Video není dostupné.
Omlouváme se.
MicroNugget: How to Configure Extended ACLs on Cisco Routers
Vložit
- čas přidán 21. 01. 2013
- Start learning cybersecurity with CBT Nuggets. courses.cbt.gg/security
In this video, Jeremy Cioara covers extended ACLs on Cisco routers. ACLs are powerful documents that contain lists of statements that govern which devices can and cannot access other devices. By configuring extended ACLs, you can regulate the traffic on a network and keep traffic moving fast and secure.
One of the many things that a well-configured extended ACL can do for a network is prevent a given IP address' traffic from reaching another IP address. That's because an extended access list is really nothing more than a document with a row of statements that permit or deny traffic based on rules you can set up. That can be protocol, port number, source, destination, time range, and more.
When it comes to configuring an extended ACL, just like driving to Disneyland only to discover it's closed would waste time and energy, the best practice is to host extended access lists as close to the source as possible. See how to write rules that identify source IP, its protocol, and the many other filters you can use to manage network traffic with extended ACLs.
🌐 Download the Free Ultimate Networking Cert Guide: blog.cbt.gg/b942
⬇️ 13-Week Study Plan: CCNA (200-301): blog.cbt.gg/8lky
Start learning with CBT Nuggets:
• Cisco CCNA (200-301) | courses.cbt.gg/h6s
Jeremy, I really love the way you teach Cisco!!!
Thank You!
Alireza Abrishami You're are certainly welcome! Good luck with your training.
I did too!
Jeremy, i love your videos. I'm studying for SBA for CSCO-220 AND CSCO-221. This video, and one other of yours, has been super helpful in remembering which direction to place acl. Thank you!
I just want to say... AMAZING. Jeremy is the best in this of cbt ! He has the ease to explain the stuff in very cool way. NICE!!!
I'm actually doing a comptia exam not the CCNA but this was still super super helpful, it was definetly more helpful seeing a terminal. Thanks so much!
Definitely valuable! Had a co-worker leave the company that was basically master of all things Cisco and we're trying to interpret what he left us with!
That was very straight to the point Jeremy and delivered in a not-boring manner.
Thank you so much for the video ! I’m currently in a CNT160 class and ACLS are a struggle for me, we just started implementing NAT so this will help me very much ! Thank you 😁
From one Jeremy to another! Thank you! Really helped!
Top notch explanation, as always, Jeremy!!
As always informative! Jeremy's nugget series are the best!
you are THE MAN Jeremy C . your instruction has been so very effective for me....and apparently everyone i talk to.
thank you!!!
You are the best video instructor on the web. Keep it up, just the way you are doing it.
well done, nice explanation of how the protocols work together!
Jeremy really your teaching method on Cisco is excellent thank you.
Thank you, honestly speaking, you are amazing instructor.
Thanks for the feedback!
am from africa, i've learned CCNA, but your videos make me understand more and more every days. thanks a lot
good and clear explanation, i like the "be the router" analogy!
Mahad, you are correct! This is one of Jeremy's newest MicroNuggets.
HI Jeremy This course on extended ACLs on Cisco routers is very . But it too late me I'm going to retire... Jeremy your awesome teacher and I want to thank you and Micro Nugget for educating
for those who are pursuing a high advance technology career. Thanks you and even If I retired I continue to login from time to time. I'm Network Engineer
Wow, just found your channel and this is awesome!
Really helpfull. I was stuck with ACL. However after listen your explanation I'm ready to work with. Thanks 😃.
Thanks for the explanation , helped me a lot ! Cheers!
Thank you Jeremy!
Jeremy thank you so much you cleared most of my confusion.. I Don't know if you have already done this but can you make a video on acl protocoles I mean all of them and explain their use and how they work . That will be great .
Awesome explanation! Thank you!
Love the explanations. You rock!
Great explanation. I really appreciate your wisdom.
Thanks Jeremy. This was fun.
Hey CBT nuggets. Jeremy is great. Thanks!
Jeremy as nice as ever, can we have micro nugget on applying extended access list for VTY line or console. that would be really helpful for every body i think ..
That was awesome. Thanks Robert P. Motz
Thanks Jeremy! It was very informative.
superb!!! explain in simple way.. awsome.
Very Helpful. Thank you.
We love this, thanks Jeremy
love how u explain it your the best . i wish you do a video for ssh
Perfect explained 🙏
fantastic video. keep it up!
Thank you very much. I've my exam coming up fast and you are helping in my passing it.
You can do it, Petrit! Good luck on your exam. Thank you for learning with us!
Great Explanation
thank you Jeremy
Great video.
Brilliant!!
Awesome !
that was a good explanation
This was super helpful. Thanks alot
You're welcome Steven Wallis!
Thank you so much, finally that explains it well
Glad you liked it!
jeremy thanks !!!!
Great video! Thanks for posting.
Any Micro-Nuggets on VLSM?
Thanks Jeremy!! I've always been confused as to when to start an extended access-list with "access-list 100___" or " ip access-list extended 100___" ? Thank you for your assistance!! :-)
great video!
Glad you enjoyed it, thank you Sean!
Amazing
Thanks
thank you sir
Simon, if you would like to know a little more, feel free to request that MicroNugget in the link found in the MicroNugget description.
Thanks for your question! If you would like you can submit a formal request for this MicroNugget from the link above found in the description.
thanx your video is helpfull
This man is great.
I hope I discovered this channel earlier
thanks :)
Y are the best👏👏👏
you are good at teaching , i really enjoy it thank you ,say more about ip helper when there is subnets and trunking and the router that dhcp pool run on it is not directly connected to this subnets but it is conneted frome the thered router ,i don't know is that logical or possible but i am curious to know that,at ninja speed
May God bless you.
Pretty informative in brief.... would like to know about 1) Internet of things 2) SDN in brief
Hey Jeremy , thanks for the video, I 'd love to see if you can show me how i can access my local webapp hosted locally in my local area network from the internet, i have CISCO 2900 router, and i have public IP. thanks in advance.
Thanks Jeremy. You make Networking world much easier to understand. We miss instructor like you in Cyber Security. Hope you get into that field like Kieth Barker.
Thank you so much. I'm taking SEC450 and dealing with ACLs right now. This has helped me understand it a bit much better. The only thing I can't get around is the "3P" rule.. How would you do one protocol per access list etc..?
187MIAMIBOY One protocol means IP protocol (vs. IPX, Appletalk, etc...). Not one protocol as in UDP, TCP, ICMP, etc... You can handle "limitless" IP-based protocols within the access-list. We hope that helps!
i liked it.
godbless
quick question i am struggling to find answer to, what is the general thought on when to use standard ACL compared to extended? wouldnt a standard ACL where you deny that specific traffic and permitting the rest work as well?
Hi Jeremy. I uses alpha prep but there was no configuration questions, only multichoice questions. Is the new CCNA exam consisting of multichoice questions only?
How do you test the http or https ACL in packet tracer?
Hi Jeremy, thank you for this. I am working on a problem with requires me to limit http/https traffic (as shown in your video) but only when an ip address is even. I know this would be with the use of wildcard masks, but can you give an example please? I then need to how that http does not connect but all other traffic does. How would I showcase this please?
Many thanks
what if i have two routers both having a switch attached to there fa0/0 ports and those switches then have atleast two end devies(pc) connected with them. Now i want to block a single pc of 1st router for communicating with a single pc of the 2nd router. How can i do that?
respect
This Nugget Good for u
i think this nugget is one of the new CCNA series produced by great instructor jeremy ciora am i right ?
yo jeremy, ive been trying to figure this out but i cant find anything about it, once you apply the extended access list to the interface, is there a way to delete that?
Yes, with many commands in Cisco, the best way to remove a configuration is to use the "No" command before the statement. In this case: "no access-list 150" should remove the ACL in its entirety
Thanks !!!!! How do you deny a network from rehashing another network using extended ??? Ex deny network 192.168.2.0 - 192.168.2.63 from pinging network 192.168.3.0. Please help
ralph restituyo We recommend asking these types of questions on our Forum to get other members of the CBT Nuggets community involved: community.cbtnuggets.com/forums
Hey dude;
Have any VOD's on how to use object oriented ACL's on say Cisco 2911 routers?
Thanks >:-}
cnxduo65 Thanks for the comment! We do not have a specific object oriented ACL for Cisco's 2911 routers MicroNugget but we have passed along your request for future recording possibilities.
I need help with advanced ACL. can someone help please?
Epic
It gets little complicated when applied in and out to a VLAN interface
Can you ping it.
Saving my ass for my exam toworrow
Best of luck, Elliot! You got this.
Why not create an actual lab and show us how it first allowed and then blocked? Still a good video, thanks.
awesome video... but it's too quick... hahaha
Very valuable. Thank you. Try to speak a little slower please.