FREE CCNA Lab: Sirius Cybernetics Project – Part 6: IPv4 Access-Lists – FreeLabFriday

FREE CCNA Lab: Sirius Cybernetics Project – Part 6: IPv4 Access-Lists – FreeLabFriday

FREE CCNA Lab: Sirius Cybernetics Project – Part 6: IPv4 Access-Lists – FreeLabFriday

Free Lab Guide: http://bit.ly/2XDvzlT
Free Packet Tracer Lab File – assessment: http://bit.ly/2XcZLHv
Free Packet Tracer Lab File – answers: http://bit.ly/2Ziqq2U
Playlist: http://bit.ly/2DjEhxm

Connect with Brian:
Twitter: https://twitter.com/65Briangallagh
LinkedIn: https://www.linkedin.com/in/bgallagh/

Connect with David:
Twitter: https://twitter.com/davidbombal
Instagram: https://www.instagram.com/davidbombal/
LinkedIn: https://www.linkedin.com/in/davidbombal/

#CCNA #CCENT #FreeLabFriday

Sirius Cybernetics Corporation have just called to say that some of their users are now accessing web pages that should be blocked. They are quite anxious to have this resolved as soon as possible as it is effecting genuine users accessing external business sites essential for the business.

Also, one of the first line support team at Sirius have also noticed that they can use telnet to access the Branch router. They have also noticed that when they login to PC3 & PC4, it is also possible to connect to the Branch router. They have escalated this to you to check and resolve.
You have been asked to resolve this a soon as possible and report back to Sirius when it is resolved.

Username: ccna
Password: cisco
Enable Password: secret123

Your task is to ensure the following Policy is set:

1. PC1 and PC2 can access the Branch Router securely only. PC3 and PC4 should have no access and any attempts should be logged. Currently all PCs can access the Branch router by telnet. To achieve this outcome, no packet filter should be attached to any interface. Sirius have asked for the applied filter to be named Remote_Access
2. An editable packet filter should be placed on the most appropriate interface to filter traffic destined to the Internet services. Sirius have asked for the applied filter to be named Outbound_Access and to achieve the following:
3. PC1should be the only user able to access twitter.com via https only, to update the company social media feed.
4. PC1 and PC2 should be able to access Facebook.com via https only, to update the social media stories. You are tasked to achieve this through a single access control entry that permits the first 62 hosts on the 10.1.1.0 /24 user network.
5. All current network users should be able to securely access cisco.com and google.com websites. This should be achieved by a single access control entry.
6. No users should be able to access any insecure content to the internet resources.
7. PC1 and PC2are in IT support and should be able to use command line troubleshooting tools of ping and trace to discover any initial problems and then escalate them for fixes. Currently, all PCs have this ability. A single access control entry should be used to achieve this for the first 62 host on the 10.1.1.0 /24 user network.
8. PC1 and PC2 should be able to continue to remotely access the Branch router securely after the access-list configuration is complete.
9. All users must continue to be able to access their cloud google mail accounts. Email is mission critical to Sirius and no interruptions should occur whilst the packet filter is applied.

David Bombal

Get more at http://davidbombal.com

You will be able to Check Results for your score and use this as possible hints and tips as
to what to check to get the 100% score.

subscribe