CertExams.com Simulator Lab Exercises Answers

Named Access List

  Description : This lab exercise demonstrates creating Named Access Lists


IP Address Assignment Table

Device Interface IP Address/Mask
R1 S0 192.168.100.1/24
R2 E0
S0
192.168.100.17/24
192.168.100.2/24
Device IP Address/Mask Default-Gateway
WS1 192.168.100.18/24

192.168.100.17


Instructions:

1. Configure the routers R1, R2 and workstation WS1 as per the table given above.

2. Configure RIP on the routers with proper network statements

3. Issue show ip route command to make sure that the routes have been received on each router

4. Verify ping to R1 from WS1

5. Create an access list that prevents ping traffic originating from WS1 and destined for R1 from reaching R1

6. Extended access list is created and the statement deny icmp host 192.168.100.18 192.168.100.1 0.0.0.0 log denies any ICMP traffic with a source IP Address of 192.168.100.18 that is destined for 192.168.100.1, the wild card mask of 0.0.0.0,  i.e the IP Address must match exactly

7. Next, apply the access list to inbound traffic on the Serial 0 interface of R1

8. Try pinging R1 from WS1 and R1 from R2

9. Connect to R1 again, two separate log messages must be seen here. The first one is denying the ping from WS1 and second which is allowing the ping from R2

Note: Please refer to the CertExams.com Network Simulator software for complete lab with commands. 

 

Real Time Web Analytics

Clicky