Standard ACLs
Standard ACLs
Standard Access Control Lists only block traffic by IP / Network Address only. Their ACL Number will be between 1 – 99 and 1300 – 1999.
The Syntax for a Standard ACL is:
access-list <number> <permission> <source IP> {WCM}
<number> being an integer between 1 – 99 and 1300 – 1999.
access-list <number> <permission> <source IP> {WCM}
<permission> being either “permit” or “deny”.
access-list <number> <permission> <source IP> {WCM}
<source IP> has three different formats:
<source IP> <WCM>
Take note <WCM> has come into play here and is a required part of the syntax.
host <source IP>
specifically that IP Address, example: host 10.0.0.1
any
any IP Address, normally used in an “implicit in deny or permit rule”
Examples (with breakdown)
access-list 1 permit 10.0.0.1 0.0.0.255
<number> = 1
<number> = permit
<source IP> = 10.0.0.1
{WCM} = 0.0.0.255
access-list 2 permit host 10.0.0.2
<number> = 2
<number> = permit
<source IP> = host 10.0.0.2
{WCM} = none needed
access-list 3 deny any
<number> = 3
<number> = deny
<source IP> = any, so ANY IP Address
{WCM} = none needed