Now this topic is probably what got me a fail. The only simlet I did was a silly standard access sim. All the auto-complete functions were disabled and the hardware felt like it was from the 90s in the lab.
I will make sure I really get these IP access list for the next exam.
So I made a simple lab:
Standard ACLs only match on the source IP address. In the lab I wrote the required rules so I could keep focused.
BTW the monitor in the LAB was ridiculously small. I couldn’t fit it all on the damn screen.
Anyway it’s pretty easy to configure the ACL’s check page 605 in the CCENT book.
Don’t forget the IMPLICIT DENY at the end of the ACL!
Using the implicit deny I was able to satisfy all requirement with only 3 ACL entries:
encapsulation dot1Q 100
ip address 10.0.0.100 255.255.255.0
ip access-group 1 out
encapsulation dot1Q 101
ip address 10.0.1.100 255.255.255.0
ip access-group 2 out
access-list 1 permit 220.127.116.11
access-list 1 permit 10.0.1.0 0.0.0.255
access-list 2 permit 10.0.0.0 0.0.0.255