Start networking and exchanging professional insights

Register now or log in to join your professional community.

Follow

What is the difference between standard and extended ACL?

user-image
Question added by Faseeh Mohd koya , IT SUPPORT ENGINEER [L2] , Ministry of Sports and Youth
Date Posted: 2016/05/02
Majed Mohammed
by Majed Mohammed , IT Branch Support Associate , Morgan Stanley

Difference between Standard ACL & Extended ACL - a) In Standard ACL, filtering is based on source IP address.where as in extended ACL, filtering is bases on Source IPaddress, Destination IP address, Protocol Type, Source PortNumber & Destination Port Number.b) Standard ACL are used to block particular host or subnetwork. where as Extended ACL is used to block particularservices.c)Standard ACL is implemented as possible closer todestination. where as Extended ACL is implemented aspossible closer to source.d) Standard ACL is created from1 - & extended range-. where as Extended ACL is created from - &extended range -.e) In Standard ACL, two communication will be blocked, whereas in Extended ACL, one way communication will be blocked.f) In Standard ACL, all services will be blocked. Where asin Extended ACL, particular services wil be blocked.

g) Configuring Standard ACLs

access-list access-list-number {permit|deny} {host|source source-wildcard|any}

 

access-list-number  from1 to n

 

Configuring  Extended ACLs

 

access-list access-list-number {deny | permit} protocol source source-wildcard destination destination-wildcard[precedence precedence] [tos tos] [fragments] [time-range time-range-name] [dscp dscp]

 

 

The access-list-number is a decimal number from to or to

Manish K
by Manish K , Network Engineer (Senior Service Engineer) , Microland

Difference between Standard ACL & Extended ACL:

In Standard ACL, filtering is based on source IP address. where as in extended ACL, filtering is bases on Source IP address, Destination IP address, Protocol Type, Source Port Number & Destination Port Number.

Standard ACL are used to block particular host or sub network. where as Extended ACL is used to block particular services.

Standard ACL is implemented as possible closer to destination. where as Extended ACL is implemented as possible closer to source.

Standard ACL is created from1 - & extended range -. where as Extended ACL is created from - & extended range -.

In Standard ACL, two communication will be blocked, where as in extended ACL, one way communication will be blocked.

In Standard ACL, all services will be blocked. Where as in Extended ACL, particular services wil be blocked.

More Questions Like This