In this article, I will discuss all about the ACLs (Access Control Lists) that What are ACLs, How many types of there are? Why does use ACLs? and more. So friends basically ACLs stand for Access Control Lists. ACLs are the Layer 3 security of the OSI model. So It can be used on layer3 devices like routers and firewalls. And ACL is also called Packet Filtering Firewall. ACLs add an extra layer of security to our network. Now its time learn something more about ACLs –
Que. What is the ACL (Access Control List)?
Ans. An Access control List is a set of rules that are usually used to filter network traffic. ACLs can be configured on network devices such as routers or firewalls. ACL Contains a list of conditions that categorized packets and help you to determine when to allow or deny any network traffic. They are applied on the basis of packet leaving or entering an interface.
Que. Why do we use ACLs?
- ACLs allow us to control the flow of the network packets.
- It is basic level security for the network.
- ACLs can block a particular service and selected services.
- ACL can block a particular IP address, range of network, a subnet of the network, and a whole network.
- ACLs are used to filter network traffic.
- ACLs are layer 3 security for the network.
- ACLs are also called a network filtering firewall.
There are two types of ACL.
- Standard access-list
- Extended access list
Que. What is the Standard Access Control list?
Ans. Standard ACLs allow you to evaluate only the source IP address of a packet. Standard ACLs are not as powerful as Extended ACLs, but they are less CPU intensive are available on the Cisco devices.
Que. What is an Extended Access Control List?
Ans. It evaluates the source and destination IP address, the type of Layer 3 protocol, source, and destination port, and other parameters. Extended ACLs are more complex to configure and require more CPU time than the Standard ACLs, but they allow a more granular level of control.
Now let’s discuss the differences between Standard ACLs and Extended ACLs.
|Standard ACL||Extended ACLs|
|The ACL range no. is 0-99.
||The ACL range no is 100-199.
It can block a network, a host, and a subnet so all services are blocked.
It can block a network, a host, and a service so only selected Services are blocked.
|It is implemented closest to the destination.||It is implemented closest to the source.
|It filters the network on basis of IP address.||
It filters data on basis of source and destination IP add, protocol, port no, etc.
Friends, this is all about What are ACLs, types of ACLs? Why does use ACLs? and what are the differences between Standard and Extended ACLs? So Friends, if you have doubts or any queries about this post then don’t hesitate to contact me. If you like my posts please share them with your friends.
Categories: CCNA LAB