What is the correct way to Deny Telnet access.
Configure and apply an access list will prevent telnet access to the Router1 while allowing all other traffic to pass. The access list should not contain more than three (3) statements and should be applied to the Router1 router.
1. what interface should ACL be applied, all of the interfaces or just one?
2. what does the statment no one then 3 statements mean?
Is this right?
Answer:
Router1>enable
Router1#show access-lists
Router1#config t
Enter configuration commands, one per line. End with END.
Router1(config)#access-list 101 deny tcp any 192.168.149.1 0.0.0.0 eq 23
Router1(config)#access-list 101 deny tcp any 192.168.199.1 0.0.0.0 eq 23
Router1(config)#access-list 101 permit ip any any
Router1(config)#interface Ethernet 0
Router1(config-if)#ip access-group 101 in
Router1(config-if)#exit
Router1(config)#interface serial 0
Router1(config-if)#ip access-group 101 in
Router1(config-if)# <CTRL-Z>
..
Router1#copy running-config startup-config
Destination filename [startup-config]?
Or could I go like this
Router1(config)#access-list 101 deny any any eq 23
Router1(config)#access-list 101 permit ip any any
Router1(config)#int s0
Router1(config-if)#ip access-group 101 in
Router1(config)#int e0
Router1(config-if)#ip access-group 101 in
Router1#copy running-config startup-config
Done?
I just need some adive thanks
Taken CCNA test on Tuesday !
Configure and apply an access list will prevent telnet access to the Router1 while allowing all other traffic to pass. The access list should not contain more than three (3) statements and should be applied to the Router1 router.
1. what interface should ACL be applied, all of the interfaces or just one?
2. what does the statment no one then 3 statements mean?
Is this right?
Answer:
Router1>enable
Router1#show access-lists
Router1#config t
Enter configuration commands, one per line. End with END.
Router1(config)#access-list 101 deny tcp any 192.168.149.1 0.0.0.0 eq 23
Router1(config)#access-list 101 deny tcp any 192.168.199.1 0.0.0.0 eq 23
Router1(config)#access-list 101 permit ip any any
Router1(config)#interface Ethernet 0
Router1(config-if)#ip access-group 101 in
Router1(config-if)#exit
Router1(config)#interface serial 0
Router1(config-if)#ip access-group 101 in
Router1(config-if)# <CTRL-Z>
..
Router1#copy running-config startup-config
Destination filename [startup-config]?
Or could I go like this
Router1(config)#access-list 101 deny any any eq 23
Router1(config)#access-list 101 permit ip any any
Router1(config)#int s0
Router1(config-if)#ip access-group 101 in
Router1(config)#int e0
Router1(config-if)#ip access-group 101 in
Router1#copy running-config startup-config
Done?
I just need some adive thanks
Taken CCNA test on Tuesday !