acce
ss
-lis
t
<1
-99>
(IP
s
tan
da
rd
ac
l)
deny
(Specify packets to reject)
>
A.B.C.D
(Addres to match)
<cr>
A.B.C.D (wildcard bits)
permit
(Specify packets to forward)
any
host
A.B.C.D (Host address)
remark (Access list entry comment)
LINE (Comment up to 100 characters)
<100
-199
>
(IP
e
xt
end
ed
ac
l)
d
en
y
(Spec
if
y p
ack
ets
t
o
r
eje
ct)
>
ahp
(Authentication
Header Protocol)
>
A.B.C
.D
(Sou
rce
a
d
d
re
ss
)
<cr>
>
A.B.C
.D
(De
stin
at
ion
a
d
d
re
ss
)
<cr>
>
>
<cr>
d
scp
(Mat
ch
p
ack
ets
w
ith
giv
en
d
sc
p
v
alu
e)
<0-63>
default (000000)
af11 (001010)
eigrp
(Cisco's EIGRP
routing protocol)
af12 (001100)
af13 (001110)
af21 (010010)
esp
(Encapsulation
Security Payload)
A.B.C
.D
(w
ildca
rd
b
its
)
A.B.C
.D
(w
ildca
rd
b
its
)
af22 (010100)
af23 (010110)
af31 (011010)
af32 (011100)
gre
(Cisco's GRE
tunneling)
af33 (011110)
af41 (100010)
af42 (100100)
icmp
(Internet Control
Message Protocol)
an
y
(Any
sou
rce
h
o
st)
an
y
(Any
d
es
tin
at
ion
h
o
st)
af43 (100110)
{PORT
SE
LE
C
TION
}
{PORT
SE
LE
C
TION
}
es
ta
b
lis
h
ed
cs1 (001000)
p
erm
it
(Spec
if
y p
ack
ets
t
o
for
w
ar
d
)
cs2 (010000)
cs3 (011000)
ip
(Any Internet
Protocol)
cs4 (100000)
cs5 (101000)
cs6 (110000)
ospf
(OSPF routing
protocol)
cs7 (111000)
H
o
st
(A s
in
gl
e sou
rc
e h
o
st)
A.B.C
.D
(Ho
st
ad
d
re
ss
)
h
o
st
(A s
in
gl
e d
es
tin
at
ion
h
o
st)
A.B.C
.D
(Ho
st
ad
d
re
ss
)
ef (101110)
p
re
ce
d
en
ce
(Mat
ch
p
ack
ets
w
ith
giv
en
p
re
ce
d
en
ce
v
alu
e)
<0-7>
network (7)
tcp
(Transmission
Control Protocol)
internet (6)
critical (5)
flash-override (4)
udp
(User Datagram
Protocol)
flash (3)
immediate (2)
priority (1)
routine (0)
remark
(Access list entry comment)
LINE
(Comment up to 100 characters)
P
ORT
SELE
CTION
eq
gt
lt
neg
range
v
<0-65535>
ftp (21)
pop3 (110)
smtp (25)
telnet (23)
www (HTTP, 80)
v
<0-65535>
ftp (21)
pop3 (110)
smtp (25)
telnet (23)
www (HTTP, 80)
Packet Tracer CLI info: ACL
Author: Damian Pawlik