http://ciscoarticles.com/rss/rss.php en-us Copyright 2010, rhifat@gmail.com rhifat@gmail.com CCSP-Cisco Certified Security Professional http://ciscoarticles.com/rss/rss.php Collection hourly 4 1901-01-01T00:00+00:00 http://ciscoarticles.com/CCSP-Cisco-Certified-Security-Professional/Named Access Lists networks.html <a name="2030" /><a name="wbp33AppAP361" /><a name="wbp33AppAP361"> </a> <a name="wbp33AppAP361">Since Cisco IOS Release 11.2, you can use a text name for access lists in many cases. Some new features have been added to named ACLs that make them more than just text names. The benefits ... en-us Named Access Lists http://ciscoarticles.com/rss/article_view.php?articleId=4363 Copyright 2010, 2010-03-24T00:00:00+03:00 text http://ciscoarticles.com/CCSP-Cisco-Certified-Security-Professional/ICMP-Access-Lists.html ICMP (Internet Control Message Protocol&#8212;RFC 792) access list syntax doesn&#8217;t use port numbers, but adds options to allow filtering on ICMP messages. The actual syntax for filtering UDP is as follows: access-list <i class="emphasis">acl#</i> {permit | deny} icmp {<i class="emphasis">source</i> <i class="emphasis">wildcard</i> | any} {<i class="emphasis">destination wildcard</i> |any} [<i class="emphasis">icmp-type</i> ... en-us ICMP Access Lists http://ciscoarticles.com/rss/article_view.php?articleId=4362 Copyright 2010, 2010-03-24T00:00:00+03:00 text http://ciscoarticles.com/CCSP-Cisco-Certified-Security-Professional/UDP-Access-Lists.html The <i class="emphasis">UDP access list, </i>like TCP, supports both source and destination ports, and, like TCP, uses the same relational operators to define the mnemonic or port numbers. The following code output shows some of the most common UDP port names: Rtr1(config)#access-list 101 permit udp any eq ? ... en-us UDP Access Lists http://ciscoarticles.com/rss/article_view.php?articleId=4361 Copyright 2010, 2010-03-24T00:00:00+03:00 text http://ciscoarticles.com/CCSP-Cisco-Certified-Security-Professional/TCP-Access-Lists.html TCP access lists support both source and destination TCP ports, which can be specified using either the port number or mnemonic. Port numbers or name must be preceded with relational operators, such as those shown in the following code output: Rtr1(config)#access-list 101 deny tcp host 10.0.0.97 ? &#160;eq ... en-us TCP Access Lists http://ciscoarticles.com/rss/article_view.php?articleId=4360 Copyright 2010, 2010-03-24T00:00:00+03:00 text http://ciscoarticles.com/CCSP-Cisco-Certified-Security-Professional/4359.html <a name="2019" /><a name="wbp33AppAP186" /><a name="2020" /><a name="IDX-965" /> <i class="emphasis">Extended access lists</i> provide a higher level of traffic control by being able to filter packets based on the protocol, source and/or destination IP address, and source and/or destination port number. For example, an extended access list can block an address ... en-us Extended Access Lists http://ciscoarticles.com/rss/article_view.php?articleId=4359 Copyright 2010, 2010-03-24T00:00:00+03:00 text