Standard dan Extended IP Access List
15.07
By
Unknown
1 komentar
Soal :
IP router : 202.50.10.0/24
a). Blokir IP 202.50.10.10 semua port
b). Blokir IP 202.50.10.11 port 23
Penyelesaian :
Pada Router0 :
Router>enable
Router#config t
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#int fa0/0
Router(config-if)#ip address 202.50.10.1 255.255.255.0
Router(config-if)#no shutdown
%LINK-5-CHANGED: Interface FastEthernet0/0, changed state to up
%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to up
Router(config-if)#exit
Router(config)#exit
%SYS-5-CONFIG_I: Configured from console by console
Router#write
Building configuration...
[OK]
Blokir IP 202.50.10.10
Router#config t
Router(config)#access-list 11 deny host 202.50.10.10
Router(config)#access-list 11 permit any
Router(config)#int fa0/0
Router(config-if)#ip access-group 11 in
Router(config-if)#exit
Router(config)#exit
Router#
%SYS-5-CONFIG_I: Configured from console by console
Router#write
Building configuration...
[OK]
Router#
Blokir IP 202.50.10.11
Router#config t
Router(config)#access-list 110 deny tcp host 202.50.10.11 any eq 23
Router(config)#access-list 110 permit ip any any
Router(config)#int fa0/0
Router(config-if)#ip access-group 110 in
Router(config-if)#exit
Router(config)#exit
Router#
%SYS-5-CONFIG_I: Configured from console by console
Router#write
Building configuration...
[OK]
Router#
Test koneksi pada command prompt PC 0 :
HASIL SETELAH DI BLOKIR :
PADA PC0 :
PADA PC1 :
IP router : 202.50.10.0/24
a). Blokir IP 202.50.10.10 semua port
b). Blokir IP 202.50.10.11 port 23
Penyelesaian :
Pada Router0 :
Router>enable
Router#config t
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#int fa0/0
Router(config-if)#ip address 202.50.10.1 255.255.255.0
Router(config-if)#no shutdown
%LINK-5-CHANGED: Interface FastEthernet0/0, changed state to up
%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/0, changed state to up
Router(config-if)#exit
Router(config)#exit
%SYS-5-CONFIG_I: Configured from console by console
Router#write
Building configuration...
[OK]
Blokir IP 202.50.10.10
Router#config t
Router(config)#access-list 11 deny host 202.50.10.10
Router(config)#access-list 11 permit any
Router(config)#int fa0/0
Router(config-if)#ip access-group 11 in
Router(config-if)#exit
Router(config)#exit
Router#
%SYS-5-CONFIG_I: Configured from console by console
Router#write
Building configuration...
[OK]
Router#
Blokir IP 202.50.10.11
Router#config t
Router(config)#access-list 110 deny tcp host 202.50.10.11 any eq 23
Router(config)#access-list 110 permit ip any any
Router(config)#int fa0/0
Router(config-if)#ip access-group 110 in
Router(config-if)#exit
Router(config)#exit
Router#
%SYS-5-CONFIG_I: Configured from console by console
Router#write
Building configuration...
[OK]
Router#
Test koneksi pada command prompt PC 0 :
HASIL SETELAH DI BLOKIR :
PADA PC0 :
PADA PC1 :
Tambah materinya lagi. . .
BalasHapus