Sandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW, profile picture
Uploaded bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
5,592 views

CCNA part 7 acl

ACL (Access Control List) is a layer 3 security feature that controls traffic flow between routers by matching packets based on various criteria like source/destination IP addresses, protocols, and port numbers. There are standard, extended, and named ACLs that provide different matching capabilities. ACLs are configured on router interfaces using access lists and access groups to filter inbound or outbound traffic.

Embed presentation

ACL (Access Control List)
Access Control List:- • It is layer 3 (network) security which controls flow of traffic from one router to another router. • It is also called as packet filtering firewall. • Generally ACL implements on Distribution layer Routers.
Rules of ACL:- • All deny statements have to be given first. • There should be at least one permit statement. • An implicit deny block all traffic by default when there no match. • We can configure one access-list per interface per direction I.e. two access-list-per interface. One in inbound direction and one in outbound direction. • ACL works in sequential order. • Editing of access-list is not possible I.e.selecting, adding or removing access-list statement is not possible.
Types of ACL:- • Standard Access list. • Extended Access list. • Named Access list.
Standard Access list:- • It is implement closer to destination. • ACL number is 1 to 99 and 1300 to 1999. • It works (matches) only with source IP Address. • Two way communication will stop. • All service will block.
Configuration of standard ACL:- • Creation of ACL:- Hyderabad#config t Hyd(config)# access-list <acl no.> <deny/permit> <source ip> <source wildcard mask> • Implementation of ACL:- Hyderabad(config)# interface <serial/Ethernet> <no.> Hyderabad(config-if)# ip access-group <acl no> <in/out> Hyderabad(config-if)#exit Hyderabad(config)#exit Hyderabad#show access-list
Configuration contniued…………. • Creation of ACL:- Hyderabad#config t Hyd(config)# access-list 50 deny 192.168.1.1 0.0.0.0 Hyderabad(config)# access-list 50 permit any • Implementation of ACL:- Hyderabad(config)# int s1 Hyderabad(config-if)# ip access-group 50 in Hyderabad(config-if)#exit Hyderabad(config)#exit
Extended Access list:- • Extended ACL is implement as possible closer to source. • ACL no. is 100 to 199 and 2000 to 2699. • Extended ACL matches source IP address, Destination IP address, Protocol type, source port no., destination port no. • We can block specific service by using Ex. ACL.
Configuration of Extended ACL:- • Creation of Ex. ACL:- BANGLORE#config t BANGLORE(config)# access-list <acl .no.> <deny/permit> <protocol> <source IP> <source wlid card mask> <destination IP> <destination wild card mask> <operator> <port no.> • Implementation of ACL:- BANGLORE(config)# interface <serial/Ethernet> <no.> BANGLORE(config-if)# ip access-group <acl no> <in/out> BANGLORE(config-if)#exit BANGLORE(config)#exit BANGLORE #show access-list
Configuration contniued…………. • Creation of Ex. ACL:- BANGLORE#config t BANGLORE(config)# access-list 150 deny tcp 192.168.1.1 0.0.0.0 192.168.2.0 0.0.0.255 eq 23 BANGLORE(config)#access-list 150 permit ip any any • Implementation of ACL:- BANGLORE(config)# int e 0 BANGLORE(config-if)# ip access-group 150 in BANGLORE(config-if)# exit BANGLORE(config)# ^Z
Named Access list:- • In named ACL can use names as reference of ACL instead of numbers. • Named ACL support both IP & IPX protocol. • Unlike in number-ACLs in named-ACLsyou can delete a single entry in the ACLs. • Types of Named ACLs:- 1. Named-standard access list. 2. Named-Extended access list.
Configuration of Named-standard ACL:- • Creation of ACL:- Hyderabad#config t Hyderabad(config)# ip access-list standard <name> Hyderabad#<permit/deny> <source IP> <source wild cardmask> • Implementation of ACL:- Hyderabad(config)# interface <serial/Ethernet> <no.> Hyderabad(config-if)# ip access-group <name> <in/out> Hyderabad(config-if)#exit Hyderabad(config)#exit Hyderabad#show access-list
Configuration of Named-Extended ACL:- • Creation of Ex. ACL:- BANGLORE#config t BANGLORE(config)# ip access-list extended <name> BANGLORE(config)# <permit/deny> <protocol> <source ip> <surce wild> <destination IP><destination wild> <operator> <port no> • Implementation of ACL:- BANGLORE(config)# interface <serial/Ethernet> <no.> BANGLORE(config-if)# ip access-group <name> <in/out> BANGLORE(config-if)#^z BANGLORE #show access-list

More Related Content

PPT
Acl
byRaghu Kiran
 
PPTX
Basic ip traffic management with access control lists
bySourabh Badve
 
PPT
Cisco ACL
byfaust0
 
PDF
Access Control List & its Types
byNetwax Lab
 
PPTX
Acl cisco
byTapan Khilar
 
DOCX
CIsco ACL- Network and host security
byShiv Koppad
 
PPT
Access control list 2
byKishore Kumar
 
PPT
Chapter10ccna
byrobertoxe
 
Acl
byRaghu Kiran
 
Basic ip traffic management with access control lists
bySourabh Badve
 
Cisco ACL
byfaust0
 
Access Control List & its Types
byNetwax Lab
 
Acl cisco
byTapan Khilar
 
CIsco ACL- Network and host security
byShiv Koppad
 
Access control list 2
byKishore Kumar
 
Chapter10ccna
byrobertoxe
 

What's hot

PPT
Access Control List 1
byKishore Kumar
 
PPTX
Access control list [1]
bySummit Bisht
 
PDF
Uccn1003 -may09_-_lect09_-_access_control_list_acl_
byShu Shin
 
PPT
Chapter10ccna
byLakshan Perera
 
PPTX
CCNA ppt Day 7
byVISHNU N
 
PPT
20 access lists[1]
byGerard Vevele
 
DOC
List of usernames and passwords for Huawei routers
byHuanetwork
 
PPT
10 module
byAsif
 
PDF
Cisco discovery drs ent module 8 - v.4 in english.
byigede tirtanata
 
PPTX
Acl cisco
byTapan Khilar
 
PDF
Ip Access Lists
byCCNAResources
 
PPTX
CCNA ppt Day 4
byVISHNU N
 
PPT
Chapter10ccna
byernestlithur
 
PDF
Ccna Commands In 10 Minutes
byCCNAResources
 
PDF
CCNA - Routing & Switching Commands
byEng. Emad Al-Atoum
 
PDF
Access list-cheatsheet
byvannastart
 
PPT
Chapter5ccna
byernestlithur
 
DOC
Configuring the Device as a PPPoE Client on Huawei AR1200
byHuanetwork
 
DOCX
Configuracion EIGRP
byalexis marck Huiza Canchanya
 
PPT
Cis81 ccna1v5-2-configuring networkoperatingsystem
byBetselove
 
Access Control List 1
byKishore Kumar
 
Access control list [1]
bySummit Bisht
 
Uccn1003 -may09_-_lect09_-_access_control_list_acl_
byShu Shin
 
Chapter10ccna
byLakshan Perera
 
CCNA ppt Day 7
byVISHNU N
 
20 access lists[1]
byGerard Vevele
 
List of usernames and passwords for Huawei routers
byHuanetwork
 
10 module
byAsif
 
Cisco discovery drs ent module 8 - v.4 in english.
byigede tirtanata
 
Acl cisco
byTapan Khilar
 
Ip Access Lists
byCCNAResources
 
CCNA ppt Day 4
byVISHNU N
 
Chapter10ccna
byernestlithur
 
Ccna Commands In 10 Minutes
byCCNAResources
 
CCNA - Routing & Switching Commands
byEng. Emad Al-Atoum
 
Access list-cheatsheet
byvannastart
 
Chapter5ccna
byernestlithur
 
Configuring the Device as a PPPoE Client on Huawei AR1200
byHuanetwork
 
Configuracion EIGRP
byalexis marck Huiza Canchanya
 
Cis81 ccna1v5-2-configuring networkoperatingsystem
byBetselove
 

Viewers also liked

PPTX
Access control list
byNarendra Kumar
 
PDF
Joomla Access Control List (ACL) at JoomlaDay London, UK #jduk11
bySander Potjer
 
PPTX
Types of ACLs
byNetProtocol Xpert
 
PPTX
CCNA ppt Day 2
byVISHNU N
 
PPT
CCNA 2
byAsish Verma
 
DOC
Ccna 3 chapter 1 v4.0 answers 2011
byDân Chơi
 
PDF
Firewall notes
bynetlabacademy
 
PPT
Authentication Technologies
byNicholas Davis
 
PPTX
ppt on 6 weeks summer training
byPulkit Mahajan
 
PDF
NAT Ccna
bysinghsukdeep
 
PDF
05 ip oc305 2_e1_1 zxr10 m6000&amp;t8000 acl configuration (v1.00.30) 31
bylegasu zemene
 
PPTX
Slidshared
byzaxlovekung
 
PDF
ccna project
byAmardeep Singh Brar
 
PPTX
6 weeks/months project training from CMC Faridabad - Ppt of ccna project from...
bythesakshi12
 
PPT
CCNA Security 010-configuring cisco asa
byAhmed Habib
 
PPT
CCNA Security 07-Securing the local area network
byAhmed Habib
 
PPT
CCNA Security 05- securing the management plane
byAhmed Habib
 
PPT
Network Security - Layer 2
bysamis
 
PDF
Authentication techniques
byIGZ Software house
 
Access control list
byNarendra Kumar
 
Joomla Access Control List (ACL) at JoomlaDay London, UK #jduk11
bySander Potjer
 
Types of ACLs
byNetProtocol Xpert
 
CCNA ppt Day 2
byVISHNU N
 
CCNA 2
byAsish Verma
 
Ccna 3 chapter 1 v4.0 answers 2011
byDân Chơi
 
Firewall notes
bynetlabacademy
 
Authentication Technologies
byNicholas Davis
 
ppt on 6 weeks summer training
byPulkit Mahajan
 
NAT Ccna
bysinghsukdeep
 
05 ip oc305 2_e1_1 zxr10 m6000&amp;t8000 acl configuration (v1.00.30) 31
bylegasu zemene
 
Slidshared
byzaxlovekung
 
ccna project
byAmardeep Singh Brar
 
6 weeks/months project training from CMC Faridabad - Ppt of ccna project from...
bythesakshi12
 
CCNA Security 010-configuring cisco asa
byAhmed Habib
 
CCNA Security 07-Securing the local area network
byAhmed Habib
 
CCNA Security 05- securing the management plane
byAhmed Habib
 
Network Security - Layer 2
bysamis
 
Authentication techniques
byIGZ Software house
 

Similar to CCNA part 7 acl

PPT
Access List. Configuration of Layer three Router Access List
byssuser58d95d
 
PPTX
Access Control List (ACL)
byISMT College
 
PPT
Chapter 08 - Acl
byphanleson
 
DOCX
Standard & Extended ACL Configuration
byMdAlAmin187
 
PPT
Acl
byVicky Kamboj
 
PDF
Day+34+Slides+-+Standard+ACLs - Kasamba David
byDavidKasamba
 
PDF
Uccn1003 -may09_-_lect09_-_access_control_list_acl_
byShu Shin
 
PPTX
Configuring extended ACLs
byNetProtocol Xpert
 
PDF
The Role of Access Control Lists (ACLs) in CCNA Networking.pdf
bymaheshmitta2525
 
PPTX
CCNA Access Control Lists
byNetworkel
 
DOCX
1 SEC450 ACL Tutorial This document highlights.docx
bydorishigh
 
PDF
Access List in Networks
bywolverinetyagi
 
DOCX
Student Name _________________________________ Date _____________SE.docx
byemelyvalg9
 
PDF
Modul 5 access control list
bydiah risqiwati
 
PPT
CCNP 642-732 Training
bysaenaetr
 
PDF
ACLs-for-IPv4-Configuration BY SUMAH.pdf
byathumansuleiman88
 
PPTX
access control list(ACL) from data communication and networking
bytayybahaseeb18
 
PPTX
ACCESS CONTROL LIST (Standard and Dynamic).pptx
byishaqictm
 
PPTX
Standard Access List
byNetProtocol Xpert
 
PDF
04 zxr10 bc-en-acl principle and configuration (acl principle)-1-ppt-201105 24
bylegasu zemene
 
Access List. Configuration of Layer three Router Access List
byssuser58d95d
 
Access Control List (ACL)
byISMT College
 
Chapter 08 - Acl
byphanleson
 
Standard & Extended ACL Configuration
byMdAlAmin187
 
Acl
byVicky Kamboj
 
Day+34+Slides+-+Standard+ACLs - Kasamba David
byDavidKasamba
 
Uccn1003 -may09_-_lect09_-_access_control_list_acl_
byShu Shin
 
Configuring extended ACLs
byNetProtocol Xpert
 
The Role of Access Control Lists (ACLs) in CCNA Networking.pdf
bymaheshmitta2525
 
CCNA Access Control Lists
byNetworkel
 
1 SEC450 ACL Tutorial This document highlights.docx
bydorishigh
 
Access List in Networks
bywolverinetyagi
 
Student Name _________________________________ Date _____________SE.docx
byemelyvalg9
 
Modul 5 access control list
bydiah risqiwati
 
CCNP 642-732 Training
bysaenaetr
 
ACLs-for-IPv4-Configuration BY SUMAH.pdf
byathumansuleiman88
 
access control list(ACL) from data communication and networking
bytayybahaseeb18
 
ACCESS CONTROL LIST (Standard and Dynamic).pptx
byishaqictm
 
Standard Access List
byNetProtocol Xpert
 
04 zxr10 bc-en-acl principle and configuration (acl principle)-1-ppt-201105 24
bylegasu zemene
 

More from Sandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW

PDF
Management Consultancy Saudi Telecom Digital Transformation Design Thinking
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
PPTX
Major new initiatives
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
PPTX
Digital transformation journey Consulting
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
PPTX
Agile Jira Reporting
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
DOCX
Lnt and bbby Retail Houseare industry Case assignment sandeep sharma
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
DOCX
Risk management Consulting For Municipality
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
DOCX
GDPR And Privacy By design Consultancy
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
PPTX
Real implementation Blockchain Best Use Cases Examples
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
PDF
Ffd 05 2012
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
DOCX
Biztalk architecture for Configured SMS service
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
DOCX
Data modelling interview question
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
PPTX
Pmo best practices
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
PPTX
Agile project management
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
PPTX
Enroll hostel Business Model
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
DOCX
Cloud manager client provisioning guideline draft 1.0
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
DOCX
Bpm digital transformation
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
PPTX
Digital transformation explained
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
DOCX
Government Digital transformation trend draft 1.0
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
DOCX
Enterprise architecture maturity rating draft 1.0
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
DOCX
Organisation Structure For digital Transformation Team
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
Management Consultancy Saudi Telecom Digital Transformation Design Thinking
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
Major new initiatives
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
Digital transformation journey Consulting
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
Agile Jira Reporting
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
Lnt and bbby Retail Houseare industry Case assignment sandeep sharma
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
Risk management Consulting For Municipality
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
GDPR And Privacy By design Consultancy
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
Real implementation Blockchain Best Use Cases Examples
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
Ffd 05 2012
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
Biztalk architecture for Configured SMS service
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
Data modelling interview question
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
Pmo best practices
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
Agile project management
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
Enroll hostel Business Model
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
Cloud manager client provisioning guideline draft 1.0
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
Bpm digital transformation
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
Digital transformation explained
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
Government Digital transformation trend draft 1.0
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
Enterprise architecture maturity rating draft 1.0
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 
Organisation Structure For digital Transformation Team
bySandeep Sharma IIMK Smart City,IoT,Bigdata,Cloud,BI,DW
 

Recently uploaded

PDF
Physiotherapist App Development for Modern Rehabilitation
byV3CUBE TECHNOLABS
 
PDF
Attendance Dashboard – Time & Attendance Analytics
byHajir Pro
 
PPTX
Device Repair and Maintenance Management
byAxisTechnolabs
 
PDF
On Demand Grocery Delivery App Development.pdf
byV3CUBE TECHNOLABS
 
PDF
LogiNext Media Kit & Company Overview 2025
bysmritipatil055
 
PDF
LogiNext Media Kit & Company Overview 2025
bynidhisharmaq7184
 
PDF
Accelerating Data Validation with QuerySurge AI
byRTTS
 
PDF
LogiNext Media Kit & Company Overview 2025
bypriyajoshi2929
 
PDF
SLIDE PROPARTNER SUMMIT 2025 - ITALY.pdf
bygiuo
 
PPTX
Applicius Technologies: Full Service Overview for Branding, SEO, Web & App De...
byappliciustech
 
PDF
Phone Tracker App for Family (2026)_ The Safe, Legit Way to Protect Loved One...
byMia Taylor
 
PDF
LogiNext Media Kit & Company Overview 2025
byswatishahz9031
 
PDF
2026 Safety Roadmap: Systems, Skills, and Scale for EHS Leaders
byTECH EHS Solution
 
PDF
Pet Care Service App Development Company
byV3CUBE TECHNOLABS
 
PPTX
Best eCommerce Development Agency in USA | The Dataflux
byKey Medsolutions Inc
 
PDF
2026-01-26 - AWS - Architecting Multi-Agent Developer Workflows.pdf
byhlibco
 
PDF
LogiNext Media Kit & Company Overview 2025
bysanikaroy72
 
PDF
Water Delivery App Development Solutions.pdf
byeSiteWorld TechnoLabs Pvt. Ltd.
 
PPTX
Edison MuleSoft Meetup : Vibe Coding | MuleSoft Meetups
bySravan Lingam
 
PDF
Visualizing Your Data Lake with Grafana - Amsterdam
byImma Valls Bernaus
 
Physiotherapist App Development for Modern Rehabilitation
byV3CUBE TECHNOLABS
 
Attendance Dashboard – Time & Attendance Analytics
byHajir Pro
 
Device Repair and Maintenance Management
byAxisTechnolabs
 
On Demand Grocery Delivery App Development.pdf
byV3CUBE TECHNOLABS
 
LogiNext Media Kit & Company Overview 2025
bysmritipatil055
 
LogiNext Media Kit & Company Overview 2025
bynidhisharmaq7184
 
Accelerating Data Validation with QuerySurge AI
byRTTS
 
LogiNext Media Kit & Company Overview 2025
bypriyajoshi2929
 
SLIDE PROPARTNER SUMMIT 2025 - ITALY.pdf
bygiuo
 
Applicius Technologies: Full Service Overview for Branding, SEO, Web & App De...
byappliciustech
 
Phone Tracker App for Family (2026)_ The Safe, Legit Way to Protect Loved One...
byMia Taylor
 
LogiNext Media Kit & Company Overview 2025
byswatishahz9031
 
2026 Safety Roadmap: Systems, Skills, and Scale for EHS Leaders
byTECH EHS Solution
 
Pet Care Service App Development Company
byV3CUBE TECHNOLABS
 
Best eCommerce Development Agency in USA | The Dataflux
byKey Medsolutions Inc
 
2026-01-26 - AWS - Architecting Multi-Agent Developer Workflows.pdf
byhlibco
 
LogiNext Media Kit & Company Overview 2025
bysanikaroy72
 
Water Delivery App Development Solutions.pdf
byeSiteWorld TechnoLabs Pvt. Ltd.
 
Edison MuleSoft Meetup : Vibe Coding | MuleSoft Meetups
bySravan Lingam
 
Visualizing Your Data Lake with Grafana - Amsterdam
byImma Valls Bernaus
 

CCNA part 7 acl

  • 1.
  • 2.
    Access Control List:- • It is layer 3 (network) security which controls flow of traffic from one router to another router. • It is also called as packet filtering firewall. • Generally ACL implements on Distribution layer Routers.
  • 3.
    Rules of ACL:- • All deny statements have to be given first. • There should be at least one permit statement. • An implicit deny block all traffic by default when there no match. • We can configure one access-list per interface per direction I.e. two access-list-per interface. One in inbound direction and one in outbound direction. • ACL works in sequential order. • Editing of access-list is not possible I.e.selecting, adding or removing access-list statement is not possible.
  • 4.
    Types of ACL:- • Standard Access list. • Extended Access list. • Named Access list.
  • 5.
    Standard Access list:- • It is implement closer to destination. • ACL number is 1 to 99 and 1300 to 1999. • It works (matches) only with source IP Address. • Two way communication will stop. • All service will block.
  • 6.
    Configuration of standardACL:- • Creation of ACL:- Hyderabad#config t Hyd(config)# access-list <acl no.> <deny/permit> <source ip> <source wildcard mask> • Implementation of ACL:- Hyderabad(config)# interface <serial/Ethernet> <no.> Hyderabad(config-if)# ip access-group <acl no> <in/out> Hyderabad(config-if)#exit Hyderabad(config)#exit Hyderabad#show access-list
  • 7.
    Configuration contniued…………. •Creation of ACL:- Hyderabad#config t Hyd(config)# access-list 50 deny 192.168.1.1 0.0.0.0 Hyderabad(config)# access-list 50 permit any • Implementation of ACL:- Hyderabad(config)# int s1 Hyderabad(config-if)# ip access-group 50 in Hyderabad(config-if)#exit Hyderabad(config)#exit
  • 8.
    Extended Access list:- • Extended ACL is implement as possible closer to source. • ACL no. is 100 to 199 and 2000 to 2699. • Extended ACL matches source IP address, Destination IP address, Protocol type, source port no., destination port no. • We can block specific service by using Ex. ACL.
  • 9.
    Configuration of ExtendedACL:- • Creation of Ex. ACL:- BANGLORE#config t BANGLORE(config)# access-list <acl .no.> <deny/permit> <protocol> <source IP> <source wlid card mask> <destination IP> <destination wild card mask> <operator> <port no.> • Implementation of ACL:- BANGLORE(config)# interface <serial/Ethernet> <no.> BANGLORE(config-if)# ip access-group <acl no> <in/out> BANGLORE(config-if)#exit BANGLORE(config)#exit BANGLORE #show access-list
  • 10.
    Configuration contniued…………. •Creation of Ex. ACL:- BANGLORE#config t BANGLORE(config)# access-list 150 deny tcp 192.168.1.1 0.0.0.0 192.168.2.0 0.0.0.255 eq 23 BANGLORE(config)#access-list 150 permit ip any any • Implementation of ACL:- BANGLORE(config)# int e 0 BANGLORE(config-if)# ip access-group 150 in BANGLORE(config-if)# exit BANGLORE(config)# ^Z
  • 11.
    Named Access list:- • In named ACL can use names as reference of ACL instead of numbers. • Named ACL support both IP & IPX protocol. • Unlike in number-ACLs in named-ACLsyou can delete a single entry in the ACLs. • Types of Named ACLs:- 1. Named-standard access list. 2. Named-Extended access list.
  • 12.
    Configuration of Named-standard ACL:- • Creation of ACL:- Hyderabad#config t Hyderabad(config)# ip access-list standard <name> Hyderabad#<permit/deny> <source IP> <source wild cardmask> • Implementation of ACL:- Hyderabad(config)# interface <serial/Ethernet> <no.> Hyderabad(config-if)# ip access-group <name> <in/out> Hyderabad(config-if)#exit Hyderabad(config)#exit Hyderabad#show access-list
  • 13.
    Configuration of Named-ExtendedACL:- • Creation of Ex. ACL:- BANGLORE#config t BANGLORE(config)# ip access-list extended <name> BANGLORE(config)# <permit/deny> <protocol> <source ip> <surce wild> <destination IP><destination wild> <operator> <port no> • Implementation of ACL:- BANGLORE(config)# interface <serial/Ethernet> <no.> BANGLORE(config-if)# ip access-group <name> <in/out> BANGLORE(config-if)#^z BANGLORE #show access-list