Router access list is the list of condition that categorize packet and also filter unwanted packets.
And at 1 interface per direction, per protocol there should be only 1 ACL.
ACL list are of two types
Standard and Extended
In Number standard ACL range is 1-99, 1300-1999.
In Number standard ACL range is 100-199, 2000-2699.
Standard access lists are placed close to the destination. Extended access list are placed close to the source. This is because extended ACL's look at the source and destination IP address, whereas standard ACL's look at the source IP address only.
They check packets by source address They check packets by destination address
Named access lists can be identified by alphanumeric names while standard access lists cannot
x -> standard y -> extended
Standard Access Control Lists (ACLs) only allows you to permit or deny source addresses. You can not block based on protocol, port, or destination. Extended ACLS allow you to block traffic based on source address, destination address, source port, destination port, and protocol.
The access time for items is proportional to the distance they are from the end of the list which can become very time consuming for long lists.
Remove lines selectively when using named IP access lists Make subsequent additions at the end of the access list Every access list should have at least one permit statement
one
access control lists
Spoofing
Extended IP Access List
the passive entity that is the target of an access request. the active entity that initiates an access request.