A network associate is adding security to the configuration of the Corp1 router. The user on host C should be able to use a web browser to access financial information from the Finance Web Server. No other hosts from the LAN nor the Core should be able to use a web browser to access this server. Since there are multiple resources for the corporation at this location including other resources on the Finance Web Server, all other traffic should be allowed.
The task is to create and apply an access-list with no more than three statements that will allow ONLY host C web access to the Finance Web Server.
No other hosts will have web access to the Finance Web Server. All other traffic is permitted.
Access to the router CLI can be gained by clicking on the appropriate host.
All passwords have been temporarily set to “cisco”.
The Core connection uses an IP address of 198.18.247.65
The computers in the Hosts LAN have been assigned addresses of 192.168.240.1 – 192.168.240.254
host A 192.168.240.1
host B 192.168.240.2
host C 192.168.240.3
Corp1(config)# access-list 128 permit tcp host 192.168.240.1 host 172.22.141.26 eq www
Corp1(config)# access-list 128 deny tcp any host 172.22.141.26 eq www
Corp1(config)# access-list 128 permit ip any any
Corp1(config-if)#ip access-group 128 out
Corp1#copy run startup-config
Pass Cisco CCNA 200-301 Exam in First Attempt
FULL Printable PDF and Software. VALID exam to help you pass.