Presentation is loading. Please wait.

Presentation is loading. Please wait.

Keeping the world safe by preventing your students from accessing it…

Published byθάλασσα Δασκαλόπουλος Modified over 6 years ago

Similar presentations

Presentation on theme: "Keeping the world safe by preventing your students from accessing it…"— Presentation transcript:

1 Keeping the world safe by preventing your students from accessing it…
A bit of ACL… Special Thanks to Mr. Edd Spidell of Cranston Vocational Technical School for this PPT. Keeping the world safe by preventing your students from accessing it…

2 What are Access Control Lists?
They are statements used to control the flow of network traffic and provide varying levels of network security. The lists contain Permit or Deny statements that filter network traffic based on the source address, destination address, and protocol type of a packet.

3 How can we let Jabba get access to Yoda but not to the Internet?

4 To prevent Jabba’s access to the Internet, we could:
Put him in CCRI’s new computer wing and watch him try to reach the keyboard….or to get back out… Have Princess Leah join him for lunch… Use ACL’s on an interface to limit traffic… Your final answer is?

5 We would use ACL’s but the others would be fun too…
We would configure the router port that is the gateway for Jabba to prevent access. SkyWalker#config t SkyWalker(config)#access-list 1 deny SkyWalker(config)#access-list 1 permit any SkyWalker(config)#int e1 SkyWalker(config-if)#ip access-group 1 in SkyWalker(config-if)#^z This is a Standard Access List which is denying packets based on the source address.

6 To remove an ACL, we must go back into the router configuration.
SkyWalker#config t SkyWalker(config)#no access-list 1 SkyWalker(config)#int e1 SkyWalker(config-if)#no ip access-group 1 in SkyWalker(config-if)#^Z

7 If we cut a deal with Jabba so he could use the Internet, but prevent him from downloading from FTP sites, we can use Extended Access Control Lists Unlike standard lists, the EACL’s can filter by source IP, destination IP, protocol type,and application port number. For this instance, we will be using Port 21 (FTP).

8 To block Jabba’s FTP access…
SkyWalker#config t SkyWalker(config)#access-list 100 deny tcp eq 21 SkyWalker(config)#access-list 100 permit ip any any SkyWalker(config)#int e1 SkyWalker(config-if)#ip access-group 100 in SkyWalker(config-if)#^Z

9 To remove the EACL… SkyWalker#config t
SkyWalker(config)#no access-list 100 SkyWalker(config)#int e1 SkyWalker(config-if)#no ip access-group 100 in SkyWalker(config-if)#^Z

10 Wildcard Masks Routers use them to determine which bits in an address are significant. 0’s(zeros) are significant, 1’s(ones) are not. For example: The makes the access list match to the host (Jabba’s) exactly. Another example: The makes the access list apply to both Yoda and Jabba on the .20 subnet.

11 You know there is much more to be learned…
Due to time constraints and my limited knowledge on this subject, I defer to those of you that have a better understanding of what I have tried to present. In summary, my opinion is that this subject is probably the most important part of the entire curriculum so far, and at the same time, the most involved from a learning standpoint.

Download ppt "Keeping the world safe by preventing your students from accessing it…"

Similar presentations

Student Guide www.visioninfosystems.org Access List.

Student Guide Access List.
Access Control Lists. Types Standard Extended Standard ACLs Use only the packets source address for comparison 1-99.

Access Control Lists. Types Standard Extended Standard ACLs Use only the packets source address for comparison 1-99.
Access Control List (ACL)

Access Control List (ACL)
Configuring and Troubleshooting ACLs

Configuring and Troubleshooting ACLs
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 9: Access Control Lists Routing & Switching.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 9: Access Control Lists Routing & Switching.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Access Control Lists John Mowry.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Access Control Lists John Mowry.
Chapter 9: Access Control Lists

Chapter 9: Access Control Lists
Basic IP Traffic Management with Access Lists

Basic IP Traffic Management with Access Lists
© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—4-1 Managing IP Traffic with ACLs Configuring IP ACLs.

© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—4-1 Managing IP Traffic with ACLs Configuring IP ACLs.
© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—4-1 Managing IP Traffic with ACLs Introducing ACLs.

© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—4-1 Managing IP Traffic with ACLs Introducing ACLs.
© 2007 Cisco Systems, Inc. All rights reserved.ICND2 v1.0—6-1 Access Control Lists Introducing ACL Operation.

© 2007 Cisco Systems, Inc. All rights reserved.ICND2 v1.0—6-1 Access Control Lists Introducing ACL Operation.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Access Control Lists Accessing the WAN – Chapter 5.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Access Control Lists Accessing the WAN – Chapter 5.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Access Control Lists Accessing the WAN – Chapter 5.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Access Control Lists Accessing the WAN – Chapter 5.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Access Control Lists Accessing the WAN – Chapter 5.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Access Control Lists Accessing the WAN – Chapter 5.
WXES2106 Network Technology Semester 1 2004/2005 Chapter 10 Access Control Lists CCNA2: Module 11.

WXES2106 Network Technology Semester /2005 Chapter 10 Access Control Lists CCNA2: Module 11.
1 Access Lists. 2 Introduction ACL (access list)  a list of conditions that categorize packets. Rules:  Sequential order.  Until a match is made. 

1 Access Lists. 2 Introduction ACL (access list)  a list of conditions that categorize packets. Rules:  Sequential order.  Until a match is made. 
Standard, Extended and Named ACL.  In this lesson, you will learn: ◦ Purpose of ACLs  Its application to an enterprise network ◦ How ACLs are used to.

Standard, Extended and Named ACL.  In this lesson, you will learn: ◦ Purpose of ACLs  Its application to an enterprise network ◦ How ACLs are used to.
Copyright 2000 C. Dodge Access Control List Wildcards (Inverse Mask) Computer Networking II.

Copyright 2000 C. Dodge Access Control List Wildcards (Inverse Mask) Computer Networking II.
Access Lists 1 Network traffic flow and security influence the design and management of computer networks Access lists are permit or deny statements that.

Access Lists 1 Network traffic flow and security influence the design and management of computer networks Access lists are permit or deny statements that.
Access Lists Lists of conditions that control access.

Access Lists Lists of conditions that control access.

Similar presentations

Ads by Google