Overview of Access Control Lists

Access control lists are essentially traffic filters that are used on routers to identify specific kinds of packets based on a packet attribute, such as the IP address. Access control lists can then be used to take specific actions after the packets have been identified, such as stopping them from passing through a specific interface.

Access control lists are comprised of a series of Access Control Elements (ACEs), each of which is a single rule designed to match a particular type of packet. An access list is a set of ACEs grouped and identified via a number or a name. An ACE defines the protocol it watches out for, any protocol options that are associated with that protocol, and whether the matching traffic is ...

Get Network Security Principles and Practices now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.