Extended access list question

Jaeger · 26-01-2007 6:20pm #1

Hi,

Doing my CCNA, and got an exercise here that's wreckin my head. Not looking for someone else to do it for me and give me the answer, but for someone in the know to point out if what I've finished up with will work or not.

Plan:

Have a LAN network address of 192.168.50.0, subnetting, and using the 5th subnet. Ethernet interface on the router is taking the last address in the subnet.

Net: 192.168.50.80
Broadcast: 192.168.50.95
Hosts: 192.168.50.81 - 192.168.50.94

Lower half: 192.168.50.81 - 192.168.50.87
Upper half: 192.168.50.88 - 192.168.50.93
Router: 192.168.50.94

Servers located from 209.0.0.1 - 209.0.0.254

Trying to:

Allow top half of subnet access to all servers using all IP protocols
Allow bottom half of subnet access to bottom half of servers using all IP protocols.
Servers can't be accessible by any other hosts (all the other subnets)

permit ip 192.168.50.88 0.0.0.7 209.0.0.0 0.0.0.0
permit ip 192.168.50.80 0.0.0.7 209.0.0.0 0.0.0.127

Cake Fiend · 30-01-2007 3:53pm

Looks OK to me (with access-list xxx in front of course)

Cake Fiend · 30-01-2007 3:55pm

Looks OK to me (with access-list xxx in front of course, and access-group applied on one of the interfaces)

noclee · 31-01-2007 5:49pm

Would it not be if I'm reading your reqirumnents right
permit ip 192.168.50.88 0.0.0.7 209.0.0.0 0.0.0.255
hosts .88-94 -> Servers .1-254

permit ip 192.168.50.80 0.0.0.7 209.0.0.128 0.0.0.127
hosts .81-87 -> Servers .128-254

Thanks,
Noclee.

Extended access list question

Comments