求教cisco实验问题（Packet Tracer 4.11）

来源：百度知道编辑：UC知道时间：2024/05/10 09:35:58

本菜鸟初学CCNA，做到关于ACL的实验时总是搞不定，还望高手们帮忙
实验提示如下
Step 1

HOUSTON security policy using named ACL FW1:
1. Any Hosts outside the 192.168.0.0/16 network should be permitted HTTP (udp port 80) to host 192.168.4.2
2. Any Hosts outside the 192.168.0.0/16 network should be permitted FTP (udp port 21) access to host 192.168.4.2.
3. Any host outside the 192.168.0.0/16 network should be able to ping host 192.168.4.2.
4. All other access should be implicitly denied.

Step 2

Apply the FW1 named access list to the correct interface. Be sure to specify if the ACL is created for inbound or outbound filtering. NOTE** This access list should NOT affect the capabilities of any hosts within the 192.168.0.0/16 network.

Step 3

DALLAS security policy using named ACL DAL:
1. All access from host 192.168.4.2 to host 192.168.1.2 should be blocked.
2. All other traffic from the 192.168.0.0/16 network should be allowed fu

重新看了一边step1的题目，需求应该是这样：
1、192.168.0.0/16以外的网络访问192.168.4.2，只能访问www/ftp以及ping，其他动作不允许。
2、192.168.0.0/16的的任意主机能够正常访问192.168.4.2

那么改了一下答案，应该是这样：
ip access-l ex FW1
permit tcp 192.168.0.0 0.0.255.255 host 192.168.4.2
permit tcp any host 192.168.4.2 eq www
permit tcp any host 192.168.4.2 eq ftp
permit icmp any host 192.168.4.2

英语我看不懂

CISCO VLAN 的问题~求教！ Cisco实验 cisco交换机相关问题 CISCO考点的问题求助CISCO 2501问题. Cisco产品知识问题 cisco路由器问题 cisco路由器配置问题 CISCO路由器问题 cisco 无线路由器问题