ACL's skills LAB [7412]
dit LAB vergt een DEGELIJKE (advanced) kennis van ACLs
download LAB instructions: 7.4.1.2-packet-tracer-skills-integration-challenge-acls
download de sjabloon / addressing ok / no routing : pt_ccna2.2018-int-challenge-7412-addressing-ok-2
Configure the access list on the appropriate router,
apply it to the appropriate interface and in the appropriate direction.
just for reference ... but not useful the original pka with RIPv2:
7.4.1.2-packet-tracer-skills-integration-challenge
een oplossing:
e. Design a named ACL HQ-Server to prevent any computers attached to the
Gigabit Ethernet 0/0 interface of the Branch router
from accessing HQ-Server (172.16.0.1/18).
All other traffic is permitted.
Configure the access list on the appropriate router,
apply it to the appropriate interface
and in the appropriate direction.
>> ACL op in gi00 van R-branch met ACE op deny host 172.16.0.1 gevolgd door permit any
op HQ
=====
ip access-list standard HQ-SRV
deny 172.16.144.0 0.0.15.255
permit any
int gi0/1
ip access-group HQ-SRV out
f. Design a named access list Branch-SRV to prevent any computers
attached to the Gigabit Ethernet 0/0 interface of the HQ router (GI00 in)
from accessing the Branch server (172.16.128.1/20). All other traffic is permitted.
op BRANCH
==========
ip access-list standard Branch-SRV
deny 172.16.64.0 0.0.15.255
permit any
int gi0/1
ip access-group Branch-SRV out