You are the only one who made me understand ACL completely even after watching so many popular cisco tutorial and paid videos/books. Please keep em coming including ccnp/encor topics. Subscribed!
Thank you for this series the way of explain thing make it so simple to understand compared to the dry cisco material with 50 sentences to explain something that should only take 3 sentences.
Awesome, glad these helped! If you're willing... Could you do me a favor? Do you mind sharing this series on Linked In, Reddit, Twitter, Facebook, or any other social media you use? As an independent creator, that would be an _enormous_ help, and I would appreciate it _greatly_ .
Thank you =). Could you do me a favor? Do you mind sharing this video on Linked In, Reddit, Facebook, or any other social media you use? As an independent creator, that would be an _enormous_ help, and I would appreciate it _greatly_ .
Great series, really helped me understand ACL's, I did however have to turn the playback speed to 0,75..but maybe thats just me, non-native English speaker and all.
Thank you =). Could you do me a favor? Do you mind sharing this video on Linked In, Reddit, Twitter, Facebook, or any other social media you use? As an independent creator, that would be an _enormous_ help, and I would appreciate it _greatly_ .
Dear Ed, I was wondering if you might have a "problem generator" available for practicing the creation and solving of ACLs, similar to the one you offer for subnetting practice. I've found the subnetting problem generator incredibly beneficial for honing my skills and reviewing my results. If possible, could you kindly share the link with me or consider creating such a tool? Your educational resources have been consistently outstanding, and I greatly appreciate your assistance. Thank you,
My thoughts. Because a Standard ACL only defines Source, placement is closest to the missing explicative, the Destination where the filter must be applied. Extended and IPv6 have the full path, we apply the filter closest to the Source to reduce traffic most. Otherwise, extra processing cycles are wasted. "Should drop packets as early as possible" when we have both SRC and DST. Got it!
You're reasoning is on point. Yes, since the Standard ACL is "missing" the Destination definition, placing it closer to _that_ destination helps reduce the unrestrained blocking. Good way of thinking about it.
Thank you so much for the great effort. Just out of curiosity, do you use power point for presentation or something else. I am trying to learn the stylus vanish mode you are using but can't figure it out. Thanks again.
You're welcome! The slides are Powerpoint. The annotation/drawing is IPEVO Annotator, they have a "pen" with a "disappearing ink" feature. It's great, check it out !
I'm loving all your videos. I was hoping you might dig in a bit more to the in vs. out concept when I saw you had an ACL series. That is what I struggled with most in this curriculum (I took all 3 quarters of the Cisco curriculum at Edmonds CC). In the in/out decision, the perspective always throws me. It seem that if a packet is going in and intfc, it is also going out an intfc. It always trips me up. If you're considering more videos, I'd love to hear your explanation about in/out. Your videos are excellently balanced between concepts, commands, and visuals, you really have a great formula. Most other instructors I watch lean way too heavily on one, at the expense of the other(s). Thanks for doing these.
You're welcome again Scott. Glad you're enjoying my content! I discuss the "in/out" distinction in Video 1 of the ACL series. I'd recommend giving that a re-watch. At the end of the day it's just choosing where precisely you want to filter for traffic. (coming in one interface, going out another interface, etc...). You could also filter in "both" places, but that is a bit redundant. Beyond that, feel free to ask more specific questions in my discord: pracnet.net/discord. Cheers!
You're welcome, Nick. If you are willing... Could you do me a favor? Do you mind sharing this video series on Linked In, Reddit, Twitter, Facebook, or any other social media you use? Despite the effort, this series didn't quite attract as much attention as I had hoped it would.
If we put ACL in the interface near PC-C it will prevent it from speaking to PC-A. But if I want PC-A to speak to PC-C, will it be possible? I mean is it possible for a 1 way communication? Thanks.
Yes. But 1-way communication is rarely helpful in Networking. Consider every TCP protocol requires the completion of a handshake, which means bidirectional communication must exist before any data will actually be sent.
Thank you for the kind words, and for your support =). Oddly, this ACL series hasn't received nearly as much attention as some of my other content. Would you be willing to help me out by referring people to this content public forums or CCNA groups?
I will echo other comments and say thank you: I struggled with ACLs (especially where to apply them) and your videos made it crystal clear. Great work!
Glad you learned a lot from this series =). This series doesn't seem to do well with the UA-cam algorithm.... if you're willing, please consider sharing this resource with others. Cheers.
Would you recommend that the most specific in terms of subnet mask length Access control List entry (ACE) should be placed at the top of the ACL otherwise the host or network you are trying to match will be caught by more generic rules placed above it?
I wouldn't go so far as to say that is "always" what you should do. It is a "generally" good strategy, but not an explicit rule you should always follow. There are times when the less specific rules must take priority. For instance, a lot of edge routers have ACLs on their external interfaces preventing RFC 1918 traffic from coming in. These rules would include a /8, /12, and /16 mask, but ought to take precedence over whatever "smaller" permits might exist later. The best solution is to really understand the implication of priority and access-lists, and then build an ACL policy which best matches the requirements and policies of your specific location.
Any chance for another video on famous network protocols ? like : DNS/DHCP/ARP/ICMP/FTP / HTTPS & HTTP/STMP/POP3/SYSlog/SNMP/Telnet/SSH .. quick video how they work & how they affect/change packet
Glad you liked it =). I did a video and article series on ARP: ua-cam.com/video/QPi5Nvxaosw/v-deo.html www.practicalnetworking.net/series/arp/address-resolution-protocol/ And I'm currently building (what I believe) to be the best class on SSL/HTTPS. There is an early access program if you're interested: www.practicalnetworking.net/announcement/looking-for-reviewers-for-my-tls-ssl-deep-dive-course/
DONT DELETE THESE VIDEOS!!!! I am in an intro to networking course at my CC and this has helped me so much in my studies and understanding the class text. Thank you so much for taking the time to do this!
You're welcome. And don't worry, I have no plans to delete these videos =). Please feel free to share the link to the landing page for all the videos with your class mates: www.practicalnetworking.net/series/access-lists/acls/
@@onemoremood2761 I wrote an article series discussing NAT and PAT here: www.practicalnetworking.net/series/nat/nat/ I've also published three video courses on NAT/PAT if you prefer videos here: classes.pracnet.net/courses/network-address-translation Hope you enjoy!
You are the only one who made me understand ACL completely even after watching so many popular cisco tutorial and paid videos/books. Please keep em coming including ccnp/encor topics. Subscribed!
Thanks for the support, Mark! Glad this series helped it click for you.
In just a few minutes of your time, I was able to grasp concepts that had previously eluded me for hours. Thank you, Mr. Practical
Yet another terrific series... Thank you!
You're welcome, Bob. Glad you liked it !
The entire series is just outstanding!
Glad you think so, Mohammad. Please spread the word about this content =)
@@PracticalNetworking Sure sir, I will circulate the content and spread the words about this wonderful channel.
Thanks for the series.. crystal clear with ACL concept.
Cheers, Irappa =)
Clear, concise, and perfectly explained. Thank you sir.
Thank you. Glad you enjoyed the series!
Thank you for this series the way of explain thing make it so simple to understand compared to the dry cisco material with 50 sentences to explain something that should only take 3 sentences.
Thank you for this series I had a major confusion look on my face about ACL's, but I understand them a bit better after this series.
I just finished watching the series I learned so much. The videos you make are easy to understand and apply thank you again.
Thank you for the video ! You did explained it well and it was just what i needed for my exam.
series was fun and informative. Moreover, simple to understand, THANK YOU!!!!
Glad it helped, Sameer =)
Thank you so much for making such useful and perfect Videos.
You're welcome, Rafay. =)
Short and precise!
Glad you enjoyed it =)
Amazing! it was very informative and helpful ...God bless ya
Glad you enjoyed it, Martin. =)
#1 about ACL thanks dear
Most welcome 😊
I struggled with understanding this concept until I came across this video. Excellent!!!
Awesome, glad these helped!
If you're willing... Could you do me a favor? Do you mind sharing this series on Linked In, Reddit, Twitter, Facebook, or any other social media you use? As an independent creator, that would be an _enormous_ help, and I would appreciate it _greatly_ .
Thank you very much! You are doing great videos with your explanations!
Glad you like them, Burim. Thank you for your support.
thank you so much for arranging the data in my brain with your clear explanations. btw, below the video, the link to part 8 refers to part 1...
Glad you enjoyed it! Thanks for pointing out the typo as well!
Awesome series for understanding ACL's as a whole, thank you !
You're very welcome!
Great content! Keep going !
Cheers Ernesto. Glad you're enjoying this series as well =)
mind blowing content bro !! hats off
Thank you =).
Could you do me a favor? Do you mind sharing this video on Linked In, Reddit, Facebook, or any other social media you use? As an independent creator, that would be an _enormous_ help, and I would appreciate it _greatly_ .
Great series, really helped me understand ACL's, I did however have to turn the playback speed to 0,75..but maybe thats just me, non-native English speaker and all.
Glad you enjoyed the series =). That's the beauty of UA-cam, you can speed up or slow the playback as necessary. Cheers!
Thank you so much for this video!
Man you have the knowledge. Well done please continue.
Thank you =).
Could you do me a favor? Do you mind sharing this video on Linked In, Reddit, Twitter, Facebook, or any other social media you use? As an independent creator, that would be an _enormous_ help, and I would appreciate it _greatly_ .
Excellent series, sir. Thank u so much for this, it helps me a lot
omg ur the best I have never understand acl like this time thanks a lot +1 sub from me
Glad you enjoyed it, Riadh. Happy to help you with your understanding of ACLs =)
Dear Ed,
I was wondering if you might have a "problem generator" available for practicing the creation and solving of ACLs, similar to the one you offer for subnetting practice. I've found the subnetting problem generator incredibly beneficial for honing my skills and reviewing my results. If possible, could you kindly share the link with me or consider creating such a tool? Your educational resources have been consistently outstanding, and I greatly appreciate your assistance.
Thank you,
Love the idea =) Doesn't exist at the moment.
My thoughts. Because a Standard ACL only defines Source, placement is closest to the missing explicative, the Destination where the filter must be applied. Extended and IPv6 have the full path, we apply the filter closest to the Source to reduce traffic most. Otherwise, extra processing cycles are wasted. "Should drop packets as early as possible" when we have both SRC and DST. Got it!
You're reasoning is on point. Yes, since the Standard ACL is "missing" the Destination definition, placing it closer to _that_ destination helps reduce the unrestrained blocking. Good way of thinking about it.
Thank you so much for the great effort.
Just out of curiosity, do you use power point for presentation or something else. I am trying to learn the stylus vanish mode you are using but can't figure it out.
Thanks again.
You're welcome! The slides are Powerpoint. The annotation/drawing is IPEVO Annotator, they have a "pen" with a "disappearing ink" feature. It's great, check it out !
Very good explanation 👍
Thank you, Amir.
Thank you Ed for this series! Now I'm ready for a few labs in the command line to mater this topic.
Excellent =) Glad you feel ready for labs!
Great video seris thank you
I'm loving all your videos. I was hoping you might dig in a bit more to the in vs. out concept when I saw you had an ACL series. That is what I struggled with most in this curriculum (I took all 3 quarters of the Cisco curriculum at Edmonds CC). In the in/out decision, the perspective always throws me. It seem that if a packet is going in and intfc, it is also going out an intfc. It always trips me up. If you're considering more videos, I'd love to hear your explanation about in/out. Your videos are excellently balanced between concepts, commands, and visuals, you really have a great formula. Most other instructors I watch lean way too heavily on one, at the expense of the other(s). Thanks for doing these.
You're welcome again Scott. Glad you're enjoying my content!
I discuss the "in/out" distinction in Video 1 of the ACL series. I'd recommend giving that a re-watch. At the end of the day it's just choosing where precisely you want to filter for traffic. (coming in one interface, going out another interface, etc...). You could also filter in "both" places, but that is a bit redundant.
Beyond that, feel free to ask more specific questions in my discord: pracnet.net/discord. Cheers!
Awesome series
Thank you.=)
Great series! I was able to follow the concepts you are transmitting and the drawings were pretty clear. Awesome job! Thanks!
You're welcome =)
This was a perfect video series thank you so much!
You're very welcome =)
Great series! Thank you for the videos! :)
Glad you enjoyed it, Sevinj. Cheers !
thank you for making it cristal clear ,i did have problems understanding this part.Thank You!
had to suscribe this is just the best lesson i've seen on acl yet, thanks !
Thank you for the kind words and your support =)
Awesome videos! Thanks Ed.
You're welcome, Nick.
If you are willing... Could you do me a favor? Do you mind sharing this video series on Linked In, Reddit, Twitter, Facebook, or any other social media you use? Despite the effort, this series didn't quite attract as much attention as I had hoped it would.
Thanks a lot you made my day more easier.
Glad to help, Krishna! Thank you for supporting the channel!
A big thanks for the demo!
Certainly =)
Very clearly explained...
Thank you, Nidhin =).
Amazing. Thank you
You're welcome!
If we put ACL in the interface near PC-C it will prevent it from speaking to PC-A. But if I want PC-A to speak to PC-C, will it be possible? I mean is it possible for a 1 way communication? Thanks.
Yes. But 1-way communication is rarely helpful in Networking. Consider every TCP protocol requires the completion of a handshake, which means bidirectional communication must exist before any data will actually be sent.
Good Job, as the whole ACL Servies have been explained in a very simple way but effectively. Please keep posting. thank you.
Thank you. Glad you enjoyed the series =)
Awesome stuff thx bud
You're welcome, Ajmal!
Awesome Series on ACL
Thank you, Ketan =)
Thank you so much!!!!!
You're welcome!
Very well described.
Thank you =)
Wow so clear and concise, I subscribed within a few minutes into the video...
Can't fault the delivery of this content
Thank you for the kind words, and for your support =).
Oddly, this ACL series hasn't received nearly as much attention as some of my other content. Would you be willing to help me out by referring people to this content public forums or CCNA groups?
Great Tutorial!!!
Thank you, Jeff.
Amazing explanation...thanks alot for your hard work.
Thank you. You're very welcome =)
nice video ..could you please make a tutorial video for VPN
It's on the list =)
@@PracticalNetworking Thank yo Bozz
Thank you very much sir.
I hope my network professor watches this video and learns how the lecture should be. So detailed and easy explained! Thank you so much!!
Perfect (y).
Thanks, Qasim =)
I needed to understand ACL for my home network and this video series is perfect. Thank you
You are the best!
perfect
Many thanks
Loved it brother. You are a saviour of the masses.
I will echo other comments and say thank you: I struggled with ACLs (especially where to apply them) and your videos made it crystal clear. Great work!
Glad you learned a lot from this series =).
This series doesn't seem to do well with the UA-cam algorithm.... if you're willing, please consider sharing this resource with others. Cheers.
Would you recommend that the most specific in terms of subnet mask length Access control List entry (ACE) should be placed at the top of the ACL otherwise the host or network you are trying to match will be caught by more generic rules placed above it?
I wouldn't go so far as to say that is "always" what you should do. It is a "generally" good strategy, but not an explicit rule you should always follow. There are times when the less specific rules must take priority.
For instance, a lot of edge routers have ACLs on their external interfaces preventing RFC 1918 traffic from coming in. These rules would include a /8, /12, and /16 mask, but ought to take precedence over whatever "smaller" permits might exist later.
The best solution is to really understand the implication of priority and access-lists, and then build an ACL policy which best matches the requirements and policies of your specific location.
Thank you so much, Playlist is really good and complete source for ACLs, it has everything theory & Labs !
Well done, organized & well explained !!
Any chance for another video on famous network protocols ? like : DNS/DHCP/ARP/ICMP/FTP / HTTPS & HTTP/STMP/POP3/SYSlog/SNMP/Telnet/SSH .. quick video how they work & how they affect/change packet
Glad you liked it =). I did a video and article series on ARP:
ua-cam.com/video/QPi5Nvxaosw/v-deo.html
www.practicalnetworking.net/series/arp/address-resolution-protocol/
And I'm currently building (what I believe) to be the best class on SSL/HTTPS. There is an early access program if you're interested:
www.practicalnetworking.net/announcement/looking-for-reviewers-for-my-tls-ssl-deep-dive-course/
great content!
Thanks =)
DONT DELETE THESE VIDEOS!!!! I am in an intro to networking course at my CC and this has helped me so much in my studies and understanding the class text. Thank you so much for taking the time to do this!
You're welcome. And don't worry, I have no plans to delete these videos =). Please feel free to share the link to the landing page for all the videos with your class mates:
www.practicalnetworking.net/series/access-lists/acls/
@@PracticalNetworking already did! thanks for the reply and if you can do a video series and expand on NAT and PAT that would be awesome!
@@onemoremood2761 I wrote an article series discussing NAT and PAT here:
www.practicalnetworking.net/series/nat/nat/
I've also published three video courses on NAT/PAT if you prefer videos here:
classes.pracnet.net/courses/network-address-translation
Hope you enjoy!