cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
869
Views
0
Helpful
1
Replies

Extended ACL - name?

ashleyreed4218
Level 1
Level 1

Hi All:

Question. I'm creating an extended access-list, which I want to name 101. But, my friend wants me to give it a different name, while still being extended. Can I do this? I thought in order for it to be extended it has to be over 99?

I.e: 'ip access-list extended 101' --would become--'ip access-list extended access_list_test'

?

Thank you in advance,

Ashley

1 Accepted Solution

Accepted Solutions

johnlloyd_13
Level 9
Level 9

hi ashley,

yes, it's achievable but try not to confuse 'named' ACL with a regular 'numbered' ACL.

extended 'numbered' ACL uses the range 100-199 and 1300-1999.

Router(config)#access-list ?

  <1-99>            IP standard access list

  <100-199>         IP extended access list

  <1000-1099>       IPX SAP access list

  <1100-1199>       Extended 48-bit MAC address access list

  <1200-1299>       IPX summary address access list

  <1300-1999>       IP standard access list (expanded range)

  <200-299>         Protocol type-code access list

  <2000-2699>       IP extended access list (expanded range)

  <300-399>         DECnet access list

  <600-699>         Appletalk access list

  <700-799>         48-bit MAC address access list

  <800-899>         IPX standard access list

  <900-999>         IPX extended access list

  compiled          Enable IP access-list compilation

  dynamic-extended  Extend the dynamic ACL absolute timer

  rate-limit        Simple rate-limit specific access list

on the other hand, 'named' ACL can either use both 'number' and a naming convention.

Router(config)#ip access-list extended ?

  <100-199>    Extended IP access-list number

  <2000-2699>  Extended IP access-list number (expanded range)

  WORD         Access-list name

View solution in original post

1 Reply 1

johnlloyd_13
Level 9
Level 9

hi ashley,

yes, it's achievable but try not to confuse 'named' ACL with a regular 'numbered' ACL.

extended 'numbered' ACL uses the range 100-199 and 1300-1999.

Router(config)#access-list ?

  <1-99>            IP standard access list

  <100-199>         IP extended access list

  <1000-1099>       IPX SAP access list

  <1100-1199>       Extended 48-bit MAC address access list

  <1200-1299>       IPX summary address access list

  <1300-1999>       IP standard access list (expanded range)

  <200-299>         Protocol type-code access list

  <2000-2699>       IP extended access list (expanded range)

  <300-399>         DECnet access list

  <600-699>         Appletalk access list

  <700-799>         48-bit MAC address access list

  <800-899>         IPX standard access list

  <900-999>         IPX extended access list

  compiled          Enable IP access-list compilation

  dynamic-extended  Extend the dynamic ACL absolute timer

  rate-limit        Simple rate-limit specific access list

on the other hand, 'named' ACL can either use both 'number' and a naming convention.

Router(config)#ip access-list extended ?

  <100-199>    Extended IP access-list number

  <2000-2699>  Extended IP access-list number (expanded range)

  WORD         Access-list name

Review Cisco Networking for a $25 gift card