Named Access Control List Configuration
Creating ACL
Router(config)# ip access-list { standard | extended } access-list-name
Named ACL configuration standards
Routing(config-std-nacl)# [ Sequence-Number ] { permit | deny } source [ source-wildcard]
配置扩展命名ACL
Router(config-ext-nacl)# [ Sequence-Number ] { permit | deny} protol { source source-wildcard destination destinationd wildcard }
[ operator operan ]Named Standard ACL application examples
Routing (config) # ip-Access List Standard ab
Routing (config-std-NaCl) #permit Host 192.168.1.1
Routing (config-std-NaCl) # deny the any
// only allowed from the host 192.168.1.1 flow / 24 byView ACL configuration information
show access-lists
Routing(config)# 15 permit host 192.168.2.1 //添加序列号为15的ACL语句 删除整组ACL Routing(config)# no ip access-list { standard |extended }accsee-list-name 删除组中单一ACL语句 no Sequence-Number // 序列号 no permit host 192.168.1.1
Examples
As shown in the topology
test requirements: The host can access vlan10 pc4, the other hosts can not access vlan10 pc4, other hosts can access network pc4.
Experimental Procedure
1 showing the arrangement four topologically pc machine
R1 Configuration Switch 2
Layer 3 switches arranged R2
4 pc machine is to test three interlinked pc4
5 whole network interoperability, do ACL access list on the three-tier exchange