This page was exported from Free Cisco Training &amp; Resources - Certification Exam Preparation [ https://www.ciscobibles.com ]

Export date:Fri Mar 14 6:58:31 2025 / +0000 GMT

___________________________________________________


Title: CCNA ICND1 Lab10 - Configuration of ACL

---------------------------------------------------


      Lab topology:     Lab Requirements:  1. 1.1.1.3 can visit 2.2.2.0  2. Subnet of 1.1.1.0 can only visit the FTP server and INTERNET of 2.2.2.0(By using port L01 of Router P4S-R2 to simulate the internet)  3. Host of 2.2.2.0 is not enabled to visit INTERNET  Lab Process:  P4S-R1  Router&gt;en  Router#conf t  Router(config)#hostname P4S-R1  P4S-R1 (config)#int lo1  P4S-R1(config-if)#ip add 1.1.1.3 255.255.255.0  P4S-R1 (config-if)#no shut  P4S-R1(config-if)#exit  P4S-R1 (config)# access-list 101 permit ip 1.1.1.3 0.0.0.0 2.2.2.0 0.0.0.255&#160;&#160;&#160;&#160;&#160;&#160; / Allow host of 1.1.1.3 to visit the subnet of 2.2.2.0  P4S-R1 (config)# access-list 101 permit tcp 1.1.1.0 0.0.0.255 2.2.2.0 0.0.0.255 eq 21   &#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160; / Allow the subnet host of 1.1.1.0 to visit the FTP server of 2.2.2.0 by using port 21 telnet  P4S-R1 (config)# access-list 101 deny ip 1.1.1.0 0.0.0.255 2.2.2.0 0.0.0.255&#160;&#160;&#160;&#160;&#160; / Deny the subnet of 1.1.1.0 to visit the subnet of 2.2.2.0  P4S-R1 (config)#int lo2  P4S-R1 (config-if)#ip add 2.2.2.1 255.255.255.0  P4S-R1 (config-if)#ip access-group 101 out&#160;&#160;&#160;&#160;&#160;&#160;&#160; / Apply the extension control list 101 to exit interface  P4S-R1 (config-if)#no shut  P4S-R1 (config-if)#exit  P4S-R1 (config)#access-list 1 deny 2.2.2.0 0.0.0.255&#160;&#160;&#160;&#160;&#160; / Deny the subnet of 2.2.2.0 to visit Internet  P4S-R1 (config)#int s0  P4S-R1 (config-if)#ip add 3.3.3.1 255.255.255.0  P4S-R1 (config-if)#clock rate 56000  P4S-R1 (config-if)#no shut  P4S-R1 (config-if)#ip access-group 1 out&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160; / Apply the standard control list to exit interface  P4S-R1 (config-if)#exit  P4S-R1 (config)#router rip  P4S-R1 (config-router)#network 1.0.0.0  P4S-R1 (config-router)#network 2.0.0.0  P4S-R1 (config-router)#network 3.0.0.0  P4S-R1 (config-router)#exit  P4S-R2  Router&gt;en  Router#conf t  Router(config)#hostname P4S-R2  P4S-R2 (config)#int s1  P4S-R2 (config-if)#ip add 3.3.3.2 255.255.255.0  P4S-R2 (config-if)#clock rate 56000  P4S-R2 (config-if)#no shut  P4S-R2 (config-if)#exit  P4S-R2 (config)#int lo1  P4S-R2 (config-if)#ip add 4.4.4.1 255.255.255.0  P4S-R2 (config-if)#no shut  P4S-R2 (config-if)#exit  P4S-R2 (config)#router rip  P4S-R2 (config-router)#network 4.0.0.0  P4S-R2 (config-router)#network 3.0.0.0  P4S-R2 (config-router)#exit

---------------------------------------------------


Images: http://farm5.static.flickr.com/4101/4873983293_1cc5a95ef7_z.jpg



---------------------------------------------------




---------------------------------------------------


Post date: 2010-08-09 11:58:04

Post date GMT: 2010-08-09 03:58:04

Post modified date: 2010-08-09 11:58:04

Post modified date GMT: 2010-08-09 03:58:04



____________________________________________________________________________________________


Export of Post and Page as text file has been powered by [ Universal Post Manager ] plugin from www.gconverters.com