您好,欢迎光临本网站![请登录][注册会员]  
文件名称: cisco访问控制列表
  所属分类: Access
  开发工具:
  文件大小: 71kb
  下载次数: 0
  上传时间: 2009-07-05
  提 供 者: liun****
 详细说明: Create and apply the Named ACL to implement the following security policies. Be sure to enter the statements in the order specified. 1. Houston Security Policy (6 lines) Using the name HFW1, create an ACL that does the following: a. Host PC1, attached to the 192.168.1.128/27 subnet should be allowed complete access to the 192.168.1.96/27 subnet b. All other hosts attached to the 192.168.1.128/27 subnet should be allowed only HTTP access to the 192.168.1.96/27 subnet using UDP. c. Host PC3, attached to the 192.168.1.32/27 subnet should be allowed complete access to SERVER1 on the 192.168.1.96/27 subnet. d. All other traffic from the 192.168.1.32/27 subnet should be denied access to the 192.168.1.96/27 subnet. e. Any other traffic from the 192.168.1.0 network should be allowed. f. All traffic outside the 192.168.1.0 network should be implicitly denied. 2. Apply the HFW1 named access group to the correct interface. Be sure to specify if the access-list is created for inbound or outbound purposes. Test the configuration: Click the Check Results icon to verify all assessed items are successfully completed. Create scenarios in Simulation mode to test the above security policies. 3. Using the packet tracer inspect tool and then the CLI, view the routing tables on both routers. Test connectivity between the PCs within the 192.168.1.0 network and the servers on the 192.168.1.96 subnet with simple PDU and CLI pings and explain the results. 4. In simulation mode, use the event filter to run various "what if" scenarios. Use the complex PDU packets to test that hosts within the 192.168.1.128 subnet have http (port 80) access to the servers. Reflect: 1) As a packet travels through the Houston router to reach the 192.168.1.96/27 subnet, at what point does the router evaluate the packet to determine if it is permitted or denied? 2) Do the servers/devices on the 192.168.1.96/27 have more limited access to devices outside the subnet due to the access-list put in place? 3) Was a standard or extended ACL necessary to complete the requirement of the security policy? Explain. 4) Why was the order in which the access-list statements applied important? Could this access-list be ordered any other way? Why or why not? ...展开收缩
(系统自动生成,下载前可以参看下载内容)

下载文件列表

相关说明

  • 本站资源为会员上传分享交流与学习,如有侵犯您的权益,请联系我们删除.
  • 本站是交换下载平台,提供交流渠道,下载内容来自于网络,除下载问题外,其它问题请自行百度
  • 本站已设置防盗链,请勿用迅雷、QQ旋风等多线程下载软件下载资源,下载后用WinRAR最新版进行解压.
  • 如果您发现内容无法下载,请稍后再次尝试;或者到消费记录里找到下载记录反馈给我们.
  • 下载后发现下载的内容跟说明不相乎,请到消费记录里找到下载记录反馈给我们,经确认后退回积分.
  • 如下载前有疑问,可以通过点击"提供者"的名字,查看对方的联系方式,联系对方咨询.
 相关搜索: Using the name HFW1 create
 输入关键字,在本站1000多万海量源码库中尽情搜索: