Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 © 2004 Cisco Systems, Inc. All rights reserved. CCNA 2 v3.1 Module 11 Access Control Lists (ACLs)

Published byViolet Parrish Modified over 9 years ago

Similar presentations

Presentation on theme: "1 © 2004 Cisco Systems, Inc. All rights reserved. CCNA 2 v3.1 Module 11 Access Control Lists (ACLs)"— Presentation transcript:

1 1 © 2004 Cisco Systems, Inc. All rights reserved. CCNA 2 v3.1 Module 11 Access Control Lists (ACLs)

2 222 © 2004, Cisco Systems, Inc. All rights reserved. Objectives

3 333 © 2004, Cisco Systems, Inc. All rights reserved. What are ACLs? ACLs are lists of conditions used to test network traffic that tries to travel across a router interface. These lists tell the router what types of packets to accept or deny.

4 444 © 2004, Cisco Systems, Inc. All rights reserved. How ACLs Work

5 555 © 2004, Cisco Systems, Inc. All rights reserved. Access Control Lists are a list of permit and deny statements which match various packets Access lists are configured in global configuration mode and applied using:- ip access-group {number} in (or out) on an interface

6 666 © 2004, Cisco Systems, Inc. All rights reserved. Protocols with ACLs Specified by Numbers

7 777 © 2004, Cisco Systems, Inc. All rights reserved. Standard Access Lists Access lists numbered 1 -99 or 1300 -1999 Filters traffic based on source IP address Uses wildcard masks Applied to interface closest to destination

8 888 © 2004, Cisco Systems, Inc. All rights reserved. Extended Access Lists Access lists numbered 100-199 and 2000- 2699 Filters traffic on source and destination IP address Also filters traffic based on Layer protocols such as HTTP, ICMP etc Applied to interface closest to the source

9 999 © 2004, Cisco Systems, Inc. All rights reserved. Creating ACLs

10 10 © 2004, Cisco Systems, Inc. All rights reserved. The Function of a Wildcard Mask

11 11 © 2004, Cisco Systems, Inc. All rights reserved. Wildcard Often the inverse of the subnet mask Specifies the range of IP address which match a statement

12 12 © 2004, Cisco Systems, Inc. All rights reserved.

13 13 © 2004, Cisco Systems, Inc. All rights reserved.

14 14 © 2004, Cisco Systems, Inc. All rights reserved. Verifying ACLs There are many show commands that will verify the content and placement of ACLs on the router. show ip interface show access-lists Show running-config

15 15 © 2004, Cisco Systems, Inc. All rights reserved. Standard ACLs

16 16 © 2004, Cisco Systems, Inc. All rights reserved. Extended ACLs

17 17 © 2004, Cisco Systems, Inc. All rights reserved. Access List Structure

18 18 © 2004, Cisco Systems, Inc. All rights reserved. Source/ Destination The source and destination can be specified in several ways 1.IP address and mask e.g. 192.168.1.0 0.0.0.255 specified from 192.168.1.0 – 255 2.Host IP address e.g. host 192.168.1.20 specifies this host only 3.Any specifies any addresses

19 19 © 2004, Cisco Systems, Inc. All rights reserved. Named ACLs

20 20 © 2004, Cisco Systems, Inc. All rights reserved. Placing ACLs Standard ACLs should be placed close to the destination. Extended ACLs should be placed close to the source.

21 21 © 2004, Cisco Systems, Inc. All rights reserved. Firewalls A firewall is an architectural structure that exists between the user and the outside world to protect the internal network from intruders.

22 22 © 2004, Cisco Systems, Inc. All rights reserved. Restricting Virtual Terminal Access

23 23 © 2004, Cisco Systems, Inc. All rights reserved. Summary

Download ppt "1 © 2004 Cisco Systems, Inc. All rights reserved. CCNA 2 v3.1 Module 11 Access Control Lists (ACLs)"

Similar presentations

Access Control List (ACL)

Access Control List (ACL)
What is access control list (ACL)?

What is access control list (ACL)?
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 9: Access Control Lists Routing & Switching.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 9: Access Control Lists Routing & Switching.
Chapter 9: Access Control Lists

Chapter 9: Access Control Lists
Basic IP Traffic Management with Access Lists

Basic IP Traffic Management with Access Lists
© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—4-1 Managing IP Traffic with ACLs Configuring IP ACLs.

© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—4-1 Managing IP Traffic with ACLs Configuring IP ACLs.
© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—4-1 Managing IP Traffic with ACLs Introducing ACLs.

© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—4-1 Managing IP Traffic with ACLs Introducing ACLs.
© 2007 Cisco Systems, Inc. All rights reserved.ICND2 v1.0—6-1 Access Control Lists Introducing ACL Operation.

© 2007 Cisco Systems, Inc. All rights reserved.ICND2 v1.0—6-1 Access Control Lists Introducing ACL Operation.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Access Control Lists Accessing the WAN – Chapter 5.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Access Control Lists Accessing the WAN – Chapter 5.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Access Control Lists Accessing the WAN – Chapter 5.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Access Control Lists Accessing the WAN – Chapter 5.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Access Control Lists Accessing the WAN – Chapter 5.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Access Control Lists Accessing the WAN – Chapter 5.
NESCOT CATC1 Access Control Lists CCNA 2 v3 – Module 11.

NESCOT CATC1 Access Control Lists CCNA 2 v3 – Module 11.
WXES2106 Network Technology Semester 1 2004/2005 Chapter 10 Access Control Lists CCNA2: Module 11.

WXES2106 Network Technology Semester /2005 Chapter 10 Access Control Lists CCNA2: Module 11.
1 Access Lists. 2 Introduction ACL (access list)  a list of conditions that categorize packets. Rules:  Sequential order.  Until a match is made. 

1 Access Lists. 2 Introduction ACL (access list)  a list of conditions that categorize packets. Rules:  Sequential order.  Until a match is made. 
Copyright 2000 C. Dodge Access Control List Wildcards (Inverse Mask) Computer Networking II.

Copyright 2000 C. Dodge Access Control List Wildcards (Inverse Mask) Computer Networking II.
CCNA 2 v3.1 Module 11.

CCNA 2 v3.1 Module 11.
1 © 2004 Cisco Systems, Inc. All rights reserved. CCNA 2 v3.1 Module 11 Access Control Lists (ACLs)

1 © 2004 Cisco Systems, Inc. All rights reserved. CCNA 2 v3.1 Module 11 Access Control Lists (ACLs)
Access Lists 1 Network traffic flow and security influence the design and management of computer networks Access lists are permit or deny statements that.

Access Lists 1 Network traffic flow and security influence the design and management of computer networks Access lists are permit or deny statements that.
Implementing Standard and Extended Access Control List (ACL) in Cisco Routers.

Implementing Standard and Extended Access Control List (ACL) in Cisco Routers.
CCNA2 Routing Perrine modified by Brierley Page 18/6/2015 Module 11 Access Control 172.16.3.0172.16.4.0 Non-172.16.0.0 e0e1 s0 172.16.4.13 server.

CCNA2 Routing Perrine modified by Brierley Page 18/6/2015 Module 11 Access Control Non e0e1 s server.

Similar presentations

Ads by Google