Ccna routing and Switching Complete Study Guide

Extended IP access list Block_Telnet

    10 deny tcp host 10.1.1.1 host 172.16.20.254 eq telnet

    20 permit ip any any

Notice the numbers 10 and 20 on the left side for each test statement. These are called 

sequence numbers. We can use these number to then edit a single line, delete it, or even add 

a new line in between two sequence numbers. Named ACLs can be edited; numbered ACLs 

cannot.

Since we’re adding this to the R1 router in Figure 20.3, we’ll add it inbound to interface 

FastEthernet 0/0, stopping traffic closest to the source.

R1(config)#

R1(config-if)#