Golgappa.net | Golgappa.org | BagIndia.net | BodyIndia.Com | CabIndia.net | CarsBikes.net | CarsBikes.org | CashIndia.net | ConsumerIndia.net | CookingIndia.net | DataIndia.net | DealIndia.net | EmailIndia.net | FirstTablet.com | FirstTourist.com | ForsaleIndia.net | IndiaBody.Com | IndiaCab.net | IndiaCash.net | IndiaModel.net | KidForum.net | OfficeIndia.net | PaysIndia.com | RestaurantIndia.net | RestaurantsIndia.net | SaleForum.net | SellForum.net | SoldIndia.com | StarIndia.net | TomatoCab.com | TomatoCabs.com | TownIndia.com
Interested to Buy Any Domain ? << Click Here >> for more details...

  1. Categories >> Certifications >> Cisco Certifications >> CCNA
  2. Suggest New Category

hello friend i have answerd more time of your question or
doute.now i am seeing towards you for help,plz send the
soln before monedya

the problem is

i have three router r1 and r2 and r3
they are conested in that maneer
thai is
r1---r2---r3---server
|
|
server

bothe server have diffrent ip
now i have to implemnt access list on the r3 router in such
a way that user from r1 can access only one server
while user from r2 can access whole servre
i ahve done it but both user of r1 and r2 uses all server
i need help
please help me this time?

i have repalsced my firwall by r3 router
so bacicaly i have to implement it on my firewall but you
tell me on cisco router please help

Question Posted / jitendera sinha

Answers were Sorted based on User's Feedback



hello friend i have answerd more time of your question or doute.now i am seeing towards you for he..

Answer / shahin

Hi.... U didn't mention any ip address as well as interfaces
which r used to connect routers.

R1(s1/0)------(S1/0)R2 (S1/1) -------(S1/0)R3------- server1
! ! ! 10.1.1.1
! ! ! 10.1.1.10
! ! !
PC1 PC2 Server2
13.1.1.1 12.1.1.1 11.1.1.1
13.1.1.10 12.1.1.10 11.1.1.10

Note: First one IP address & second default gateway.

R1

s1/0 - 1.1.1.1

R2

s1/0 - 1.1.1.2
s1/1 - 2.2.2.1

R3

s1/0 - 2.2.2.2

I configured RIPv2 on all router & its working fine. Now i
can access each & every user & server from anywhere in the
network.

Point is that, u want to configure ACL, so that it will meet
ur requirements.

As u mention, "implemnt access list on the r3 router in such
a way that user from r1 can access only one server"... ok i
m goin to block user from R1 to access "server1"

Create Standard ACL -

R3#conf t
R3(config)#access-list 5 permit 12.0.0.0 0.255.255.255
R3(config)#access-list 5 deny any

Apply ACL -

R3(config)#interface fastEthernet 0/1
R3(config-if)#ip access-group 5 out
Router(config-if)#^Z

See the sh output -

Router#sh access-lists
Standard IP access list 5
permit 12.0.0.0 0.255.255.255 (4 match(es))
deny any (3 match(es))

Hey buddy.... i configure the same scenario in packet
tracer.. here i m pasting the the sh runing-config of routers -

***** Router 1 -

Current configuration : 652 bytes
!
output omitted
!
interface FastEthernet0/0
ip address 13.1.1.10 255.0.0.0
duplex auto
speed auto
!
interface Serial1/0
ip address 1.1.1.1 255.0.0.0
clock rate 128000
!
router rip
version 2
network 1.0.0.0
network 13.0.0.0
no auto-summary
!
ip classless
!!
end

**** Router 2 -
Building configuration...

Current configuration : 674 bytes
!
Output Omitted
!
interface FastEthernet0/0
ip address 12.1.1.10 255.0.0.0
duplex auto
speed auto
!
interface Serial1/0
ip address 1.1.1.2 255.0.0.0
!
interface Serial1/1
ip address 2.2.2.1 255.0.0.0
clock rate 128000
!
router rip
version 2
network 1.0.0.0
network 2.0.0.0
network 12.0.0.0
no auto-summary
!
ip classless
!!
end

****Router 3 -

Building configuration...

Current configuration : 748 bytes
!
Output Omitted
!
interface FastEthernet0/0
ip address 11.1.1.10 255.0.0.0
duplex auto
speed auto
!
interface FastEthernet0/1
ip address 10.1.1.10 255.0.0.0
ip access-group 5 out
duplex auto
speed auto
!
interface Serial1/0
ip address 2.2.2.2 255.0.0.0
!
router rip
version 2
network 2.0.0.0
network 10.0.0.0
network 11.0.0.0
no auto-summary
!
ip classless
!
!
access-list 5 permit 12.0.0.0 0.255.255.255
access-list 5 deny any
!
!!
end

***** Outout from PC1 -

PC1>ping 10.1.1.1

Pinging 10.1.1.1 with 32 bytes of data:

Request timed out.
Request timed out.
Request timed out.
Request timed out.

Ping statistics for 10.1.1.1:
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss),

Hey buddy, i tried my best to explain as simple as possible
& as much as accuracy. Hope this gonna help u to do the work.

Cheers & enjoy the sunday/Funday.... heheheh

Is This Answer Correct ?    1 Yes 0 No

hello friend i have answerd more time of your question or doute.now i am seeing towards you for he..

Answer / jitendera sinha

thanks a lot

Is This Answer Correct ?    0 Yes 0 No

Post New Answer

More CCNA Interview Questions

What is difference between Store-and-Forward, cut-through, Fragment-Free Method?

2 Answers   HCL, Microsoft,

A default route is analogous to a _________. A. default gateway B. static route C. dynamic route D. one-way route

1 Answers  

What is the Function of Router?

5 Answers  

Why OSPF uses 2 Multicast IP

2 Answers  

what is the distance betwwen link stae routing protocl and distance vector who have the best convergence toplogy eigrp conatain 3 table name them what the toplogy table contain

5 Answers   IBM,

Identify 3 ways in which a router can be configured? A.) TFTP B.) Nvram C.) ROM D.) Console E.) Trace

2 Answers  

Can you define in short what VPN is?

5 Answers   CCIE,

What is segmentation and fragmentation?

0 Answers  

Which ipsec rule is used for the olympia branch and what does it define?

0 Answers  

Explain why is udp lease favored when compared to tcp?

0 Answers  

What are packets?

0 Answers  

Given the IPX address 4a.0002.1111.a999, what is the network ID and what is the node ID? A.) net 4a host 0002.1111.a999 B.) net a999 node 0002.1111 C.) net 0002.1111.a999 node 4a D.) net 0002.1111 node a999

2 Answers  

For more CCNA Interview Questions Click Here
Categories