Access Lists Workbook_Student Edition v1_5

More documents

Recommendations

Info

Router A 172.16.70.1 192.168.90.2 FA0 FA1 34 Mike’s Computer 192.168.90.36 Gail’s Computer 172.16.70.32 Celeste’s Computer 192.168.90.38 John’s Computer 172.16.70.35 Extended Access List Sample #1 Deny/Permit Specific Addresses Write an extended access list to prevent John’s computer from sending information to Mike’s computer; but will allow all other traffic. Keep in mind that there may be multiple ways many of the individual statements in an ACL can be written. Place the access list at: Router Name: Router A Interface: FA0 Access-list #: 110 [Writing and installing an ACL] Router# configure terminal (or config t) Router(config)# access-list 110 deny ip 172.16.70.35 0.0.0.0 192.168.90.36 0.0.0.0 or access-list 110 deny ip host 172.16.70.35 host 192.168.90.36 Router(config)# access-list 110 permit ip any any or access-list 110 permit ip 0.0.0.0 255.255.255.255 0.0.0.0 255.255.255.255 Router(config)# interface fa0 [Viewing information about existing ACL’s] Router# show configuration (This will show which access groups are associated with particular interfaces) Router(config-if)# ip access-group 110 in Router(config-if)# exit Router(config)# exit Router# show access list 110 (This will show detailed information about this ACL)
Extended Access List Sample #2 Deny/Permit Specific Addresses Write an extended access list to block the 172.16.70.0 network from receiving information from Mike’s computer at 192.168.90.36. Block the lower half of the ip addresses from 192.168.90.0 network from reaching Gail’s computer at 172.16.70.32. Permit all other traffic. Keep in mind that there may be multiple ways many of the individual statements in an ACL can be written. Place the access list at: Router Name: Router A Interface: FA1 Access-list #: 135 [Writing and installing an ACL] Router# configure terminal Router(config)# access-list 135 deny ip 192.168.90.36 0.0.0.0 172.16.70.0 0.0.0.255 or access-list 135 deny ip host 192.168.90.36 172.16.70.0 0.0.0.255 Router(config)# access-list 135 deny ip 192.168.90.0 0.0.0.127 172.16.70.32 0.0.0.0 or access-list 135 deny ip 192.168.90.0 0.0.0.127 host 172.16.70.32 Router(config)# access-list 135 permit ip any any or access-list 135 permit ip 0.0.0.0 255.255.255.255 0.0.0.0 255.255.255.255 Router(config)# interface fa1 Router(config-if)# ip access-group 135 in Router(config-if)# exit Router(config)# exit Router# copy run start [Removing an ACL] [Disabling ACL’s] Router# configure terminal Router(config)# interface e1 Router(config-if)# no ip access-group 135 out Router(config-if)# exit Router(config)# no access-list 135 Router(config)# exit Router# configure terminal Router(config)# interface e1 Router(config-if)# no ip access-group 135 out Router(config-if)# exit Router(config)# exit 35
Page 1 and 2: Extended CL Any 0.0.0.0 deny Access
Page 3 and 4: What are Access Control Lists? ACLs
Page 5 and 6: Standard Access List Placement Samp
Page 7 and 8: Standard Access List Placement 1. W
Page 9 and 10: Extended Access List Placement Samp
Page 11 and 12: Extended Access List Placement 1. W
Page 13 and 14: Breakdown of an Extended ACL Statem
Page 15 and 16: Applying an extended Named Access L
Page 17 and 18: 3. Match a specific range Example 1
Page 19 and 20: Wildcard Mask Problems 1. Create a
Page 21 and 22: 11. access-list 110 permit ip 192.1
Page 23 and 24: Writing Standard Access Lists...
Page 25 and 26: Write a standard access list to blo
Page 27 and 28: Write a standard access list to per
Page 29 and 30: Using a minimum number of commands
Page 31 and 32: Write a standard access list to blo
Page 33 and 34: Write a standard named access list
Page 35: Writing Extended Access Lists...
Page 39 and 40: Extended Access List Problem #2 Den
Page 43 and 44: Extended Access List Sample #4 Deny
Page 51 and 52: Extended Access List Problem #10 De
Page 59 and 60: Extended Access List Sample #10 Den
Page 67 and 68: Router A Router B E0 S0 E1 172.20.7
Page 69 and 70: Access List Problem #22 Deny/Permit
Page 71 and 72: Optional ACL Commands & Other Netwo
Page 73: 43 NICNAME (Who Is) 49 LOGIN (Login

Access Lists Workbook_Student Edition v1_5

Create successful ePaper yourself

Delete template?

Save as template?