Question: 4. Finalize ZPF firewall configuration on router R2: (8 marks) a. Complete the IN-NET-CLASS-MAP class map and IN-2-OUT-PMAP policy map configurations.(2 marks) R2(config)# class-map type

4. Finalize ZPF firewall configuration on router R2: (8 marks) a.

4. Finalize ZPF firewall configuration on router R2: (8 marks)

a. Complete the IN-NET-CLASS-MAP class map and IN-2-OUT-PMAP policy map configurations.(2 marks)

R2(config)# class-map type inspect match-all IN-NET-CLASS-MAP

R2(config-cmap)# match access-group ________

R2(config)# policy-map type inspect IN-2-OUT-PMAP

R2(config-pmap)# class type inspect ____________

b. Specify the action (inspect, pass or drop) for this policy map.R2 should behave like a stateful firewall for all traffic outgoing to the Internet defined previously in ACL 210. (2marks)

R2(config)# policy-map type inspect IN-2-OUT-PMAP

R2(config-pmap-c)# __________

c. Assume that the zone pairing is now configured accordingly on R2 between In-LAB-Zone and SERVER-Zone from one hand, as source and OUT-Zone, from the other, as destination. Could MLWRSrv access the Intranet SERVER on TCP port 3389 successfully? Explain. (4 marks)

Consider the following topology diagram: IN-SERVER-Zone OUT-Zone 192.168.20.0/24 Intranet SERVER .254 -- Fa0/1 SO/0/2 209.165.200.224/27 .1 225 R2 50/0/0 S0/0/1 .2 ISP Internet .1 ML WRSTV 207.3.0.19 10.1.1.0/30 10.2.2.0/30 IN-LAB-Zone S0/0/0 .1 IN-STAFF-Zone 50/0/1 .2 Fa0/0 R1 Fa0/1 .1 Lab-1 Users Lab-2 Users 192.168.10.0/24 192.168.11.0/24 R3 Fa0/1 Fa0/1 Fa0/1 S1 Fa0/2 S2 Fa0/2 Fa0/1 IT Admins S3 Sales Users 192.168.30.0/24 192.168.40.0/24 Fa0/2 Fa0/3 PC1 PC3 PC4 PC2 .10 .10 .10 .10 1 . Objectives Review and configure ACLs on R1 and R3 Configure a zone-based policy (ZPF) firewall on R2. Configure IOS IPS on R1 A Consider the following topology diagram: IN-SERVER-Zone OUT-Zone 192.168.20.0/24 Intranet SERVER .254 -- Fa0/1 SO/0/2 209.165.200.224/27 .1 225 R2 50/0/0 S0/0/1 .2 ISP Internet .1 ML WRSTV 207.3.0.19 10.1.1.0/30 10.2.2.0/30 IN-LAB-Zone S0/0/0 .1 IN-STAFF-Zone 50/0/1 .2 Fa0/0 R1 Fa0/1 .1 Lab-1 Users Lab-2 Users 192.168.10.0/24 192.168.11.0/24 R3 Fa0/1 Fa0/1 Fa0/1 S1 Fa0/2 S2 Fa0/2 Fa0/1 IT Admins S3 Sales Users 192.168.30.0/24 192.168.40.0/24 Fa0/2 Fa0/3 PC1 PC3 PC4 PC2 .10 .10 .10 .10 1 . Objectives Review and configure ACLs on R1 and R3 Configure a zone-based policy (ZPF) firewall on R2. Configure IOS IPS on R1 A

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer
Step: 1 Unlock blur-text-image
Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock
Step: 3 Unlock

Students Have Also Explored These Related Databases Questions!

Q:

Ron Stotez established his business, Stotez Shoes, in 1985. Since then, he has run his business as a sole proprietor. Ron keeps records, and his wife helps him prepare basic accounting records. As...

Q:

Please i need help with this network security question Consider the following topology diagram: IN-SERVER-Zone OUT-Zone 192.168.20.0/24 Intranet SERVER .254 -- Fa0/1 SO/0/2 209.165.200.224/27 .1 225...

Q:

Please i need help with this network security question It should be done on cisco packet tracer Consider the following topology diagram: IN-SERVER-Zone OUT-Zone 192.168.20.0/24 Intranet SERVER .254...

Q:

Please i need help with this network security question Consider the following topology diagram: IN-SERVER-Zone OUT-Zone 192.168.20.0/24 Intranet SERVER .254 -- Fa0/1 SO/0/2 209.165.200.224/27 .1 225...

Q:

Question 1: (50 marks) o In this part, suppose that you are hired as a security consultant for a corporate (XYZ.COM). The Security Operations Center (SOC) belonging to the company is hosted...

Q:

1. Write the ACL Control-R3 configuration on R3 (Using the outgoing direction) to implement the below policy: (8 marks) Permit all devices in IT-Admins zone (except for PC3) to access Intranet Server...

Q:

2. Create a new ACL on R1 to control LAB-1 Users access:(8 marks) a. Create an extended ACL named CONTROL-R1 with the following rules: (2 marks) o Deny LAB-2 users (Except for PC2) from accessing...

Q:

1 7 Capstone Part 1 1 7 . 1 Load Lab Configuration a ) In NDG , make and reservice Lab 1 7 : Capstone. 1 . For the Capstone, you will not be using the NDG Contents Lab in NDG for the Capstone. These...

Q:

Hello I am in need of help with the second part to my lab. I need help filling out tables 1,2, and 3 based on the policies another tutor helped me make before hand. I will attach the policies as well...

Q:

In this discussion, students are presenting a specific scenario involving a specific organization's of their choice network infrastructure and are tasked with suggesting an appropriate firewall...

Q:

In this discussion, students are presenting a specific scenario involving a specific organization's of their choice network infrastructure and are tasked with suggesting an appropriate firewall...

Q:

Courses Groups Calendar BAU BUZED BAU Library 1052(1,10-19,2,20-22,3-9) Calcul. Overview Plans Resources Status and follow up Participants More- Question 6 A function f is sad to be invertible with...

Q:

On October 1, 2019, Vin Company (Vietnam) purchases inventory from a foreign supplier (Japan) for 40,000 JPY. Payment will be made in 30 days. Required: Prepare all journal entries for Vin Company in...

Q:

The GASB defines a component unit as any organization for which the primary government is financially accountable.

Q:

Seved Help 14 Wisconsin Snowmobile Corp. is considering a switch to level production Cost efficiencies would occur under level production, and aftertax costs would decline by $31,500, but inventory...

Q:

13-3 What are the principal methodologies for modeling and designing systems?

Q:

13-4 What are alternative methods for building information systems?

Q:

1. Review the discussion of business processes in Chapter 2 and Chapter 13 and the Chapter 14 discussion of IT project management and implementation. Be prepared to talk about any systems development...