Access Control List (ACL)

Source: Internet
Author: User


In enterprise environments, there are usually access control requirements. By configuring access control requirements, you can set some data packets to be received and some data packets to be rejected. The ACL Access Control List uses the packet filtering technology to read Layer 3 and Layer 3 of the OSI Layer 7 model on the router for detection, including matching policies for IP addresses and ports, to achieve the purpose of access control.

Overview of Sample requirements:

The topology is as follows:

Specific requirements:

1. All Hosts in VLAN 10 can access the WEB Services of the server from Monday to Friday-, but reject other services.

2. Only PC1 can be used to PING the server. Other hosts cannot be pinged to the server.

3. Add a user and password for SW1. Only the host PC1 can log on.

Specific implementation steps:

1. connect to the network to ensure network connectivity.

A) connect networks based on the Topology


C) ip address planning:

I. PC1: Gateway:

Ii. PC10: Gateway:

Iii. SERVER: Gateway:

D) configure the IP address

E) PC1

F) PC10

G) configure the IP address on the router (simulated server)

H) VLAN information is divided on three vswitches.


J) divide the corresponding ports into VLANs Based on the topology.



M) the gateway address of the corresponding VLAN configured as the IP address of the PC and Server


O) configure the switch connection interface as the truch Port




S) Verify connectivity


2. Complete access list Configuration

A) configuration so that all users in VLAN10 can access the WEB Service of the server during working hours




E) configuration, so that only PC1 can PING the server, and only PC1 can access SW1



H) in the interface application



3. Verify

A) after changing the time, VLAN10 users can access the WEB service.

B) Only PC1 can PING the server.

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.