|
CertExams.com Simulator Lab Exercises Answers
Description
: This lab exercise demonstrates creating Named Access Lists
IP
Address Assignment Table
| Device |
Interface |
IP Address/Mask |
| R1 |
S0 |
192.168.100.1/24 |
| R2 |
E0
S0 |
192.168.100.17/24
192.168.100.2/24 |
| Device |
IP Address/Mask |
Default-Gateway |
| WS1 |
192.168.100.18/24 |
192.168.100.17
|
Instructions:
1.
Configure the routers R1, R2 and workstation WS1 as per the table given
above.
2. Configure RIP on the
routers with proper network statements
3. Issue show ip route
command to make sure that the routes have been received on each router
4. Verify ping to R1 from
WS1
5. Create an access list
that prevents ping traffic originating from WS1 and destined for R1 from
reaching R1
6. Extended access list is
created and the statement deny icmp host 192.168.100.18 192.168.100.1
0.0.0.0 log denies any ICMP traffic with a source IP Address of
192.168.100.18 that is destined for 192.168.100.1, the wild card mask of
0.0.0.0, i.e the IP Address must match exactly
7. Next, apply the access
list to inbound traffic on the Serial 0 interface of R1
8. Try pinging R1 from WS1
and R1 from R2
9. Connect to R1 again, two
separate log messages must be seen here. The first one is denying the
ping from WS1 and second which is allowing the ping from R2
Note: Please refer to the CertExams.com Network Simulator software for complete lab with commands.
|
