![step 7 5.4 g130 step 7 5.4 g130](https://s3.studylib.net/store/data/008229294_1-739fb21ee8cb48fa1157601b7e7518a3-768x994.png)
In other words, you can press Enter and the statement would permit all TCP traffic. Notice that one of the options is (carriage return). Precedence Match packets with given precedence value Enter the host keyword followed by the server’s IP address. In this scenario, we are filtering traffic for a single destination, which is the server. Range Match only packets in the range of port numbers Neq Match only packets not on a given port number Lt Match only packets with a lower port number Gt Match only packets with a greater port number R1(config)# access-list 100 permit tcp 172.22.34.64 0.0.0.31 ?Įq Match only packets on a given port number Enter the wildcard mask, followed by a question mark. Calculate the wildcard mask by determining the binary opposite of the /27 subnet mask.
![step 7 5.4 g130 step 7 5.4 g130](https://image.slidesharecdn.com/9eceafe6-453c-414b-bc22-d3cc8d7d2d81-170130063114/95/step-87-65432-1-in-onetutorial-for-begineer-on-selenium-web-drivertestng-framework-28-638.jpg)
Enter this network address, followed by a question mark. In this case, it is any host that has an address belonging to the 172.22.34.64/27 network. Filtering can also be done by a network address. Using the keyword any permits any host on any network. The source address can represent a single device, such as PC1, by using the host keyword and then the IP address of PC1. R1(config)# access-list 100 permit tcp ?Į. Enter TCP to further refine the ACL help. This is because FTP is an application layer protocol that uses TCP at the transport layer. When configured and applied, this ACL should permit FTP and ICMP. To permit FTP traffic, enter permit, followed by a question mark. Add 100 to the command, followed by a question mark. From global configuration mode on R1, enter the following command to determine the first valid number for an extended access list. Instructions Part 1: Configure, Apply and Verify an Extended Numbered ACL Step 1: Configure an ACL to permit FTP and ICMP from PC1 LAN.Ī. Both computers need to be able to ping the server, but not each other.
![step 7 5.4 g130 step 7 5.4 g130](https://store.bicycleczar.com/v/vspfiles/assets/images/DSCF1394.jpg)
PC1 only needs FTP access while PC2 only needs web access. Two employees need access to services provided by the server.