ACL (Access List)

Yapılanlar

1-    Yöneti PC (Her şeye yetkili.)
A-     Serverlara ulaşabilir.
B-     Telnet ile tüm routerlara bağlanabilir.
2-    PC1
A-     Serverlara ulaşamaz.
B-     Telnet ile routerlara bağlanabilir.
3-    PC2-PC3
A-      Serverlara ulaşamazlar.
B-      Telnet ile routerlara ulaşamaz.

 

R1

Router(config)#hostname R1

R1(config-if)#enable password cisco

R1(config)#line con 0
R1(config-line)#password cisco
R1(config-line)#login

R1(config)#line vty 0 15
R1(config-line)#password cisco
R1(config-line)#login

R1(config)#int fa0/0
R1(config-if)#ip address 192.168.1.1 255.255.255.0
R1(config-if)#no shut

R1(config)#int fa0/1
R1(config-if)#ip address 192.168.2.1 255.255.255.0
R1(config-if)#no shut

R1(config)#int s0/0/0
R1(config-if)#ip address 192.168.3.1 255.255.255.252
R1(config-if)#clock rate 64000
R1(config-if)#no shut

R1(config)#router eigrp 1
R1(config-router)#network 192.168.1.0 0.0.0.255
R1(config-router)#network 192.168.2.0 0.0.0.255
R1(config-router)#network 192.168.3.0 0.0.0.3
R1(config-router)#no auto-summary
R1#sh ip eigrp topology

R1#sh ip eigrp neighbors

R1#sh ip route

R1(config)#access-list 1 permit host 192.168.1.2
R1(config)#access-list 1 permit host 192.168.1.3

R1(config)#line vty 0 15
R1(config-line)#access-class 1 in

R1#show access-lists

R2

Router(config)#hostname R2

R2(config)#enable password cisco

R2(config)#line con 0
R2(config-line)#password cisco
R2(config-line)#login

R2(config)#line vty 0 15
R2(config-line)#password cisco
R2(config-line)#login
R2(config)#int fa0/0
R2(config-if)#ip address 10.0.0.1 255.255.255.0
R2(config-if)#no shut

R2(config)#int s0/0/0
R2(config-if)#ip address 192.168.3.2 255.255.255.252
R2(config-if)#no shut

R2(config)#router eigrp 1
R2(config-router)#network 10.0.0.0 0.0.0.255
R2(config-router)#network 192.168.3.0 0.0.0.3
R2(config-router)#no auto-summary

R2#sh ip eigrp topology

R2#sh ip eigrp neighbors

R2#sh ip route

R2(config)#access-list 1 permit host 192.168.1.2

R2(config)#int fa0/0
R2(config-if)#ip access-group 1 out

R2(config)#access-list 2 permit host 192.168.1.2
R2(config)#access-list 2 permit host 192.168.1.3

R2(config)#line vty 0 15
R2(config-line)#access-class 2 in

R2#show access-lists