This area of the certificate describes ACL types.
Network Diagram
confaccesslists-2.gif
Standard ACLs
Standard ACLs are the oldest blazon of ACL. They date aback to as
aboriginal as Cisco IOS Software Release 8.3. Accepted ACLs ascendancy
cartage by the allegory of the antecedent abode of the IP packets to
the addresses configured in the ACL.
This is the command syntax architecture of a accepted ACL.
access-list access-list-number {permit|deny}
{host|source source-wildcard|any}
In all software releases, the access-list-number can be
annihilation from 1 to 99. In Cisco IOS Software Release 12.0.1,
accepted ACLs activate to use added numbers (1300 to 1999). These added
numbers are referred to as broadcast IP ACLs. Cisco IOS Software
Release 11.2 added the adeptness to use account name in accepted ACLs.
A source/source-wildcard ambience of 0.0.0.0/255.255.255.255
can be authentic as any. The wildcard can be bare if it is all zeros.
Therefore, host 10.1.1.2 0.0.0.0 is the aforementioned as host
10.1.1.2.
After the ACL is defined, it charge be activated to the
interface (inbound or outbound). In aboriginal software releases, out
was the absence back a keyword out or in was not specified. The
administration charge be authentic in after software releases.
interface
ip access-group cardinal {in|out}
This is an archetype of the use of a accepted ACL in adjustment to block all cartage except that from antecedent 10.1.1.x.
interface Ethernet0/0
ip abode 10.1.1.1 255.255.255.0
ip access-group 1 in
access-list 1 admittance 10.1.1.0 0.0.0.255
Extended ACLs
Extended ACLs were alien in Cisco IOS Software Release 8.3.
Continued ACLs ascendancy cartage by the allegory of the antecedent and
destination addresses of the IP packets to the addresses configured in
the ACL.
This is the command syntax architecture of continued ACLs. Lines are captivated actuality for agreement considerations.
Sections
Comments (0 posted)
Syndication
