Вы находитесь на странице: 1из 3

EJERCICIO 2 LISTA ACCESO STANDARD TIPO NOMBRADA:

CONF RA:

Router>EN
Router#CONF T
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#
Router(config)#HOST RA
RA(config)#
RA(config)#INT G0/0
RA(config-if)#IP ADD 192.168.1.1 255.255.255.0
RA(config-if)#NO SHUTDOWN

RA(config-if)#
%LINK-5-CHANGED: Interface GigabitEthernet0/0, changed state to up

%LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/0, changed state


to up

RA(config-if)#INT G0/1
RA(config-if)#IP ADD 192.168.2.1 255.255.255.0
RA(config-if)#NO SHUTDOWN

RA(config-if)#
%LINK-5-CHANGED: Interface GigabitEthernet0/1, changed state to up

%LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/1, changed state


to up

RA(config-if)#EXIT
RA(config)#IP ACCESS-LIST STANDARD FILTRO
RA(config-std-nacl)#DENY HOST 192.168.1.10
RA(config-std-nacl)#PERMIT 192.168.1.0 0.0.0.255
RA(config-std-nacl)#EXIT
RA(config)#INT G0/1
RA(config-if)#IP ACCESS-GROUP FILTRO OUT
RA(config-if)#END
RA#
%SYS-5-CONFIG_I: Configured from console by console

RA#COPY RUN START


Destination filename [startup-config]?
Building configuration...
[OK]
RA#
RA#SHOW ACCESS-LIST
Standard IP access list FILTRO
10 deny host 192.168.1.10
20 permit 192.168.1.0 0.0.0.255
RA#
RA#
RA#COF T
^
% Invalid input detected at '^' marker.
RA#
RA#CONF T
Enter configuration commands, one per line. End with CNTL/Z.
RA(config)#
RA(config)#IP ACCESS-LIST STANDARD FILTRO
RA(config-std-nacl)#NO 10
RA(config-std-nacl)#DO SHOW ACCESS-LIST
Standard IP access list FILTRO
20 permit 192.168.1.0 0.0.0.255

RA(config-std-nacl)#
RA(config-std-nacl)#DENY HOST 192.168.1.30
RA(config-std-nacl)#DO SHOW ACCESS-LIST
Standard IP access list FILTRO
20 permit 192.168.1.0 0.0.0.255
30 deny host 192.168.1.30

RA(config-std-nacl)#
RA(config-std-nacl)#NO 30
RA(config-std-nacl)#
RA(config-std-nacl)#DO SHOW ACCESS-LIST
Standard IP access list FILTRO
20 permit 192.168.1.0 0.0.0.255

RA(config-std-nacl)#
RA(config-std-nacl)#10 DENY HOST 192.168.1.30
RA(config-std-nacl)#DO SHOW ACCESS-LIST
Standard IP access list FILTRO
10 deny host 192.168.1.30
20 permit 192.168.1.0 0.0.0.255

RA(config-std-nacl)#

EJEMPLO 3 PARA EL PERMISO VIRTUAL – SSH Y TELNET

Router>ENA
Router#CONF T
Router(config)#HOST R1
R1(config)#ENABLE SECRET CISCO
R1(config)#LINE VTY 0 4
R1(config-line)#LOGIN LOCAL
R1(config-line)#EXIT
R1(config)#USERNAME ALUMNO PASSWORD CISCO
R1(config)#INT G0/0
R1(config-if)#IP ADD 10.10.10.1 255.255.255.0
R1(config-if)#NO SHUTDOWN
R1(config-if)#EXIT

R1(config)#ACCESS-LIST 20 PERMIT HOST 10.10.10.2


R1(config)#ACCESS-LIST 20 DENY ANY
R1(config)#LINE VTY 0 4
R1(config-line)#ACCESS-CLASS 20 IN
R1(config-line)#END

R1#COPY RUN START