The access control list is not conceptually complex. What is complicated is its configuration and use. Many beginners often experience errors when using the access control list.
Below is a brief summary of several access control lists.
●Standard IP Access Control List
A standard IP access control list matches a source address or part of the source address in an IP packet, and can take deny or allow two actions on the matching packet. The access control list with the number range from 1 to 99 is the standard IP access control list.
●Extended IP access control list
The extended IP access control list has more matches than the standard IP access control list, including protocol type, source address, destination address, source port, destination port, connection establishment and IP priority, etc. The numbered access control list is from 100 to 199, which is an extended IP access control list.
●Named IP access control list
The so-called named IP access control list defines the IP access control list with a list name instead of a list number. It also includes two lists: standard and extended. The statements that define filtering are similar to those in the numbering method.
●Standard IPX access control list
The number range of the standard IPX access control list is 800-899. It checks the IPX source network number and destination network number, and can also check the node number part of the source address and destination address.
●Extended IPX access control list
Extended IPX access control list Based on the standard IPX access control list, the following segments in the IPX header are added, which are protocol type, source Socket, and target Socket. The number range of extended IPX access control list is 900-999.
●Named IPX access control list
Like named IP access control lists, named IPX access control lists use list names instead of list numbers. This facilitates the definition and reference list, and there are also standards and extensions. Article entry: csh Editor in charge: csh
Below is a brief summary of several access control lists.
●Standard IP Access Control List
A standard IP access control list matches a source address or part of the source address in an IP packet, and can take deny or allow two actions on the matching packet. The access control list with the number range from 1 to 99 is the standard IP access control list.
●Extended IP access control list
The extended IP access control list has more matches than the standard IP access control list, including protocol type, source address, destination address, source port, destination port, connection establishment and IP priority, etc. The numbered access control list is from 100 to 199, which is an extended IP access control list.
●Named IP access control list
The so-called named IP access control list defines the IP access control list with a list name instead of a list number. It also includes two lists: standard and extended. The statements that define filtering are similar to those in the numbering method.
●Standard IPX access control list
The number range of the standard IPX access control list is 800-899. It checks the IPX source network number and destination network number, and can also check the node number part of the source address and destination address.
●Extended IPX access control list
Extended IPX access control list Based on the standard IPX access control list, the following segments in the IPX header are added, which are protocol type, source Socket, and target Socket. The number range of extended IPX access control list is 900-999.
●Named IPX access control list
Like named IP access control lists, named IPX access control lists use list names instead of list numbers. This facilitates the definition and reference list, and there are also standards and extensions. Article entry: csh Editor in charge: csh