Please enable JavaScript.
Coggle requires JavaScript to display documents.
MODULE 5: ACLs for IPv4 Configuration - Coggle Diagram
MODULE 5: ACLs for IPv4 Configuration
5.1 Configure Standard IPv4 ACLs
5.1.3 Named Standard IPv4 ACL Syntax
5.1.4 Apply a Standard IPv4 ACL
5.1.2 Numbered Standard IPv4 ACL Syntax
5.1.5 Numbered Standard IPv4 ACL Example
5.1.1 Create an ACL
Use a text editor and write out the specifics of the policy to be implemented.
Add the IOS configuration commands to accomplish those tasks.
Include remarks to document the ACL.
Copy and paste the commands onto the device.
Always thoroughly test an ACL to ensure that it correctly applies the desired policy.
5.1.6 Named Standard IPv4 ACL Example
5.1.7 Syntax Check - Configure Standard IPv4 ACLs
5.2 Modify IPv4 ACLs
5.2.2 Text Editor Method
ACLs with multiple ACEs should be created in a text editor. This allows you to plan the required ACEs, create the ACL, and then paste it into the router interface.
For example, assume ACL 1 was entered incorrectly using 19 instead of 192 for the first octet, as shown in the running configuration.
5.2.1 Two Methods to Modify an ACL
After an ACL is configured, it may need to be modified. ACLs with multiple ACEs can be complex to configure. Sometimes the configured ACE does not yield the expected behaviors.
5.2.3 Sequence Numbers Method
5.3 Secure VTY Ports with a Standard IPv4 ACL
5.3.1 The access-class Command
ACLs typically filter incoming or outgoing traffic on an interface. However, an ACL can also be used to secure remote administrative access to a device using the vty lines.
Use the following two steps to secure remote administrative access to the vty lines:
Create an ACL to identify which administrative hosts should be allowed remote access.
Apply the ACL to incoming traffic on the vty lines.
5.3.2 Secure VTY Access Example
5.3.3 Verify the VTY Port is Secured
5.4 Configure Extended IPv4 ACLs
5.4.1 Extended ACLs
Numbered Extended ACL
Named Extended ACL
5.4.2 Numbered Extended IPv4 ACL Syntax
5.4.3 Protocols and Ports
Protocol Options
Port Keyword Options
5.4.4 Protocols and Port Numbers Configuration Examples
5.4.5 Apply a Numbered Extended IPv4 ACL
5.4.6 TCP Established Extended ACL
5.4.7 Named Extended IPv4 ACL Syntax
5.4.8 Named Extended IPv4 ACL Example
5.4.9 Edit Extended ACLs
5.4.10 Another Named Extended IPv4 ACL Example
5.4.11 Verify Extended ACLs
show ip interface
show access-lists
show running-config
