Access Lists Workbook - The Cisco Learning Network

More documents

Recommendations

Info

210.250.10.0 Router A FA0 S0 204.95.150.11 42 Rebecca’s Computer 172.59.2.15 S0 S1 David’s Computer 172.59.2.18 FA1 172.59.2.1 Todd’s Computer 204.95.150.12 Router B Rachel’s Computer 204.95.150.10 Extended Access List Problem #5 Deny/Permit Entire Ranges Write an extended access list to permit network 204.95.150.0 to send packets to network 172.59.0.0, but not the 210.250.10.0 network. Permit all other traffic. Keep in mind that there may be multiple ways many of the individual statements in an ACL can be written. Place the access list at: Router Name: ___________________________ Router B Interface: _______________________________ FA1 Access-list #: ____________________________ 125 (100-199) [Writing and installing an ACL] Router# configure terminal (or config t) Router(config)#______________________________________________________________________________________ access-list 125 deny ip 204.95.150.0 0.0.0.255 210.250.10.0 0.0.0.255 access-list ______________________________________________________________________________________ 125 permit ip any any ______________________________________________________________________________________ ______________________________________________________________________________________ Router(config)# interface ____________ FA0 Router(config-if)# ip access-group _________ 125 in or out (circle one) Router(config-if)# exit Router(config)# exit
Extended Access List Problem #6 Deny/Permit Entire Ranges Write an extended access list to allow Rachel’s computer at 204.95.150.10 to receive information from the 172.59.0.0 network. Deny all other hosts on the 204.95.150.0 network access from the 172.59.2.0 network. Permit all other traffic. Keep in mind that there may be multiple ways many of the individual statements in an ACL can be written. Place the access list at: Router Name: ___________________________ Router B Interface: _______________________________ FA1 Access-list #: ____________________________ 130 (100-199) [Writing and installing an ACL] Router# configure terminal Router(config)# access-list 130 permit ip 172.59.0.0 0.0.255.255 host 204.95.150.10 or _____________________________________________________________________________________ access-list 130 permit ip 172.59.0.0 0.0.255.255 204.95.150.10 0.0.0.0 _____________________________________________________________________________________ access-list 130 deny ip 172.59.0.0 0.0.255.255 204.95.150.0 0.0.0255 _____________________________________________________________________________________ access-list 130 permit any any _____________________________________________________________________________________ _____________________________________________________________________________________ _____________________________________________________________________________________ _____________________________________________________________________________________ Router(config)# interface __________ FA1 Router(config-if)# ip access-group _________ 130 in or out (circle one) Router(config-if)# exit Router(config)# exit Router# copy run start 43
Page 1 and 2: Extended Standard CL Any 0.0.0.0 de
Page 3 and 4: What are Access Control Lists? ACLs
Page 5 and 6: Lisa’s Computer Standard Access L
Page 7 and 8: Standard Access List Placement 1. W
Page 9 and 10: Juan’s Computer Lisa’s Computer
Page 11 and 12: Extended Access List Placement 1. W
Page 13 and 14: Breakdown of an Extended ACL Statem
Page 15 and 16: Applying an extended Named Access L
Page 17 and 18: 3. Match a specific range Example 1
Page 19 and 20: Wildcard Mask Problems 1. Create a
Page 21 and 22: 11. access-list 110 permit ip 192.1
Page 23 and 24: Writing Standard Access Lists...
Page 25 and 26: Write a standard access list to blo
Page 27 and 28: Write a standard access list to per
Page 29 and 30: Using a minimum number of commands
Page 31 and 32: Write a standard access list to blo
Page 33 and 34: Write a standard named access list
Page 35 and 36: Writing Extended Access Lists...
Page 37 and 38: Extended Access List Sample #2 Deny
Page 39 and 40: Extended Access List Problem #2 Den
Page 43: Extended Access List Sample #4 Deny
Page 51 and 52: Extended Access List Problem #10 De
Page 59 and 60: Extended Access List Sample #10 Den
Page 67 and 68: Index / Table of Contents Access-Li
Page 69: 43 NICNAME (Who Is) 49 LOGIN (Login

Access Lists Workbook - The Cisco Learning Network

Create successful ePaper yourself

Delete template?

Save as template?