Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
Version 4.0
Cisco Public
Objectives
Describe traffic filtering and explain how Access Control Lists (ACLs) can filter traffic at router interfaces. Analyze the use of wildcard masks. Configure and implement ACLs. Create and apply ACLs to control specific types of traffic. Log ACL activity and integrate ACL best practices.
Cisco Public
Cisco Public
Key Ideas
Traffic filtering Defining Access Control Lists Types and uses of ACLs ACL processing
Cisco Public
Cisco Public
Cisco Public
Cisco Public
Cisco Public
10
Cisco Public
11
Key Ideas
The purpose and structure of an ACL wildcard mask The effects of a wildcard mask
Cisco Public
12
Cisco Public
13
Cisco Public
14
15
Cisco Public
16
Cisco Public
17
18
Cisco Public
19
Key Ideas
Placing Standard and Extended ACLs Basic ACL configuration process Configuring numbered standard ACLs Configuring numbered extended ACLs Configuring named ACLs Configure router VTY access
Cisco Public
20
Cisco Public
21
Cisco Public
22
23
Cisco Public
24
Cisco Public
25
Cisco Public
26
Cisco Public
27
Activity 8.3.3[3]-the sequence ACL... Hands-on Lab 8.3.3[4]-Configuring And Verifying Standard ACL
2006 Cisco Systems, Inc. All rights reserved. Cisco Public
28
Cisco Public
29
Cisco Public
30
Cisco Public
31
Activity 8 8.3.4[3]-Determine 3 4[3]-Determine the ACL Hands-on Lab 8.3.4[4]-Planning, [ ] g, Configuring, and Verifying Extended ACLs
2006 Cisco Systems, Inc. All rights reserved. Cisco Public
32
Cisco Public
33
PT Activity 8.3.5[3]-Configuring and Verifying Standards Named ACLs Hands-on Hands on Lab 8.3.5[4]8 3 5[4] Configuring Config ring and Verifying Verif ing StandardsNamed ACLs
2006 Cisco Systems, Inc. All rights reserved. Cisco Public
34
Cisco Public
35
Hands-on Lab 8.3.6[3]-Configuring and Verifying VTY R t i ti Restrictions PT 8.3.6[4]-Planning, Configuring, and Verifying Standard, Extended and Named ACLs
2006 Cisco Systems, Inc. All rights reserved. Cisco Public
36
Cisco Public
37
Key Ideas
Configuring ACLs for Application and Port Filtering Configuring ACLs to Support Established Traffic Effects of NAT and PAT on ACL Placement Analyzing Network ACLs and Placement Configuring ACLs with Inter Inter-VLAN VLAN Routing
Cisco Public
38
Cisco Public
39
PT Activity A ti it 8.4.1[3]-Configuring 8 4 1[3] C fi i and d Verifying V if i Extended E t d d ACLs to filter on Port Numbers
2006 Cisco Systems, Inc. All rights reserved. Cisco Public
40
41
42
43
Hands-on Lab 8.4.5[2]-Configuring and Verifying ACLs to filter Inter-VLAN Traffic PT Activity 8.4.5[3]-Configuring and Verifying Extended ACLs with a DMZ
2006 Cisco Systems, Inc. All rights reserved. Cisco Public
44
Cisco Public
45
Key Ideas
Using logging to verify ACLs Analyzing routing logs ACL best practices
Cisco Public
46
Cisco Public
47
Hands-on Lab 8.5.1[3]-Configuring ACLs and Verifying with Console Logg ing
2006 Cisco Systems, Inc. All rights reserved. Cisco Public
48
Cisco Public
49
50
Cisco Public
51
Summary
ACLs enable traffic management and secure access to and from a network and its resources Apply an ACL to filter inbound or outbound traffic ACLs can be standard standard, extended extended, or named Using a wildcard mask provides flexibility There is an implicit deny statement at the end of an ACL Account for NAT when creating and applying ACLs Logging provides additional details on filtered traffic
Cisco Public
52
Cisco Public
53