Scribd
Upload
16 views26 pages

Assignment - 3

digital assignment (ISM)

Uploaded by

tavishehehe
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
16 views26 pages

Assignment - 3

digital assignment (ISM)

Uploaded by

tavishehehe
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 26

Name: Tavishi Jain

Reg. No.: 21BDS0113

ASSIGNMENT - 3

A. Setup a Basic Firewall Configuration in Cisco Packet Tracer.

The submission file in word format should include the following:


1. The steps followed in configuring each device [one server, one Switch,

two laptops and two PCs] (compact writing expected).

Steps:
1) Arrange the necessary end devices, switches, and routers according to the
provided diagram.

Tavishi Jain
21BDS0113
2) Connect all devices as indicated in the diagram using the appropriate
connections.

Tavishi Jain
21BDS0113

3) Assign IP addresses to all devices and networks, as provided in the diagram.

Tavishi Jain
21BDS0113

4) Assign the given IP addresses to each PC and server, with the same subnet
mask of 255.0.0.0.
5) Set up a firewall on the server to block all ICMP protocol and allow all incoming
IP traffic.

Thus, network has been configured successfully.


2. Add screenshot of the final network

Tavishi Jain
21BDS0113

3. Include the screenshots of verifying the network by pinging the IP


address of server from PC1.

Before firewall is configured:

4. Add screenshot of firewall configuration in server, where you have to


deny the ICMP protocol and allow the IP protocol
5. Include the screenshots of verifying the network by pinging the IP
address of server from PC1.

After firewall is configured:

6. Include the screenshots of checking the web browser by entering the


address in the URL.

7. All include one simulation result along with the PDU


details. Simulation from PC0 to Server:
PDU Details at PC:

Switch 0 inbound:
Outbound Switch:
B. Configure Standard ACL for Cisco Packet

The submission file in word format should include the following:


1. The steps followed in configuring each device [two servers, one router,

Five PCs].
Steps:
1) Arrange the necessary end devices, switches, and routers according to the provided
diagram.

Tavishi Jain
21BDS0113

2) Connect all devices as indicated in the diagram using the appropriate connections.
Tavishi Jain
21BDS0113

3) Assign IP addresses to all devices and networks, as provided in the diagram. Also, classify
the devices in various departments, as given.

Tavishi Jain
21BDS0113

4) Assign the given IP addresses to each PC, router and server, with the subnet mask of
255.255.255.0.
a) For router, set Port Status as ‘On’. Set GigabitEthernet0 \1 and 0\2 with given IP
address and subnet mask. Add an additional port in WIC-1T as well.
b) For servers and PCs, assign the given IP address and subnet mask. Set default
gateway as IP address of the switch they are connected to.
Tavishi Jain
21BDS0113

5) Now, we create the Standard ACL. We permit the IP addresses of PCs from IT
Department, and deny any other addresses.
Thus, the network has been configured successfully.

2. Add screenshot of the final network


Tavishi Jain
21BDS0113

3. Include the screenshots of verifying the network by pinging the IP


address of server from any one PC in IT department and Finance
department.

IT Department:
4. Add screenshot of access-list configuration in router, where you have
to permit the PCs from the IT department and deny the PCs from any
other department including the Finance department to access both the

5. Include the access-list configuration and access-group configuration


in router as a text document. Add this document at the end of task.
Router#sh access-lists
Standard IP access list 10
10 permit host 192.168.10.10
20 permit host 192.168.10.20
30 permit host 192.168.10.30
40 deny any
6. Include the screenshots of verifying the network by pinging the IP
address of server from any one PC in IT department and Finance
department after access-list configuration in router.

Finance Department:

IT Department:
C. Configure Extended ACL for Cisco Packet

The submission file in word format should include the following:


1. The steps followed in configuring each device [two servers, one router,

Five PCs].
Steps:
1) Arrange the necessary end devices, switches, and routers according to the provided
diagram.

Tavishi Jain
21BDS0113

2) Connect all devices as indicated in the diagram using the appropriate connections.
Tavishi Jain
21BDS0113

3) Assign IP addresses to all devices and networks, as provided in the diagram. Also, classify
the devices in various departments, as given.

Tavishi Jain
21BDS0113

4) Assign the given IP addresses to each PC, router and server, with the subnet mask of
255.255.255.0.
a) For router, set Port Status as ‘On’. Set GigabitEthernet0 \1 and 0\2 with given IP
address and subnet mask. Add an additional port in WIC-1T as well.
b) For servers and PCs, assign the given IP address and subnet mask. Set default
gateway as IP address of the switch they are connected to.
Tavishi Jain
21BDS0113

5) Now, we create the Extended ACL. We permit the IP addresses of PCs from IT
Department, and deny any other addresses.
Thus, the network has been configured successfully.
2. Add screenshot of the final network

Tavishi Jain
21BDS0113

3. Include the screenshots of verifying the network by pinging the IP


address of server from any one PC in IT department and Finance
department.

IT Department:
4. Add screenshot of access-list configuration in router, where you have
to permit the PCs from the IT department and deny the PCs from any
other department including the Finance department to access the

Router(config)#access-list 120 permit ip 192.168.10.10 255.255.255.0


192.168.20.10 255.255.255.0
Router(config)#access-list 120 permit ip 192.168.10.20 255.255.255.0
192.168.20.10 255.255.255.0
Router(config)#access-list 120 permit ip 192.168.10.30 255.255.255.0
192.168.20.10 255.255.255.0
Router(config)#access-list 120 deny ip any any
Router(config)#
Router(config)#
Router(config)#interface FastEthernet0/0
Router(config-if)#ip access-group 120 in
5. Include the access-list configuration and access-group configuration
in router as a text document. Add this document at the end of task.

Router#sh access-lists
Extended IP access list 120
10 permit ip 0.0.0.10 255.255.255.0 0.0.0.10 255.255.255.0
20 permit ip 0.0.0.20 255.255.255.0 0.0.0.10 255.255.255.0
30 permit ip 0.0.0.30 255.255.255.0 0.0.0.10 255.255.255.0
40 deny ip any any
6. Include the screenshots of verifying the network by pinging the IP
address of server from any one PC in IT department and Finance
department after access-list configuration in router.

Finance Department:
IT Department:

You might also like