Network Security - Lab assignment
Lab 5 - Access Control Lists
Name: _____________________________________
· 1. Build the following network in GNS3 as shown in the figure below.
· 2. Using the tables below, configure the router and the interfaces as shown below.
Lab Equipment IP Address Information
|
Router Name |
Gi0/0 Address |
Gi1/0 Address |
|
R1 |
192.168.1.1/24 |
192.168.2.1/24 |
|
Host |
IP Address |
Subnet Mask |
Gateway |
|
PC1 |
192.168.1.5 |
255.255.255.0 |
192.168.1.1 |
|
PC2 |
192.168.1.6 |
255.255.255.0 |
192.168.1.1 |
|
PC3 |
192.168.2.5 |
255.255.255.0 |
192.168.2.1 |
· 3. Verify that all hosts can ping each other. If you can’t ping troubleshoot the problem before continuing with the lab. The ability to ping is a prerequisite to continuing the lab.
· 4. Configure the access list based on the information show below.
|
Stop Traffic from PC 2 |
|
||
|
List Number |
Permit or Deny |
Source Address |
Wildcard Mask |
|
1 |
Deny |
192.168.1.6 |
0.0.0.0 |
On the R1 router, type the following to stop access from PC2.
R1(config)#access-list 1 deny 192.168.1.6
· 5. Can PC2 ping PC3? _________________________________ Why? ____________________________________________________
· 6. Apply the access to the interface gi0/0.
interface Gi 0/0
ip access-group 1 in
· 7. Can PC2 ping PC3? _________________________________
· 8. Can PC1 ping PC3? Why? ____________________________________________________
· 9. Add the following command to R1:
R1(config)#access-list 1 permit any
· 7. Can PC2 ping PC3? _________________________________
· 8. Can PC1 ping PC3? _________________________________
· 9. Run the following command
R1#show access-lists
· 10. Take a screenshot of the result and paste it here.
End of Procedure
3