home       basis       routing       switching       advanced       security       overig       testen      

ACL's skills LAB [7412]

 
dit LAB vergt een DEGELIJKE (advanced) kennis van ACLs
 

pt_ccna2.2018-int-challenge-7412

 
download LAB instructions: 7.4.1.2-packet-tracer-skills-integration-challenge-acls
 
download de sjabloon / addressing ok / no routing : pt_ccna2.2018-int-challenge-7412-addressing-ok-2
 
Configure the access list on the appropriate router,
apply it to the appropriate interface and in the appropriate direction.

just for reference ... but not useful the original pka with RIPv2:
7.4.1.2-packet-tracer-skills-integration-challenge

een oplossing:

e. Design a named ACL HQ-Server to prevent any computers attached to the 
Gigabit Ethernet 0/0 interface of the Branch router 
from accessing HQ-Server (172.16.0.1/18). 
All other traffic is permitted. 
Configure the access list on the appropriate router, 
apply it to the appropriate interface 
and in the appropriate direction.
 
>> ACL op in gi00 van R-branch met ACE op deny host 172.16.0.1 gevolgd door permit any

op HQ
=====

ip access-list standard HQ-SRV
 deny 172.16.144.0 0.0.15.255
 permit any

int gi0/1
 ip access-group HQ-SRV out

f. Design a named access list Branch-SRV to prevent any computers 
attached to the Gigabit Ethernet 0/0 interface of the HQ router (GI00 in)
from accessing the Branch server (172.16.128.1/20). All other traffic is permitted. 

op BRANCH
==========

ip access-list standard Branch-SRV
 deny 172.16.64.0 0.0.15.255
 permit any

int gi0/1
 ip access-group Branch-SRV out