Chapter 2-9 - ACLs

Question 1

What are ACL’s (Access Control List), name three [3]

Answer 1

1. Lists of instructions that permit or deny specific packets
2. Enforce security policies by controlling traffic in a network
3. Can be based on IPs, ports, or a variety of protocols

Question 2

How packet filtering work? List three [3]

Answer 2

1. Controls access by analyzing packets and passing/stopping based on some rules
2. Rules defined in ACLs
3. ACL is a sequential list of permit or deny statements known as access control entries (ACEs)

Question 3

What is a standard ACL? name two [2]

Answer 3

1. Permit or deny traffic from source IP addresses only

2. Destination IP and ports involved are not checked

Question 4

What is extended ACL?

Answer 4

Filter based on protocol type, source and destination IP, source and destination ports and other parameters

Question 5

What is the number ranges for Standard ACL?

Answer 5

1 – 99 & 1300 – 1999

Question 6

What is the number ranges for Extended ACL?

Answer 6

100 – 199 & 2000 – 2699

Question 7

What are four [4] best practice for ACL’s?

Answer 7

1. Base ACLs on security policy
2. Write a description of ACL’s function (pseudocode)
3. Use a text editor to create, edit, and save the ACL
4. Test the ACL on a development network first

Question 8

What are four [4] Criteria Statements?

Answer 8

1. Most frequently used entries should be at the top of the list
2. If no matches are found, the traffic is denied
3. A single-entry ACL with only one deny will deny all traffic.
4. Must have at least one permit