ACL question

borumasborumas Member Posts: 244 ■■■□□□□□□□
in CCNA & CCENT
Another prep question that confused me was where would you ideally place a standard ACL and where would you ideally place a extended ACL? My first thought was ideally you would place them both as close to the source as possible but then I started doubting my answer, is that correct?
· Share on FacebookShare on Twitter

Comments

  • Paul BozPaul Boz Member Posts: 2,620 ■■■■■■■■□□
    Standard ACL's go as close to the destination as possible since they filter on source only. Extended ACL's go as close to the source as possible since they filter on both source and destination. Ideally you want to avoid standard lists, as there's no point in letting traffic fly all over your network only to be denied at the receiving end.
    CCNP | CCIP | CCDP | CCNA, CCDA
    CCNA Security | GSEC |GCFW | GCIH | GCIA
    pbosworth@gmail.com
    http://twitter.com/paul_bosworth
    Blog: http://www.infosiege.net/
    · Share on FacebookShare on Twitter
  • borumasborumas Member Posts: 244 ■■■□□□□□□□
    Thanks, that does make allot of sense the way you explained it, I just remember reading "as a rule filter as close to the source as possible" or something like that so I figured that was correct. Thanks again for answering my question.
    · Share on FacebookShare on Twitter
Sign In or Register to comment.