Bundle lab · $29.99
Build a 5-node edge/DMZ topology. Implement a named extended ACL on the EDGE router to allow only TCP/80, TCP/443, and ICMP echo from the Inside LAN to a DMZ web server, deny all other traffic to that server with logging, and still permit general traffic elsewhere. Apply the ACL inbound on the EDGE inside LAN interface. Harden router SSH management with a standard ACL. Verify with wget, ping, and an intentionally denied SSH attempt that increments the deny log counter.
Own this lab's topology — and every lab — in Access Control Lists (ACLs).
Unlock with Access Control Lists (ACLs)Please sign in to report a problem — tying it to your attempts lets us reproduce and fix it faster.
Create a free account to submit your completed lab for grading.
Create a free account