Example 2-9. Debugging Traffic Using ACL Example
Router(config)# access-list 101 permit ip host 10.1.1.1 host 192.168.1.1
Router(config)# access-list 101 permit ip host 192.168.1.1 host 10.1.1.1
Router(config)# end
Router# debug ip packet detail 101
IP packet debugging is on (detailed) for access list 101
Caution
On the router console, when debugs are running, usually the router prompt is not seen because debugs
tend to scroll very fast on the console screen, especially when the debug is intensive. However, use the
no debug all or undebug all commands to stop the debugs (Type this command as blind-folded.) For
more information on safely using debugs, visit
http://www.cisco.com/en/US/tech/tk801/tk379/technologies_tech_note09186a008017874c.shtml
Summary
ACLs are the most common and inexpensive method available for filtering traffic across the network. This
chapter primarily focused on the use of ACLs for traffic filtering. An overview of IP addressing, subnets, and
masks was also presented to help you better understand the implementation of ACL. A major part of this
chapter was devoted to several types of ACLs and their applications. All Cisco IOS software versions are capable
of supporting ACLs.
Pages:
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110