Please enable JavaScript.

Coggle requires JavaScript to display documents.

Access Control Lists (Extended ACL (access-list access_list_name [ line …

- - - - extended
        
        { deny | permit }
        
        protocol_argument source_address_argument dest_address_argument
        
        Source Address, Destination Address
        source_address_argument = sent from
        dest_address_argument = sent to:
        – host ip_address —Specifies an IPv4 host address.
        
        dest_ip_address mask —Specifies an IPv4 network address and subnet mask
        
        any , any4 , and any6 — any specifies both IPv4 and IPv6 traffic; any4 specifies only IPv4 traffic; and any6 specifies any6 traffic.
        
        3 more items...
        
        specific IP address 10.1.1.1
      - standard
        
        { deny | permit }
        
        protocol_argument source_address_argument dest_address_argument
- - - - allow access access for devices with IP addresses in the range from 192.168.146.0 to 192.168.147.254.
    - - ACL permitting all hosts on the Class C Network
        
        Wild Card Masks are the opposite of subnet masks. More concerned with Hosts.
        
        Example10.0.0.0 0.255.255.255 = the "255" means "ignore" and the zero is specific to the "10",
        
        WILD CARD MASks
- - - - ip access-group 102 in
        !
        access-list 102 permit tcp any host 192.168.1.100 eq ftp
        access-list 102 permit tcp any host 192.168.1.100 eq ftp-data established
        !
        interface ethernet1
        ip access-group 110 in
        !
        access-list 110 permit host 192.168.1.100 eq ftp any established
        access-list 110 permit host 192.168.1.100 eq ftp-data any
      - Enter this command in order to permit Routing Information Protocol (RIP):
        access-list 102 permit udp any any eq rip
        Enter this command in order to permit Interior Gateway Routing Protocol (IGRP):
        access-list 102 permit igrp any any
        Enter this command in order to permit Enhanced IGRP (EIGRP):
        access-list 102 permit eigrp any any
        Enter this command in order to permit Open Shortest Path First (OSPF):
        access-list 102 permit ospf any any
        Enter this command in order to permit Border Gateway Protocol (BGP):
        access-list 102 permit tcp any any eq 179
        access-list 102 permit tcp any eq 179 any
    - - Telnet uses TCP, port 23. This configuration shows that all TCP traffic destined to NetA for port 23 is blocked, and all other IP traffic is permitted.