Friday, 25 March 2011

Standard Access-Lists

To day I am configuring standard access-list.

Topology





Objectives


Configure a standard access-list to deny traffic from a given network
Test the ALC configuration


Router AR Configuration

Router#configure terminal
Router(config)#hostname AR
AR(config)#int f0/0
AR(config-if)#ip add 148.1.1.254 255.255.255.0
AR(config-if)#no shut
AR(config-if)#exit

Configure the clients IP Addresses as seen on the topology, the default gateway must be the IP Address of router AR interface(148.1.1.254).
Ping to ensure each client can reach the default gateway.


Access-list Configuration

AR(config)#access-list 50 deny 148.1.1.0 0.0.0.255
AR(config)#access-list 50 permit any

Pinging from the clients still works at this point.


Apply Access-List to Fastethernet interface

AR(config)#int f0/0
AR(config-if)#ip access-group 50 in
AR(config-if)#


Now ping the default gateway from the client computers...................
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)