Please enable JavaScript.
Coggle requires JavaScript to display documents.
CHAPTER 7 Access Control lists (7.2 standard IPv4 Acls (7.2.1 cnfigure…
CHAPTER 7 Access Control lists
7.1 ACLs operation
7.1 ACLs operation
7.1 .1 purpose of ACL
7.1.1.1 what is an ACL?
ACL is a series of IOS command that control whether a router forwards or drops packets based on information found in the packet header.
when configure ACLs perfom the following tasks:
limit network traffic to increase network performance
-provide traffic flow control
-provide a basic level of security for network access
-filter traffic based on traffic type
-screen host topermit or deny access to network services
7.1.1.2 packet filtering
packetfiltering controls access to a network by analyzing the incoming and outgoing packets and forwarding them or discarding them based on given criteria.
7.1.1.3 ACL operation
can be configure to apply ti inbound traffic can doutbound traffic shown in the
-inbound ACLs incoming packets areprocessedbefore they are routed to the outbound interface
7.1.2 wildcardMask in ACLs
7.1.2.1 introducing ACL wildcrd Masking
7.1.2.2wildcard mask examples
7.1.2.3 calculation the wildcard mask
7.1.3 guidelines for ACL creation
7.1.3.1 general guidelines for creating ACLs
7.1.3.2ACL best Practices
7.1.4 guidelines for ACL placement
7.1.4.1 where to placeACLs
7.1.4.2 standard ACL placement
7.2 standard IPv4 Acls
7.2.1 cnfigure standard ipv4 ACLs
7.2.1.1The full syntax of the standard ACL command is as follows:
Router(config)# access-list access-list-number { deny | permit | remark } source [ source-wildcard ][ log ]
ACEs can permit or deny an individual host or a range of host
addresses. To create a host statement in numbered ACL 10 that permits a specific host with the IPv4 address 192.168.10.10, you would enter:
R1(config)# access-list 10 permit host 192.168.10.10
shown in Figure 2, to create a statement that will permit a range of IPv4 addresses in a numbered ACL 10 that permits all IPv4 addresses in the network 192.168.10.0/24, you would enter:
R1(config)# access-list 10 permit 192.168.10.0 0.0.0.255
7.2.1.3
7.2.1.2 applying Standard IPv4 ACLS to interface
7.2.2 modify IPV4 ACLs
7.2.2.1 method 1 use a text editor
7.2.2.2 method 2 use sequence number
7.2.2.3 editting standardnamed ACLs
7.0 introduction
7.1.0 introduction
7.0.1.1
Access control list
-One of the most important skills a network administartor needs is mastery of acess contrillist(ACLs).ACKs provide security for network.
-Network designer use firewall to protect network for unauthorized use.Network designers use firewalls to protect networks from unauthorized use.
-Firewalls are hardware or software solutions that enforce network security policies. Consider a lock on a door to a room inside a building. The lock allows only authorized users with a key or access card to pass through the door
-you can configure a simple firewall that provides basic traffic filtering capabilities using ACL
-This chapter explains how to configure and troubleshoot standard IPv4 ACLs on a Cisco router as part of a security solution. Included are tips, considerations, recommendations, and general guidelines on how to use ACLs.
