|The network administrator can quickly configure an extended access list permitting all ICMP, UDP, or TCP, as shown in Example 8-12, applying the access list to the inbound interface on R2, Serial 0/0. (The configuration is truncated to focus on the critical configuration.)
Example 8-12. Access List Configuration on R2
ip address 188.8.131.52 255.255.255.252
ip access-group 100 in
access-list 100 permit icmp any any log-input
access-list 100 permit tcp any any log-input
access-list 100 permit udp any any log-input
To determine the traffic type, access list 100 allows ICMP, UDP, and TCP inbound on Serial 0/0. Logging is also enabled with the keyword log-input. Assuming the DoS ...