PART #1:
You will create a new post to this topic in which you pose your "challenge" that needs to be solved with an ACL. Your "challenge" can ask to permit or deny traffic, must have a solution, and must be based on the network diagram you see below. At a minimum, your "challenge" post must include the following details:
· Identify the source address you want to permit or deny
· Identify the destination address
· Assign an ACL number or a name to be used in the "solution" response by another learner
PART #2:
Using what you have learned about ACLs so far in the course, reply to ONE (1) "challenge" from another learner with an answer that includes the following details:
· Create a "solution" ACL using the appropriate prompts and commands including:
· On which device the ACL will be placed
· The interface and direction of the ACL
· If you can create a
different
ACL that satisfies the requirements, a second "reply" may be made to the original post, but only if it's differs from the first solution. Otherwise, only one posted solution per problem is required.
The topology for this activity can be seen below
(*Note: All PCs/Servers will ALWAYS use the SECOND assignable IP address in their subnet and all router interfaces in each subnet use the LAST assignable IP address in the subnet):
Here's an example of what is expected for this topic (which means that you cannot use this scenario for your "challenge"):
Learner A posts the following "challenge" statement:
Learner A: Using an standard ACL numbered 15, deny all traffic from PC1 getting to PC2 but allow all other traffic
Learner B, who finds this "challenge" under this topic would respond with:
R1(config)# access-list 15 deny host 172.22.34.66
R1(config)# access-list 15 permit any
R1(config)# int gi0/1
R1(config-if)# ip access-group 15 out
Your posts for this topic are graded based on technical accuracy. In other words, if your "challenge" is technically correct and your response to another learner's challenge is technically correct, you get full credit.