Answer / gaurav kumar sharma

standard IP access list provides basic packet filtering
abilities, based on the source IP address of a packet only.
As a general rule, apply standard IP access lists close to
the destination network to which you wish to permit or deny
access.Standard IP access lists fall into the numerical
range 1-99
Unlike standard IP access lists (which only allow you to
filter packets based on their source IP address), extended
IP access lists allow a much more granular level of
control. Extended IP access lists allow filtering not only
on source addresses, but also on destination addresses,
protocols, and even applications, based on their port
number. For example, you might choose to permit or deny a
group of hosts from accessing a particular server, limit
access to a telnet server to only a single host, or
similar.Extended IP access lists are identified through
their use of the 100-199 numerical range.

Answer / shahin

Difference between Standard ACL & Extended ACL -

a) In Standard ACL, filtering is based on source IP address.
where as in extended ACL, filtering is bases on Source IP
address, Destination IP address, Protocol Type, Source Port
Number & Destination Port Number.

b) Standard ACL are used to block particular host or sub
network. where as Extended ACL is used to block particular
services.

c)Standard ACL is implemented as possible closer to
destination. where as Extended ACL is implemented as
possible closer to source.

d) Standard ACL is created from 1 - 99 & extended range 1300
- 1999. where as Extended ACL is created from 100 - 199 &
extended range 2000 - 2699.

e) In Standard ACL, two communication will be blocked, where
as in Extended ACL, one way communication will be blocked.

f) In Standard ACL, all services will be blocked. Where as
in Extended ACL, particular services wil be blocked.


Hope this much of difference will help u guys. Keep posting
new question plzzzz....!!!

Thanking you
Shahin

Answer / sachin

In standard access-list the range area is 0-99 but in case
of extended access-list the range area is 100-199 and in
standard access-list we cannot create permission on
specific protocol like bloking the telnet or ftp......we
can do that in extended access-list.

Answer / harsh singh

standard access list has range area of 0-99
extended has 100-199.

Answer / manoranjan

Standard access list basically used to filter packets by IP
address & is basically close to the destination router.(1-99)

Extended access list is used to filter packets based on
address ,protocol & port no. dedicated for particular
services.(100-199)

Answer / shahin

Mr. Diwakar... Nice question...

As we know, Extended ACL is basically used to block
particular services like telnet. ftp, tftp, ICMP echo etc.....

Now if we apply it near to destination, then data will flow
all the way to destination.. thn on particular interface on
the destination it'll droped.

So my question for you.... if u want to block particular
services then why u r letting data traffic to go near to
destination n thn droped?????


It may unnecessary using network bandwidth. Which is waste
as far as my concern. Hope it helps u to clear your doubts.

Cheers

Shahin

Answer / naveen kumar sharma

In standard access-list we can filter the packet after
routing.and it will applied on destination router.its depend
only on source ip address.


but in case of extended access list we can filter the packet
before routing,and it will applied on source router,its
depend on source ip,destination ip,port and protocol.

Answer / awanish kumar sharma

Standared IP access list is based on IP address.Apply close
to the destination that can only filter packet based on
there source IP address.Numeric value from 1-99,1300-1399
Extended IP access list is based on Port address.Apply
close to source that can filter not only source address but
also destination address based on there port number.Numeric
value from 100-199.Allow more grangular level of controle.

Answer / nizam

When you enable standard access-list it will block entire
thing but extended access-list can block every port like
ftp,telnet etc.
Standard range is 1-99 and extended range is 100-199.

Answer / raju

1)Standard access list ranges from 1-99 and extended access
list ranges from 100-199,
2) Standard access list filter the packet based on
perticular source Ip or Network address,where it comes
From,,Ex,,,,,if i put Permit or Deny host 172.23.152.200
or 172.23.152.0 it will blocks or allows(As per Deny or
Permit statement) all the packets which comes from the
perticular Ip address or Network Address completly
Extended Access list can do some extraa activity like
permit or deny on basis of protocols,Packet types like
ICMP,UDP,TCP,,,,,,,,RIP,,,,,,,,,,,,,,,,


By Raju
9164626660

What are 3 ways to provide login access to router? A.) Console B.) TFTP C.) Rlogin D.) Auxiliary Port E.) X Windows F.) Telnet

2 Answers  

Hi Gyes, here is new question. can you provide answer of following question Like linux, can we windows as router? If yes how can we able to do this,

2 Answers  

Which command will display the encapsulation type on interface serial 0? A.) show interface s0 B.) show all C.) show int s0 encap D.) show encap s0 E.) show encap

1 Answers   Cisco,

Which three basic switch functions increase available bandwidth on the networks? (Choose three) A. loop avoidance B. address learning C. hop count limiting D. broadcast filtering E. packet forward/filtering F. broadcast packet hop count learning/forward/filtering

1 Answers  

(1)what is "rtp" and how it work, (2)what is diffrence between igrp and eigrp (3)the slection prcedure of dr and bdr is depend open (4)why frame really is called nbma (5)what is ppp (6) what is diffrence b/w tcp and udp (7) how can we implement ospf protocall on any router (8)whta is as nomber (9)what is AD value (10)what is the broadcast id,n/w id and number of vallid host of the 255.255.255.128/25 195.168.10.10/25 (11) what is stub network (12) what is contigues n/w (13)on which type of router we can implement default routing (14)what is diffrence b/w hub switch;switch router, (15)what is v lan (16)what is the diffrence b/w link sate protocal and distance vector protocall (17)what is synchoransh mode of data transfer and asynchronash mode of data transfer (18) question on lab, belive me frnds there are 20 questions and 5 questions on lab implimentaion.around 1.1/2 hour i was in interview room and after givieng 17 right answera and 4 in lab i got slected try to give answer if any difficulty or any prob plz email me on jitenderasinha.it@gmail.com if any one of you havae boson netsim plz also intimate me

4 Answers  

Using the TCP/IP protocol suite, a message is sent from host A to a destination IP address on the same LAN. How does host A determine the destination of a MAC address? A. It uses a proxy APP B. It uses APP requests C. It uses PARP requests D. It uses a router lookup table

1 Answers  

You have a Class B network address divided into 30 subnets. You will add 25 new subnets within the next year. You need 600 host IDs for each subnet. Which subnet mask should you use? A.) 255.254.0.0 B.) 255.192.0.0 C.) 255.255.252.0 D.) 255.255.248 0

1 Answers  

hi friends i have some problem regarding technical round ahr round plz tell me what should the right answer technical questions 1 what is brouter 2 what is the menaing of 10 base2, 10 base 5 and 10baset 3 what is diffrence between bit rate and baud rate. and this question was tooooooooooo much difficult to me that hr said to me that rank me after the taking the all short of interview

5 Answers  

Identify the 2 commands that will display the status and information about interface E0 only? A.) show interface ethernet E0 B.) show interface E0 C.) show E0 D.) show int E0 E.) show interface

1 Answers  

How does a web page works though each layers ?

5 Answers   HCL, PBPL,

What is difference between standard and extended access-list

17 Answers   College School Exams Tests, HCL, Wipro,

What type of frame does CDP use to gather information about it's neighbors? A.) TCP/IP B.) Novell-ether C.) Subnetwork Access Protocol (SNAP) D.) Ethernet_II

1 Answers