Access Lists Workbook_Student Edition v1_5
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Breakdown of an Extended ACL Statement<br />
autonomous<br />
number<br />
100 to 199<br />
protocol<br />
icp,<br />
icmp,<br />
tcp, udp,<br />
ip,<br />
etc.<br />
source<br />
wildcard<br />
mask<br />
destination<br />
wildcard<br />
mask<br />
access-list 125 permit ip 192.168.90.36 0.0.0.0 192.175.63.12 0.0.0.0<br />
permit or deny<br />
source<br />
address<br />
destination<br />
address<br />
autonomous<br />
number<br />
100 to 199<br />
protocol<br />
icp,<br />
icmp,<br />
tcp, udp,<br />
ip,<br />
etc.<br />
indicates a<br />
specific<br />
host<br />
destination<br />
address<br />
port<br />
number<br />
(23 = telnet)<br />
access-list 178 deny tcp host 192.168.90.36 host 192.175.63.12 eq 23 log<br />
permit<br />
or<br />
deny<br />
source<br />
address<br />
Protocols Include: (Layers 3 and 4)<br />
IP IGMP IPINIP<br />
TCP GRE OSPF<br />
UDP IGRP NOS<br />
ICMP EIGRP Integer 0-255<br />
To match any internet protocol use IP.<br />
indicates a<br />
specific<br />
host<br />
operator<br />
eq for =<br />
gt for ><br />
lt for <<br />
neg for =<br />
(Optional)<br />
generates a log<br />
entry on the<br />
router for each<br />
packet that<br />
matches this<br />
statement<br />
11