ACL Builder

Build access control lists for Cisco, Fortinet, Palo Alto, and Arista devices. Generate configurations for multiple platforms.

Target Vendor

Action

Protocol

Source IP (CIDR)

Destination IP (CIDR)

Source Port

Destination Port

ACL/Policy Name

Generated Configuration

Cisco IOS/IOS-XE

ip access-list extended CUSTOM-ACL
 permit tcp 192.168.1.0 0.0.0.255 10.0.0.0 0.255.255.255 eq 443
!
! Note: Cisco ACLs have an implicit "deny ip any any" at the end

Common Ports

80:HTTP

443:HTTPS

22:SSH

53:DNS

161:SNMP

IP Notation

any:

0.0.0.0/0

Single host:

192.168.1.1/32

Subnet:

192.168.0.0/24

Port Ranges

Well-known:0 - 1023

Registered:1024 - 49151

Dynamic:49152 - 65535

Format Examples

Single port: 443

Range: 1024-65535

Multiple: 80 443

Tools

Learn