You are on page 1of 3

3a 192.168.3.2 GAD#sh access-lists Standard IP access list 1 deny host 192.168.3.

2 permit any 4c 4d todas las ips quedaron denegadas 4e todos las paquetes seran admitidos 4f Porque asi funcionan las access list todas funcionando en forma secuencia de arriba hacia abajo 4g Router:BHM Interface: Fa 0/0 Direction: Inbound 5 access-list 1 deny host 192.168.3.2 access-list 1 permit any interface FastEthernet0/0 ip address 192.168.1.1 255.255.255.0 ip access-group 1 in 6a BHM#sh access-lists Standard IP access list 1 deny host 192.168.3.2 permit any 6b Interface: fa 0/0 Outgoing access list is not set inbound access list is 1 6c si

LAB 2 PASO 2 literal k NO NO SI SI NO literal I BHM#sh access-lists Extended IP access list 100 deny ip 192.168.1.32 0.0.0.15 172.16.2.0 0.0.0.255 (10 match(es))

permit ip any any (4 match(es)) BHM# access-list 100 permit ip host 192.168.1.34 172.16.2.0 0.0.0.255 access-list 100 deny ip 192.168.1.32 0.0.0.15 172.16.2.0 0.0.0.255 access-list 100 permit ip any any literal g la red especifica con su wildcard solo se puede poner la ip especifica el numero del puerto literal el numero del puerto, es este caso 80 LITERAL L SI NO

PASO 5 GAD# GAD#sh access-lists Extended IP access list 110 permit tcp any host 192.168.1.18 eq ftp permit tcp any host 192.168.1.18 eq www permit icmp any host 192.168.1.18 (4 match(es)) deny ip any 192.168.1.16 0.0.0.15 (4 match(es)) GAD#sh ip in GAD#sh ip interface s 2/0 Serial2/0 is up, line protocol is up (connected) Internet address is 172.16.1.1/24 Broadcast address is 255.255.255.255 Address determined by setup command MTU is 1500 Helper address is not set Directed broadcast forwarding is disabled Outgoing access list is 110 Inbound access list is not set Proxy ARP is enabled Security level is default Split horizon is enabled ICMP redirects are always sent ICMP unreachables are always sent ICMP mask replies are never sent IP fast switching is disabled IP fast switching on the same interface is disabled IP Flow switching is disabled IP Fast switching turbo vector IP multicast fast switching is disabled IP multicast distributed fast switching is disabled Router Discovery is disabled IP output packet accounting is disabled IP access violation accounting is disabled TCP/IP header compression is disabled

RTP/IP header compression is disabled Probe proxy name replies are disabled Policy routing is disabled Network address translation is disabled WCCP Redirect outbound is disabled WCCP Redirect exclude is disabled BGP Policy Mapping is disabled GAD#

You might also like