CCNA - M10 - CAP 3 v2 - Parte 2 - Extended Numbered IP Access Control Lists

Uploaded by

Alex Teixeira

0% found this document useful (0 votes)

5 views6 pages

Networking

Copyright

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Networking

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

0% found this document useful (0 votes)

5 views6 pages

CCNA - M10 - CAP 3 v2 - Parte 2 - Extended Numbered IP Access Control Lists

Uploaded by

Alex Teixeira

Networking

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 6

Search inside document

CCNA

200-301
Part IX IP Access Control Lists

Extended Numbered IP Access Control Lists

Chapter 3
Advanced IPv4 Access Control Lists Parte 2 Named ACLs and ACL Editing
(volume 2)
Correção da Lista
Named IP Access Lists
Principais diferenças da ACL Nomeada para a Numerada:
Utiliza nomes em vez de números para identificar a ACL, tornando mais fácil lembrar o motivo da ACL.
Utiliza subcomandos ACL, não comandos globais, para definir a ação e os parâmetros correspondentes.
Utiliza recursos de edição de ACL que permitem ao usuário CLI excluir linhas individuais da ACL e inserir novas linhas.

Numbered ACL Named ACL

ip access-list standard name
access-list 1 permit 1.1.1.1 permit 1.1.1.1
access-list 1 permit 3.3.3.3 permit 3.3.3.3
access-list 1 permit 2.2.2.2 permit 2.2.2.2
Named IP Access Lists
Router# configure terminal
Router(config)# ip access-list extended KALAU
Router(config-ext-nacl)# permit tcp host 10.1.1.2 eq www any
Router(config-ext-nacl)# deny udp host 10.1.1.1 10.1.2.0 0.0.0.255
Router(config-ext-nacl)# deny ip 10.1.3.0 0.0.0.255 10.1.2.0 0.0.0.255
Router(config-ext-nacl)# deny ip 10.1.2.0 0.0.0.255 10.2.3.0 0.0.0.255
Router(config-ext-nacl)# permit ip any any
Router(config-ext-nacl)# interface serial1
Router(config-if)# ip access-group KALAU out
Router# show running-config
interface serial 1
ip access-group KALAU out
!
ip access-list extended KALAU
permit tcp host 10.1.1.2 eq www any
deny udp host 10.1.1.1 10.1.2.0 0.0.0.255
deny ip 10.1.3.0 0.0.0.255 10.1.2.0 0.0.0.255
deny ip 10.1.2.0 0.0.0.255 10.2.3.0 0.0.0.255
permit ip any any
Router# configure terminal
Router(config)# ip access-list extended KALAU
Router(config-ext-nacl)# no deny ip 10.1.2.0 0.0.0.255 10.2.3.0 0.0.0.255
Router# show access-list

Extended IP access list barney

10 permit tcp host 10.1.1.2 eq www any
20 deny udp host 10.1.1.1 10.1.2.0 0.0.0.255
30 deny ip 10.1.3.0 0.0.0.255 10.1.2.0 0.0.0.255
50 permit ip any any
Editing ACLs Using Sequence Numbers
R1# configure terminal
R1(config)# ip access-list standard 24
R1(config-std-nacl)# permit 10.1.1.0 0.0.0.255
R1(config-std-nacl)# permit 10.1.2.0 0.0.0.255
R1(config-std-nacl)# permit 10.1.3.0 0.0.0.255

R1(config-std-nacl)# do show ip access-lists 24

Standard IP access list 24
10 permit 10.1.1.0, wildcard bits 0.0.0.255
20 permit 10.1.2.0, wildcard bits 0.0.0.255
30 permit 10.1.3.0, wildcard bits 0.0.0.255

R1# configure terminal

R1(config)# ip access-list standard 24
R1(config-std-nacl)# no 20

R1(config-std-nacl)#do show ip access-lists 24

Standard IP access list 24
10 permit 10.1.1.0, wildcard bits 0.0.0.255
30 permit 10.1.3.0, wildcard bits 0.0.0.255

R1# configure terminal

R1(config)# ip access-list standard 24
R1(config-std-nacl)# 5 deny 10.1.1.1
R1(config-std-nacl)# do show ip access-lists 24
Standard IP access list 24
5 deny 10.1.1.1
10 permit 10.1.1.0, wildcard bits 0.0.0.255
30 permit 10.1.3.0, wildcard bits 0.0.0.255
ACL Implementation Considerations

Recomendações (não são regras, apenas recomendações)

Coloque ACLs estendidas o mais próximo possível da origem do pacote. Essa estratégia permite que as ACLs descartem os
pacotes mais cedo.

Coloque ACLs padrão o mais próximo possível do destino do pacote. Essa estratégia evita o erro com ACLs padrão (que
correspondem apenas ao endereço IPv4 de origem) de descarte involuntário de pacotes que não precisaram ser descartados.

Coloque instruções mais específicas no início da ACL.

Desabilite uma ACL de sua interface (usando o subcomando da interface no ip access-group interface subcommand)
antes de fazer alterações na ACL.

Obs: No exame atual não é cobrado ACL troubleshooting, nos exames anteriores esse tema era abordado.
Obrigado!

The Subtle Art of Not Giving a F*ck: A Counterintuitive Approach to Living a Good Life
From Everand
The Subtle Art of Not Giving a F*ck: A Counterintuitive Approach to Living a Good Life
Mark Manson
Rating: 4 out of 5 stars
4/5 (5814)
The Gifts of Imperfection: Let Go of Who You Think You're Supposed to Be and Embrace Who You Are
From Everand
The Gifts of Imperfection: Let Go of Who You Think You're Supposed to Be and Embrace Who You Are
Brene Brown
Rating: 4 out of 5 stars
4/5 (1092)
Never Split the Difference: Negotiating As If Your Life Depended On It
From Everand
Never Split the Difference: Negotiating As If Your Life Depended On It
Chris Voss
Rating: 4.5 out of 5 stars
4.5/5 (844)
Principles: Life and Work
From Everand
Principles: Life and Work
Ray Dalio
Rating: 4 out of 5 stars
4/5 (609)
The Glass Castle: A Memoir
From Everand
The Glass Castle: A Memoir
Jeannette Walls
Rating: 4.5 out of 5 stars
4.5/5 (1717)
Grit: The Power of Passion and Perseverance
From Everand
Grit: The Power of Passion and Perseverance
Angela Duckworth
Rating: 4 out of 5 stars
4/5 (590)
Sing, Unburied, Sing: A Novel
From Everand
Sing, Unburied, Sing: A Novel
Jesmyn Ward
Rating: 4 out of 5 stars
4/5 (1104)
Hidden Figures: The American Dream and the Untold Story of the Black Women Mathematicians Who Helped Win the Space Race
From Everand
Hidden Figures: The American Dream and the Untold Story of the Black Women Mathematicians Who Helped Win the Space Race
Margot Lee Shetterly
Rating: 4 out of 5 stars
4/5 (897)
Shoe Dog: A Memoir by the Creator of Nike
From Everand
Shoe Dog: A Memoir by the Creator of Nike
Phil Knight
Rating: 4.5 out of 5 stars
4.5/5 (540)
The Perks of Being a Wallflower
From Everand
The Perks of Being a Wallflower
Stephen Chbosky
Rating: 4.5 out of 5 stars
4.5/5 (2104)
The Hard Thing About Hard Things: Building a Business When There Are No Easy Answers
From Everand
The Hard Thing About Hard Things: Building a Business When There Are No Easy Answers
Ben Horowitz
Rating: 4.5 out of 5 stars
4.5/5 (348)
Bad Feminist: Essays
From Everand
Bad Feminist: Essays
Roxane Gay
Rating: 4 out of 5 stars
4/5 (1018)
Elon Musk: Tesla, SpaceX, and the Quest for a Fantastic Future
From Everand
Elon Musk: Tesla, SpaceX, and the Quest for a Fantastic Future
Ashlee Vance
Rating: 4.5 out of 5 stars
4.5/5 (474)
Her Body and Other Parties: Stories
From Everand
Her Body and Other Parties: Stories
Carmen Maria Machado
Rating: 4 out of 5 stars
4/5 (822)
The Outsider: A Novel
From Everand
The Outsider: A Novel
Stephen King
Rating: 4 out of 5 stars
4/5 (1866)
The Emperor of All Maladies: A Biography of Cancer
From Everand
The Emperor of All Maladies: A Biography of Cancer
Siddhartha Mukherjee
Rating: 4.5 out of 5 stars
4.5/5 (271)
The Sympathizer: A Novel (Pulitzer Prize for Fiction)
From Everand
The Sympathizer: A Novel (Pulitzer Prize for Fiction)
Viet Thanh Nguyen
Rating: 4.5 out of 5 stars
4.5/5 (122)
Angela's Ashes: A Memoir
From Everand
Angela's Ashes: A Memoir
Frank McCourt
Rating: 4.5 out of 5 stars
4.5/5 (441)
Brooklyn: A Novel
From Everand
Brooklyn: A Novel
Colm Tóibín
Rating: 3.5 out of 5 stars
3.5/5 (1947)
The Little Book of Hygge: Danish Secrets to Happy Living
From Everand
The Little Book of Hygge: Danish Secrets to Happy Living
Meik Wiking
Rating: 3.5 out of 5 stars
3.5/5 (401)
A Man Called Ove: A Novel
From Everand
A Man Called Ove: A Novel
Fredrik Backman
Rating: 4.5 out of 5 stars
4.5/5 (4770)
Steve Jobs
From Everand
Steve Jobs
Walter Isaacson
Rating: 4.5 out of 5 stars
4.5/5 (807)
The World Is Flat 3.0: A Brief History of the Twenty-first Century
From Everand
The World Is Flat 3.0: A Brief History of the Twenty-first Century
Thomas L. Friedman
Rating: 3.5 out of 5 stars
3.5/5 (2259)
The Art of Racing in the Rain: A Novel
From Everand
The Art of Racing in the Rain: A Novel
Garth Stein
Rating: 4 out of 5 stars
4/5 (4203)
Devil in the Grove: Thurgood Marshall, the Groveland Boys, and the Dawn of a New America
From Everand
Devil in the Grove: Thurgood Marshall, the Groveland Boys, and the Dawn of a New America
Gilbert King
Rating: 4.5 out of 5 stars
4.5/5 (266)
The Yellow House: A Memoir (2019 National Book Award Winner)
From Everand
The Yellow House: A Memoir (2019 National Book Award Winner)
Sarah M. Broom
Rating: 4 out of 5 stars
4/5 (98)
A Tree Grows in Brooklyn
From Everand
A Tree Grows in Brooklyn
Betty Smith
Rating: 4.5 out of 5 stars
4.5/5 (1929)
A Heartbreaking Work Of Staggering Genius: A Memoir Based on a True Story
From Everand
A Heartbreaking Work Of Staggering Genius: A Memoir Based on a True Story
Dave Eggers
Rating: 3.5 out of 5 stars
3.5/5 (231)
Yes Please
From Everand
Yes Please
Amy Poehler
Rating: 4 out of 5 stars
4/5 (1898)
Team of Rivals: The Political Genius of Abraham Lincoln
From Everand
Team of Rivals: The Political Genius of Abraham Lincoln
Doris Kearns Goodwin
Rating: 4.5 out of 5 stars
4.5/5 (234)
The Woman in Cabin 10
From Everand
The Woman in Cabin 10
Ruth Ware
Rating: 3.5 out of 5 stars
3.5/5 (2522)
Fear: Trump in the White House
From Everand
Fear: Trump in the White House
Bob Woodward
Rating: 3.5 out of 5 stars
3.5/5 (738)
Wolf Hall: A Novel
From Everand
Wolf Hall: A Novel
Hilary Mantel
Rating: 4 out of 5 stars
4/5 (3811)
John Adams
From Everand
John Adams
David McCullough
Rating: 4.5 out of 5 stars
4.5/5 (2409)
On Fire: The (Burning) Case for a Green New Deal
From Everand
On Fire: The (Burning) Case for a Green New Deal
Naomi Klein
Rating: 4 out of 5 stars
4/5 (74)
The Light Between Oceans: A Novel
From Everand
The Light Between Oceans: A Novel
M.L. Stedman
Rating: 4.5 out of 5 stars
4.5/5 (789)
Manhattan Beach: A Novel
From Everand
Manhattan Beach: A Novel
Jennifer Egan
Rating: 3.5 out of 5 stars
3.5/5 (792)
The Constant Gardener: A Novel
From Everand
The Constant Gardener: A Novel
John le Carré
Rating: 3.5 out of 5 stars
3.5/5 (104)
Password Cracking PDF
Document10 pages
Password Cracking PDF
Ali Ayub
100% (1)
The Unwinding: An Inner History of the New America
From Everand
The Unwinding: An Inner History of the New America
George Packer
Rating: 4 out of 5 stars
4/5 (45)
STM32WB Workshop Presentation
Document235 pages
STM32WB Workshop Presentation
marcelo
No ratings yet
Rise of ISIS: A Threat We Can't Ignore
From Everand
Rise of ISIS: A Threat We Can't Ignore
Jay Sekulow
Rating: 3.5 out of 5 stars
3.5/5 (137)
Little Women
From Everand
Little Women
Louisa May Alcott
Rating: 4 out of 5 stars
4/5 (104)
CCNA - M6 - CAP 17 - Parte 3 - VLAN Routing With Layer 3 Switch Routed Ports
Document6 pages
CCNA - M6 - CAP 17 - Parte 3 - VLAN Routing With Layer 3 Switch Routed Ports
Alex Teixeira
No ratings yet
CCNA - M6 - CAP 17 - Parte 2 - VLAN Routing With Layer 3 Swicth SVIs
Document5 pages
CCNA - M6 - CAP 17 - Parte 2 - VLAN Routing With Layer 3 Swicth SVIs
Alex Teixeira
No ratings yet
CCNA - M6 - CAP 16 - Parte 2 - Configuring IP Addresses and Connected Routes
Document4 pages
CCNA - M6 - CAP 16 - Parte 2 - Configuring IP Addresses and Connected Routes
Alex Teixeira
No ratings yet
CCNA - M6 - CAP 16 - Parte 4 - IP Forwarding With The Longest Prefix Match
Document8 pages
CCNA - M6 - CAP 16 - Parte 4 - IP Forwarding With The Longest Prefix Match
Alex Teixeira
No ratings yet
CCNA - M7 - CAP 20 - Parte 2 - Implementing OSPF
Document5 pages
CCNA - M7 - CAP 20 - Parte 2 - Implementing OSPF
Alex Teixeira
No ratings yet
CCNA - M11 - CAP 5 v2 - Securing Network Devices
Document11 pages
CCNA - M11 - CAP 5 v2 - Securing Network Devices
Alex Teixeira
No ratings yet
CCNA - M8 - CAP 24 - Implementing IPv6 Adressing On Routers
Document18 pages
CCNA - M8 - CAP 24 - Implementing IPv6 Adressing On Routers
Alex Teixeira
No ratings yet
Notas Traceroute
Document3 pages
Notas Traceroute
Roberto
No ratings yet
Scale List Cleanup Utility For AutoCAD 2021 Readme
Document3 pages
Scale List Cleanup Utility For AutoCAD 2021 Readme
Fetene
No ratings yet
Readme en PDF
Document6 pages
Readme en PDF
Hidayathulla Sk
No ratings yet
AC500 V3 OpenVPN - TechPreview
Document11 pages
AC500 V3 OpenVPN - TechPreview
Roberto Guadagnin
No ratings yet
Top Cert
Document199 pages
Top Cert
Henry
No ratings yet
Levels of Computer Languages
Document2 pages
Levels of Computer Languages
Dalitso
No ratings yet
Features:: F722 / 5VBEC / Camera Control / 6x UART / Flash
Document2 pages
Features:: F722 / 5VBEC / Camera Control / 6x UART / Flash
dani
No ratings yet
OS Practical File
Document47 pages
OS Practical File
Devil IVOR
No ratings yet
Network Performance Modules: Benefits
Document2 pages
Network Performance Modules: Benefits
maestro1000
No ratings yet
Config Msan 5616T
Document11 pages
Config Msan 5616T
radia gana
No ratings yet
Cpre 381 Project
Document2 pages
Cpre 381 Project
api-337902815
No ratings yet
OPC Master Protocol: Reference Manual
Document23 pages
OPC Master Protocol: Reference Manual
JOSE
No ratings yet
FreeBitcoin Script Roll 10000 PDF
Document2 pages
FreeBitcoin Script Roll 10000 PDF
andi zulkifli
No ratings yet
Cookiessss
Document28 pages
Cookiessss
Casian
No ratings yet
Veeam Agent Linux 6 1 Release Notes
Document16 pages
Veeam Agent Linux 6 1 Release Notes
jairo morataya
No ratings yet
Distributed File Systems & Name Services: UNIT-4
Document70 pages
Distributed File Systems & Name Services: UNIT-4
Shreya Bhashyakarla
No ratings yet
Bioscreen BIOSTAR
Document1 page
Bioscreen BIOSTAR
folskan
No ratings yet
OpenProtocol - Specification - 9836 4415 01 2.5
Document301 pages
OpenProtocol - Specification - 9836 4415 01 2.5
Renan Soares
No ratings yet
The Information Technology System
Document1 page
The Information Technology System
Radha Raman Chaudhary
No ratings yet
Cst202 Scheme July 2021
Document13 pages
Cst202 Scheme July 2021
Arun Jose
No ratings yet
Lenovo System Update
Document8 pages
Lenovo System Update
Raul Sebastian Buri
No ratings yet
IEEE 802.3ad Link Aggregation (LAG) : What It Is, and What It Is Not
Document13 pages
IEEE 802.3ad Link Aggregation (LAG) : What It Is, and What It Is Not
Tariq Mahmood
No ratings yet
Wireless Industrial Automtion Using Arduino
Document5 pages
Wireless Industrial Automtion Using Arduino
Abhijith Surendran
No ratings yet
Information and Communication Technology - CSS: Quarter 2 - Module 1 Assemble Computer
Document32 pages
Information and Communication Technology - CSS: Quarter 2 - Module 1 Assemble Computer
Ma. Clarissa De Ramos
100% (1)
Me 1300 Ie
Document14 pages
Me 1300 Ie
serege
No ratings yet
HPE - A00104922en - Us - ClearPass Policy Manager Scaling and Ordering Guide
Document17 pages
HPE - A00104922en - Us - ClearPass Policy Manager Scaling and Ordering Guide
陳建和
No ratings yet
Custom Evar
Document3 pages
Custom Evar
tambosg1980
No ratings yet
Script To Collect Snap of Grid 12c
Document4 pages
Script To Collect Snap of Grid 12c
KoushikKc Chatterjee
No ratings yet