Extended ACL's using Source and Destination Port

Показать описание

#ccna #LazDiazCerts #cisco
LIKE, SHARE & SUBSCRIBE!

A new way to configure Extended ACL's

Register for my FREE Networking Engineer Assessment:

Sign up for my upcoming Volume 1 CCNA, Live, Online Coaching on March 21st:

*************************************
SEE LINKS & PROMOTIONS BELOW:

My E-Learning Platform...self-paced courses & Bootcamps:

My Website:

********************************
RESOURCES:

My CCNA R/S book on AMAZON:

My IP book on AMAZON:

-or-

PDF:

*********************************
SOCIAL MEDIA:

Linkedin:

Facebook:

Instagram:

Twitter:

My Daily Publication:

Рекомендации по теме

Комментарии

Laz,
TLDR: Secure networks use/need source port ACLs.

I’ve been working in networking for over 30 years in various industries and this is not a new thing, there are always edge cases where source port ACLs are a necessity and I have used this on occasions.
Lian Thang has mentioned one case of a web server’s outbound traffic.
Another is for an NTP server-to-server query or response where both source and destination ports are 123.

This highlights the issue with certification, just because something isn’t in the syllabus doesn’t mean that it doesn’t exist or isn’t used/useful, real world experience is severely underrated by many.

BTW – Keep up the good work on imparting your knowledge.

Mike

MikeBookham

I always enjoy watching your videos: very informative. One good reason when to filter port after the source IP and wildcard would be when applying extended ACL for returning established web traffic from a server where the source port is certain. An inbound interface from a server reply with web traffic, (80 | 443) for instance, heading towards a client can be managed either denied or permitted. I know that you know it is not the best way to do it, but that's one solid reason for sure.

paulthangbawi

Another possible use: if they are expecting asynchronous traffic through an interface?

billtotman

Extended ACL's using Source and Destination Port

MicroNugget: How to Configure Extended ACLs on Cisco Routers

Extended ACL's using Source and Destination Port

CCNA DAY 43: Extended ACL Configuration Packet Tracer| How to Configure Extended Access Control List

ACL Placement: Closer to the Source or Destination? -- Access Control Lists (ACLs) -- Part 8 of 8

How to use Extended ACLs and compare with Standard ACLs (Access Control Lists) in Cisco

'Understanding Extended ACLs: Advanced Network Security Measures'

Extended ACL to block http traffic

FREE CCNA Lab 030: Extended ACLs (Access Control Lists Part 2)

Free CCNA | Extended ACLs | Day 35 | CCNA 200-301 Complete Course

Standard And Extended ACLs | Types of Access Control list #Ccna

020 Extended ACL Things to Know

'Distinguishing Standard and Extended Access Control Lists (ACLs)'

Extended Access Control Lists ( ACLs) and static routing with Packet Tracer

Configuring cisco extended acl / extended named access control list tutorial using packet tracer

018 Extended ACL Config Example

Access Control Lists | Cisco CCNA 200-301

26.2.2 Packet Tracer - Configure Extended IPv4 ACLs - Scenario 2

CCNA Free ACL Boot Camp (6/13): Extended ACLs

Configuring Extended IPv4 ACLs: Numbered and Named

CCNA Security Lab 4.1.1.10: Configuring Extended ACLs Scenario 1

39. Configuring Extended ACLs | How to Configure Extended Access Control Lists

4.2.2.10 Packet Tracer - Configuring Extended ACLs Scenario 1

Cisco router extended ACLs

'Implementing Named Extended ACLs: Fine-Tuning Network Security with Advanced Access Control&ap...