aaaz

How to configure Extended ACL on Cisco Routers?

author
Vivek Mandre
,
Cisco lover
  • Total 1 Answer
  • 5671
Can You answer this question?
author
Rajan Arora
,
CCNA Routing and Switching

Extended Acess Control List ( ACl )  :

- Using Extended Acl we can match Source_ip/Source Network and Destination_ip/Destination_Network and layer 3 protocol  and/or a layer 7 protocol using port numbers.

- Extended Acl is applied near to destination .

- One Acl can be applied per interface , per-direction and per layer 3 protocol.

Syntax: 

(config)#access-list < Protocol >

ACL_Number  = 100-199 , 2000-2699

Protocol : ip ( mean any protocol ) , Eigrp , OSPF , ICMP , TCP , UDP.

Application layer protocol : Telnet,SSH,FTP-data , FTP-control , DHCP, DNS

Task: 

 

1. PC1 cannot ping R2 but can Telnet R2 .

R1(config)#access-list 100 deny icmp host 10.0.0.1 host 12.0.0.2

R1(config)#acess-list 100 pernit ip any any 

R1(config)#interface fa0/0    - R1 interface connected to PC1

R1(config-if)#ip acess-group 100 in

R1(config-if)#exit

To verify : 

R1(config)#do show access-list 

 

Recommended

Whoops, looks like something went wrong.

1/1 ErrorException in Filesystem.php line 111: file_put_contents(/var/www/html/storage/framework/sessions/rx0M6P1dtsNZeF9pH9mda8AHwgs7gbrv2hzWaY41): failed to open stream: No space left on device

  1. in Filesystem.php line 111
  2. at HandleExceptions->handleError(2, 'file_put_contents(/var/www/html/storage/framework/sessions/rx0M6P1dtsNZeF9pH9mda8AHwgs7gbrv2hzWaY41): failed to open stream: No space left on device', '/var/www/html/vendor/laravel/framework/src/Illuminate/Filesystem/Filesystem.php', 111, array('path' => '/var/www/html/storage/framework/sessions/rx0M6P1dtsNZeF9pH9mda8AHwgs7gbrv2hzWaY41', 'contents' => 'a:4:{s:6:"_token";s:40:"c9gmiFGIvY27H6YnfwFAQeOp9pzFGeFLo2Upo2To";s:11:"viewed_urls";a:1:{i:0;s:46:"how-to-configure-extended-acl-on-cisco-routers";}s:9:"_previous";a:1:{s:3:"url";s:74:"http://www.networkbulls.com/how-to-configure-extended-acl-on-cisco-routers";}s:6:"_flash";a:2:{s:3:"old";a:0:{}s:3:"new";a:0:{}}}', 'lock' => true))
  3. at file_put_contents('/var/www/html/storage/framework/sessions/rx0M6P1dtsNZeF9pH9mda8AHwgs7gbrv2hzWaY41', 'a:4:{s:6:"_token";s:40:"c9gmiFGIvY27H6YnfwFAQeOp9pzFGeFLo2Upo2To";s:11:"viewed_urls";a:1:{i:0;s:46:"how-to-configure-extended-acl-on-cisco-routers";}s:9:"_previous";a:1:{s:3:"url";s:74:"http://www.networkbulls.com/how-to-configure-extended-acl-on-cisco-routers";}s:6:"_flash";a:2:{s:3:"old";a:0:{}s:3:"new";a:0:{}}}', 2) in Filesystem.php line 111
  4. at Filesystem->put('/var/www/html/storage/framework/sessions/rx0M6P1dtsNZeF9pH9mda8AHwgs7gbrv2hzWaY41', 'a:4:{s:6:"_token";s:40:"c9gmiFGIvY27H6YnfwFAQeOp9pzFGeFLo2Upo2To";s:11:"viewed_urls";a:1:{i:0;s:46:"how-to-configure-extended-acl-on-cisco-routers";}s:9:"_previous";a:1:{s:3:"url";s:74:"http://www.networkbulls.com/how-to-configure-extended-acl-on-cisco-routers";}s:6:"_flash";a:2:{s:3:"old";a:0:{}s:3:"new";a:0:{}}}', true) in FileSessionHandler.php line 83
  5. at FileSessionHandler->write('rx0M6P1dtsNZeF9pH9mda8AHwgs7gbrv2hzWaY41', 'a:4:{s:6:"_token";s:40:"c9gmiFGIvY27H6YnfwFAQeOp9pzFGeFLo2Upo2To";s:11:"viewed_urls";a:1:{i:0;s:46:"how-to-configure-extended-acl-on-cisco-routers";}s:9:"_previous";a:1:{s:3:"url";s:74:"http://www.networkbulls.com/how-to-configure-extended-acl-on-cisco-routers";}s:6:"_flash";a:2:{s:3:"old";a:0:{}s:3:"new";a:0:{}}}') in Store.php line 128
  6. at Store->save() in StartSession.php line 88
  7. at StartSession->terminate(object(Request), object(Response)) in Kernel.php line 216
  8. at Kernel->terminateMiddleware(object(Request), object(Response)) in Kernel.php line 187
  9. at Kernel->terminate(object(Request), object(Response)) in index.php line 58
  10. at require_once('/var/www/html/public/index.php') in index.php line 20