEL – A Tale About Knowledge GraphSIEMENS: RAPUNZEL – A Tale About Knowledge Graph
SIEMENS: RAPUNZEL – A Tale About Knowledge GraphNeo4j
 
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024Scott Keck-Warren
 
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024BookNet Canada
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Alan Dix
 
Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Scott Keck-Warren
 
Benefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksBenefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksSoftradix Technologies
 
Transcript: New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024BookNet Canada
 
Unleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubUnleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubKalema Edgar
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsAndrey Dotsenko
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsRizwan Syed
 
APIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGAPIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGMarianaLemus7
 
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr LapshynFwdays
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticscarlostorres15106
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesSinan KOZAK
 

Recently uploaded (20)

E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptxE-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
 
CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):CloudStudio User manual (basic edition):
CloudStudio User manual (basic edition):
 
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
 
DMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special EditionDMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special Edition
 
SIEMENS: RAPUNZEL – A Tale About Knowledge Graph
SIEMENS: RAPUNZEL – A Tale About Knowledge GraphSIEMENS: RAPUNZEL – A Tale About Knowledge Graph
SIEMENS: RAPUNZEL – A Tale About Knowledge Graph
 
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024
 
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
 
Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024
 
Benefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksBenefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other Frameworks
 
Transcript: New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC BiblioShare - Tech Forum 2024
 
Unleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding ClubUnleash Your Potential - Namagunga Girls Coding Club
Unleash Your Potential - Namagunga Girls Coding Club
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL Certs
 
APIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDGAPIForce Zurich 5 April Automation LPDG
APIForce Zurich 5 April Automation LPDG
 
The transition to renewables in India.pdf
The transition to renewables in India.pdfThe transition to renewables in India.pdf
The transition to renewables in India.pdf
 
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
 

Ip Access Lists

  • 1. IP ACCESS LISTS CCNA4.com Standard IP ACL Syntax Actions ! Legacy syntax permit Allow matched packets access-list <number> {permit | deny} <source> [log] deny Deny matched packets ! Modern syntax remark Record a config comment ip access-list standard {<number> | <name>} [<sequence>] {permit | deny} <source> [log] evaluate Evaluate a reflexive ACL Extended IP ACL Syntax ! Legacy syntax access-list <number> {permit | deny} <protocol> <source> [<ports>] <destination> [<ports>] [<options>] ! Modern syntax ip access-list extended {<number> | <name>} [<sequence>] {permit | deny} <protocol> <source> [<ports>] <destination> [<ports>] [<options>] ACL Numbers Source/Destination Definitions 1-99 any Any address IP standard 1300-1999 host <address> A single address 100-199 IP extended <network> <mask> Any address matched by the wildcard mask 2000-2699 200-299 Protocol IP Options 300-399 DECnet dscp <DSCP> Match packets with the given DSCP value 400-499 XNS fragments Check non-initial fragments 500-599 Extended XNS option <option> Match packets with the specified IP option 600-699 Appletalk precedence <0-7> Match packets with the given precedence value 700-799 Ethernet MAC ttl <count> Match packets with the given Time To Live 800-899 IPX standard TCP/UDP Port Definitions 900-999 IPX extended eq <port> Equal to neq <port> Not equal to 1000-1099 IPX SAP lt <port> Less than gt <port> Greater than 1100-1199 MAC extended range <port> <port> Matches a range of port numbers 1200-1299 IPX summary Miscellaneous Options TCP Options reflect <name> Create a reflexive ACL ack Match ACK flag time-range <name> Enable rule only during the specified time range fin Match FIN flag Applying ACLs to Restrict Traffic psh Match PSH flag interface FastEthernet0/0 rst Match RST flag ip access-group {<number> | <name>} {in | out} syn Match SYN flag Troubleshooting urg Match URG flag show access-lists {<number> | <name>} established Match packets in a pre- established session show ip access-lists {<number> | <name>} show ip access-lists interface <interface> Logging Options show ip access-lists dynamic log Log ACL entry matches show ip interface [<interface>] log-input Log matches with ingress interface and source MAC show time-range [<name>] by Jeremy Stretch v1.1