Hi all, when configuring access lists, what is the definition of an extended access list, I thought on a router it means source and dest, but when I configure an access list on my asa firewall, does it have a different meaning ?
1.Extended ACLs were introduced in Cisco IOS Software Release 8.3.n all software releases, the access-list-number can be 101 to 199. In Cisco IOS Software Release 12.0.1, extended ACLs begin to use additional numbers (2000 to 2699)
***Extended ACLs control traffic by the comparison of the source and destination addresses of the IP packets to the addresses configured in the ACL.
2.In extended access-lists with ICMP you can use ICMP type, tos etc.
3.In Extended acces-list with TCP & UDP , you can use source & destination ports , in addition to source 7 destination address.
4.Also in IP Extended access-list you can use different protocols like ftp,www,telnet to match.
5.In ASA firewall , access-list are used to control the access , in both directions.
6.there are some default rules in ASA like access from higher security level to lower security level is allowed by default , unless restricted using access list, & is blocked by default from low security level to high, unless allowed using access list.
We are pleased to announce availability of Beta software for 16.6.3.
16.6.3 will be the second rebuild on the 16.6 release train targeted
towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are
looking for early feedback from customers befor...
Introduction Featured Speakers Luis Espejel is the Telecommunications
Manager of IENova, an Oil & Gas company. Currently he works with Cisco
IOS® and Cisco IOS XE platforms, and NX to some extent. He has also
worked as a Senior Engineer with the Routing P...
In this session you can learn more about Layer 3 multicast and the best
practices to identify possible threats and take security measures. It
provides an overview of basic multicast, the best security practices for
use of this technology, and recommendati...