Classification – Router also use ACLs to identify particular traffic.
Filtering – You can use ACL as a filter to keep the rest of your network from accessing sensitive data on the finance subnet.
ACLs operate in two ways:
– Inbound ACLs
– Outbound ACLs
Types of ACL
• Standard – Check the source address of packets that can be routed.
• Extended – Check both the source and destination.
Note: Standard ACL should be applied near to source and Extended near to destination to avoid extra lookups and consumption of bandwidth.
1 – 99 or 1300 – 1999 is a Standard IP
100 – 199 or 2000 – 2699 is a Extended IP
Any – Used in place of 0.0.0.0 255.255.255.255
Host – Used in place of 0.0.0.0 in the wild card mask