Jump to content






Photo

because I want some helps

Posted by SLCCNA , 13 February 2012 · 194 views

DRSEnt OSPF/ACL PT Practice SBA please help for ACL
DRSEnt OSPF/ACL PT Practice SBA
A few things to keep in mind while completing this activity:
  • Do not use the browser Back button or close or reload any exam windows during the exam.
  • Do not close Packet Tracer when you are done. It will close automatically.
  • Click the Submit Assessment button to submit your work.
Introduction
In this practice Packet Tracer Skills Exam, you will do as follows:
· finish the configuration of a partially configured network
· establish connectivity within the enterprise and to the Internet
· implement access control lists based on a set of security policies
Addressing Table
Device
Interface
Address
Subnet Mask
Default Gateway
Main
Fa0/0
10.10.10.193
255.255.255.224
n/a
S0/0/0
10.10.10.249
255.255.255.252
n/a
S0/1/0
10.10.10.253
255.255.255.252
n/a
S0/0/1
198.133.219.18
255.255.255.252
n/a
Lo0
192.168.1.3
255.255.255.255
n/a
Admin
Fa0/0
10.10.10.129
255.255.255.192
n/a
Fa0/1
10.10.10.225
255.255.255.240
n/a
S0/0/0
10.10.10.250
255.255.255.252
n/a
Lo0
192.168.1.1
255.255.255.255
n/a
BldgA
Fa0/0
10.10.10.1
255.255.255.128
n/a
Fa0/1


n/a
S0/0/0
10.10.10.253
255.255.255.252
n/a
Lo0
192.168.1.2
255.255.255.255
n/a
Teacher
NIC
10.10.10.4
255.255.255.128
10.10.10.1
Student
NIC
10.10.10.5
255.255.255.128
10.10.10.1
Staff
NIC



XYZ Uni Server
NIC
10.10.10.200
192.31.7.53
255.255.255.224
10.10.10.193
NOTE: The password for user EXEC mode is cisco. The password for privileged EXEC mode is class.
Step 1: Configure the Device Basics.
Use the IP addresses in the Addressing Table and your subnetting skills to determine the missing IP addresses according to the following guidelines:
a. Configure Fa0/1 interface on BldgA with the highest (last) host IP address in the subnet.
b. Configure Staff with the highest (last) host IP address in the subnet
c. Verify connectivity.
Step 2: Configure OSPF.
a. Use the following requirements to configure OSPF on Main, Admin, and BldgA.

· Use the process ID 5.

· Advertise each subnet individually in area 0 with its corresponding wildcard mask. (Main should not advertise the link to the Internet.)

· Verify OSPF convergence.

b. Configure OSPF authentication on the links between BldgA and Admin, Admin and Main, and Main and BldgA.

· Encrypt the updates using MD5 authentication. Authentication should be enabled for the entire area 0.

· On the appropriate interfaces, use a key ID of 10 and the password xyzunipass.

· Verify OSPF convergence.

c. Modify the OSPF configuration.

· Modify both sides of the link between Main and BldgA to reflect the actual bandwidth of 768 Kb/s.

· Change the priority on Admin so that it is the preferred DR for the LAN it shares with BldgA.

d. Propagate a default route in the OSPF updates.

· Configure a default route on Main and point it to the Internet. Use the outbound interface argument.

· Configure OSPF to advertise the default route to neighbors.

e. Verify connectivity.
Step 3: Configure Access Control Lists.
a. Filter inbound traffic from the Internet. Configure and apply a single ACL numbered 150 on the correct router that will implement the following policy in order:

· Allow only HTTP access to the XYZ Uni Server at its public address 192.31.7.53.

· Allow all established TCP connections.

· Allow all ICMP replies and unreachable messages.

b. Verify that the policy is successfully implemented.
c. Filter traffic from the BldgA LAN. Configure and apply on the router a single ACL numbered 175 that will limit network traffic and will implement the following policy:

· Hosts from the LAN connected to the Fa0/0 interface of BldgA are blocked from accessing hosts on the Admin Staff LAN.

· All other traffic is allowed anywhere.

d. Verify that the policy is successfully implemented.
Step 4: Verify Connectivity.
Using tools such as ping and show commands, verify connectivity in the network.
Version 1.0
Created in Packet Tracer 5.3.2.0027 and Marvel 1.0.1
All contents are Copyright © 1992 - 2011 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.


file:///C:/Users/ADMINI%7E1.WEA/AppData/Local/Temp/msohtmlclip1/01/clip_image001.png

  • 0



January 2017

M T W T F S S
      1
2345678
9101112131415
16171819202122
23 24 2526272829
3031     

Recent Entries

Categories