[go: up one dir, main page]
Scribd
Upload
56 views5 pages

Router Configuration and ACL Setup

Uploaded by

musman27430
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
56 views5 pages

Router Configuration and ACL Setup

Uploaded by

musman27430
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd

lab task 6 configuration

pc0 to router 0

pc0 [Link]
router 1 [Link]

router 0 to router 1

router 0 [Link]/30
router 1 [Link]/30

router 1 to router 2

router 1 [Link]/30
router 2 [Link]/30

router 2 to router 5

router 2 [Link]/30
router 5 [Link]/30

router 5 to router 0
router 5 [Link]/30
router 0 [Link]/30

EIGRP

Router0

Router0(config) #router eigrp 60


Router0(config-router)#network [Link]
Router0(config-router)#network [Link]
Router0(config-router)#network [Link]

Router1

Router0(config) #router eigrp 60


Router0(config-router)#network [Link]
Router0(config-router)#network [Link]

Router2

Router0(config) #router eigrp 60


Router0(config-router)#network [Link]
Router0(config-router)#network [Link]

Router5

Router0(config) #router eigrp 60


Router0(config-router)#network [Link]
Router0(config-router)#network [Link]

Lab task 7 configuration

Standard ACL on Router 1


Router# config t
Router(config)#access-list ?
Router(config)#access-list 1 ?
Router(config)#access-list 1 deny ?
Router(config)#access-list 1 deny [Link]
Router(config)#access-list 1 permit any
Router(config)#exit
Router#sh access-list
Router# config t
Router(config)#interface fa0/1
Router(config-if)#ip access-group 1 ?
Router(config-if)#ip access-group 1 out

extended ACL on Router 1

Router1# config t
Router1(config)# access-list 100 deny ip [Link] [Link] [Link]
[Link]
Router1(config)# access-list 100 permit ip [Link] [Link] [Link]
[Link]
Router1(config)# access-list 100 permit ip [Link] [Link] any
Router1(config)# interface Se0/1/0
Router1(config-if)# ip access-group 100 out
Router1(config-if)# exit

(Not included in Configuration)

Router(config)# no access-list 1
Router(config)# interface Fa0/1
Router(config)# interface Se0/1/0
Router(config-if)# no ip access-group 1 out
Router(config-if)# exit
Router#sh access-list
(when we will block Sales Network access to the Admin Network in that sales will be
source/host and admin will be destination)

Router(config)# no access-list 100


Router(config)# interface se0/1/0
Router(config-if)# no ip access-group 100 out
Router(config-if)# exit
Router#sh access-list

Standard ACL on Router 1


Router# config t
Router(config)#access-list ?
Router(config)#access-list 1 ?
Router(config)#access-list 1 deny ?
Router(config)#access-list 1 deny [Link]
Router(config)#access-list 1 permit any
Router(config)#exit
Router#sh access-list

Router# config t
Router(config)#interface fa0/1
Router(config-if)#ip access-group 1 ?
Router(config-if)#ip access-group 1 out

extended ACL on Router 1

Router1# config t
Router1(config)# access-list 100 deny ip [Link] [Link] [Link]
[Link]
Router1(config)# access-list 100 permit ip [Link] [Link] [Link]
[Link]
Router1(config)# access-list 100 permit ip [Link] [Link] any
Router1(config)# interface Se0/1/0
Router1(config-if)# ip access-group 100 out
Router1(config-if)# exit

Router1# config t
Router1(config)# access-list 100 deny icmp [Link] [Link] [Link]
[Link] echo
Router1(config)# access-list 100 permit ip [Link] [Link] any
Router1(config)# interface fa0/1
Router1(config-if)# ip access-group 100 in
Router1(config-if)# exit

[Link]
[Link]
[Link]

[Link]
[Link]
[Link]

This is my Task

1. Create Topology:
o Design the network in Packet Tracer based on the table above.
o Configure all devices with the appropriate IP addresses.
2. Access Control:
o Use a standard ACL to block the Marketing Network from accessing the
Engineering Network.
o Use an extended ACL to allow the Marketing Network access to the Internet
while still denying access to the Engineering Network.
3. Verification and Testing:
o Verify that the Engineering Network can access the Marketing Network and the
Internet.
o Verify that the Marketing Network can access the Internet but cannot access
the Engineering Network.

Understand the toplogy


I have two routers

router 1 and router 2 which i have given name Internet


I have connected router 1 with internet via Se0/1/0 and internet with router 1 via
Se0/1/0

I have connected router 1 with 2 switches

Switch-1 is connected with router 1 on its interface Fa0/1, ip address of router


1 at that interface is [Link]
Switch-1 is connected with Marketing-PC-1 on interface Fa0/3 which have ip address
[Link]
Switch-1 is connected with Marketing-PC-2 on interface Fa0/4 which have ip address
[Link]

Switch-2 is connected with router 1 on its interface Fa0/0, ip address of router


1 at that interface is [Link]

Switch-2 is connected with Engineering-PC-1 on interface Fa0/3 which have ip


address [Link]
Switch-2 is connected with Engineering-Department-Server on interface Fa0/4 which
have ip address [Link]

Then i have done static routing of router 1 and internet

You might also like