? 2013 All rights reserved,NA (Access Control List)访问控制列表? 2013 All rights reserved,NA ??Filtering: Manage IP traffic by filtering packets passing through a router?Classification: Identify traffic for special handling? 2013 All rights reserved,NA : Filtering?Permit or deny packets moving through the router.?Permit or deny vty access to or from the router.?Without ACLs, all packets could be transmitted to all parts of ://? 2013 All rights reserved,NA handling for traffic based on packet testsACL的应用: Classification? 2013 All rights reserved,NA ?YACL ?NRouting TableEntry?? 2013 All rights reserved,NA no ACL statement matches, discard the packet. ? 2013 All rights reserved,NA : Deny or Permit? 2013 All rights reserved,NA ? Standard ACL?Checks source address;?Generally permits or denies entire protocol suite;?Extended ACL?Checks source and destination address;?Generally permits or denies specific protocols and applications;?Two methods used to identify standard and extended ACLs:?Numbered ACLs use a number for identification?Named ACLs use a descriptive name or number for identification? 2013 All rights reserved,NA ??Numbered standard IPv4 lists (1–99) test conditions of all IP packets for source addresses. Expanded range (1300–1999).?Numbered extended IPv4 lists (100–199) test conditions of source and destination addresses, specific TCP/IP protocols, and destination ports. Expanded range (2000–2699). ?Named ACLs identify IP standard and extended ACLs with an alphanumeric string (name). ? 2013 All rights reserved,NA –Requires Cisco IOS Release –Allows you to edit the order of ACL statements using sequence numbers?In software earlie
【CCNA 8-1】ACL 来自淘豆网m.daumloan.com转载请标明出处.
