Extended ACL Lab Access Control Lists

Lab Diagram

Lab Objectives

  • Cable a network in accordance with the diagram given
  • Configure the hostname and interface IP addresses, or paste the initial configuration onto all devices
  • Create an extended access list (2269) using legacy syntax. This ACL should be used to evaluate all packets leaving interface FastEthernet0/0
  • The network 115.197.91.0/24 should be prevented access to network 83.190.237.128/25
  • The network 175.164.186.48/30 udp ports greater than 302 should be prevented access to network 60.250.55.128/25

Initial Configuration (Already applied to devices in console)

R1
!Configuration generated by CCNAPractice.com 
!
!
hostname R1
!
!
!
!
interface FastEthernet0/0
 no shutdown
!
!
!
!
!
!
!
line con 0
!
end

Final Configuration

R1
!Configuration generated by CCNAPractice.com 
!
!
hostname R1
!
!
!
!
interface FastEthernet0/0
 ip access-group 2269 out
 no shutdown
!
!
!
!
!
!
access-list 2269 deny ip 115.197.91.0 0.0.0.255 83.190.237.128 0.0.0.127
access-list 2269 deny udp 175.164.186.48 0.0.0.3 gt 302 60.250.55.128 0.0.0.127
!
line con 0
!
end


R1#

Comments