1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Access lists

Discussion in 'Routing & Switching' started by purplejade, Nov 4, 2007.

  1. purplejade

    purplejade Nibble Poster

    61
    0
    29
    Hi Guys,

    would any of you happen to know any more scenarios, labs etc to practice access lists apart from examples from icnd and sybex...?
     
    Certifications: CCNA N+
    WIP: A+
  2. Spice_Weasel

    Spice_Weasel Kilobyte Poster

    254
    45
    45
    If you like, I could make up some practice access-list questions, and post them in this thread.

    Spice_Weasel
     
    Certifications: CCNA, CCNP, CCIP, JNCIA-ER, JNCIS-ER,MCP
    WIP: CCIE
  3. BosonMichael
    Highly Decorated Member Award

    BosonMichael Yottabyte Poster

    19,136
    462
    374
    That's what practice exam companies are for. 8)
     
    Certifications: CISSP, MCSE+I, MCSE: Security, MCSE: Messaging, MCDST, MCDBA, MCTS, OCP, CCNP, CCDP, CCNA Security, CCNA Voice, CNE, SCSA, Security+, Linux+, Server+, Network+, A+
    WIP: Just about everything!
  4. purplejade

    purplejade Nibble Poster

    61
    0
    29
    That will be great..if its not too much trouble..It will help lots of guys like me who are relatively new...

    Thanks Spice_weasel


    Yeah !! by scenarios I actually meant those that can be implemented on Home Labs...most of the practice questions on exam preps have (what ifs...)
     
    Certifications: CCNA N+
    WIP: A+
  5. BosonMichael
    Highly Decorated Member Award

    BosonMichael Yottabyte Poster

    19,136
    462
    374
    That's what companies who develop labs and router simulators are for. 8) :wink:
     
    Certifications: CISSP, MCSE+I, MCSE: Security, MCSE: Messaging, MCDST, MCDBA, MCTS, OCP, CCNP, CCDP, CCNA Security, CCNA Voice, CNE, SCSA, Security+, Linux+, Server+, Network+, A+
    WIP: Just about everything!
  6. Arron

    Arron Bit Poster

    24
    1
    27
    Im after some access-list practise questions as well. I found them hard during my ccna bootcamp weekend. Remembering the port numbers for the different services is a big help.

    If you can post some questions then that would be great. Thanks.
     
    Certifications: BSc Network Management & Security
    WIP: CCNA
  7. Spice_Weasel

    Spice_Weasel Kilobyte Poster

    254
    45
    45
    Hi purplejade,

    Here are a couple of sample access-list questions. Note that as BosonMicheal said, there are plenty of companies producing various practice and training materials; these questions of mine are just to give a bit of practice.

    Question #1
    Internal lan 192.168.100.0 /23
    Create an inbound access-list for the internal (lan) interface of a gateway router to meet the following requirements:
    - block outbound smtp, except to hosts 192.168.100.32 and 192.168.100.40
    - block outbound pop3
    - block outbound packets with destination ports of tcp and udp from 2300 to 2400 and udp 6073 and tcp 47624, except from host 192.168.100.137
    - permit only packets from the internal lan; block all other source ip addresses

    Question #2
    An access-list is needed for the Internet interface of a router (ip add 2.2.2.2). This access-list will be applied - inbound and must meet the following requirements:
    - permit http, https inbound
    - permit ldap, smtp inbound only from host 1.1.1.1
    - permit citrix-ica inbound only from host 1.1.1.2
    - permit ntp inbound only from host 1.1.1.3
    - permit ssh inbound only from host 1.1.1.4
    - deny and log all inbound telnet packets
    - deny and log all packets sourced from private address ranges
    - deny all other ip packets

    That should give you a bit of practice - have fun!

    Spice_Weasel
     
    Certifications: CCNA, CCNP, CCIP, JNCIA-ER, JNCIS-ER,MCP
    WIP: CCIE
  8. purplejade

    purplejade Nibble Poster

    61
    0
    29
    Thanks Spice_weasel,

    I'll crack on with these..and see how I get on....
     
    Certifications: CCNA N+
    WIP: A+

Share This Page

Loading...