Professional Documents
Culture Documents
Naveen Patel
Types of ACL
ACL
Numbered
Name
Standard
Extended
Standard
Extended
Naveen Patel
10.0.0.1/8 S0
11.0.0.1/8 S0
HYD
E0 192.168.1.1/24
S1 10.0.0.2/8
CHE
E0 192.168.2.1/24
S1 11.0.0.2/8
BAN
E0 192.168.3.1/24
1.2
1.3
1.4
2.2
2.3
2.4
3.2
3.3
3.4
LAN - 192.168.1.0/24
LAN - 192.168.2.0/24
LAN - 192.168.3.0/24
Naveen Patel
Types of Access-list
Standard ACL
Extended ACL
Named ACL
Naveen Patel
The access-list number range is 1 99 Can block a Network, Host and Subnet Two way communication is stopped All services are blocked. Implemented closest to the destination. (Guideline) Checks the source IP address.
Naveen Patel
The access-list number range is 100 199 Can block a Network, Host, Subnet and Service
Naveen Patel
Terminology
request ends.
Inbound : Traffic coming into the interface Outbound : Traffic going out of the interface
Naveen Patel
Terminology
Protocols : IP - TCP - UDP - ICMP Operators : eq (equal to) neq (not equal to) lt (less than) gt (greater than)
Tells the router which addressing bits must match in the address of the ACL statement.
Naveen Patel
A wild card mask can be calculated using the formula : Global Subnet Mask Customized Subnet Mask ------------------------------Wild Card Mask E.g. 255.255.255.255 255.255.255.240 --------------------0. 0. 0. 15
Naveen Patel
Naveen Patel
10.0.0.1/8 S0
11.0.0.1/8 S0
HYD
E0 192.168.1.1/24
S1 10.0.0.2/8
CHE
E0 192.168.2.1/24
S1 11.0.0.2/8
BAN
E0 192.168.3.1/24
1.1
1.2
1.3
2.1
2.2
2.3
3.1
3.2
3.3
LAN - 192.168.1.0/24
LAN - 192.168.2.0/24
LAN - 192.168.3.0/24
Naveen Patel