Access+Lists


 * Access Lists

Links** LAb 5-2 Provided Script...
 * [|Access Lists from Cisco]
 * [|Billings Tutorials]

R1 hostname R1 no ip domain-lookup enable secret class ! interface FastEthernet0/1 ip address 10.1.1.254 255.255.255.0 no shutdown ! interface serial 0/1/0 ip address 10.1.0.1 255.255.255.0 clock rate 125000 no shutdown ! router ospf 1 network 10.1.0.0 0.0.0.255 area 0 network 10.1.1.0 0.0.0.255 area 0 ! banner motd ^Unauthorized access strictly prohibited, violators will be

310 Accessing the WAN: CCNA Exploration Labs and Study Guide

prosecuted to the full extent of the law.^ ! line con 0 logging synchronous password cisco login ! line vty 0 4 password cisco login !

R2 hostname R2 enable secret class no ip domain lookup ! interface Loopback0 ip address 10.13.205.1 255.255.0.0 ! interface Serial0/1/0 ip address 10.1.0.2 255.255.255.0 no shutdown ! interface Serial0/1/1 ip address 10.3.0.1 255.255.255.0 clockrate 125000 no shutdown ! router ospf 1 network 10.1.0.0 0.0.0.255 area 0 network 10.3.0.0 0.0.0.255 area 0 network 10.13.0.0 0.0.255.255 area 0 ! banner motd ^Unauthorized access strictly prohibited, violators will be prosecuted to the full extent of the law.^ ! line con 0 password cisco logging synchronous login ! line vty 0 4 password cisco login !

R3 hostname R3 ! enable secret class no ip domain lookup ! interface FastEthernet0/1 ip address 10.3.1.254 255.255.255.0 no shutdown ! interface Serial0/1/1 ip address 10.3.0.2 255.255.255.0 no shutdown ! router ospf 1 network 10.3.0.0 0.0.0.255 area 0 network 10.3.1.0 0.0.0.255 area 0 ! banner motd ^Unauthorized access strictly prohibited, violators will be prosecuted to the full extent of the law.^ ! line con 0 password cisco logging synchronous login ! line vty 0 4 password cisco log



Lab 5- 3 Provided Script... R1 hostname R1 enable secret class no ip domain lookup ! interface FastEthernet0/1 ip address 10.1.1.254 255.255.255.0 no shutdown ! interface Serial0/1/0 ip address 10.1.0.1 255.255.255.0 clock rate 125000 no shutdown ip access-group VTY-Local out ! router ospf 1 network 10.1.0.0 0.0.0.255 area 0 network 10.1.1.0 0.0.0.255 area 0 ! ip access-list standard VTY-Local deny any log permit 10.1.1.0 0.0.0.255 ! banner motd ^Unauthorized access strictly prohibited, violators will be prosecuted to the full extent of the law.^ ! line con 0 password cisco logging synchronous login line aux 0 line vty 0 4 password cisco login

R2 hostname R2 enable secret class ! interface Loopback0 ip address 10.13.205.1 255.255.0.0 ! interface Serial0/1/0 ip address 10.1.0.2 255.255.255.0 no shutdown ip access-group block-R3 in ! interface Serial0/1/1 ip address 10.3.0.5 255.255.255.0 clock rate 125000 no shutdown ip access-group block-R1 out ! router ospf 1 network 10.1.0.0 0.0.0.255 area 0 network 10.3.0.0 0.0.0.255 area 0 network 10.13.0.0 0.0.255.255 area 0 ! ip access-list extended block-R1 deny ip 10.1.1.0 0.0.0.255 10.3.0.0 0.0.0.255 permit ip any any ! ip access-list extended block-R3 deny ip 10.3.0.0 0.0.1.255 10.1.0.0 0.0.1.255 ! banner motd ^Unauthorized access strictly prohibited, violators will be prosecuted to the full extent of the law.^ ! line con 0 password cisco logging synchronous login ! line vty 0 4 password cisco login

R3 hostname R3 enable secret class no ip domain lookup ! interface FastEthernet0/1 ip address 10.3.1.254 255.255.255.0 no shutdown ! interface Serial0/1/1 ip address 10.3.0.6 255.255.255.0 no shutdown ! router ospf 1 network 10.3.0.0 0.0.0.255 area 0 network 10.3.1.0 0.0.0.255 area 0 ! ip access-list standard VTY-Local permit 10.3.11.0 0.0.0.255 deny any log ! banner motd ^Unauthorized access strictly prohibited, violators will be prosecuted to the full extent of the law.^ ! line con 0 password cisco logging synchronous login ! line vty 0 4 access-class VTY-Local in password cisco login