CCSP Self-Study: Securing Cisco IOS Networks (SECUR)

Implementing Cisco Access Control Lists

This section provides a review of basic Cisco ACL design and implementation.

Cisco routers use ACLs as packet filters to decide which packets to allow across an interface. Packets that are allowed across an interface are called permitted packets. Packets that are not allowed across an interface are called denied packets. ACLs contain one or more rules or statements that determine what data is to be permitted or denied across an interface.

ACLs are designed to enforce one or more corporate security policies. For example, suppose that one of your corporate security policies is to allow only one SNMP server to access the SNMP agents on your routers. Once this policy is written, you can develop an ACL that ...

Get CCSP Self-Study: Securing Cisco IOS Networks (SECUR) now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

CCSP Self-Study: Securing Cisco IOS Networks (SECUR) by John F. Roland

Implementing Cisco Access Control Lists

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly