Access Control List (ACL) is a set of rules that are usually used to filter network traffic allow or deny. In the article, we’ll guide you on how to create and configure ACL on the router.

Here are some steps and guideline to configure ACL allow or deny the traffic on the network.

On R1

Configure named standard IPV4 ACL

  1. Create a standard ACL name AMDIN_VTY
  2. Permit a single host PC-C
  3. Apply the ACL to VTY line

User Access Verification

Username: admin01
Password:
R1>
R1>EN
Password:
R1#configure t
Enter configuration commands, one per line. End with CNTL/Z.
R1(config)#ip access-list standard ADMIN_VTY
R1(config-std-nacl)#
R1(config-std-nacl)#permit 192.168.2.50
R1(config-std-nacl)#line vty 0 4
R1(config-line)#access-class ADMIN_VTY in
R1(config-line)#

On R2

We need to configure a standard IPV4 ACL to restrick access to PINK LAN

  1. Access list 10 remark ACL_TO_PINK_LAN
  2. Permit PC-C to reach the PINK LAN

User Access Verification

Username:
Username: admin01
Password:

R2>EN
Password:
R2#
R2#config t
Enter configuration commands, one per line. End with CNTL/Z.
R2(config)#
R2(config)#access-list 10 remark ACT_TO_PINK_LAN
R2(config)#access-list 10 permit 192.168.2.50

  1. Permit only the halp of host on YELLO LAN

R2(config)#access-list 10 permit 172.16.1.0 0.0.0.127
R2(config)#no access-list 10 permit 172.16.1.0 0.0.0.127

R2(config)#access-list 10 permit 192.168.1.0 0.0.0.127
R2(config)#access-list 10 permit 172.16.1.0 0.0.0.255
R2(config)#

  1. Permit all of the hosts on the BLUE LAN can reach the PINK LAN

R2(config)#access-list 20 remark ACL_TO_BLUE_LAN
R2(config)#access-list 20 permit 192.168.1.100
R2(config)#access-list 20 deny 192.168.1.0 0.0.0.255
R2(config)#access-list 20 permit any

R2(config)#int gi0/0
R2(config-if)#ip access-group 20 out
R2(config-if)#int g0/1
R2(config-if)#ip access-group 10 out
R2(config-if)#

Watch Video on YouTube

By Admin