Scribd
Upload
16 views12 pages

Lab 8- Network Filtering by ACL-S22 (2)

Uploaded by

rahul1121838
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PPT, PDF, TXT or read online on Scribd
16 views12 pages

Lab 8- Network Filtering by ACL-S22 (2)

Uploaded by

rahul1121838
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PPT, PDF, TXT or read online on Scribd
You are on page 1/ 12

Figure 1

Domain: lab.local

10.1.1.0/24 10.2.2.0/28
Switch0 DNS Server
Gig0/0/0 Gig0/0/1 Switch1 .2
Fa0/1 .1
Fa0/3 .1

PC0
DHCP Client Fa0/2 Router
DHCP server

Web Server
.3

Lab 8 – Network Filtering Policy and Testing by ACL


Objectives:
•Analyze different types of network traffic flow
•Identity traffic flow pattern
•Apply and test traffic filters based on various requirements
Steps:
1. Analyze lab network map and run the given Packet
Tracer lab file to prepare the lab practice. Wait till you
see all related interfaces are up.
2. Verify the IP settings on PC0, servers and router.
Verify FQDN names for servers. Fill up PC0 IP settings
in the table below.
IP address Subnet mask Default
Gateway
PC0
(DHCP client)
Router G0/0/0 10.1.1.1 /24 -
Router G0/0/1 10.2.2.1 /28 -
DNS Server 10.2.2.2 /28 10.2.2.1
Web Server 10.2.2.3 /28 10.2.2.1
DHCP Service
The router is also a DHCP server for 10.1.1.0/24 LAN network PCs. Verify its DHCP
server settings:
Router > enable
Router # show run display running configuration
Do you see the following from the output? ____

ip dhcp pool myp


network 10.1.1.0 255.255.255.0
default-router 10.1.1.1
dns-server 10.2.2.2
domain-name lab.local

To test DHCP service, Click PC0 Desktop Command Prompt, issue ipconfig /renew
command. To close the Command Prompt window, click the X sign on the right upper
corner of this window.
Does it get DHCP offer? ______
Is it the same as you filled up in the Step 2 table? ___.
DNS and Web Service
3. Verify DNS service provided by DNS
Server. Click DNS Server-> ServicesDNS,
what Type A Resource Records are pre-
defined?
List here:

Click Web Server --> Services HTTP,


verify if HTTP and HTTPs were set as On.
Lab Work Tasks:
4.Verify (by show run) or reconfigure Telnet service on Router. (The
password is cisco.)
Router # config termial
Router (conf)# line vty 0 4 VTY lines are for Telnet/SSH access
Router (conf-line)#login local
Router (conf-line)#password cisco
Router (conf-line)#end

5.From PC0 Desktop, choose Telnet/SSH Client, then choose Connection


Type as Telnet. Key in Router IP address (10.1.1.1), then click Connect.
Login by the given password above. Successful? ___________ .
Close this Telnet/SSH Client window.

4.From PC0 Desktop/Web Brower, browse Web Server by its name


www.lab.local. Successful? __________.
From PC0 Desktop/Web Brower, browse Web Server by its IP
address 10.2.2.3. Successful? __________.
Analyzing Network Traffic
Analyze the ACL
Update ACL: Allow DNS access
Update: Allow Web Access
New Entry
Challenge Step
13. Optional.
Connect a new PC to 10.1.1.0/24 LAN network (named as PC1).
Now set new Access Control List (with a different ACL number as 120)
and apply to router’s g0/0/0 again so that
•PC0 and PC1 can access DNS service
•PC0 can HTTPs browse Web server
•PC0 and PC1 can retrieve DHCP offers from Router (DHCP Server).
•PC1 can SSH login to the router
•the rest traffic flows ( sourced from network 10.1.1.0/24 to 10.2.2.0/28) are blocked

Implement, test and verify your settings. Note down the details.
Summary
What have you learned from this practice?

Note:
Please keep the Packer Tracer file for your own reference and free practice. Only lab report submission is
required.

You might also like