Types of ACLs:
The IPv4 ACLs are in the
various types. And these differing types of ACLs are used in order to use and
depend mainly on the functional required. And there basic types are classified
as below:
- Extended ACLs: The both source and the destination packet addresses are checked and extended by the IP ACLs. And there is also a check for the specified protocols, parameters and other port numbers which are mostly allowed in the administrations and makes more control and flexible.
- Standard ACLs: In the IP ACLs are the sources check there standard and their addresses packet which are routed. The obtained result is used to deny or permits the output which was used in the entire protocol suite, which was based in the host IP address, subnet or the network.
Two methods are used in identify
in the extended and standard ACLs:
For identification numbered ACLs are used in
the numbered and for descriptive number or name are used
in the named ACLs for their identification.
- ACL Identification:
An
ACL number is the first argument in the global ACL statement when there is
create numbered ACLs. The results of the tests are varied in the ACL depending
on the extended ACL or the number identified standards.
Many
sort of ACLs can be created in for the protocols. Selection of any sort of ACL
number for which each new ACL within a specified given protocol. And per
interface and per direction only one ACL can be applied.
And
by specifying the certain ACL number from 1 to 99 or the 1300 to 1999 which
will instruct the specified router to accept the numbered standard in the IPv4
ACL statements. And by specifying an ACL number from the numbers 100 to the 199
or from 2000 to 2699 are instructed in order to the router to accept he extended
numbered in the statements of IPv4 in the ACL.
The
following is the lists in the different ACL number in for the each protocol.
Protocol
|
Range
|
|
IP
|
1–99
|
|
Extended IP
|
100-199
|
|
Ethernet type code
|
200-299
|
|
Ethernet address
|
700-799
|
|
Transparent bridging (protocol type)
|
200-299
|
|
Transparent bridging (vendor code)
|
700-799
|
|
Extended transparent bridging
|
1100-1199
|
|
300-399
|
||
XNS1
|
400-499
|
|
Extended XNS
|
500-599
|
|
AppleTalk
|
600-699
|
|
Source-route bridging (protocol type)
|
200-299
|
|
Source-route bridging (vendor code)
|
700-799
|
|
IPX2
|
800-899
|
|
Extended IPX
|
900-999
|
|
IPX SAP3
|
1000-1099
|
|
Standard Banyan VINES4
|
1-100
|
|
Extended Banyan VINES
|
101-200
|
|
Simple Banyan VINES
|
201-300
|
|
Standard IP (expanded)
|
1300-1999
|
|
Extended IP (expanded)
|
2000-2699
|
|
No comments:
Post a Comment