ensp基本ACL的配置 | 您所在的位置:网站首页 › acl的通配符的计算方法 › ensp基本ACL的配置 |
#作业七:# ##实验一:基本ACL的配置 实验环境实验思路1.规划并配置IP2.动态配置3.设置基本ACL4.检查配置结果具体实施实验总结 实验环境#####配置基本ACL前 R1 ping R3 ##### [R1]ping 3.3.3.3 PING 10.1.23.3: 56 data bytes, press CTRL_C to break Reply from 10.1.23.3: bytes=56 Sequence=1 ttl=255 time=120 ms Reply from 10.1.23.3: bytes=56 Sequence=2 ttl=255 time=30 ms Reply from 10.1.23.3: bytes=56 Sequence=3 ttl=255 time=30 ms Reply from 10.1.23.3: bytes=56 Sequence=4 ttl=255 time=20 ms Reply from 10.1.23.3: bytes=56 Sequence=5 ttl=255 time=30 ms --- 10.1.23.3 ping statistics --- 5 packet(s) transmitted 5 packet(s) received 0.00% packet loss round-trip min/avg/max = 20/46/120 ms#####配置基本ACL后 R1 ping R3 ##### [R1]ping 3.3.3.3 PING 3.3.3.3: 56 data bytes, press CTRL_C to break Request time out Request time out Request time out Request time out Request time out --- 3.3.3.3 ping statistics --- 5 packet(s) transmitted 0 packet(s) received 100.00% packet loss##实验二:高级ACL的配置 实验环境实验思路1.规划并配置IP2.动态配置3.配置Telnet4.设置高级ACL5.检查配置结果具体实施实验总结 实验环境#####设置高级ACL前 R1 ping R3 ##### [R1-ospf-1-area-0.0.0.0]ping 3.3.3.3 PING 3.3.3.3: 56 data bytes, press CTRL_C to break Reply from 3.3.3.3: bytes=56 Sequence=1 ttl=254 time=100 ms Reply from 3.3.3.3: bytes=56 Sequence=2 ttl=254 time=30 ms Reply from 3.3.3.3: bytes=56 Sequence=3 ttl=254 time=30 ms Reply from 3.3.3.3: bytes=56 Sequence=4 ttl=254 time=30 ms Reply from 3.3.3.3: bytes=56 Sequence=5 ttl=254 time=40 ms --- 3.3.3.3 ping statistics --- 5 packet(s) transmitted 5 packet(s) received 0.00% packet loss round-trip min/avg/max = 30/46/100 ms#####设置高级ACL后 R1 ping R3 ##### ping 10.1.23.3 PING 10.1.23.3: 56 data bytes, press CTRL_C to break Request time out Request time out Request time out Request time out Request time out --- 10.1.23.3 ping statistics --- 5 packet(s) transmitted 0 packet(s) received 100.00% packet loss#####设置高级ACL前 R1 telnet R3 ##### telnet 3.3.3.3 Press CTRL_] to quit telnet mode Trying 3.3.3.3 ... Connected to 3.3.3.3 ... Login authentication Password: Enter system view, return user view with Ctrl+Z.#####设置高级ACL后 R1 telnet R3 ##### telnet 3.3.3.3 Press CTRL_] to quit telnet mode Trying 3.3.3.3 ... Connected to 3.3.3.3 ... Login authentication Password: //依然可以登录服务器 实验总结** 本次实验学习了ACL的原理和配置方法。ACL由一系列permit和deny语句组成,能实现对网络中报文流的精确识别,从而实现对网络设备的精确控制。通配符是ACL的重点,ACL需要通过通配符匹配来限制网络操作。ACL有5类,本次实验使用了基本ACL以及高级ACL。基本ACL只能直接完全通过IP限制操作,而高级ACL可以实现区分不同的协议类型来限制不同的操作,更加精确。** ion Password: //依然可以登录服务器 实验总结** 本次实验学习了ACL的原理和配置方法。ACL由一系列permit和deny语句组成,能实现对网络中报文流的精确识别,从而实现对网络设备的精确控制。通配符是ACL的重点,ACL需要通过通配符匹配来限制网络操作。ACL有5类,本次实验使用了基本ACL以及高级ACL。基本ACL只能直接完全通过IP限制操作,而高级ACL可以实现区分不同的协议类型来限制不同的操作,更加精确。** |
今日新闻 |
推荐新闻 |
专题文章 |
CopyRight 2018-2019 实验室设备网 版权所有 |