cisco:access-list
http://www.giac.org/practical/Tamara_Bowman_GCFW.doc
Access Lists – Basics
Cisco access lists are order dependent. The router will start with the first rule and compare the packet with each rule until it reaches a match. Once the match is reached the packet is processed according to that rule. Put more specific rules before general rules. Such as, rules for specific hosts prior to rules for networks and rules for networks prior to rules for all hosts. One of the most common mistakes in an access list is incorrect placement of the access rule so that it is never matched. A quick way to see if a rule in the access list is being matched is to enter the command “show access-list” at the enable prompt of the router. The number following each statement is the number of times the rule has been matched.
Access Lists – Basics
Cisco access lists are order dependent. The router will start with the first rule and compare the packet with each rule until it reaches a match. Once the match is reached the packet is processed according to that rule. Put more specific rules before general rules. Such as, rules for specific hosts prior to rules for networks and rules for networks prior to rules for all hosts. One of the most common mistakes in an access list is incorrect placement of the access rule so that it is never matched. A quick way to see if a rule in the access list is being matched is to enter the command “show access-list” at the enable prompt of the router. The number following each statement is the number of times the rule has been matched.
posted by iamjerryyeung at
6:21 PM
0 Comments:
Post a Comment
<< Home