CCNA

  ACL

• ACL Stands for ACCESS CONTROL LIST.

• IT is a filtering mechanism that filter network and allows that traffic through ACL based on conditions.    

These are two types :-

1. Standard ACL
2. Extended ACL

Standard ACL :-

         These are the Access-list which are made using the source IP address only. These ACLs permit or deny the entire protocol suite. They don’t distinguish between the IP traffic such as TCP, UDP, Https etc.

1. Standard Access-list is generally applied close to destination (but not always).
2. In standard access-list, whole network or sub-network is denied.
3. Standard access-list uses the range 1-99 and extended range 1300-1999.
4. Standard access-list is implemented using source IP address only.
5. If numbered with standard Access-list is used then remember rules can’t be deleted. If one of the rule is deleted then the whole access-list will be deleted.
6. If named with standard Access-list is used then you have the flexibility to delete a rule from access-list.

   CMD 

      R1 ---------------------------------------> R3        ( R= Router )

10.0.0.0/8                                             30.0.0.0/8

R3(config)# access-list  1  deny 10.0.0.0  0.255.255.255(wildmask)

R3# show access-list

R3(config)# int  fa 0/0

R3(config-if)# ip  access-group  1  out

ctrl + z

Extended ACL

   
    ((((((((((((((((((((( Comoing Soon)))))))))))))))))))))