Free CCNA | Standard ACLs | Day 34 | CCNA 200-301 Complete Course
Vložit
- čas přidán 28. 06. 2024
- Free CCNA 200-301 flashcards/Packet Tracer labs for the course: jitl.jp/ccna-files
📖 My CCNA Book: www.manning.com/books/acing-t...
📚Boson ExSim: jitl.jp/ccna-exsim ← the BEST practice exams for CCNA
💻Boson NetSim: jitl.jp/ccna-netsim ← 100+ detailed guided labs for CCNA
💯ExSim + NetSim: jitl.jp/ccna-kit ← get BOTH for a discount!
🥇CCNA Gold Bootcamp: www.flackbox.com/cisco-ccna-c... ← the course I used to get my CCNA (top rated course on the Internet)
Get the course ad-free with bonus quizzes and more on JITL Academy: courses.jeremysitlab.com
In Day 34 in this free CCNA 200-301 complete course, you will learn about standard ACLs (Access Control Lists).
In this FREE and COMPLETE CCNA 200-301 course you will find lecture videos covering all topics in Cisco official exam topics list, end-of-video quizzes to test your knowledge, flashcards to review, and practice labs to get hands-on experience.
SUPPORT MY CHANNEL
The best way to support my channel is to like, comment, subscribe, and share my videos to help spread the word!
If you can spare to leave a tip, here are some options:
PayPal: paypal.me/jeremysitlabYT
BAT (Basic Attention Token) tips in the Brave browser (www.jeremysitlab.com/brave-br...)
======================
Patreon: / jeremysitlab
======================
Cryptocurrency Addresses
Bitcoin: bc1qxjpza7nx46e8a2rtz6vkcrvxx9mfjnufdrk0jv
Ethereum: 0x08B4325b1B99B05d850A3bfCd4A6620D770cfB64
======================
0:00 Introduction
1:04 Things we'll cover
1:45 What are ACLs?
4:37 How ACLs work
15:01 Implicit 'deny'
16:18 ACL Types
17:48 Standard Numbered ACLs
30:56 Standard Named ACLs
37:43 Things we covered
39:08 Quiz 1
39:45 Quiz 2
40:27 Quiz 3
41:30 Quiz 4
42:35 Quiz 5
43:18 Boson ExSim
#cisco #CCNA - Věda a technologie
A world of thanks, Jeremy, I passed my CCNA with confidence scoring 930. I watched all your comprehensive videos and practiced the labs by building them from scratch which indeed boosted my understanding and confidence. Looking forward to your future videos.
Wow, awesome score! Congrats! I'm glad my videos were helpful :)
Is this course and packet tracer all that you used?
@@amegabyte7986 probably. and the anki flash cards and some test questions. imo make some more of your own labs or go back through the labs to get all the commands down
I have just passed CCNA and now studying for CCNP. I find that your explanations helped me alot for my CCNP. Thank you sir!
Awesome, congrats! Glad to hear my videos helped. Best of luck on the CCNP.
Hi Jeremy, I passed CCNA exam yesterday. I have followed your videos since August when I first started studying for the exam. Your CCNA and Packet tracers videos were like my go-to guide when I stuck on a question. I learned a lot from your videos and will continue to watch your weekly CCNA video. Looking forward to your CCNP videos!
That's awesome, congrats! Glad my videos were helpful. Good luck on the CCNP!
I agree. I will happily purchase Jeremy's IT Lab's CCNP course.
Hey Jeremy. Excellent videos.
I got some times for you to put in for chapters when you get a chance...
0:00 Intro
1:04 Things we cover
1:47 What is an ACL?
12:00 How ACL's work?
16:20 ACL types
17:50 Standard Numbered ACL's
31:00 Standard Named ACL's
37:47 Things we covered
39:10 Quiz
43:18 Boson!!!
45:11 Materials
Keep it up. I look forward to watching your videos.
legend
Hi, I know it might be insignificant but there the access-list for the IF to 10.0.1.0/24 can be even shorter and still meet its expectations:
access-list 2 remark # MANAGE DESTINATION NETWORK 10.0.1.0/24 #
access-list 2 deny host 192.168.2.1
access-list 2 permit host 192.168.1.1
access-list 2 deny 192.168.1.0 0.0.0.255
access-list 2 permit any
Since the idea was that all hosts from 192.168.2.0/24 except for one (192.168.2.1) should have access, we can just absorb that entire subnet into the permit any on the end of the access-list.
There is no need to make a separate rule for that.
Free Bob from Accounting!
No! Bob's a bad dude!
Your videos are helping me so much. I took CCNA 1 through 3 in college and you're making things that didn't click, click. Thank you!
You are one of the best instructors I've ever seen. Truly appreciate the trainings, thank you.
Thanks Taylor!
You must have done something special in this video because Im doing a second run through on the series and I just got the urge to comment and I see I already have 😂 anyways I was going to say I love these videos so much I was thinking of making my own videos like Mystery Science Theatre 3000 where I just do commentary over your videos. I feel it would be educational. Anyways, thanks again man keep up the great work!
I'm preparing for my CCNA, and your videos looks so amazing, hope to approve it, and purchase your CCNP curse. Thanks again for these amazing IT's videos.
Jeremy was a nice class today . It was very clear and specific; good job Jeremy. I keep watching your videos ; I do not loss any one.
I love this CISCO CCNA class
Thank you :)
congrats to Jeremy on 300K subs! this needs to be a million-sub channel at least. amazing high-quality content that keeps me engaged and inspired :)
Thank you for this great lesson. I hope to catch up with this series soon.
You are a talented teacher
I couldn't understand after reading and practicing
Video helped me a lot, Thank you !
Not a single mistake. I'm more than happy.
Every day in the work (I dont like)
I'm thinking 8 hours to go home and start practising and studying for the CCNA.
Another day in the box, I don't have much time to review the ANKI flashcards.
But for sure, September, I will start over, and I will join a CCNA camp for sure. I will spend all my time to get the CCNA.
Thanks Jeremy your videos are awesome
Really great video. Thank you so much, this helped no end in solidifying my understanding of how to create them, how they work, how to use them and what scenarios to use them in.
Much appreciated!
Great videos! You definitely have a talent for teaching and being able to break concepts down concisely, making them easy to understand. Thanks for creating, it's appreciated!
Thank you for your comment :)
2 Weeks Worth of Studying Awesome Tutorial Waiting for Security, Wireless, and Automation Topics. Thank you so much LODI Jeremy !!! Mabuhay sa Channel mo
Thanks Mark :)
Thanks Jeremy from Costa Rica, I really appreciated this lesson! Pura Vida
Great tutorial. Worth the wait. Suppose this is building up for the subjects NAT and Security
Yep, gotta cover ACLs before NAT and such.
I'm very much tempted to believe I can just watch your videos and pass my CCNA. Keep up the good work.
Thanks, good luck! :)
😂😂😂💪🏾💪🏾
The best things are always free, don't forget this :)
can you tho
did you do this and did you pass? I think i am just going to use this course along with exsim and possibly netsim, i'm not sure if i am going to use another course
what did bob from accounting do to deserve his own ACL? 🤨
Bought the ExSim today with the discount, per your recommendation. Thanks Jeremy!
Nice, I'm sure you'll love it!
Thanks Jeremy!! Am 20 years old and am starting college late in a couple months (took couple years off to work and save up). Want to be a cyber sec analyst after work but am looking to get a strong network foundation first. Coming off getting my A+, Net+, Sec+ and CySA+. Decided to diversify vendors lol
I started this video series to do the CCNA, but now I just keep watching to find out if Channel Failed to Load's channel will ever actually load.
your video course is simple,clear ,straitghtforward
Thank you :)
Great lectures ! Thank you
Security finally! Thank you Jeremy for your hardwork, great video!...
The rest of the security section will be a little later, I just needed to cover ACLs before some of the IP services (section 4.0).
@@JeremysITLab thanks for the clarification!...can't wait for the upcoming videos
Great video! Thanks Jeremy.
Thanks Stephen :)
I have been waiting for this
Sorry for the wait ;)
AGAIN ABSOLUTELY BRILLIANT!!!!
thankyou Jermy for your videos.
You are the best, thanks!
Thank you, Jeremy!
Thanks for watching :)
We must atleast like and subscriber to thank Jeremy for the intelligent and hardwork he has done
Thanks Jeremy!!!
Thank you. Very informative and very easy to understand.
Thank you brother ❤
Thanks for the videos
Good topic on ACL and well explained
Thankyou for the amazing information sir
very informative , finally it cleared my concept
Джереми - Молодец!!!
Thank you! :)
it's a very good lecture.
super. thanks a lot ❤
Jeremy feels injustice that he can't translate his name to hexidecimal.
Great work Jeremy. I've learnt or learning a lot from your videos .Never seen anyone explaining so well on Networking topics like you do.
I would like to know if you will be covering any Security side topics as well in these videos ? Something on Interface-base Firewall ,Zone-based Firewall , VRRP, Firewall rules .?
I will cover all of the security topics in the CCNA, but that's probably all I'll cover regarding security.
@@JeremysITLab Thank you.
Thank you so much..
What a quiz for this Day Jeremy! It is even harder than boson 😄
Thank you bro you are the best! :)
Thanks bro ;)
Coming back from IPv6 to IPv4, all the previously difficult to remember addresses became so simple to remember after looking at these hexadecimal numbers going all scary tbh.
excellent teacher.
Thank very much. 👍👍👍
Thanks for watching!
awesome video :)
Thank you :)
Hello Jeremy, I love the course, I have finally caught up with your videos and invested in both net-sim and ex-sim. I was wondering what is the predicted lecture & lab day for the entire course to be completed day 40? day 50? just curious to get an overall picture on what more needs to be covered. Thanks for the course so far its been the best out there keep up the good work!
Probably about 50 to 60 days
im still on day 25 but i just comment to help the channel grow up i know there is more people looking for these tnx a lot for the work jeremy
Thanks for commenting! :)
23:07 poor bob, he must feel left out
Bob's a bad dude!
Very impressed with your information. Have you thought about doing training videos for CCNP Encor. Many thanks.
Thank you! Perhaps after I finish making this CCNA course :)
♥wish you the best
Thanks!
Thank you Boss
Hi Jeremy, this is my first time watching your videos, and you are too good! Anyway, I'm preparing for my ccna exams. for years I have been learning ccna but it seems I don't have the courage to take the exams.
Good luck!
Thanks!
your channel Jeremy is the most useful one , thank you for your time and for your high valued content . all the best...
Thanks Samir :)
At last thank u sir really waiting for the next topic thank u once again
Thanks for watching :)
@@JeremysITLab always welcome Sir
thanks!
Hey Jeremy! Really thankful for all the videos that have really saved my life! Had a question though, isn't for quiz 4 it should be all PCs only if it was outbound for the G0/0 interface? However since it is inbound then the answer should be PC1, PC2 and PC4
I was thinking the same thing, Inbound is IN the traffic while Outbound is out the traffic got me confused that I have to go through the thing again. I think he had an error
Hi Jeremy, here you mentioned "ACLS can filter traffic based on source/destination IP addresses, source/destination Layer 4 ports, etc."
Are modern routers aware of layer 4?
I will need to do some exercises to master this topic. These are like programming concepts.
Yeah ACLs definitely need some practice!
39:40 isn't Standard IP access list 3 also correct answer ? and more properly specified rules ? or am i missing something here ?
Hi Jeremy,
First I would like to say. I'm so appreciate from your such a great teaching. I'm watching and following your each and every video. My last request from you is the one, Please leave me your this lesson note in PDF or in word formats.
Thank you.
Hi,
Thank you for your comment!
Sorry, I don't provide the flashcards.
great
Appreciate
As always, a masterpiece!! Thank you Jeremy
Thank you :)
hahah quiz 4 i tought pc 1, pc2 and pc4 but the quiz was like a trick behind it.
@JeremysITLab Will an empty ACL permit all traffic by default if it is applied?
Will an implicit deny condition work with empty ACL?
Would an implicit (default last deny) condition work only if ACL has at least one user defined condition?
whatever you explain becomes so easy, thanks a bunch for this content sir
Thank you Steven, glad to hear that :)
@@JeremysITLab u r welcome sir
Hi Mr Jeremy I hope you're doing well
Can you explain to me in quiz one
When you chose ACL 1 OVER ACL3 ???
I think I found the answer in your video
If a packet doesn't match any entries the packet WILL BE DROPPED
so the best answer was ACL1
Hi @jeremysITLab
If using ip any at end of ACL statment won't allow other traffic from inside to outside and outside to inside. Wont it cause any potential vulnerabilities.
Thanks miilion
Jeremy, I hope all is well with you. Thank you for taking the time to reply to all of my (and everyone else's comments)!
I've stepped back and took a macro view of how far along I am in the process. I have roughly three months until my exam so I wanted to re-evaluate my study plan. I think IPv6 has tipped me over the edge in terms of knowledge retention and I'm definitely going to need to come back to it, which brings me to my question if you'd be so kind to offer your opinion? Do you think that continuing learning each of the subsequent subjects is the way to go? Even in a situation where I feel I have not taken in enough information to be competent in some of the subjects I have already covered, I'm trying to balance the fine line between understanding the new concepts and pushing through the course.
I think my plan is to set up a schedule for each day of learning. I definitely know I need to revise but is it best to blitz through all the content and then return with a revision plan or go for a split learning style of sorts, perhaps between 1 to 2 hours per day, with one day of rest. I may go for something like on days 1, 3, 5, new subjects and on days 2,4,6 I go for revision? I know for sure I have not done enough lab stuff yet so I may go for the Boson offering as you mention in your videos. Speaking of.. (I know this is getting long-winded (sorry) but this is the first exam I have studied for out of school and I'm solo, I don't know anyone else who is following this path) do you think this is a solid approach?
This is my list of resources and the order I use them:
Learning concepts (1):
a) Use you as my primary source of information on topics
b) Use Neil's course as a backup if I need a different way of approaching a subject in case I am not understanding it
c) Supplement extra required knowledge with Google
Labs (2):
a) Both your and Neils labs
b) ??? Do I need an alternative like Boson or will the labs provided above be enough
Practice exams/questioning (4):
a) Google (as a filler until C)
b) Your flashcards
c) Boson practice exams when closer to the date
Sorry for the near essay-length comment, I think now that the exam is set in stone, I'm really trying to dig deep and make sure I give myself the best chance which has manifested into the above!
- Stuart
If you're feeling overwhelmed, I think it's probably a good idea to hit pause and review/consolidate what you've covered so far. Another approach is to just move on and come back to the difficult topics later, but that's not usually how I do it.
Your approach sounds good to me, as does your list of resources! I think with my labs and Neil's labs you'll be fine. Definitely use Boson ExSim, but NetSim isn't as essential of a tool in my opinion, considering the other options out there.
If I could add one thing, it would be the official cert guides (vol 1 and 2) by Wendell Odom. They're quite thick books and you don't have to read through all of the chapters, but for getting the details on specific topics I think they're the best resource.
@@JeremysITLab Thank you very much. Not only for your great videos but guidance as well.
outbound and inbound confused me
Outbound applies to packets being sent out of an interface, inbound applies to packets being received by an interface.
Great stuff man. I have a question regarding ACL. I don't think t was mentioned or if I missed it but just to be sure. Each interface can have only one inbound and one outbound ACL or one ACL in general? Thank you so much for what you are doing. You will change many lifes
14:36
Grate
23:05 "BLOCK BOB FROM ACCOUNTING" got me laughing somehow
I just passed my CCNA exam a few days ago. This video series was very helpful in learning the material. Thank you!
Protips for anyone taking the exam: learn how to read routing tables and rules for route selection, static and floating static routes, HSRP rules, PaGP/LACP rules, a bit of LLDP/CDP. Also study up on wireless LAN controllers, some automation (JSON, Ansible, Puppet) and routing and switching basics, like frame flooding.
Best of luck to you all.
Congrats! CCNA is a tough exam, thanks for sharing your advice!
Did you have any experience
@@NAA-sk1ov what do you mean?
@@MatoVuc like did you know some of the stuff on the exam from experience before you took it?
@@NAA-sk1ov yes and no. I'm mostly a LAN network admin at my job, but i also went to a CCNA academy via NetAcad, so that helped a lot
Thank you so much for all the videos!! They are incredible. Question about Boson Netsim. I just purchased it and my layout in the browser seems to be different than yours. In your videos you have the Document Info and Device Configuration in the same tab, one on top of the other so you are able to see everything in the same tab. On mine, I have to pop out the Device Configuration of each device to its own tab. And then I have to drag these new tabs out so I can see them at the same time I see the Document Info. Was there an update that prevents me from viewing everything like you do? Is there a way to print out the Document Info so I can read it while I'm configuring different devices? Thanks for any help.
Dear J: Your videos are generally GREAT. One of advice from a former ARAMCO corporate trainer, maybe it would easier to understand and present if you just used pointers or said PC A instead of reading the network addresses. Just a suggestion. Otherwise GREAT!
Note that at minute 37 - you check the list according to the order it is shown rather than the ACEs number
Indeed! ACLs are always processed top to bottom
Hi Jeremy, many thanks!! If ACL entries are processed in order, won't the second (access-list 1 deny 192.168.1.0 0.0.0.255) and third entry be ignored after the first entry "access-list 1 permit 192.168.1.1" is matched?
Where can I find the breakdown of what will be on the exam like this chart you posted at 0:59? That is very helpful
Do a google search for ‘ccna exam topics’ 👍🏻
Hi Jeremy, your tutorials are the best, thank you so much. I have a question, in minute 11.50 also without entrie 1, PC1 can send a packet to SRV1, and SRV1 can reply, right? there is no need for entrie 1 , to fullfill both requirements i thing. Pleaselet me know.
Hey Jeremy, may I know which day will be wireless topics?
Not sure, around the end of the course.
Very ihelpful Tuto and well explained as usual.
for the first quiz , for me seems the ACL 3 is more accurate , because it should also permit only PC1 and 4 , means it has to deny the remain PC in both subnet.
is there any one else has noticed this remark?
Br.
The implicit deny is present, so there is no need to deny the remaining PCs in the subnets.
And because of the ‘permit any’ at the end of ACL 3, other devices such as R1 and SRV2 will be able to access SRV1, so it doesn’t fulfill the requirements anyway.
Jeremy, why was the ACL in the first example applied at the router closer to the server rather than closer to the source LANS?
Nevermind I rewatched, thanks again.
Hi Jeremy!
Question about answer on first question, you mentioned that correct answers is
standar Ip access list 1
10 permit 193.168.1.1
20 permit 193.168.2.2
Question is which ACL, when applied outbound on R2’s G0/1, permits ONLY PC1 and PC4 to access 10.0.1.0/24?
Didn’t you said only one ACEs will apply per interface? wouldn’t be only 10 permit 192.1681.1 ?
Only one ACL can be applied per direction to an interface, but all of the ACEs in the ACL will take effect.
Can you explain what are inbound and outbound?
Inbound = entering the interface, outbound = exiting the interface
On 35:16 , you didn't need to permit 192.168.2.0 0.0.0.255 right? It would be allowed anyway with permit any, and the ACL would still only block PC3
Hi Jeremy! @29:00 I can uderstand g0/2 the closest destination but why outbound and not inbound? Maybe I am confused does outbound means the traffic towards SRV2 in this case?
In this example we're filtering traffic from 192.168.1.0/24 (PC1 and PC2) to 192.168.2.0/24 (PC3 and PC4). We need to prevent PC1 from accessing 192.168.2.0/24, but allow the other PCs (PC2).
The ACL filters based on source IP address, so we want to block traffic that is sent from R1 G0/2 (=outbound towards PC3 and PC4), because traffic sent from PC1 to 192.168.2.0/24 will have PC1's IP as the source IP when it is sent out of G0/2.
If we configured it inbound on G0/2, PC1's traffic wouldn't be blocked, because traffic entering the G0/2 interface will never have PC1's IP address as the source, although it might be the destination.
Hi, can I share your videos on my blog?
please correct me if im wrong, but isn't outbound traffic the one leaving the interface? i thought that in 29:00 the access list should've been configured inbound on g0/2 which is traffic trying to access g0/2? please can someone help me clarify this? thank you
Off to teachable! xD
Glad to have you watching on both ;)