What is the command to create an extended ACL entry, specifying the protocol, source/destination IP, and source/destination port?

The command to create an extended ACL entry that specifies the protocol, source and destination IP, as well as source and destination ports, utilizes the syntax that clearly identifies the action (permit or deny) alongside the protocol, source IP, source port, destination IP, and destination port.

In this case, the correct choice appropriately reflects the required components of an extended ACL:

• The initial part indicates whether the traffic should be permitted or denied.

• Following that, the command specifies the protocol type, which could include options like TCP, UDP, or ICMP, allowing for precise control based on traffic type.

• The source IP and source port parameters specify the origin of the traffic, while the destination IP and destination port parameters specify where the traffic is headed.

This level of detail is what distinguishes extended ACLs from standard ACLs, which only filter based on source IP addresses. By integrating both IP addresses and port numbers, the correct command format provides a more granular approach to traffic control, which is critical in complex networking environments that need to enforce security and control over specific types of traffic.

Other answer options either misstate the syntax or do not specify the necessary elements that make up an extended ACL command effectively. For example, option A lacks the necessary