Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
362
Views
1
Helpful
1
Replies

ACL rules

Go to solution
Daniel Céspedes
Level 1
Level 1

‎08-28-2023 10:57 AM

Hello community 

Please I am kind of stuck with the following exercise. I completed it 3 times and still I have no clue about those mistakes in the 2nd and last questions from this sshot below with the right answers:

DanielCspedes_0-1693243598596.png

-Staring with the 2nd,
SRC 192.168.1.66 - DST 192.167.3.75,  the access should be denied since the destination does not match with the target one 192.168.3.75

- For that last rule, I really feel like lost and the rule is pretty clear 
 HTTP traffic  between 192.168.1.66 to 192.168.3.200 should be denied based on the 1st rule. 

At some point I thought it was an irrelevant mistake, but in the previous exercise I had a similar case as well, so I decided to come to the forum for 1st time 

if you want to see the whole exercise, go ahead: 

https://skillsforall.com/launch?id=cb0847b7-e6fc-4597-bc31-38ddd6b07a2f&tab=curriculum&view=f5f1c57c-cbe2-50a6-9764-f23b2474fe31

Looking forward to your feedback

Daniel



Daniel
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Martin L
VIP
VIP

‎08-28-2023 12:45 PM - edited ‎08-28-2023 01:51 PM

Looks like you are Correct and they have 2 mistakes; a typo in case of 192.167 where 7 should be 8.  I think they meant to use 192.168.  in case of http, I also agree "denied based on the 1st rule."  Even if rule 1 does not apply, rule 3 would denied traffic; so not sure why they say Permit is correct.Anything that is not permitted, it is being deny by default and hidden rule of every ACL, that is deny all.  Note that placement and direction matters for Extended ACL. Is there anything "suspicious"  on topology picture?

If this was from a book, I would suggest looking for book Errata.

Regards, ML
**Please Rate All Helpful Responses **

 

View solution in original post

1 Reply 1

Go to solution
Martin L
VIP
VIP

‎08-28-2023 12:45 PM - edited ‎08-28-2023 01:51 PM

Looks like you are Correct and they have 2 mistakes; a typo in case of 192.167 where 7 should be 8.  I think they meant to use 192.168.  in case of http, I also agree "denied based on the 1st rule."  Even if rule 1 does not apply, rule 3 would denied traffic; so not sure why they say Permit is correct.Anything that is not permitted, it is being deny by default and hidden rule of every ACL, that is deny all.  Note that placement and direction matters for Extended ACL. Is there anything "suspicious"  on topology picture?

If this was from a book, I would suggest looking for book Errata.

Regards, ML
**Please Rate All Helpful Responses **

 

Customers Also Viewed These Support Documents