ACL实验
实验要求
1、利用静态路由实现全网可达
2、配置ACL规则
3、配置:[r1]acl 3000
[r1-acl-adv-3000]rule deny tcp source 172.16.0.10 0 destination 172.16.0.1 0 destination-port eq 23
rule 5 deny tcp source 172.16.0.10 0 destination 172.16.0.1 0 destination-port eq telnet
rule 10 deny icmp source 172.16.0.10 0 destination 172.16.0.66 0 (5 matches)
4、Telnet服务
[r1]user-interface vty 0 4
[r1-ui-vty0-4]authentication-mode aaa //使用用户名密码的方式
[r1]aaa
[r1-aaa]local-user zhaobin privilege level 15 password cipher qwer1234