Hot Downloads

×

Notice

The forum is in read only mode.
Welcome, Guest
Username: Password: Remember me
  • Page:
  • 1

TOPIC: ACL's

ACL's 12 years 1 month ago #15371

  • anon40
  • anon40's Avatar Topic Author
  • Offline
  • New Member
  • New Member
  • Posts: 1
  • Thank you received: 0
i am a ccna course and i am trying to find information on cisco ACL's. the information i am looking for is how write them in simple terms. i would be greatful if anyone has any suggestions.

Re: ACL's 12 years 1 month ago #15624

  • BiT
  • BiT's Avatar
  • Offline
  • New Member
  • New Member
  • Posts: 4
  • Thank you received: 0
As you know from the CCNA course there are basic ACLs and extended ACLs.
The syntax for a basic ACL is:

[code:1]Router(config)#access-list [access-list-number] {permit | deny} [source IP address] [wildcard mask(optional)][/code:1]

Basic ACLs can obtain numbers from 1 to 99 and from 1300 to 1999.
An example of a basic ACL would be:

[code:1]Router(config)#access-list 1 permit 171.69.2.88[/code:1]

This would translate as:

Permit all traffic from 171.69.2.88


Extended ACLs are a bit more complicated but they give you more flexibility and security.

Syntax:

[code:1]Router(config)#access-list [access-list-number] {permit | deny} {tcp | udp} [source IP address] [source wildcard mask] [destination IP address] [destination wildcard mask] [/code:1]

Extended ACL numbers are from 100 to 199 and from 2000 to 2699.

Example of an extended ACL:
[code:1]Router(config)#access-list 113 permit tcp 172.16.6.0 0.0.0.255 any eq telnet[/code:1]

Permit all telnet traffic from network 172.16.6.0

Don't forget to apply the access-list to an interface after you've configured it. ;)


Of course, this is only the basic concept. Other extra commands can be added to the configuration of an extended ACL, depending on the requirements.
  • Page:
  • 1
Time to create page: 0.126 seconds

CCENT/CCNA

Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V

Linux

  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup