So, due to covid we've been schooling at home.... our instructor in one of our classes (not in ccna) threw out one last assignment, and its a whole bunch of ACL statements that i've never had to do, I dont know why they gave this to us, but i'm trying to figure this out, so if there are any cisco ACL geniuses out there, i'd appreciate it
I have a router and i need to create a 'named extended acl' with the following conditions
-allow tcp connections originating within your own network to be allowed back in
-allow tcp connections from outside networks on port 80/443 that are going to your server
-allow ucp dns replies back through the acl (says it 'involves two ace lines'
-allow icmp ping replies back to the router
-block all other tcp traffic
-block all other udp traffic
-block icmp ping reqs from outside world
-acl must contain explicit deny statement as the last statement.
this is way over my head, but let me try to piece together something
#ip access list extended "name of acl"
#deny icmp any "ip of router" echo reply
#deny tcp any any
#deny udp any any
#deny any
thats the last 4 i think... but i have no clue.
No comments:
Post a Comment