Professional Documents
Culture Documents
Lab 94
Lab 94
Configuration and
Verification
Task 1:
For reference information on configuring hostnames, please refer to
earlier labs.
Task 2:
For reference information on configuring clock rates and IP
addresses, please refer to earlier labs.
Task 3:
For reference information on configuring static routes, please refer to
earlier labs.
Task 4:
For reference information on pinging, please refer to earlier labs.
Task 5:
R1#conf t
Enter configuration commands, one per line. End with CTRL/Z.
R1(config)#enable secret CISCO
R1(config)#line vty 0 4
R1(config-line)#password CISCO
R1(config-line)#login
R1(config-line)#end
R1#
R3#conf t
Enter configuration commands, one per line. End with CTRL/Z.
R3(config)#enable secret CISCO
R3(config)#line vty 0 4
R3(config-line)#password CISCO
R3(config-line)#login
R3(config-line)#end
R3#
NOTE: GNS3 has more VTY lines so use the ? to establish how
many you need to configure.
R1(config)#line vty 0 ?
<1-903> Last Line number
<cr>
Task 6:
R1#conf t
Enter configuration commands, one per line. End with CTRL/Z.
R1(config)#access-list 150 remark “Allow Telnet For R3 Loopback10”
R1(config)#access-list 150 permit tcp 10.10.10.0 0.0.0.127 any eq telnet
R1(config)#access-list 150 remark “Deny Telnet For R3 Loopback20”
R1(config)#access-list 150 deny tcp 10.20.20.0 0.0.0.15 any eq telnet
R1(config)#access-list 150 remark “Allow Telnet For R3 Loopback30”
R1(config)#access-list 150 permit tcp 10.30.30.0 0.0.0.7 any eq telnet
R1(config)#access-list 150 remark “Allow PING For R3 Loopback20”
R1(config)#access-list 150 permit icmp 10.20.20.0 0.0.0.15 any echo
R1(config)#int s0/0
R1(config-if)#ip access-group 150 in
R1(config-if)#end
R1#
R1#conf t
Enter configuration commands, one per line. End with CRTL/Z.
R1(config)#access-list 100 permit tcp any any eq 23
R1(config)#access-list 100 permit tcp any any eq 80
R1(config)#access-list 100 permit tcp any any eq 179
R1(config)#access-list 100 permit udp any any eq 520
R1(config)#access-list 100 permit 88 any any
R1(config)#access-list 100 permit 89 any any
R1(config)#end
R1#
R1#show ip access-lists 100
Extended IP access list 100
10 permit tcp any any eq telnet
20 permit tcp any any eq www
30 permit tcp any any eq bgp
40 permit udp any any eq rip
50 permit eigrp any any
60 permit ospf any any
Now test the ACL from the lab. To quit your Telnet access, hit the
Control-Shift-6 key at the same time and then let go and press the X
key. Don’t hit the enter key right after or it will resume your Telnet
session.
Password:
R1#
Password:
R1#