From: Roman Rodichev (roman@iementor.com)
Date: Fri Dec 07 2007 - 22:59:59 ART
Is this a trick question?
access-list 100 deny ip 192.168.15.16 0.0.0.14
access-list 100 permit ip any any
Roman Rodichev
5xCCIE #7927 (R&S, Security, Voice, Storage, Service Provider)
Instructor, Content Developer. ieMentor Corporation
http://www.iementor.com
Y!M: roman7927
> -----Original Message-----
> From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Darby
> Weaver
> Sent: Friday, December 07, 2007 4:53 PM
> To: ccielab@groupstudy.com; cisco@groupstudy.com
> Subject: ACL Question - Can you fix it?
>
> Access Lists.
>
> Assume that the 192.168.15.16/28 network has a
> collection of Linux and Windows PCs on it. The
> addressing scheme is such that the Linux PCs have the
> addresses
>
> 192.168.15.17
> 192.168.15.19
> 192.168.15.21
>
> and so on through to 192.168.15.29 (odds) while the
> Windows PCs have the addresses
>
> 192.168.15.18
> 192.168.15.20
> 192.168.15.22
>
> and so on through to 192.168.15.30 (even).
>
> All the PCs connect to the core network via a router
> on the same subnet.
>
> One day all the Windows PCs get infected by a virus
> and start sourcing large amounts of network traffic.
> Your task is to create an access list to be used on
> the router for the subnet which drops all network
> traffic from the Windows PCs while allowing traffic
> from the Linux PCs.
>
> Can you create an ACL with just two access list
> entries that will match traffic sourced from all the
> Windows PCs and drop them while allowing all other
> traffic?
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Tue Jan 01 2008 - 12:04:29 ARST