Add to Favorites | Login | Register
Network Security Internet Technology Development Database Servers Mobile Phone Android Software Apple Software Computer Software News IT Information

In addition to Weibo, there is also WeChat

Please pay attention

WeChat public account

Shulou

About us Contact us

ACL list Editing:

2025-02-28 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Network Security >

Share

Shulou(Shulou.com)06/01 Report--

ACL list Editing:

1. Create an ACL list

R1 (config) # access-list 101 deny tcp 11.1.1.0 0.0.255 192.168.1.0 0.0.255 eq 23

R1 (config) # access-list 101 deny icmp 11.1.1.3 0.0.0.0 host 192.168.1.1

R1 (config) # access-list 101 deny icmp 11.1.1.1 0.0.0.0 host 172.16.1.1

R1 (config) # access-list 101permit ip any any

2. Apply the ACL list to the port

R1 (config) # interface fastEthernet 0Universe 0

R1 (config-if) # ip access-group 101in

3. Display the ACL list

R1#show access-list / / show R1 all access lists

Extended IP access list 101

10 deny tcp 11.1.1.0 0.0.0.255 192.168.1.0 0.0.0.255 eq telnet

20 deny icmp host 11.1.1.3 host 192.168.1.1

30 deny icmp host 11.1.1.1 host 172.16.1.1

40 permit ip any any (40 matches)

List of R1#show access-list 101s / / show R1 No. 101,

4. Edit the ACL list

R1 (config) # ip access-list extended 101

/ / Delete the list No. 10, 20 and 30

R1 (config-ext-nacl) # no 10

R1 (config-ext-nacl) # no 20

R1 (config-ext-nacl) # no 30

/ / add list

R1 (config-ext-nacl) # deny tcp 11.1.1.0 0.0.255 192.168.1.0 0.0.255 eq 23

R1 (config-ext-nacl) # deny icmp 11.1.1.3 0.0.0.0 host 192.168.1.1

R1 (config-ext-nacl) # deny icmp 11.1.1.1 0.0.0.0 host 172.16.1.1

R1#show access-list / / show R1 all access lists

Extended IP access list 101

10 deny tcp 11.1.1.0 0.0.0.255 192.168.1.0 0.0.0.255 eq telnet

20 deny icmp host 11.1.1.3 host 192.168.1.1

30 deny icmp host 11.1.1.1 host 172.16.1.1

40 permit ip any any (40 matches)

/ / insert list

R1 (config-ext-nacl) # 25 deny icmp host 11.1.1.2 host 192.168.1.1

R1#show ip access-lists

Extended IP access list 101

10 deny tcp 11.1.1.0 0.0.0.255 192.168.1.0 0.0.0.255 eq telnet

20 deny icmp host 11.1.1.3 host 192.168.1.1

25 deny icmp host 11.1.1.2 host 192.168.1.1 / / New Strategy for insertion

30 deny icmp host 11.1.1.1 host 172.16.1.1

40 permit ip any any (40 matches)

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.

Views: 0

*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.

Tag Search: Ports policies applications vpn macOS Linux MariaDB MySQL Docker Shulou Information Shulou Technology Shulou Tech Info OPPO Reno Redmi Xiaomi NVidia Microsoft Huawei Apple Huawei Docker Apple Redmi NVidia OPPO Reno macOS Xiaomi Shulou Technology Shulou Tech Info Microsoft vpn MariaDB Shulou Information MySQL Linux Huawei Docker Apple Redmi NVidia OPPO Reno macOS Xiaomi Shulou Technology Shulou Tech Info Microsoft vpn MariaDB Shulou Information MySQL Linux

Share To

Related

Network Security

More Network Security >

Latest Network Security More Network Security >

Latest Internet Technology More Internet Technology >

Latest Development More Development >

Latest Database More Database >

Latest Servers More Servers >

Latest Mobile Phone More Mobile Phone >

Latest Android Software More Android Software >

Latest Apple Software More Apple Software >

Latest Computer Software News More Computer Software News >

Latest IT Information More IT Information >

Wechat

About us Contact us Product review car news thenatureplanet

© 2024 shulou.com SLNews company. All rights reserved.

12
Report