https://community.cisco.com/t5/network-security/writing-acls/m-p/1645707#M939863 <P>I am in a college course and I am completely at a loss on this assignment. I've researched this all day and I have just gotten more confused. Here is the Assignment: </P><P></P><P>In this project, you're given sets of criteria, and then you write standard or extended ACLSs to control specific traffic. </P><P></P><P>Assume a Class B network masking of 255.255.0.0, unless otherwise specified </P><P></P><P>1. Write an ACL to achieve the following: <BR />a. Allow Telnet connections to the 192.168.1.0 network from host 10.3.4.7 <BR />b. Allow established connections from network 172.16.0.0 to anywhere <BR />c. Permit all other access </P><P></P><P>2. Write an ACL to achieve the following: <BR />a. Prevent Telnet access from network 192.168.1.0 to network 172.16.0.0 <BR />b. Prevent reserved address from accessing any network <BR />c. Deny spoofing from the default route and broadcast address <BR />d. Permit all other access </P><P></P><P>3. Write and ACL to achieve the following: <BR />a. Deny ICMP traffic <BR />b. Permit to FTPServer01 <BR />c. Permit to the e-mail server XYZCorpMail01 <BR />d. Permit any host to access the Web Server named XYZWeb01 <BR />e. Allow access to all unrestricted ports 1024 or higher <BR />f. Deny all other access </P><P></P><P><BR />Help is appreciated...I am at a complete loss right now<SPAN><BR /><BR /></SPAN></P> Fri, 21 Feb 2020 12:16:03 GMT Aisak6888 2020-02-21T12:16:03Z https://community.cisco.com/t5/network-security/writing-acls/m-p/1645707#M939863 <P>I am in a college course and I am completely at a loss on this assignment. I've researched this all day and I have just gotten more confused. Here is the Assignment: </P><P></P><P>In this project, you're given sets of criteria, and then you write standard or extended ACLSs to control specific traffic. </P><P></P><P>Assume a Class B network masking of 255.255.0.0, unless otherwise specified </P><P></P><P>1. Write an ACL to achieve the following: <BR />a. Allow Telnet connections to the 192.168.1.0 network from host 10.3.4.7 <BR />b. Allow established connections from network 172.16.0.0 to anywhere <BR />c. Permit all other access </P><P></P><P>2. Write an ACL to achieve the following: <BR />a. Prevent Telnet access from network 192.168.1.0 to network 172.16.0.0 <BR />b. Prevent reserved address from accessing any network <BR />c. Deny spoofing from the default route and broadcast address <BR />d. Permit all other access </P><P></P><P>3. Write and ACL to achieve the following: <BR />a. Deny ICMP traffic <BR />b. Permit to FTPServer01 <BR />c. Permit to the e-mail server XYZCorpMail01 <BR />d. Permit any host to access the Web Server named XYZWeb01 <BR />e. Allow access to all unrestricted ports 1024 or higher <BR />f. Deny all other access </P><P></P><P><BR />Help is appreciated...I am at a complete loss right now<SPAN><BR /><BR /></SPAN></P> Fri, 21 Feb 2020 12:16:03 GMT https://community.cisco.com/t5/network-security/writing-acls/m-p/1645707#M939863 Aisak6888 2020-02-21T12:16:03Z https://community.cisco.com/t5/network-security/writing-acls/m-p/1645708#M939866 <HTML><HEAD></HEAD><BODY><P>Alex-</P><P></P><P>If you go to Safari, you can get a free trial for online books. Take a look at Cisco IOS Access Lists. It is a fantastic book on ACL's and explains them very well.</P><P></P><P><A href="http://my.safaribooksonline.com/book/networking/cisco-ios/1565923855">http://my.safaribooksonline.com/book/networking/cisco-ios/1565923855</A></P></BODY></HTML> Mon, 28 Feb 2011 18:15:22 GMT https://community.cisco.com/t5/network-security/writing-acls/m-p/1645708#M939866 Collin Clark 2011-02-28T18:15:22Z