Visualizar as ACLs implantadas
R1# show access-lists ?
<1-199> ACL number
WORD ACL name
<cr>R1#show access-lists
Standard IP access list 11
10 deny 192.168.10.0 0.0.0.255
20 permit anyVer as implantações de permissão/negação nas interfaces
R1# show run | include interface|access
interface GigabitEthernet0/0
interface GigabitEthernet0/1
interface Serial0/0/0
ip access-group 11 out
interface Serial0/0/1
interface Vlan1
access-list 11 deny 192.168.10.0 0.0.0.255
access-list 11 permit anyCriar uma ACL do tipo STANDARD e número 1
R2(config)#ip access-list standard 1Vinculando uma ACL a um POOL NAT com a opção OVERLOAD
OVERLOAD permite que um único endereço IP público (no seu caso, um dos endereços do pool NAT) seja usado por múltiplos dispositivos internos simultaneamente.
R2(config)#ip nat inside source list ACL_NAT pool MEU_POOL_NAT overloadVinculando uma ACL a uma interface com a opção IN ou OUT
R1(config)# interface s0/0/0
R1(config-if)# no ip access-group 11 outVer a access list na interface
R3# show ip interface g0/0/0
GigabitEthernet0/0/0 is up, line protocol is up (connected)
Internet address is 192.168.30.1/24
Broadcast address is 255.255.255.255
Address determined by setup command
MTU is 1500 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is 1
Inbound access list is not set
<Output omitted>