Difference between revisions of "CCNA Explorer 4 ACLs"
From Teknologisk videncenter
m |
m (→ACL best practice) |
||
(14 intermediate revisions by one other user not shown) | |||
Line 1: | Line 1: | ||
*Se [[Access-list Cisco IOS]] | *Se [[Access-list Cisco IOS]] | ||
− | + | __TOC__ | |
{| | {| | ||
|- | |- | ||
Line 18: | Line 18: | ||
|- | |- | ||
|[[Image:Exp5sec5.png|800px|left|thumb|]] | |[[Image:Exp5sec5.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | | | ||
+ | == ACL's princip == | ||
+ | |- | ||
+ | |[[Image:Exp5sec6.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec7.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec8.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec9.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec10.png|800px|left|thumb|Inbound ACL's]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec11.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | | | ||
+ | {| | ||
+ | |[[Image:Exp5sec12.png|400px|left|thumb|]] | ||
+ | |[[Image:Exp5sec13.png|400px|left|thumb|]] | ||
+ | |} | ||
+ | |- | ||
+ | | | ||
+ | == Typer af ACL lists == | ||
+ | |- | ||
+ | |[[Image:Exp5sec14.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | | | ||
+ | === Hvordan standard ACL fungerer === | ||
+ | |- | ||
+ | | | ||
+ | {| | ||
+ | |[[Image:Exp5sec15.png|400px|left|thumb|]] | ||
+ | |[[Image:Exp5sec16.png|400px|left|thumb|]] | ||
+ | |} | ||
+ | |- | ||
+ | | | ||
+ | === Nummerering og navngivning af ACL's === | ||
+ | |- | ||
+ | |[[Image:Exp5sec17.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | | | ||
+ | === Placering af ACL'er === | ||
+ | ==== Standard ACL ==== | ||
+ | |- | ||
+ | |[[Image:Exp5sec18.png|800px|left|thumb|Placer Standard ACL så tæt på '''modtageren''' som muligt]] | ||
+ | |- | ||
+ | | | ||
+ | ==== Extended ACL ==== | ||
+ | |- | ||
+ | |[[Image:Exp5sec19.png|800px|left|thumb|Placer Extended ACL så tæt på '''afsenderen''' som muligt]] | ||
+ | |- | ||
+ | | | ||
+ | == ACL best practice == | ||
+ | |- | ||
+ | |[[Image:Exp5sec20.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec21.png|800px|left|thumb|Disse 2 ACL'er har samme effekt]] | ||
+ | |- | ||
+ | | | ||
+ | |||
+ | == Configuring standard ACL == | ||
+ | |- | ||
+ | |[[Image:Exp5sec22.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec23.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec24.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec25.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec26.png|800px|left|thumb|t]] | ||
+ | |- | ||
+ | | | ||
+ | == Wildcard MASKS == | ||
+ | |- | ||
+ | |[[Image:Exp5sec27.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec28.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec29.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec30.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec31.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec32.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec33.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec34.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec35.png|800px|left|thumb|t]] | ||
+ | |- | ||
+ | | | ||
+ | == Procedure for at konfigurere standard ACL == | ||
+ | |- | ||
+ | |[[Image:Exp5sec36.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec37.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec38.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec39.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec40.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec39.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec40.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | | | ||
+ | == Procedure for at konfigurere navngivne ACL == | ||
+ | |- | ||
+ | |[[Image:Exp5sec41.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec42.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | | | ||
+ | == Navngivne access lister == | ||
+ | |- | ||
+ | |[[Image:Exp5sec43.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec44.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | | | ||
+ | == Se access lister == | ||
+ | |- | ||
+ | |[[Image:Exp5sec45.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | | | ||
+ | == tilføj en linie i en access list == | ||
+ | |- | ||
+ | |[[Image:Exp5sec46.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec47.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | | | ||
+ | == Extended access lists == | ||
+ | === Testing packets === | ||
+ | |- | ||
+ | | | ||
+ | {| | ||
+ | |[[Image:Exp5sec48.png|400px|left|thumb|]] | ||
+ | |[[Image:Exp5sec49.png|400px|left|thumb|]] | ||
+ | |} | ||
+ | |- | ||
+ | | | ||
+ | === Eksempler === | ||
+ | |- | ||
+ | |[[Image:Exp5sec50.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec51.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec52.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec53.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec54.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec55.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec56.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec57.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | | | ||
+ | === Navngivne extendede ACL's === | ||
+ | |- | ||
+ | |[[Image:Exp5sec58.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | | | ||
+ | == Komplekse ACL'er== | ||
+ | |- | ||
+ | |[[Image:Exp5sec59.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | | | ||
+ | === Dynamiske ACL's === | ||
+ | |- | ||
+ | |[[Image:Exp5sec60.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec61.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec62.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | | | ||
+ | === Refleksive ACL's === | ||
+ | |- | ||
+ | |[[Image:Exp5sec63.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec64.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec65.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | | | ||
+ | === Time based ACL's === | ||
+ | |- | ||
+ | |[[Image:Exp5sec66.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec67.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec68.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | | | ||
+ | == fejlfinding på ACL's == | ||
+ | |- | ||
+ | |[[Image:Exp5sec69.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec70.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec71.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec72.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | |[[Image:Exp5sec73.png|800px|left|thumb|]] | ||
+ | |- | ||
+ | | | ||
+ | == Summary == | ||
+ | |- | ||
+ | |- | ||
+ | |[[Image:Exp5sec74.png|800px|left|thumb|]] | ||
|- | |- | ||
|} | |} | ||
[[Category:CCNA]] | [[Category:CCNA]] |
Latest revision as of 06:46, 15 April 2011
Contents
- 1 TCP forbindelse
- 2 Port numre
- 3 ACL's princip
- 4 Typer af ACL lists
- 5 ACL best practice
- 6 Configuring standard ACL
- 7 Wildcard MASKS
- 8 Procedure for at konfigurere standard ACL
- 9 Procedure for at konfigurere navngivne ACL
- 10 Navngivne access lister
- 11 Se access lister
- 12 tilføj en linie i en access list
- 13 Extended access lists
- 14 Komplekse ACL'er
- 15 fejlfinding på ACL's
- 16 Summary
TCP forbindelse | ||
Port numre | ||
ACL's princip | ||
| ||
Typer af ACL lists | ||
Hvordan standard ACL fungerer | ||
| ||
Nummerering og navngivning af ACL's | ||
Placering af ACL'erStandard ACL | ||
Extended ACL | ||
ACL best practice | ||
Configuring standard ACL | ||
Wildcard MASKS | ||
Procedure for at konfigurere standard ACL | ||
Procedure for at konfigurere navngivne ACL | ||
Navngivne access lister | ||
Se access lister | ||
tilføj en linie i en access list | ||
Extended access listsTesting packets | ||
| ||
Eksempler | ||
Navngivne extendede ACL's | ||
Komplekse ACL'er | ||
Dynamiske ACL's | ||
Refleksive ACL's | ||
Time based ACL's | ||
fejlfinding på ACL's | ||
Summary | ||