02-12-2013 03:14 PM - edited 03-07-2019 11:40 AM
Hi All:
Question. I'm creating an extended access-list, which I want to name 101. But, my friend wants me to give it a different name, while still being extended. Can I do this? I thought in order for it to be extended it has to be over 99?
I.e: 'ip access-list extended 101' --would become--'ip access-list extended access_list_test'
?
Thank you in advance,
Ashley
Solved! Go to Solution.
02-12-2013 03:26 PM
hi ashley,
yes, it's achievable but try not to confuse 'named' ACL with a regular 'numbered' ACL.
extended 'numbered' ACL uses the range 100-199 and 1300-1999.
Router(config)#access-list ?
<1-99> IP standard access list
<100-199> IP extended access list
<1000-1099> IPX SAP access list
<1100-1199> Extended 48-bit MAC address access list
<1200-1299> IPX summary address access list
<1300-1999> IP standard access list (expanded range)
<200-299> Protocol type-code access list
<2000-2699> IP extended access list (expanded range)
<300-399> DECnet access list
<600-699> Appletalk access list
<700-799> 48-bit MAC address access list
<800-899> IPX standard access list
<900-999> IPX extended access list
compiled Enable IP access-list compilation
dynamic-extended Extend the dynamic ACL absolute timer
rate-limit Simple rate-limit specific access list
on the other hand, 'named' ACL can either use both 'number' and a naming convention.
Router(config)#ip access-list extended ?
<100-199> Extended IP access-list number
<2000-2699> Extended IP access-list number (expanded range)
WORD Access-list name
02-12-2013 03:26 PM
hi ashley,
yes, it's achievable but try not to confuse 'named' ACL with a regular 'numbered' ACL.
extended 'numbered' ACL uses the range 100-199 and 1300-1999.
Router(config)#access-list ?
<1-99> IP standard access list
<100-199> IP extended access list
<1000-1099> IPX SAP access list
<1100-1199> Extended 48-bit MAC address access list
<1200-1299> IPX summary address access list
<1300-1999> IP standard access list (expanded range)
<200-299> Protocol type-code access list
<2000-2699> IP extended access list (expanded range)
<300-399> DECnet access list
<600-699> Appletalk access list
<700-799> 48-bit MAC address access list
<800-899> IPX standard access list
<900-999> IPX extended access list
compiled Enable IP access-list compilation
dynamic-extended Extend the dynamic ACL absolute timer
rate-limit Simple rate-limit specific access list
on the other hand, 'named' ACL can either use both 'number' and a naming convention.
Router(config)#ip access-list extended ?
<100-199> Extended IP access-list number
<2000-2699> Extended IP access-list number (expanded range)
WORD Access-list name
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide