CCNA ICND1 Lab10 – Configuration of ACL

Ensurepass

Lab topology:

Lab Requirements:

1. 1.1.1.3 can visit 2.2.2.0

2. Subnet of 1.1.1.0 can only visit the FTP server and INTERNET of 2.2.2.0(By using port L01 of Router P4S-R2 to simulate the internet)

3. Host of 2.2.2.0 is not enabled to visit INTERNET

Lab Process:

P4S-R1

Router>en

Router#conf t

Router(config)#hostname P4S-R1

P4S-R1 (config)#int lo1

P4S-R1(config-if)#ip add 1.1.1.3 255.255.255.0

P4S-R1 (config-if)#no shut

P4S-R1(config-if)#exit

P4S-R1 (config)# access-list 101 permit ip 1.1.1.3 0.0.0.0 2.2.2.0 0.0.0.255       / Allow host of 1.1.1.3 to visit the subnet of 2.2.2.0

P4S-R1 (config)# access-list 101 permit tcp 1.1.1.0 0.0.0.255 2.2.2.0 0.0.0.255 eq 21

                                                      / Allow the subnet host of 1.1.1.0 to visit the FTP server of 2.2.2.0 by using port 21 telnet

P4S-R1 (config)# access-list 101 deny ip 1.1.1.0 0.0.0.255 2.2.2.0 0.0.0.255      / Deny the subnet of 1.1.1.0 to visit the subnet of 2.2.2.0

P4S-R1 (config)#int lo2

P4S-R1 (config-if)#ip add 2.2.2.1 255.255.255.0

P4S-R1 (config-if)#ip access-group 101 out        / Apply the extension control list 101 to exit interface

P4S-R1 (config-if)#no shut

P4S-R1 (config-if)#exit

P4S-R1 (config)#access-list 1 deny 2.2.2.0 0.0.0.255      / Deny the subnet of 2.2.2.0 to visit Internet

P4S-R1 (config)#int s0

P4S-R1 (config-if)#ip add 3.3.3.1 255.255.255.0

P4S-R1 (config-if)#clock rate 56000

P4S-R1 (config-if)#no shut

P4S-R1 (config-if)#ip access-group 1 out         / Apply the standard control list to exit interface

P4S-R1 (config-if)#exit

P4S-R1 (config)#router rip

P4S-R1 (config-router)#network 1.0.0.0

P4S-R1 (config-router)#network 2.0.0.0

P4S-R1 (config-router)#network 3.0.0.0

P4S-R1 (config-router)#exit

P4S-R2

Router>en

Router#conf t

Router(config)#hostname P4S-R2

P4S-R2 (config)#int s1

P4S-R2 (config-if)#ip add 3.3.3.2 255.255.255.0

P4S-R2 (config-if)#clock rate 56000

P4S-R2 (config-if)#no shut

P4S-R2 (config-if)#exit

P4S-R2 (config)#int lo1

P4S-R2 (config-if)#ip add 4.4.4.1 255.255.255.0

P4S-R2 (config-if)#no shut

P4S-R2 (config-if)#exit

P4S-R2 (config)#router rip

P4S-R2 (config-router)#network 4.0.0.0

P4S-R2 (config-router)#network 3.0.0.0

P4S-R2 (config-router)#exit





[Report Dead Link] Please leave a comment or send email to report dead links, so that we will update new links within 24 hours.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.