Theory Review II (pps)
1 like275 views
The document discusses implementing inter-VLAN routing using a router-on-a-stick configuration to allow three hosts access to a data server while conserving IP addresses. It provides the existing VLAN and IP addressing configurations, as well as details on implementing an access control list on the router interface to deny traffic from VLAN 200 hosts to the server while permitting other inter-VLAN communication.
1 of 5
Download to read offline
More Related Content
What's hot (20)
Ad
Viewers also liked (20)
Ad
Similar to Theory Review II (pps) (20)
Recently uploaded (20)
Theory Review II (pps)
- 1. Router On A Stick • Engineer’s point of view: The chief requests InterVLAN routing • L3 Switch or Router On A Stick • Additional requirements: – Only 3 hosts can gain the Data Server – There is no need to increase a number of hosts in each office, but our task is to conserve given address space • Consider existing configuration and decide what we need to change
- 2. What we must change here? VLAN100: 10.1.1.0/29 VLAN200: 10.1.1.8/29
- 3. Subnetting Plan VLAN100 VLAN200 Server 10.1.1.1/29 Assistant 10.1.1.9/29 Chief 10.1.1.2/29 Junior Developer 10.1.1.10/29 Admin Manager 10.1.1.3/29 Default Gateway 10.1.1.14/29 Senior Developer 10.1.1.4/29 Default Gateway 10.1.1.6/29
- 4. Access Control Lists – review • prevent unwanted traffic in the network • should be part of an organization’s security policy • standard – filter packets based on source IP • extended – filtering based on both source and destination IP – examine multiple parts of the packet headers • Where in the network to place the ACL?
- 5. Access Control List – implementation • deny all traffic from hosts in LAN 200 to Server • permit Inter-VLAN communication between other PCs in the enterprise • apply the ACL on router’s Fa0/0.100 interface in outbound direction • wildcard masks!