LAB 11 -- ACL 2

Task 1:

Task 2:
Router(config)#hostname R1



To disable DNS Lookup-(to search unknown command takes more time to disable searching)

R1(config)#no ip domain-lookup


Setting banner for the router:

R1(config)#banner motd #
Enter TEXT message. End with the character '#'.
Hirushan's router 1 #

R1(config)#

--Router 1,2,3

R1(config)#line vty 0 4
R1(config-line)#password cisco
R1(config-line)#exit
R1(config)#enable password class


Pc1---Telnet

PC>telnet 10.1.1.254
Trying 10.1.1.254 ...

Hirushan's router 1

User Access Verification

Password: cisco
R1>enable
Password: class
R1#


--TElnet pc 1 to Router 2

PC>telnet 10.1.0.2
Trying 10.1.0.2 ...
User Access Verification

Password:


-telnet pc 1 to Router 3

PC>telnet 10.3.0.2
Trying 10.3.0.2 ...


User Access Verification

Password:



R1(config)#ip access-list standard hirushan
R1(config-std-nacl)#permit 10.1.0.0 0.0.0.255

R1(config)#interface fastEthernet 0/0
R1(config-if)#line vty 0 4
R1(config-line)#ip access-class hirusahn in


Check connectivity:


PC>telnet 10.3.1.1
Trying 10.3.1.1 ...

% Connection refused by remote host


R2(config)#access-list 101 deny tcp 10.1.1.0 0.0.0.255 10.3.1.0 0.0.0.255 eq telnet

R2(config)#access-list 101 permit ip any any

R2(config)#access-list 101 permit icmp any 10.1.0.2 0.0.0.0

R2(config)#access-list 101 permit tcp any any eq 80

R2(config-if)#ip access-group 101 in

Labels:

0 Responses so far.