Extended ACL Lab Access Control Lists

Lab Diagram

Lab Objectives

  • Cable a network in accordance with the diagram given
  • Configure the hostname and interface IP addresses, or paste the initial configuration onto all devices
  • Create an extended access list (ACL4) using named syntax. This ACL should be used to evaluate all packets entering interface FastEthernet0/1
  • The network 121.169.201.128/27 should be allowed access to network 96.215.241.0/24
  • The network 72.186.14.76/31 should be allowed access to network 96.14.217.192/29
  • The network 29.32.19.238/31 tcp ports not equal to 378 should be prevented access to network 136.34.122.136/29 tcp ports lower than 931

Initial Configuration (Already applied to devices in console)

R1
!Configuration generated by CCNAPractice.com 
!
!
hostname R1
!
!
!
!
interface FastEthernet0/1
 no shutdown
!
!
!
!
!
!
!
line con 0
!
end

Final Configuration

R1
!Configuration generated by CCNAPractice.com 
!
!
hostname R1
!
!
!
!
interface FastEthernet0/1
 ip access-group ACL4 in
 no shutdown
!
!
!
!
!
!
ip access-list extended ACL4
 permit ip 121.169.201.128 0.0.0.31 96.215.241.0 0.0.0.255
 permit ip 72.186.14.76 0.0.0.1 96.14.217.192 0.0.0.7
 deny tcp 29.32.19.238 0.0.0.1 neq 378 136.34.122.136 0.0.0.7 lt 931
!
line con 0
!
end


R1#

Comments