Cisco CCNA | CCNP Certification Training Site. Cisco tips and tools for exam success. logo video

Challenge Lab 7: Subnetting, Summarization, Static Routing and ACLs

Printer-Friendly Format

Challenge Lab 7:

Subnetting, Summarization, Static Routing and ACLs

Lab Objective:

This is a challenge lab designed to test and validate the skills you have acquired throughout this lab guide on subnetting, static routing and ACLs.

Lab Purpose:

The purpose of this lab is to reinforce route summarization, static routing and ACLs.

Certification Level:

This lab is suitable for CCNA certification exam preparation

Lab Difficulty:

This lab has a difficulty rating of 10/10

Readiness Assessment:

When you are ready for your certification exam, you should complete this lab in no more than 20 minutes

Lab Topology:

Please use the following topology to complete this lab.

Task 1:

Configure the hostname on R1 and R3 devices as illustrated in the network topology.

Task 2:

Configure the Loopback interfaces on R3 as illustrated in the network topology.

Task 3:

Configure a SINGLE static route on R1 for the three 10.x.x.x subnets on R3. Do NOT use a default route. This route should be as specific as possible. Do NOT use 10.0.0.0/16 as the static route.

Task 4:

Configure the Loopbacks on R1 as follows:

  • For Loopback10, replace x with a subnet mask that can support 59 hosts
  • For Loopback20, replace y with a subnet mask that can support 22 hosts
  • For Loopback30, replace z with a subnet mask that can support 5 hosts

Task 5:

Configure a SINGLE static route on R3 for the three 192.168.x.x subnets on R1. Do NOT use a default route. This route should be as specific as possible. Do NOT use 192.168.0.0/16 as the static route.

Task 6:

Configure a named ACL on R1 that does the following:

  • Permits Telnet traffic from 10.1.1.0/24 to 192.168.1.0/x
  • Permits Ping traffic from 10.2.2.0/25 to 192.168.2.0/y
  • Permits HTTP traffic from 10.3.3.0/29 to 192.168.3.0/z
  • Permits RIPv2 traffic from host 172.16.1.2 to host 172.16.1.1
  • Denies Traceroute traffic from the 10.x.x.x subnets to the 192.168.x.x subnets (using a single line!)
  • Denies DNS traffic from 10.3.3.0/29 to 172.16.1.0/30
  • Permits IP traffic from the any source to any destination - which must be LOGGED!

Apply this ACL inbound on R1 S0/0.

Task 7:

Configure a named ACL on R3 that does the following:

  • Denies EIGRP traffic from 172.16.1.0/30 to any destination
  • Denies OSPF traffic from 172.16.1.0/30 to any destination
  • Permits FTP traffic from 10.1.1.0/24 and 10.3.3.0/29 to host 192.168.2.1/y
  • Denies HTTPS traffic from any source to 192.168.3.0/z
  • Permit IP traffic from any source to any destination – which must be LOGGED!

Apply this ACL outbound on R3 S0/0.

This lab is just one of over 100 labs designed to help you prepare for your Cisco CCNA and CCENT exams. You can view the labs for free at www.howtonetwork.net or buy your own copy of the lab book, solution guide and CDs from the howtonetwork.net shop.

Platinum members of www.howtonetwork.net can access all the labs and videos online for free.



Printer-Friendly Format
Home | Search | Contact Us | Tell a Friend | Text Size

2006-2012 HowtoNetwork.net All Rights Reserved. Reproduction without permission prohibited.
Reality Press, Midsummer Court, 314 Midsummer Blvd.,Milton Keynes, MK92UB, UK
This site is powered by MemberGate Membership Site Software