Access Control LIst

Unanswered Question
Nov 12th, 2007

Im trying to learn ACLs on routers for a CCNA based course im taking in college. They didnt explain to me ACLs very well and i am totally lost to how the ip and wildcard masks configs work. Please any help or websites would be of great assistance.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
bvsnarayana03 Sat, 11/17/2007 - 01:23

Yes it takes a little time to understand acl's. Though the concepts may be understood from books, but practice on paper, simulator or devices definitely helps deeper understanding & boosts the confidence.

ACL's are used to permit or deny IP traffic to or from an interface. Traffic can be identified by either, Ip add,or port, or combination of both. The real catch lies in the inverse mask. The mask when converted to bits, results in 0's & 1's. Where 0's are exact match & 1's are dont care.

ACL's are of 2 types:

Standard : match only sorce Ip add

Extended : matches both src & dst add with ports

Refer the link provided in previous post for detailed study. In future u'll come across the use of acl's for PBR, Natting, distribution lists etc. Enjoy reading.


This Discussion