Interested to Buy Any Domain ? << Click Here >> for more details...
hello friend i have answerd more time of your question or
doute.now i am seeing towards you for help,plz send the
soln before monedya
the problem is
i have three router r1 and r2 and r3
they are conested in that maneer
thai is
r1---r2---r3---server
|
|
server
bothe server have diffrent ip
now i have to implemnt access list on the r3 router in such
a way that user from r1 can access only one server
while user from r2 can access whole servre
i ahve done it but both user of r1 and r2 uses all server
i need help
please help me this time?
i have repalsced my firwall by r3 router
so bacicaly i have to implement it on my firewall but you
tell me on cisco router please help
- 2 Answers
- 4904 Views
- I also Faced
- E-Mail Answers
Answers were Sorted based on User's Feedback
Answer / shahin
Hi.... U didn't mention any ip address as well as interfaces
which r used to connect routers.
R1(s1/0)------(S1/0)R2 (S1/1) -------(S1/0)R3------- server1
! ! ! 10.1.1.1
! ! ! 10.1.1.10
! ! !
PC1 PC2 Server2
13.1.1.1 12.1.1.1 11.1.1.1
13.1.1.10 12.1.1.10 11.1.1.10
Note: First one IP address & second default gateway.
R1
s1/0 - 1.1.1.1
R2
s1/0 - 1.1.1.2
s1/1 - 2.2.2.1
R3
s1/0 - 2.2.2.2
I configured RIPv2 on all router & its working fine. Now i
can access each & every user & server from anywhere in the
network.
Point is that, u want to configure ACL, so that it will meet
ur requirements.
As u mention, "implemnt access list on the r3 router in such
a way that user from r1 can access only one server"... ok i
m goin to block user from R1 to access "server1"
Create Standard ACL -
R3#conf t
R3(config)#access-list 5 permit 12.0.0.0 0.255.255.255
R3(config)#access-list 5 deny any
Apply ACL -
R3(config)#interface fastEthernet 0/1
R3(config-if)#ip access-group 5 out
Router(config-if)#^Z
See the sh output -
Router#sh access-lists
Standard IP access list 5
permit 12.0.0.0 0.255.255.255 (4 match(es))
deny any (3 match(es))
Hey buddy.... i configure the same scenario in packet
tracer.. here i m pasting the the sh runing-config of routers -
***** Router 1 -
Current configuration : 652 bytes
!
output omitted
!
interface FastEthernet0/0
ip address 13.1.1.10 255.0.0.0
duplex auto
speed auto
!
interface Serial1/0
ip address 1.1.1.1 255.0.0.0
clock rate 128000
!
router rip
version 2
network 1.0.0.0
network 13.0.0.0
no auto-summary
!
ip classless
!!
end
**** Router 2 -
Building configuration...
Current configuration : 674 bytes
!
Output Omitted
!
interface FastEthernet0/0
ip address 12.1.1.10 255.0.0.0
duplex auto
speed auto
!
interface Serial1/0
ip address 1.1.1.2 255.0.0.0
!
interface Serial1/1
ip address 2.2.2.1 255.0.0.0
clock rate 128000
!
router rip
version 2
network 1.0.0.0
network 2.0.0.0
network 12.0.0.0
no auto-summary
!
ip classless
!!
end
****Router 3 -
Building configuration...
Current configuration : 748 bytes
!
Output Omitted
!
interface FastEthernet0/0
ip address 11.1.1.10 255.0.0.0
duplex auto
speed auto
!
interface FastEthernet0/1
ip address 10.1.1.10 255.0.0.0
ip access-group 5 out
duplex auto
speed auto
!
interface Serial1/0
ip address 2.2.2.2 255.0.0.0
!
router rip
version 2
network 2.0.0.0
network 10.0.0.0
network 11.0.0.0
no auto-summary
!
ip classless
!
!
access-list 5 permit 12.0.0.0 0.255.255.255
access-list 5 deny any
!
!!
end
***** Outout from PC1 -
PC1>ping 10.1.1.1
Pinging 10.1.1.1 with 32 bytes of data:
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Ping statistics for 10.1.1.1:
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss),
Hey buddy, i tried my best to explain as simple as possible
& as much as accuracy. Hope this gonna help u to do the work.
Cheers & enjoy the sunday/Funday.... heheheh
| Is This Answer Correct ? | 1 Yes | 0 No |
I am just getting into this,I want to jump ahead a do the packet tracers in discovery working at a small to medium business or ISP but I am trying to get the last lab putting it all together. Does anyone have anything for this. I know it is ahead of me but I would like to get this so I can look at the beginning and understand it more
Which of the following describe full-duplex transmission? A.) Uses a single wire B.) Data transmission in only both directions, but only one way at a time C.) Uses a point-to-point connection from the transmitter of the transmitting station to the receiver of the receiving station D.) Data transmission in only one direction
Identify the 2 commands that copies the configuration in NVRAM to RAM? A.) copy backup-config running-config B.) configure nvram C.) copy startup-config running-config D.) configure memory
Given the IPX address 4a.0002.1111.a999, what is the network ID and what is the node ID? A.) net 4a host 0002.1111.a999 B.) net a999 node 0002.1111 C.) net 0002.1111.a999 node 4a D.) net 0002.1111 node a999
Assuming no subnetting, which two pieces of information can be derived from the IP address 144.132.25.10? (Choose two) A. It is a Class C address B. It is a Class B address C. The network address is 144.0.0.0 D. The network address is 144.132.25.0 E. The host spoon of the address is 25.10
The Datalink layer works with which of the following: A.) Packets B.) Bits C.) Globules D.) Frames E.) Segments
hello sir , if i finish this certification is the job is conform ?? and in chennai were i can do this ??
can we measure how much a host exact bandwidth using by a network cable which is communicating over the network? options: 1- via Router 2- Switch, 3- other device... if yes.. then how ( with every option)
What is a backoff on an 802.3 networks A. It is latency in store and forward switching B. It is the time used for token passing from machine to machine C. It is the retransmission delay that is enforced when a collision occurs D. it is the result of two nodes transmitting at the same time. The frames from each transmitting device collide and are damaged.
What is true about Link-State protocols? A.) They maintain a more complex table than distant vector protocols B.) They maintain a less complex table than distant vector protocols C.) They use routing ports D.) The maintain backup copies of the IOS
Explain isakmp ?
Identify the 2 hardware components used to manage and/or configure a router? A.) Auxiliary port B.) ROM port C.) Management port D.) Console port
CCNA 
