How To Configure Extended Access List?
Share
Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
1. Log into the router.
2. Enter the configuration mode.
3. Enter the command “access-list [number] [permit/deny] [source] [destination]” where [number] is the number of the extended access list, [permit/deny] is the action to take on the specified source/destination, [source] is the source address of the packet, and [destination] is the destination address of the packet.
4. Repeat step 3 for each rule you want to add to the access list.
5. Enter the command “exit” to save the configuration.
6. Enter the command “show access-lists [number]” to view the access list.
1. Log into the router with a secure shell (SSH) or Telnet.
2. Enter the privileged mode on the router by entering the “enable” command.
3. Create the extended access list using the “access–list” command.
4. Specify the access list number, which must be between 100 and 199, followed by an action such as “permit” or “deny”.
5. Enter the source IP address of the traffic you wish to control.
6. Enter the destination IP address, if applicable.
7. Specify the protocol or ICMP type you wish to filter.
8. Apply the access list to an interface with the “ip access–group” command, followed by the access list number and the interface name.
9. Save the changes made with the “wr” command.