Access Lists Workbook - The Cisco Learning Network

More documents

Recommendations

Info

6 Extended Access Lists Extended Access Lists... ...are numbered from 100 to 199. ...filter (permit or deny) based on the: source address destination address protocol port number ... are placed close to the source. ...work at both layer 3 and 4 of the OSI model. Why extended ACLs are placed close to the source. If you want to deny traffic from Juan’s computer from reaching Janet’s computer with an extended access list you would place the ACL close to the source on Router A, interface E0. Since it can permit or deny based on the destination address it can reduce backbone overhead and not effect traffic to Routers B, or C. Router A E0 S0 Juan’s Computer Router B S1 S0 FA0 Matt’s Computer S1 Jimmy’s Computer Router C E0 Router D Janet’s Computer If you place the ACL on Router E to block traffic from Router A, it will work. However, Routers B, and C will have to route the packet before it is finally blocked at Router E. This increases the volume of useless network traffic. S0 S1 E0
Juan’s Computer Lisa’s Computer Extended Access List Placement Sample Problems E0 Router A Jan’s Computer In order to permit packets from Juan’s computer to arrive at Jan’s computer you would place the extended access list at router interface ______. E0 Lisa has been sending unnecessary information to Paul. Where would you place the extended ACL to deny all traffic from Lisa to Paul? Router Name ______________ Router A Interface ___________ FA0 E1 FA0 S0 S1 FA1 Router A Router B Paul’s Computer Where would you place the extended ACL to deny traffic from Paul to Lisa? Router Name ______________ Router B Interface ___________ FA1 7
Page 1 and 2: Extended Standard CL Any 0.0.0.0 de
Page 3 and 4: What are Access Control Lists? ACLs
Page 5 and 6: Lisa’s Computer Standard Access L
Page 7: Standard Access List Placement 1. W
Page 11 and 12: Extended Access List Placement 1. W
Page 13 and 14: Breakdown of an Extended ACL Statem
Page 15 and 16: Applying an extended Named Access L
Page 17 and 18: 3. Match a specific range Example 1
Page 19 and 20: Wildcard Mask Problems 1. Create a
Page 21 and 22: 11. access-list 110 permit ip 192.1
Page 23 and 24: Writing Standard Access Lists...
Page 25 and 26: Write a standard access list to blo
Page 27 and 28: Write a standard access list to per
Page 29 and 30: Using a minimum number of commands
Page 31 and 32: Write a standard access list to blo
Page 33 and 34: Write a standard named access list
Page 35 and 36: Writing Extended Access Lists...
Page 37 and 38: Extended Access List Sample #2 Deny
Page 39 and 40: Extended Access List Problem #2 Den
Page 51 and 52: Extended Access List Problem #10 De
Page 59 and 60:
Extended Access List Sample #10 Den
Page 61 and 62:
Extended Access List Problem #16 De
Page 63 and 64:
Page 65 and 66:
Page 67 and 68:
Index / Table of Contents Access-Li
Page 69:
43 NICNAME (Who Is) 49 LOGIN (Login
show all

Access Lists Workbook - The Cisco Learning Network

Create successful ePaper yourself

Delete template?

Save as template?