Home

Chapter 9: Access Control Lists

  • 9.0 Access Control Lists
    • 9.0.1 Access Control Lists
      • 9.0.1.1 Introduction
      • 9.0.1.2 Permit Me to Assist You
  • 9.1 IP ACL Operation
    • 9.1.1 Purpose of ACLs
      • 9.1.1.1 What is an ACL?
      • 9.1.1.2 A TCP Conversation
      • 9.1.1.3 Packet Filtering
      • 9.1.1.4 Packet Filtering (Cont.)
      • 9.1.1.5 ACL Operation
      • 9.1.1.6 Packet Tracer - ACL Demonstration
    • 9.1.2 Standard versus Extended IPv4 ACLs
      • 9.1.2.1 Types of Cisco IPv4 ACLs
      • 9.1.2.2 Numbering and Naming ACLs
    • 9.1.3 Wildcard Masks in ACLs
      • 9.1.3.1 Introducing ACL Wildcard Masking
      • 9.1.3.2 Wildcard Mask Examples
      • 9.1.3.3 Calculating the Wildcard Mask
      • 9.1.3.4 Wildcard Mask Keywords
      • 9.1.3.5 Examples Wildcard Mask Keywords
      • 9.1.3.6 Activity - Determine the Correct Wildcard Mask
      • 9.1.3.7 Activity - Determine the Permit or Deny
    • 9.1.4 Guidelines for ACL creation
      • 9.1.4.1 General Guidelines for Creating ACLs
      • 9.1.4.2 ACL Best Practices
      • 9.1.4.3 Activity - ACL Operation
    • 9.1.5 Guidelines for ACL Placement
      • 9.1.5.1 Where to Place ACLs
      • 9.1.5.2 Standard ACL Placement
      • 9.1.5.3 Extended ACL Placement
      • 9.1.5.4 Activity - Placing Standard and Extended ACLs
  • 9.2 Standard IPv4 ACLs
    • 9.2.1 Configure Standard IPv4 ACLs
      • 9.2.1.1 Entering Criteria Statements
      • 9.2.1.2 Configuring a Standard ACL
      • 9.2.1.3 Configuring a Standard ACL (Cont.)
      • 9.2.1.4 Internal Logic
      • 9.2.1.5 Applying Standard ACLs to Interfaces
      • 9.2.1.6 Applying Standard ACLs to Interfaces (Cont.)
      • 9.2.1.7 Creating Named Standard ACLs
      • 9.2.1.8 Commenting ACLs
      • 9.2.1.9 Activity - Configuring Standard ACLs
      • 9.2.1.10 Packet Tracer - Configuring Standard ACLs
      • 9.2.1.11 Packet Tracer - Configuring Named Standard ACLs
    • 9.2.2 Modify IPv4 ACLs
      • 9.2.2.1 Editing Standard Numbered ACLs
      • 9.2.2.2 Editing Standard Numbered ACLs (Cont.)
      • 9.2.2.3 Editing Standard Named ACLs
      • 9.2.2.4 Verifying ACLs
      • 9.2.2.5 ACL Statistics
      • 9.2.2.6 Standard ACL Sequence Numbers
      • 9.2.2.7 Lab - Configuring and Verifying Standard ACLs
    • 9.2.3 Securing VTY ports with a Standard IPv4 ACL
      • 9.2.3.1 Configuring a Standard ACL to Secure a VTY Port
      • 9.2.3.2 Verifying a Standard ACL used to Secure a VTY Port
      • 9.2.3.3 Packet Tracer - Configuring an ACL on VTY Lines
      • 9.2.3.4 Lab - Configuring and Verifying VTY Restrictions
  • 9.3 Extended IPv4 ACLs
    • 9.3.1 Structure of an Extended IPv4 ACL
      • 9.3.1.1 Extended ACLs
      • 9.3.1.2 Extended ACLs (Cont.)
    • 9.3.2 Configure Extended IPv4 ACLs
      • 9.3.2.1 Configuring Extended ACLs
      • 9.3.2.2 Applying Extended ACLs to Interfaces
      • 9.3.2.3 Filtering Traffic with Extended ACLs
      • 9.3.2.4 Creating Named Extended ACLs
      • 9.3.2.5 Verifying Extended ACLs
      • 9.3.2.6 Editing Extended ACLs
      • 9.3.2.7 Activity - Creating an Extended ACL Statement
      • 9.3.2.8 Activity - Evaluating Extended ACEs
      • 9.3.2.9 Activity - ACL Testlet
      • 9.3.2.10 Packet Tracer - Configuring Extended ACLs - Scenario 1
      • 9.3.2.11 Packet Tracer - Configuring Extended ACLs - Scenario 2
      • 9.3.2.12 Packet Tracer - Configuring Extended ACLs - Scenario 3
      • 9.3.2.13 Lab - Configuring and Verifying Extended ACLs
  • 9.4 Troubleshoot ACLs
    • 9.4.1 Processing Packets with ACLs
      • 9.4.1.1 Inbound and Outbound ACL Logic
      • 9.4.1.2 ACL Logic Operations
      • 9.4.1.3 Standard ACL Decision Process
      • 9.4.1.4 Extended ACL Decision Process
      • 9.4.1.5 Activity - Place in Order the Steps of the ACL Decision Making Process
    • 9.4.2 Common ACLs Errors
      • 9.4.2.1 Troubleshooting Common ACL Errors - Example 1
      • 9.4.2.2 Troubleshooting Common ACL Errors - Example 2
      • 9.4.2.3 Troubleshooting Common ACL Errors - Example 3
      • 9.4.2.4 Troubleshooting Common ACL Errors - Example 4
      • 9.4.2.5 Troubleshooting Common ACL Errors - Example 5
      • 9.4.2.6 Packet Tracer - Troubleshooting ACLs
      • 9.4.2.7 Lab - Troubleshooting ACL Configuration and Placement
      • 9.4.2.8 Packet Tracer - Skills Integration Challenge
  • 9.5 IPv6 ACLs
    • 9.5.1 IPv6 ACL Creation
      • 9.5.1.1 Type of IPv6 ACLs
      • 9.5.1.2 Comparing IPv4 and IPv6 ACLs
    • 9.5.2 Configuring IPv6 ACLs
      • 9.5.2.1 Configuring IPv6 Topology
      • 9.5.2.2 Configuring IPv6 ACLs
      • 9.5.2.3 Applying an IPv6 ACL to an Interface
      • 9.5.2.4 IPv6 ACL Examples
      • 9.5.2.5 Verifying IPv6 ACLs
      • 9.5.2.6 Packet Tracer - Configuring IPv6 ACLs
      • 9.5.2.7 Lab - Configuring and Verifying IPv6 ACLs
  • 9.6 Summary
    • 9.6.1 Summary
      • 9.6.1.1 FTP Denied
      • 9.6.1.2 Summary
  • Expand All
  • Collapse All