Access Lists Workbook - The Cisco Learning Network
Access Lists Workbook - The Cisco Learning Network
Access Lists Workbook - The Cisco Learning Network
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
210.250.10.0<br />
Router A<br />
FA0 S0<br />
204.95.150.11<br />
42<br />
Rebecca’s<br />
Computer<br />
172.59.2.15<br />
S0<br />
S1<br />
David’s<br />
Computer<br />
172.59.2.18<br />
FA1<br />
172.59.2.1<br />
Todd’s<br />
Computer<br />
204.95.150.12<br />
Router B<br />
Rachel’s<br />
Computer<br />
204.95.150.10<br />
Extended <strong>Access</strong> List Problem #5 Deny/Permit Entire Ranges<br />
Write an extended access list to permit network 204.95.150.0 to send packets to network 172.59.0.0, but not the 210.250.10.0<br />
network. Permit all other traffic. Keep in mind that there may be multiple ways many of the individual statements in an ACL can be<br />
written.<br />
Place the access list at:<br />
Router Name: ___________________________<br />
Router B<br />
Interface: _______________________________<br />
FA1<br />
<strong>Access</strong>-list #: ____________________________<br />
125 (100-199)<br />
[Writing and installing an ACL]<br />
Router# configure terminal (or config t)<br />
Router(config)#______________________________________________________________________________________<br />
access-list 125 deny ip 204.95.150.0 0.0.0.255 210.250.10.0 0.0.0.255<br />
access-list ______________________________________________________________________________________<br />
125 permit ip any any<br />
______________________________________________________________________________________<br />
______________________________________________________________________________________<br />
Router(config)# interface ____________ FA0<br />
Router(config-if)# ip access-group _________ 125 in or out (circle one)<br />
Router(config-if)# exit<br />
Router(config)# exit