Standard Access List (ACL) for the Cisco CCNA - Part 2

This man is a CCNA RS teaching genius. You can do what few others can. You have a true gift. I never thought ACL would get me excited, but you make it so effortless.

noname

He's one of the best at explaining how things work with Cisco. I would recommend his teachings to anyone who wants a CCNA certification. I can't say enough or give him more accolades because of all the comments below.Please keep up the great work.

martytorrez

All CCNA courses should be teached in this way, THANKS !!!

BravoWifi

I went from being completely clueless to actually understanding what this does. And I’m not even done with the video yet.

You are amazing at teaching. Wish you were my teacher.

MrCheesegrabber

I don't know if this is because this video was made in 2012 but now you can go in the access list and squeeze the rule in the middle like this:
R0(config)ip access-list standard 1
R0(config-std-nacl)15 deny host 192.168.2.191
The 15 in front of the command is in case the first and the last rules are 10 and 20 respectively

notforever

Thanks Dan, I spent a day trying to figure out how access lists work, after this video everything seems to me much clearer. I can see clearly now the rain is gone :)

sanymil

Great tutorials! Massive help for my ICND2 exam. I found though that instead of creating a new ACL, it was easier to go into ip access-list standard and do a no permit any. and then added it back in again to send it to the bottom :). Hope this helps anyone wondering if that sort of thing is possible. These videos are unbelieveably good though for studying. You're a life saver :)

olieve

You are amazing. How you make it so clean is a gift

jameskimuyu

Dan, your explanations are so clear. From the basics to advanced features, they are very complete and very logically built up. Thank you very much. They inspire and give confidence. Kind regards, TvdTooren

thorwaldvandertooren

for those having experience in iptables, this should be piece of cake. it's basically the same as iptables, with the same design principles applying, with the difference that in iptables you can insert a rule in a specific point, and the "access-list X deny any" is the same as the default policy of a chain in iptables.

easy!

TheyCallMeMannes

This video is great and makes ACLs easier to understand.

topazbear

Hi Dan, Please do not give up with  your Videos.Much appreciated ! :-)

stevenreichler

You great n easy to understand thank you ! We
Need more updated version of CCNA

jorgesteven

9:58 in " ip access-group 99 out " what does the " out " do??

KyawGaungSanSint

interesting fact about the default "deny any": if you create an empty access list by typing "
access-list 98 remark deny test" and you apply it it to an interface, the traffic won't be blocked.

TheyCallMeMannes

Which playlist is this vidoe included in?

saibrinda

Hi,

What if you do this:

access-list 99 permit 192.168.2.0 0.0.0.255
access-list 11 deny any

interface fa0/1
ip access-group 11 out
exit

Does this mean that, access-list 99 will be denied, or if we didnt implement the acl in interface, the packets will be allowed?
Thank you for the tutorial.

Trigonom

Well explained, and illustrated, thanks a lot...

hoggrobinson

Thanks Dan, this helps me a lot, ,,

I have understand a lot from you than my bad tutor

cheers

KSADEBO

thanks for explaining in such detail....this helped a lot..thanks..

akileshgopal