What is an Access Control List?

In this article, I will talk about ACL's, what they are, why they are beneficial and how they work.

Let's get started!

What is an ACL?

  • An ACL (Access Control List) is a set of network traffic filters that can control incoming/outgoing traffic. You can think of it as a "stateless" firewall.

How Does an ACL work?

  • ACL's work on a set of rules that define how to forward or block a packet at the router's interface.

  • Previously, I have mentioned it is the same as a "stateless" firewall. What do I mean by that? Well, it can only restrict, block or allow packets that are flowing from a source to destination dependent on given rules

  • When you define an ACL on a routing device, all the traffic flowing through will be compared with the ACL statement, which will either block or allow that packet to be transferred.

  • ACL's are common in routers or firewalls. But they can also be configured on any device in the network.

What is the purpose of an ACL?

  • The main idea of using an ACL is to provide security to your network.

  • Without it, any traffic is allowed to enter or exit, making it vulnerable to malicious/unwanted/dangerous traffic.

  • To improve security, you can deny specific routing updates or provide traffic flow control.

Types of ACL's

  • There are two types of Access Control Lists that you can use: Standard and Extended.

  • Standard ACL allows you to prioritize traffic by the source IP address.

  • Extended ACL allows you to have greater control of what traffic is prioritizied. It can also use paramaters such as destination IP address, and TCP/UDP ports. This is extremely powerful when implementing security to your network.