cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
832
Views
0
Helpful
5
Replies

ACL list for telnet from one machine only and deny other traffic

Jaydee-187
Beginner
Beginner

Hi, I'm currently practicing in packet tracer and have the following problem:

2 routers, 3 Networks:

e.g.

  • Net#1: 192.168.100.0/26

Switch and two hosts

  • Net#2: 192.168.200.0/28

Switch and two host

  • Net#3: 172.20.20.0/24

Switch and two servers

Two routers (RIP configured): R1, R2 where R2 connects to Net#3 and R1 connects to Net#1 and Net#2.

Need to write an ACL which allows telnet access from only one host (pc) from Net#1 but allows access from all machines on Net#2. Also, want to write an ACL on R1 which denies access to any host.

Any suggestions on writing the list?

5 Replies 5

Jon Marshall
VIP Community Legend VIP Community Legend
VIP Community Legend

Allow one host and all of Net#2 access to what ?

Jon

My apologies.

One host from Net#1 and all hosts from Net#2 telnet access to R2.

Thanks

Jay

So it's just a standard acl eg -

access-list <1-99> permit host <host IP>
access-list <1-99> permit <subnet> <mask>

and then apply to the vty lines with the access-class command.

Jon

paul driver
VIP Expert VIP Expert
VIP Expert

Hello

This smell like some school/college work assignment?

Also it isn't very clear on where this the access is be allowed?


Need to write an ACL which allows telnet access from only one host (pc) from Net#1

So you wish ONLY this host to have telnet access to all 3 networks?

allows access from all machines on Net#2

To where -  just to Net1 or all 3 networks?


ACL on R1 which denies access to any host.

To where - inside net1 or all 3 networks?

res
Paul


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul

You are correct, it's preparation for an exam.

So, I need to write an ACL on R2 which allows Virtual access (telnet) into it from only PC11 on Net#1 but also allows access from all machines on Net#2.

So it allows virtual access from all machines on Net#2

'ACL on R1 which denies access to any host.'

All three networks

Thanks

Jay

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers