ACL Labs - Nate Torres

ACL Labs

Controlling traffic at the packet level is essential for both security and performance. These labs dive into Access Control Lists (ACLs), showcasing how to filter and manage traffic using both standard and extended ACL configurations. From permitting or denying traffic based on IP addresses, subnets, and port numbers to applying ACLs inbound and outbound on interfaces, each scenario reflects real-world use cases in securing network boundaries. These exercises highlight my ability to implement precise traffic control policies that protect network resources and enforce access rules.

Standard and Extended ACL Configuration

Access Control Lists

Configured and applied standard and extended ACLs on router interfaces to enforce network communication restrictions across subnets. Implemented traffic filters to block DNS, HTTP, and HTTPS access based on source and destination IPs and ports, simulating realistic enterprise security controls.

Skills Demonstrated:

Creating standard numbered ACLs to filter traffic by source
Creating extended named ACLs to filter traffic by protocol, source, and destination
Blocking DNS access using both TCP and UDP on port 53
Combining multiple access rules in a single ACL for shared sources
Applying ACLs strategically inbound and outbound on router interfaces
Using the ping utility and browser to test ACL behavior
Understanding the practical impact of ACLs on real-time communication
Monitoring ACL matches with the show access-lists command