NetProtocol Xpert, profile picture
Uploaded byNetProtocol Xpert
PPTX, PDF337 views

Configuring Standard ACLs

Standard ACLs are configured on routers to permit or deny traffic based on source IP addresses. The ACL number must be between 1-99 or 1300-1999. The ACL is applied to an interface using the ip access-group command with the in or out keyword to specify the traffic direction. For example, an ACL can permit traffic from a management LAN subnet to a server, and the ACL would be applied to the incoming interface using the "in" keyword.

Embed presentation

Download to read offline
Configuring standard ACLs branded.me/netprotocolxpert
 To create an standard access list, the following command is used from the router's global configuration mode:  R1(config)# access-list ACL_NUMBER permit|deny IP_ADDRESS WILDCARD_MASK  ACL number for the standard ACLs has to be between 1–99 and 1300–1999.  You can also use the host keyword to specify the host you want to permit or deny:  R1(config)# access-list ACL_NUMBER permit|deny host IP_ADDRESS branded.me/netprotocolxpert
 Once the access list is created, it needs to be applied to an interface.  You do that by using the ip access-group ACL_NUMBER in|out interface subcommand.  in and out keywords specify in which direction you are activating the ACL.  in means that ACL is applied to the traffic coming into the interface, while the out keyword means that the ACL is applied to the traffic leaving the interface. branded.me/netprotocolxpert
Consider the following network topology: branded.me/netprotocolxpert
 We want to allow traffic from the management LAN to the server S1. First, we need to write an ACL to permit traffic from LAN 10.0.0.0/24 to S1. We can use the following command on R1:  The command above permits traffic from all IP addresses that begin with 10.0.0. We could also target the specific host, by using the host keyword: branded.me/netprotocolxpert
 The command above permits traffic only from the host with the IP address of 10.0.0.1.  Next, we need to apply the access list to an interface. Since the traffic is entering the interface on R1, we need to use the in keyword:  NOTE - at the end of each ACL there is an implicit deny all statement. That means that all traffic not specified in earlier ACL statements will be forbidden. branded.me/netprotocolxpert

More Related Content

PPTX
Basic ip traffic management with access control lists
bySourabh Badve
 
PPTX
Port Security
byNetProtocol Xpert
 
PPT
Acl
byRaghu Kiran
 
PDF
Manual de config hw ap80
byOmar Perez Franco
 
PDF
How to-configuration-pppoe-in-hg531-modem
byISP Telecom Inc
 
PDF
Router configuracion acuse 512
byNeftali Morillo
 
PDF
53302372 config-gns3
byRokitta Apollonia
 
PDF
LED Lighting Product Attachment
byUltra LEDs
 
Basic ip traffic management with access control lists
bySourabh Badve
 
Port Security
byNetProtocol Xpert
 
Acl
byRaghu Kiran
 
Manual de config hw ap80
byOmar Perez Franco
 
How to-configuration-pppoe-in-hg531-modem
byISP Telecom Inc
 
Router configuracion acuse 512
byNeftali Morillo
 
53302372 config-gns3
byRokitta Apollonia
 
LED Lighting Product Attachment
byUltra LEDs
 

Viewers also liked

PPTX
Frame Relay (point to point)
byNetProtocol Xpert
 
PPTX
MPLS Layer 3 VPN
byNetProtocol Xpert
 
PPT
Is is
byIrham Nurhalim
 
PPTX
IS-IS Protocol Addresses
byNetProtocol Xpert
 
PPTX
RIPng
byNetProtocol Xpert
 
PPTX
Cisco's Three-tier Hierarchical Network Model
byNetProtocol Xpert
 
PPT
Collision & broadcast domain
byNetProtocol Xpert
 
PPTX
Loopback
byNetProtocol Xpert
 
PPTX
IS-IS Protocol Adjacency
byNetProtocol Xpert
 
PPTX
Setting up SSH
byNetProtocol Xpert
 
PPTX
CCNA Data Center Host to Host Communications
byNetProtocol Xpert
 
PPTX
IS-IS Protocol Introduction
byNetProtocol Xpert
 
PPT
IS-IS - Integrated IS-IS v1.0
byGianpietro Lavado
 
PPT
Is Is Routing Protocol
byhayenas
 
PPTX
FTP & TFTP
byNetProtocol Xpert
 
PPT
An intoroduction to the IS-IS IGP routing protocol
byIftach Ian Amit
 
PPT
Isis
byJose Rojas
 
PPTX
IS-IS Packet Types
byNetProtocol Xpert
 
PPTX
IS-IS vs OSPF
byNetProtocol Xpert
 
DOCX
Vacations in the Eyes of Women
byswansonp9319
 
Frame Relay (point to point)
byNetProtocol Xpert
 
MPLS Layer 3 VPN
byNetProtocol Xpert
 
Is is
byIrham Nurhalim
 
IS-IS Protocol Addresses
byNetProtocol Xpert
 
RIPng
byNetProtocol Xpert
 
Cisco's Three-tier Hierarchical Network Model
byNetProtocol Xpert
 
Collision & broadcast domain
byNetProtocol Xpert
 
Loopback
byNetProtocol Xpert
 
IS-IS Protocol Adjacency
byNetProtocol Xpert
 
Setting up SSH
byNetProtocol Xpert
 
CCNA Data Center Host to Host Communications
byNetProtocol Xpert
 
IS-IS Protocol Introduction
byNetProtocol Xpert
 
IS-IS - Integrated IS-IS v1.0
byGianpietro Lavado
 
Is Is Routing Protocol
byhayenas
 
FTP & TFTP
byNetProtocol Xpert
 
An intoroduction to the IS-IS IGP routing protocol
byIftach Ian Amit
 
Isis
byJose Rojas
 
IS-IS Packet Types
byNetProtocol Xpert
 
IS-IS vs OSPF
byNetProtocol Xpert
 
Vacations in the Eyes of Women
byswansonp9319
 

Similar to Configuring Standard ACLs

PPT
Access List. Configuration of Layer three Router Access List
byssuser58d95d
 
PPTX
Access Control List (ACL)
byISMT College
 
PDF
Uccn1003 -may09_-_lect09_-_access_control_list_acl_
byShu Shin
 
PPTX
Acl cisco
byTapan Khilar
 
PDF
Modul 5 access control list
bydiah risqiwati
 
PDF
Uccn1003 -may09_-_lect09_-_access_control_list_acl_
byShu Shin
 
DOCX
1 SEC450 ACL Tutorial This document highlights.docx
bydorishigh
 
PPT
CCNP 642-732 Training
bysaenaetr
 
PPTX
Acl cisco
byTapan Khilar
 
PDF
Day+34+Slides+-+Standard+ACLs - Kasamba David
byDavidKasamba
 
PPT
Chapter10ccna
byLakshan Perera
 
PPTX
CCNA Access Control Lists
byNetworkel
 
PDF
Access Control List & its Types
byNetwax Lab
 
PPTX
Standard Access List
byNetProtocol Xpert
 
DOCX
Student Name _________________________________ Date _____________SE.docx
byemelyvalg9
 
PPT
Cisco ACL
byfaust0
 
PPT
Chapter 08 - Acl
byphanleson
 
PPTX
CCNA ppt Day 7
byVISHNU N
 
PPTX
CNv6_instructorPPT_Chapter4.pptx
byOritseKings
 
PDF
IRJET - Implementation of Network Security and Traffic Filtering using Access...
byIRJET Journal
 
Access List. Configuration of Layer three Router Access List
byssuser58d95d
 
Access Control List (ACL)
byISMT College
 
Uccn1003 -may09_-_lect09_-_access_control_list_acl_
byShu Shin
 
Acl cisco
byTapan Khilar
 
Modul 5 access control list
bydiah risqiwati
 
Uccn1003 -may09_-_lect09_-_access_control_list_acl_
byShu Shin
 
1 SEC450 ACL Tutorial This document highlights.docx
bydorishigh
 
CCNP 642-732 Training
bysaenaetr
 
Acl cisco
byTapan Khilar
 
Day+34+Slides+-+Standard+ACLs - Kasamba David
byDavidKasamba
 
Chapter10ccna
byLakshan Perera
 
CCNA Access Control Lists
byNetworkel
 
Access Control List & its Types
byNetwax Lab
 
Standard Access List
byNetProtocol Xpert
 
Student Name _________________________________ Date _____________SE.docx
byemelyvalg9
 
Cisco ACL
byfaust0
 
Chapter 08 - Acl
byphanleson
 
CCNA ppt Day 7
byVISHNU N
 
CNv6_instructorPPT_Chapter4.pptx
byOritseKings
 
IRJET - Implementation of Network Security and Traffic Filtering using Access...
byIRJET Journal
 

More from NetProtocol Xpert

PPTX
Basic Cisco ASA 5506-x Configuration (Firepower)
byNetProtocol Xpert
 
PPTX
Password Recovery
byNetProtocol Xpert
 
PPTX
Securing management, control & data plane
byNetProtocol Xpert
 
PPTX
DHCP Snooping
byNetProtocol Xpert
 
PPTX
Dynamic ARP Inspection (DAI)
byNetProtocol Xpert
 
PPTX
OTV Configuration
byNetProtocol Xpert
 
PPTX
OTV(Overlay Transport Virtualization)
byNetProtocol Xpert
 
PPTX
IP Source Guard
byNetProtocol Xpert
 
PPTX
Common Layer 2 Threats, Attacks & Mitigation
byNetProtocol Xpert
 
PPTX
Point to-point protocol (ppp), PAP & CHAP
byNetProtocol Xpert
 
PPTX
TCLSH and Macro Ping Test on Cisco Routers and Switches
byNetProtocol Xpert
 
PPTX
Storm-Control
byNetProtocol Xpert
 
PPTX
MTU (maximum transmission unit) & MRU (maximum receive unit)
byNetProtocol Xpert
 
PPTX
Cisco OTV 
byNetProtocol Xpert
 
PPTX
Cisco ASR 1001-X Router
byNetProtocol Xpert
 
PPTX
Cisco ISR 4351 Router
byNetProtocol Xpert
 
PPTX
Private VLANs
byNetProtocol Xpert
 
PPTX
Regular expression examples
byNetProtocol Xpert
 
PPTX
Application & Data Center
byNetProtocol Xpert
 
PPTX
Avoid DNS lookup when mistyping a command
byNetProtocol Xpert
 
Basic Cisco ASA 5506-x Configuration (Firepower)
byNetProtocol Xpert
 
Password Recovery
byNetProtocol Xpert
 
Securing management, control & data plane
byNetProtocol Xpert
 
DHCP Snooping
byNetProtocol Xpert
 
Dynamic ARP Inspection (DAI)
byNetProtocol Xpert
 
OTV Configuration
byNetProtocol Xpert
 
OTV(Overlay Transport Virtualization)
byNetProtocol Xpert
 
IP Source Guard
byNetProtocol Xpert
 
Common Layer 2 Threats, Attacks & Mitigation
byNetProtocol Xpert
 
Point to-point protocol (ppp), PAP & CHAP
byNetProtocol Xpert
 
TCLSH and Macro Ping Test on Cisco Routers and Switches
byNetProtocol Xpert
 
Storm-Control
byNetProtocol Xpert
 
MTU (maximum transmission unit) & MRU (maximum receive unit)
byNetProtocol Xpert
 
Cisco OTV 
byNetProtocol Xpert
 
Cisco ASR 1001-X Router
byNetProtocol Xpert
 
Cisco ISR 4351 Router
byNetProtocol Xpert
 
Private VLANs
byNetProtocol Xpert
 
Regular expression examples
byNetProtocol Xpert
 
Application & Data Center
byNetProtocol Xpert
 
Avoid DNS lookup when mistyping a command
byNetProtocol Xpert
 

Recently uploaded

PPTX
CEC369 IoT P CEC369 IoT P CEC369 IoT PCEC369 IoT PCEC369 IoT P
byKesavRaj8
 
PPTX
Computer engineering for collage studen. pptx
byestradageric
 
PDF
IPE 105 - Engineering Materials Constitution of Alloys
byMominulIslam67
 
PDF
Introduction to MySQL Spatial Features and Real-World Use Cases
byVissarion Fisikopoulos
 
PDF
OOPCodesjavapracticalkabirpawarpptinparacticalexamination
bySvkmiot
 
PPTX
Ship Repair and fault diagnosis and restoration of system back to normal .pptx
byIntuition1
 
PDF
ANPARA THERMAL POWER STATION[1] sangam.pdf
bysangamkumar993613
 
PPTX
Blockchain and cryptography Lecture Notes
bysanjanakumar34
 
PDF
Why Buildings Crumble Before Their Time And How We Can Build a Legacy
byinfoplanetcon
 
PDF
@Regenerative braking system of DC motor
bysangamkumar993613
 
PDF
Small Space Big Design - Amar DeXign Scape
byAmar Dexign scape
 
PPTX
2-Photoelectric effect, phenomena and its related concept.pptx
byadhidwih
 
PDF
Welcome to ISPR 2026 - 12th International Conference on Image and Signal Pro...
byieijjournal
 
PPTX
Generative AI Deep Dive: Architectures, Mechanics, and Future Applications
bygenz9514
 
PPTX
TRANSPORTATION ENGINEERING Unit-5.1.pptx
byMood Naik
 
PDF
k-means algorithm with numerical solution.pdf
bydeepalishinkar1
 
PPTX
clustering type :hierarchical clustering.pptx
bydeepalishinkar1
 
PPTX
Presentation 1.pptx WHAT IS ARTIFICIAL INTELLIGENCE?
bypraveenbubnale77
 
PPT
lec13.ppt FOR COMPOSITES AND POLYMERS MATERIAL SCIENCE
byKevinkahrlPipino
 
PPTX
waste to energy deck v.3.pptx changing garbage to electricity
byGegaGrandeza1
 
CEC369 IoT P CEC369 IoT P CEC369 IoT PCEC369 IoT PCEC369 IoT P
byKesavRaj8
 
Computer engineering for collage studen. pptx
byestradageric
 
IPE 105 - Engineering Materials Constitution of Alloys
byMominulIslam67
 
Introduction to MySQL Spatial Features and Real-World Use Cases
byVissarion Fisikopoulos
 
OOPCodesjavapracticalkabirpawarpptinparacticalexamination
bySvkmiot
 
Ship Repair and fault diagnosis and restoration of system back to normal .pptx
byIntuition1
 
ANPARA THERMAL POWER STATION[1] sangam.pdf
bysangamkumar993613
 
Blockchain and cryptography Lecture Notes
bysanjanakumar34
 
Why Buildings Crumble Before Their Time And How We Can Build a Legacy
byinfoplanetcon
 
@Regenerative braking system of DC motor
bysangamkumar993613
 
Small Space Big Design - Amar DeXign Scape
byAmar Dexign scape
 
2-Photoelectric effect, phenomena and its related concept.pptx
byadhidwih
 
Welcome to ISPR 2026 - 12th International Conference on Image and Signal Pro...
byieijjournal
 
Generative AI Deep Dive: Architectures, Mechanics, and Future Applications
bygenz9514
 
TRANSPORTATION ENGINEERING Unit-5.1.pptx
byMood Naik
 
k-means algorithm with numerical solution.pdf
bydeepalishinkar1
 
clustering type :hierarchical clustering.pptx
bydeepalishinkar1
 
Presentation 1.pptx WHAT IS ARTIFICIAL INTELLIGENCE?
bypraveenbubnale77
 
lec13.ppt FOR COMPOSITES AND POLYMERS MATERIAL SCIENCE
byKevinkahrlPipino
 
waste to energy deck v.3.pptx changing garbage to electricity
byGegaGrandeza1
 

Configuring Standard ACLs

  • 1.
  • 2.
     To createan standard access list, the following command is used from the router's global configuration mode:  R1(config)# access-list ACL_NUMBER permit|deny IP_ADDRESS WILDCARD_MASK  ACL number for the standard ACLs has to be between 1–99 and 1300–1999.  You can also use the host keyword to specify the host you want to permit or deny:  R1(config)# access-list ACL_NUMBER permit|deny host IP_ADDRESS branded.me/netprotocolxpert
  • 3.
     Once theaccess list is created, it needs to be applied to an interface.  You do that by using the ip access-group ACL_NUMBER in|out interface subcommand.  in and out keywords specify in which direction you are activating the ACL.  in means that ACL is applied to the traffic coming into the interface, while the out keyword means that the ACL is applied to the traffic leaving the interface. branded.me/netprotocolxpert
  • 4.
    Consider the followingnetwork topology: branded.me/netprotocolxpert
  • 5.
     We wantto allow traffic from the management LAN to the server S1. First, we need to write an ACL to permit traffic from LAN 10.0.0.0/24 to S1. We can use the following command on R1:  The command above permits traffic from all IP addresses that begin with 10.0.0. We could also target the specific host, by using the host keyword: branded.me/netprotocolxpert
  • 6.
     The commandabove permits traffic only from the host with the IP address of 10.0.0.1.  Next, we need to apply the access list to an interface. Since the traffic is entering the interface on R1, we need to use the in keyword:  NOTE - at the end of each ACL there is an implicit deny all statement. That means that all traffic not specified in earlier ACL statements will be forbidden. branded.me/netprotocolxpert