Questions tagged [access-control]
For questions about access control lists (ACLs). For instance, you want to limit network traffic to increase network performance or provide traffic flow control on your network device. ACLs also provide a basic level of security for network access by defining which part of the network/server/service can be accessed by a host and which cannot.
57
questions
0
votes
0
answers
10
views
SONiC OS. ACL for ip of vlan interface L3
I'm trying to apply simple acl rules to IP address vlan100, but it always responds to ping.
"VLAN100_ACL": {
"policy_desc": "VLAN100 Ingress ACL",
"type": &...
- 1
0
votes
0
answers
17
views
How MACA will behave in this situations?
I am trying to understand how collisions are resolved in the MACA protocol when there are three stations - A, B, and C with the following reachability:
A can only communicate with B
B can communicate ...
0
votes
1
answer
535
views
How is the efficiency of Pure ALOHA derived using Poisson's Distribution?
Pure ALOHA has a vulnerable time of 2T where T is the transmission time for a single frame. Pure aloha has a maximum throughput of 18% but how is it actually derived from Poisson's distribution?
- 111
0
votes
1
answer
225
views
How to permit ospfv3 packet in ipv6 access list?
In Packet Tracer, I have a private network with 5 different VLANs and inter-vlan routing enabled on R1. These are connected via an edge router to an ISP. On the interface S0/0/0 of R1 in direction in ...
- 305
0
votes
1
answer
465
views
Why does this access list block DHCP request?
To prevent IP spoofing in a VLAN I configured the following access list
ip access-list extended MITARBEITER
permit tcp 10.15.240.0 0.0.0.255 any
permit udp 10.15.240.0 0.0.0.255 any
permit icmp 10....
- 305
1
vote
2
answers
62
views
Huawei Cloudengine 6851 ipv6 acl not matching
I have a Huawei 6851 and this is my config
acl ipv6 number 3006
description MY-IPv6
rule 10 permit ipv6 source 2001:x:x:x::x:x/112
rule 20 deny ipv6 destination 2001:x:x:x::x:y/128
rule 30 permit ipv6
...
- 619
6
votes
1
answer
448
views
Why do we need deny statements in extended access list if there is an implicit deny all at the end?
Can somebody give me an example, where deny statements are needed? Why can't we just permit all the traffic according to specifications and then let the implicit deny all capture the rest?
- 305
0
votes
1
answer
349
views
Why does the Throughput of Non-persistent CSMA increase with attempts made to send packets
Its intuitive for Aloha and p-persistent CSMA that the more we try to send during a packet time the more the collisions we get; however, I have been unable to justify why non-persistent CSMA is ...
- 105
0
votes
1
answer
641
views
Cisco router access list not working as expected
I'm trying to set up a network in packet tracer with inter-VLAN routing. I need to restrict one of the VLANs to only accept traffic from the 172.25.30.0/24 network.
To do this I am using an access ...
- 3
1
vote
2
answers
1k
views
How is P actually chosen in P-persistent CSMA?
I am struggling to understand how the probability value P is chosen for P-persistent CSMA for any particular station, what's the logic behind this.I have read from Wikipedia .
P-persistent
This ...
- 398
0
votes
1
answer
84
views
Is this a good network configuration?
I am trying to configure ip sla for non directed link . I have configured static route to reach to non directed link
1 configured track
2 configured ip sla
3 configured access-list
4 configured NAT
5 ...
0
votes
1
answer
312
views
Is it possible to allow/deny connections to a domain name using Access Control Lists on Aruba switch?
I'm working on an Aruba 2900 series switch and I'd like to restrict any traffic except traffic from/to a handful of domain names.
What I have to far:
ip access-list extended "production"
...
user70842
2
votes
2
answers
340
views
Static NAT and PAT
I have two private IP addresses, want to make them NAT to 203.0.113.0/2 public IP address.
WAY 1 : Static NAT (2 ip addresses NATted to one by manually)
WAY 2 : PAT (Router gives port number ...
- 21
0
votes
2
answers
63
views
meaning of acl configurations?
how do we know what ACL configuration mean? an example access-list 89 permit tcp host 192.168.10.2 any eq www? does this allow the traffic from the host 192.168.10.2 inside? i'm a bit confused. any ...
- 1
0
votes
2
answers
386
views
Slotted ALOHA efficiency
In slotted ALOHA, the maximum efficiency is 36.8% when only one station transmits in one time slot . My question is, if only one station is transmitting in one time slot, then there will be no ...
- 111