Scribd Logo
Upload

Welcome to Scribd!

  • ACLS Comandos

    Uploaded by

    Maye Seas
    2 views2 pages

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    2 views2 pages

    ACLS Comandos

    Uploaded by

    Maye Seas

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 2

    ACL estndar y extendidas numerada

    access-list 101 deny tcp 172.16.16.0 0.0.0.255 host 172.17.17.252 eq www access-list 101 permit ip any any asignar ACL a la interface interface FastEthernet0/0 ip address 172.16.16.1 255.255.255.0 ip access-group 101 in

    Con nombre
    ip access-list extended noweb1 deny tcp 172.16.16.0 0.0.0.255 host 172.17.17.252 eq www permit ip any any asignar ACL a la interface interface FastEthernet0/0 ip address 172.16.16.1 255.255.255.0 ip access-group noweb1 in

    ACL dinmica
    Router(config)#username prueba password cisco Router(config)#access-list 101 permit tcp any host 10.2.2.2 eq telnet Router(config)#access-list 101 dynamic testlist timeout 15 permit ip 192.168.10.0 0.0.0.255 192.168.30.0 0.0.0.255 Router(config)#inteface serial 0/0/1 Router(config-if)# ip access-group 101 in Router(config)#line vty 0 4 Router(config-line)# login local Router(config-line)# autocommand access-enable host timeout 5 Permite conexin por 15 minutos y la cierra despus de 5 de inactividad

    ACLs REFLEXIVAS
    Router(config)#ip access-list extended OUTBOUNDFILTERS Router(config-ext-nacl)#permit tcp 192.168.0.0 0.0.255.255 any reflect TCPTRAFFIC Router(config-ext-nacl)#permit tcp 192.168.0.0 0.0.255.255 any reflect ICMPTRAFFIC Router(config)#ip access-list extended INBOUNDFILTERS Router(config-ext-nacl)#evaluate TCPTRAFFIC Router(config-ext-nacl)#evaluate ICMPTRAFFIC Router(config)#interface serial 0/0/1 Router(config-if)#ip access-group INBOUNDFILTERS in Router(config-if)#ip access-group OUTBOUNDFILTERS out

    ACLs basadas en tiempo


    Router(config)#time range EVERYOTHERDAY Router(config-time-range)#periodic Monday Wednesday Friday 8:00 to 17:00 Router(config)#access-list 101 permit tcp 192.168.0.0 0.0.255.255 any eq telnet time-range EVERYOTHERDAY Router(config)#interface serial 0/0/1 Router(config-if)#ip access-group 101 out

    ACL para el telnet


    Router(config)#access-list 10 permit 172.16.16.0 0.0.0.255 asignar ACL al VTY Router(config)#line vty 0 15 Router(config-line)#password cisco Router(config-line)#login Router(config-line)#access-class 10 in

    You might also like