ACL configuration experiment
- Set up the environment as shown below
- 1. To achieve the first goal: only allow PC1 to access the 192.168.2.2/24 network (that is, only allow PC1 to access PC3)
- 2. Prohibit the 192.168.1.0/24 network from pinging the web server
-
- 1. Configure the acl function on router R1
- 2. Configure the server
- 3. Use PC1 and PC2 to ping the server and find that it cannot be connected. The purpose of the experiment is achieved
- 4. Why can't PC3 connect to the client? Because the created acl2000 is configured on the G0/0/2 port when the purpose is completed at the beginning, the client's request cannot reach PC3, so it cannot be connected.
- 3. Only Client1 is allowed to access the www service of the WEB server
Set up the environment as shown below
1. To achieve the first goal: only allow PC1 to access the 192.168.2.2/24 network (that is, only allow PC1 to access PC3)
1. Configure router R1
2. Configure PC
3. Ping PC3 on PC1 and PC2 respectively
4. It is found that only PC1 can ping the same as PC3, and PC2 cannot ping the same as PC3. The purpose of the experiment is achieved
2. Prohibit the 192.168.1.0/24 network from pinging the web server
1. Configure the acl function on router R1
2. Configure the server
3. Use PC1 and PC2 to ping the server and find that it cannot be connected. The purpose of the experiment is achieved
4. Why can't PC3 connect to the client? Because the created acl2000 is configured on the G0/0/2 port when the purpose is completed at the beginning, the client's request cannot reach PC3, so it cannot be connected.
3. Only Client1 is allowed to access the www service of the WEB server
1. Configure router R1. At this time, pay attention to the port number configuration when configuring acl, so you need to use advanced acl functions
2. Configure the server and client to get files