Using an ACL to prevent internet access for a specific host

Using an ACL to prevent internet access for a specific host. (RFC 1819 addresses)   A reminder:  Extended ACL should be put as close to the source of traffic as possible. Hence, if you are trying to block a host from getting to the internet, the internal interface is where the ACL should be applied.     Extended IP access list block-xp-inet 10 permit ip any 10.0.0.0 0.255.255.255 (6208743 matches) (Three private network ranges, known as RFC1819 addresses) 20 permit ip any 172.16.0.0 0.15.255.255 (38084001 matches) 30 permit ip any 192.168.0.0 0.0.255.255 (39679 matches) 40 deny ip (host ip)  0.0.0.1 any (276 matches) (Blocks the individual hosts:  As there were two, we used two addresses which would be in the a /31 range:  0-1 1-2 3-4 4-5 5-6 6-7 8-9 10-11 12-13 etc) 50 permit ip any any (25393344 matches) 60 deny ip any any log (Shows how the access list is working)