Tutorial
Physical Layer
Data Link layer
Network Layer
Routing Algorithm
Transport Layer
Application Layer
Network Security
Misc
- Router
- OSI vs TCP/IP
- TCP vs UDP
- Transmission Control Protocol
- TCP port
- IPv4 vs IPv6
- ARP Packet Format
- ARP Table
- Working of ARP
- FTP Client
- FTP Commands
- FTP Server
- I2C Protocol
- Sliding Window Protocol
- SPI Protocol
- IP
- ARP Commands
- ARP
- Address Resolution Protocol
- ARP and its types
- TCP Retransmission
- CAN protocol
- HTTP Status Codes
- HTTP vs HTTPS
- RIP Protocol
- UDP Protocol
- ICMP Protocol
- MQTT protocol
- OSPF Protocol
- Stop and Wait Protocol
- IMAP Protocol
- POP Protocol
- CIFS
- DAS
- DIMM
- iSCSI
- NAS (Network Attached Storage)
- NFS
- NVMe
- SAN
- Border Gateway Protocol
- Go-Back-N ARQ
- RJ Cable
- Difference between Connection-Oriented and Connectionless Service
- CDMA vs. GSM
- What is MAC Address
- Modem vs. Router
- Switch Vs. Router
- USB 2.0 vs 3.0
- Difference between CSMA CA and CSMA CD
- Multiple access protocol- ALOHA, CSMA, CSMA/CA and CSMA/CD
- URI vs URL
- IMAP vs. POP3
- SSH Meaning| SSH Protocol
- UTP vs STP
- Status Code 400
- MIME Protocol
- IP address
- proxy server
- How to set up and use a proxy server
- network security
- WWW is based on which model
- Proxy Server List
- Fundamentals of Computer Networking
- IP Address Format and Table
- Bus topology and Ring topology
- Bus topology and Star topology
- Circuit Switching and Packet switching?
- Difference between star and ring topology
- Difference between Router and Bridge
- TCP Connection Termination
- Image Steganography
- Network Neutrality
- Onion Routing
- Adaptive security appliance (ASA) features
- Relabel-to-front Algorithm
- Types of Server Virtualization in Computer Network
- Access Lists (ACL)
- What is a proxy server and how does it work
- Digital Subscriber Line (DSL)
- Operating system based Virtualization
- Context based Access Control (CBAC)
- Cristian's Algorithm
- Service Set Identifier (SSID)
- Voice over Internet Protocol (VoIP)
- Challenge Response Authentication Mechanism (CRAM)
- Extended Access List
- Li-fi vs. Wi-fi
- Reflexive Access List
- Synchronous Optical Network (SONET)
- Wifi protected access (WPA)
- Wifi Protected Setup (WPS)
- Standard Access List
- Time Access List
- What is 3D Internet
- 4G Mobile Communication Technology
- Types of Wireless Transmission Media
- Best Computer Networking Courses
- Data Representation
- Network Criteria
- Classful vs Classless addressing
- Difference between BOOTP and RARP in Computer Networking
- What is AGP (Accelerated Graphics Port)
- Advantages and Disadvantages of Satellite Communication
- External IP Address
- Asynchronous Transfer Mode (ATM)
- Types of Authentication Protocols
- What is a CISCO Packet Tracer
- BOOTP work
- Subnetting in Computer Networks
- Mesh Topology Advantages and Disadvantages
- Ring Topology Advantages and Disadvantages
- Star Topology Advantages and Disadvantages
- Tree Topology Advantages and Disadvantages
- Zigbee Technology-The smart home protocol
- Network Layer in OSI Model
- Physical Layer in OSI Model
- Data Link Layer in OSI Model
- Internet explorer shortcut keys
- Network Layer Security | SSL Protocols
- Presentation Layer in OSI Model
- Session Layer in OSI Model
- SUBNET MASK
- Transport Layer Security | Secure Socket Layer (SSL) and SSL Architecture
- Functions, Advantages and Disadvantages of Network Layer
- Protocols in Noiseless and Noisy Channel
- Advantages and Disadvantages of Mesh Topology
- Cloud Networking - Managing and Optimizing Cloud-Based Networks
- Collision Domain and Broadcast Domain
- Count to Infinity Problem in Distance Vector Routing
- Difference Between Go-Back-N and Selective Repeat Protocol
- Difference between Stop and Wait, GoBackN, and Selective Repeat
- Network Function Virtualization (NFV): transforming Network Architecture with Virtualized Functions
- Network-Layer Security | IPSec Modes
- Next - Prev Network-Layer Security | IPSec Protocols and Services
- Ping vs Traceroute
- Software Defined Networking (SDN): Benefits and Challenges of Network Virtualization
- Software Defined Networking (SDN) vs. Network Function Virtualization (NFV)
- Virtual Circuits vs Datagram Networks
- BlueSmack Attack in Wireless Networks
- Bluesnarfing Attack in Wireless Networks
- Direct Sequence Spread Spectrum
- Warchalking in Wireless Networks
- WEP (Wired Equivalent Privacy)
- Wireless security encryption
- Wireless Security in an Enterprise
- Quantum Networking
- Network Automation
- Difference between MSS and MTU
- What is MTU
- Mesh Networks: A decentralized and Self-Organizing Approach to Networking
- What is Autonomous System
- What is MSS
- Cyber security & Software security
- Information security & Network security.
- Security Engineer & Security Architect
- Protection Methods for Network Security
- Trusted Systems in Network Security
- What are Authentication Tokens in Network security
- Cookies in Network Security
- Intruders in Network Security
- Network Security Toolkit (NST) in virtual box
- Pivoting-Moving Inside a Network
- Security Environment in Computer Networks
- Voice Biometric technique in Network Security
- Advantages and Disadvantages of Conventional Testing
- Difference between Kerberos and LDAP
- Cyber security and Information Security
- GraphQL Attacks and Security
- Application Layer in OSI Model
- Applications of Remote Sensing
- Seven Layers of IT Security
- What is Ad Hoc TCP
- What is Server Name Indication(SNI)
Access Lists (ACL)
ACLs are a set of rules for regulating network traffic and minimising network attacks. Using a set of rules specified for the network's incoming or outgoing traffic, ACLs are used to filter traffic.
Features of Access List -
- The defined set of rules is matched line by line, starting with the first line, then the second, then the third, and so on.
- Only up until the rule matches are the packets matched. No further comparisons are made after a rule matches, and that rule is then applied.
- Every ACL has an implicit denial at the end, meaning that the packet will be discarded if neither a condition nor a rule is met.
The access-list should then be applied to the interface's inbound or outbound traffic once it has been constructed:
- Inbound access lists - When an access list is applied to an interface's inbound packets, the inbound packets are first processed in accordance with the access list before being forwarded to the outbound interface.
- Outbound access lists - When an access list is applied to an interface's outbound packet header, the outbound interface will first route the packet before processing it.
Types of Access List -
There are two main types of access-list, and they are as follows:
- Standard Access-list : These Access-lists are created solely using the source IP address. These ACLs either allow or disallow the entire set of protocols. TCP, UDP, HTTPS, and other types of IP traffic are not differentiated. The router will recognise it as a standard ACL and the specified address as the source IP address if you use the numbers 1-99 or 1300-1999.
- Long Access List : The ACL that makes use of source IP, destination IP, source port, and destination port is this one. We can also specify which IP traffic should be permitted or blocked using these ACLs. These employ the 100-199 and 2000-2699 ranges. The process on the client machine sends the clock server a request at time T 0 for the clock time (time at the server).
Additionally, there are two types of access-lists:
- Numbered access lists are access lists that, once created, cannot be specifically deleted; for example, if we want to remove any rules from an access list, this is not allowed in the case of a numbered access list. The access list as a whole will be deleted if we attempt to remove a rule from it. Both standard and extended access lists can use the numbered access-list.
- Named access list: In this type of access list, a name is given to the access list in order to identify it. Unlike numbered access lists, named access lists can be deleted. These can be used with both standards and extended access lists, just like numbered access lists.
Guidelines for Access List -
- In general, the standard Access-list is used close to the destination ( but not always ).
- Typically, the extended Access-list is used close to the source (but not always).
- We are only allowed to assign one ACL per interface, per protocol, and per direction, meaning that each interface can only have one inbound and one outbound ACL.
- If we are using a numbered Access-list, we are unable to remove a rule from it. The entire ACL will be removed if we attempt to remove a rule. A specific rule can be deleted if named access lists are being used.
- Before implementing the access lists, carefully analyse the entire scenario because every new rule that is added will be placed at the bottom of the access list.
- Every access list has an implicit denial at the end, so we need to have at least a permit statement there; otherwise, all traffic will be blocked.
- Extended access lists cannot share the same name as standard access lists.
Benefits of Access List -
- Boost network efficiency.
- Security is provided because the administrator can customise the access list to meet specific requirements and prevent malicious packets from entering the network.
- provides control over the traffic by allowing or disallowing it based on the requirements of the network.