Question: 1. Write the ACL Control-R3 configuration on R3 (Using the outgoing direction) to implement the below policy: (8 marks) Permit all devices in IT-Admins zone

1. Write the ACL Control-R3 configuration on R3 (Using the outgoing

1. Write the ACL Control-R3 configuration on R3 (Using the outgoing direction) to implement the below policy: (8 marks) Permit all devices in IT-Admins zone (except for PC3) to access Intranet Server via FTP Deny all internal users from accessing the MLWSRV via HTTPS Permit all outgoing HTTPS for internal users Permit all devices in IT-Admins zone (except for PC3) to access any server via RDP

direction) to implement the below policy: (8 marks) Permit all devices in

Consider the following topology diagram: IN-SERVER-Zone OUT-Zone 192.168.20.0/24 Intranet SERVER .254 -- Fa0/1 SO/0/2 209.165.200.224/27 .1 225 R2 50/0/0 S0/0/1 .2 ISP Internet .1 ML WRSTV 207.3.0.19 10.1.1.0/30 10.2.2.0/30 IN-LAB-Zone S0/0/0 .1 IN-STAFF-Zone 50/0/1 .2 Fa0/0 R1 Fa0/1 .1 Lab-1 Users Lab-2 Users 192.168.10.0/24 192.168.11.0/24 R3 Fa0/1 Fa0/1 Fa0/1 S1 Fa0/2 S2 Fa0/2 Fa0/1 IT Admins S3 Sales Users 192.168.30.0/24 192.168.40.0/24 Fa0/2 Fa0/3 PC1 PC3 PC4 PC2 .10 .10 .10 .10 1 . Objectives Review and configure ACLs on R1 and R3 Configure a zone-based policy (ZPF) firewall on R2. Configure IOS IPS on R1 A R3#sh access-lists 5 deny top host 192.168.30.10 host 192.168.20.254 any eq 21 10 permit top 192.168.30.0 0.0.0.255 host 192.168.20.254 any eq21 15 deny ton 192.168.0.0 0.0.255.255 host 207.3.0.19 eq 443 20 permit tcp192.168.0.0 0.0.255.255 any eq 443 30 deny top host 192.168.30.10 any eq 3389 35 permit ton any any eq 3389 R3#sh run int S/0/0/1 int S/0/0/1 ir address-10.2.2.2 255.255.255.252 in access-group Control-R3 out Consider the following topology diagram: IN-SERVER-Zone OUT-Zone 192.168.20.0/24 Intranet SERVER .254 -- Fa0/1 SO/0/2 209.165.200.224/27 .1 225 R2 50/0/0 S0/0/1 .2 ISP Internet .1 ML WRSTV 207.3.0.19 10.1.1.0/30 10.2.2.0/30 IN-LAB-Zone S0/0/0 .1 IN-STAFF-Zone 50/0/1 .2 Fa0/0 R1 Fa0/1 .1 Lab-1 Users Lab-2 Users 192.168.10.0/24 192.168.11.0/24 R3 Fa0/1 Fa0/1 Fa0/1 S1 Fa0/2 S2 Fa0/2 Fa0/1 IT Admins S3 Sales Users 192.168.30.0/24 192.168.40.0/24 Fa0/2 Fa0/3 PC1 PC3 PC4 PC2 .10 .10 .10 .10 1 . Objectives Review and configure ACLs on R1 and R3 Configure a zone-based policy (ZPF) firewall on R2. Configure IOS IPS on R1 A R3#sh access-lists 5 deny top host 192.168.30.10 host 192.168.20.254 any eq 21 10 permit top 192.168.30.0 0.0.0.255 host 192.168.20.254 any eq21 15 deny ton 192.168.0.0 0.0.255.255 host 207.3.0.19 eq 443 20 permit tcp192.168.0.0 0.0.255.255 any eq 443 30 deny top host 192.168.30.10 any eq 3389 35 permit ton any any eq 3389 R3#sh run int S/0/0/1 int S/0/0/1 ir address-10.2.2.2 255.255.255.252 in access-group Control-R3 out

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer

Step: 1 Unlock blur-text-image

Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock

Step: 3 Unlock

Students Have Also Explored These Related Databases Questions!

Please i need help with this network security question It should be done on cisco packet tracer Consider the following topology diagram: IN-SERVER-Zone OUT-Zone 192.168.20.0/24 Intranet SERVER .254...

Please i need help with this network security question Consider the following topology diagram: IN-SERVER-Zone OUT-Zone 192.168.20.0/24 Intranet SERVER .254 -- Fa0/1 SO/0/2 209.165.200.224/27 .1 225...

2. Create a new ACL on R1 to control LAB-1 Users access:(8 marks) a. Create an extended ACL named CONTROL-R1 with the following rules: (2 marks) o Deny LAB-2 users (Except for PC2) from accessing...

Hello I am in need of help with the second part to my lab. I need help filling out tables 1,2, and 3 based on the policies another tutor helped me make before hand. I will attach the policies as well...

Network Setup: To conduct this lab, students need to create small network using packet tracer as shown below. Use Cisco 2811 Router and add "NM-2FE2W" interface to this router. Use three of "2950-24"...

Packet Tracer - IPv4 ACL Implementation Challenge Addressing Table Device Interface IP Address Branch G0/0/0 192.168.1.1/26 Branch G0/0/1 192.168.1.65/29 Branch S0/1/0 192.0.2.1/30 Branch S0/1/1...

Today's Lab: In this lab, we will learn how to configure ACLs on the router. 192.168.10.1 Gig0/1 192.168.1.1 Gigo/0/941 Stunt Router 192.168.10.2 Gig0/0 Gig0/1 1941 192.168.20.1 Student Router2 29%...

-Please I need help to pass the cource: Write a ( simple ) program c or c++ or java to simulate processing of a packet at a router interface with an ACL bound to that interface. Given an ACL...

Problem 3 How does computing the amount paid in commissions to Metaphor agents in Problem 2 help an auditor verify the management assertion of completeness? Chapter 3 ACL Exercises and Problems...

1. Prepare three (3) alternatives for organizational structure at TLG. Describe the pros and cons of each alternative. 2. Prepare an agenda for a workshop to be conducted at TLG Headquarters as...

A 19.00 kg sample of an unknown compound contains 0.06 kg of hydrogen, 11.01 kg of gold, 7.93 kg of chlorine. Determine the percentage composition of the compound.

2 0 Regardless of the specific type of long - term debt, which of the following is normally an expectation with regards to debt transactions? 0 1 : 0 0 : 2 5 Multiple Choice Payment of interest...

Compared with half a century ago, adoption has become _ _ _ _ _ _ _ _ _ common, but it is more open and acceptabl e , so we probably discuss it _ _ _ _ _ _ _ . fill in the blanks more or much less or...

1. Think of an organization where you have worked. What were its compensation policies, and how were they communicated to employees?

1. How would you evaluate Taylors approach for developing a pay structure at United Grinding Technologies? Would you have done anything differently?

LO1 Define variable pay and identify three aspects of effective pay-for-performance plans.