Interested to Buy Any Domain ? << Click Here >> for more details...
hello friend i have answerd more time of your question or
doute.now i am seeing towards you for help,plz send the
soln before monedya
the problem is
i have three router r1 and r2 and r3
they are conested in that maneer
thai is
r1---r2---r3---server
|
|
server
bothe server have diffrent ip
now i have to implemnt access list on the r3 router in such
a way that user from r1 can access only one server
while user from r2 can access whole servre
i ahve done it but both user of r1 and r2 uses all server
i need help
please help me this time?
i have repalsced my firwall by r3 router
so bacicaly i have to implement it on my firewall but you
tell me on cisco router please help
- 2 Answers
- 4773 Views
- I also Faced
- E-Mail Answers
Answers were Sorted based on User's Feedback
Answer / shahin
Hi.... U didn't mention any ip address as well as interfaces
which r used to connect routers.
R1(s1/0)------(S1/0)R2 (S1/1) -------(S1/0)R3------- server1
! ! ! 10.1.1.1
! ! ! 10.1.1.10
! ! !
PC1 PC2 Server2
13.1.1.1 12.1.1.1 11.1.1.1
13.1.1.10 12.1.1.10 11.1.1.10
Note: First one IP address & second default gateway.
R1
s1/0 - 1.1.1.1
R2
s1/0 - 1.1.1.2
s1/1 - 2.2.2.1
R3
s1/0 - 2.2.2.2
I configured RIPv2 on all router & its working fine. Now i
can access each & every user & server from anywhere in the
network.
Point is that, u want to configure ACL, so that it will meet
ur requirements.
As u mention, "implemnt access list on the r3 router in such
a way that user from r1 can access only one server"... ok i
m goin to block user from R1 to access "server1"
Create Standard ACL -
R3#conf t
R3(config)#access-list 5 permit 12.0.0.0 0.255.255.255
R3(config)#access-list 5 deny any
Apply ACL -
R3(config)#interface fastEthernet 0/1
R3(config-if)#ip access-group 5 out
Router(config-if)#^Z
See the sh output -
Router#sh access-lists
Standard IP access list 5
permit 12.0.0.0 0.255.255.255 (4 match(es))
deny any (3 match(es))
Hey buddy.... i configure the same scenario in packet
tracer.. here i m pasting the the sh runing-config of routers -
***** Router 1 -
Current configuration : 652 bytes
!
output omitted
!
interface FastEthernet0/0
ip address 13.1.1.10 255.0.0.0
duplex auto
speed auto
!
interface Serial1/0
ip address 1.1.1.1 255.0.0.0
clock rate 128000
!
router rip
version 2
network 1.0.0.0
network 13.0.0.0
no auto-summary
!
ip classless
!!
end
**** Router 2 -
Building configuration...
Current configuration : 674 bytes
!
Output Omitted
!
interface FastEthernet0/0
ip address 12.1.1.10 255.0.0.0
duplex auto
speed auto
!
interface Serial1/0
ip address 1.1.1.2 255.0.0.0
!
interface Serial1/1
ip address 2.2.2.1 255.0.0.0
clock rate 128000
!
router rip
version 2
network 1.0.0.0
network 2.0.0.0
network 12.0.0.0
no auto-summary
!
ip classless
!!
end
****Router 3 -
Building configuration...
Current configuration : 748 bytes
!
Output Omitted
!
interface FastEthernet0/0
ip address 11.1.1.10 255.0.0.0
duplex auto
speed auto
!
interface FastEthernet0/1
ip address 10.1.1.10 255.0.0.0
ip access-group 5 out
duplex auto
speed auto
!
interface Serial1/0
ip address 2.2.2.2 255.0.0.0
!
router rip
version 2
network 2.0.0.0
network 10.0.0.0
network 11.0.0.0
no auto-summary
!
ip classless
!
!
access-list 5 permit 12.0.0.0 0.255.255.255
access-list 5 deny any
!
!!
end
***** Outout from PC1 -
PC1>ping 10.1.1.1
Pinging 10.1.1.1 with 32 bytes of data:
Request timed out.
Request timed out.
Request timed out.
Request timed out.
Ping statistics for 10.1.1.1:
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss),
Hey buddy, i tried my best to explain as simple as possible
& as much as accuracy. Hope this gonna help u to do the work.
Cheers & enjoy the sunday/Funday.... heheheh
| Is This Answer Correct ? | 1 Yes | 0 No |
Identify the command to configure ALL the default VTY ports? A.) Router(config)# line vty 0 4 B.) Router# line vty 0 4 C.) Router(config)# line vty D.) Router(config)# line vty 0
Which of the following are examples of the Datalink Layer? A.) LLC B.) SQL C.) TCP D.) Token Ring E.) IP
Can you explain PPTP (Point-to-Point Tunneling Protocol)?
Which cable called v.35?
Which command we give on privilege mode for coming back to user execution mode?
Which command can verify Application Layer connectivity between 2 hosts? A.) ftp B.) snmp C.) telnet D.) ping E.) traceroute
What is 10base2 ethernet lans?
What is the default switching method for the Cisco 5000 series? A.) Cut-through B.) Store-and-splice C.) Latency D.) Store-and-forward
Identify the command that specifies Serial 0 in slot 1? A.) Router(config)# interface serial1/1 B.) Router(config)# interface serial1/0 C.) Router(config)# interface serial0.1 D.) Router(config)# interface serial0/1
Which protocol for PPP provides load balancing across multiple links? A. Multilink Protocol (MP) B. Quality C. Magic Number D. Stacker E. Predictor
Which layer of the 7 layer model provides services to the Application layer over the Session layer connection? A.) Transport B.) Application C.) Session D.) Network E.) Datalink F.) Presentation
How would you configure one host name that points to two IP addresses? A. IP host jacob 1.0.0.5 2.0.0.8 B. IP jacob 1.0.0.5 2.0.0.8 C. IP host jacob 1.0.0.5 D. IP host duplicate "all"
CCNA 
