Presentasi sedang didownload. Silahkan tunggu

Presentasi sedang didownload. Silahkan tunggu

ACL (Access Control List). Definisi Firewall pada Router/switch Cisco untuk mem- filter (men-deny atau meng-allow) packet yang masuk ataupun keluar.

Presentasi serupa


Presentasi berjudul: "ACL (Access Control List). Definisi Firewall pada Router/switch Cisco untuk mem- filter (men-deny atau meng-allow) packet yang masuk ataupun keluar."— Transcript presentasi:

1 ACL (Access Control List)

2 Definisi Firewall pada Router/switch Cisco untuk mem- filter (men-deny atau meng-allow) packet yang masuk ataupun keluar

3 Topologi Jaringan ACL

4 Penentuan Rule Client dengan nama pc_1 dan pc_3 dapat melakukan koneksi dengan server tetapi untuk client dengan nama pc_2 dilarang untuk melakukan koneksi degan server. Dengan adanya masalah diatas dapat di selesaikan dengan menggunakan access-list.

5 Konfigurasi PC_1 Ethernet adapter Local Area Connection: IP Address.......... : 192.168.1.2 Subnet Mask........ : 255.255.255.0 Default Gateway..... : 192.168.1.1 PC_2 Ethernet adapter Local Area Connection: IP Address........ : 192.168.1.3 Subnet Mask...... : 255.255.255.0 Default Gateway... : 192.168.1.1 PC_3 Ethernet adapter Local Area Connection: IP Address............ : 192.168.1.4 Subnet Mask........... : 255.255.255.0 Default Gateway......... : 192.168.1.1 Konfigurasi server : Ethernet adapter Local Area Connection: IP Address............ : 192.168.2.1 Subnet Mask........... : 255.255.255.0 Default Gateway......... : 192.168.2.254

6 Konfigurasi Router Cisco Router> Router>enable Router#configure terminal Router(config)#interface ethernet0 Router(config-if)#ip address 192.168.1.1 255.255.255.0 Router(config-if)#no shut Router(config-if)#exit Router(config)#interface ethernet1 Router(config-if)#ip address 192.168.2.254 255.255.255.0 Router(config-if)#no shut Router(config-if)#^Z (Ctrl+z) Router#ping 192.168.1.1 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 192.168.1.1, timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 1/2/4 ms Router#ping 192.168.2.254 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 192.168.2.254, timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 1/2/4 ms

7 Konfigurasi ACL Cisco Router Router#configure terminal Router(config)#interface fastethernet 0/0 Router(config-if)#ip access-group 1 in Router(config-if)#exit Router(config)#access-list 1 deny 192.168.1.3 255.255.255.0 Router(config)#access-list 1 permit any Router(config)#exit Router#show access-list Standard IP access list 1 deny 0.0.0.3 255.255.255.0 (2 match(es)) permit any (8 match(es)) untuk mengembalikan access seperti sebelumnya : Router#no access-list 1

8 Hasil uji coba Dari PC_1 C:/ping 192.168.2.1 Pinging 192.168.2.1 with 32 bytes of data: Reply from 192.168.2.1: bytes=32 time=60ms TTL=241 Reply from 192.168.2.1: bytes=32 time=60ms TTL=241 Reply from 192.168.2.1: bytes=32 time=60ms TTL=241 Reply from 192.168.2.1: bytes=32 time=60ms TTL=241 Reply from 192.168.2.1: bytes=32 time=60ms TTL=241 Ping statistics for 192.168.2.1: Packets: Sent = 5, Received = 5, Lost = 0 (0% loss), Approximate round trip times in milli- seconds: Minimum = 50ms, Maximum = 60ms, Average = 55ms Dari PC_2 C:/ping 192.168.2.1 Pinging 192.168.2.1 with 32 bytes of data: Request timed out. Request timed out. Request timed out. Request timed out. Request timed out. Ping statistics for 192.168.2.1: Packets: Sent = 5, Received = 0, Lost = 5 (100% loss), Approximate round trip times in milli- seconds: Minimum = 0ms, Maximum = 0ms, Average = 0ms

9 Dari PC_3 C:/ping 192.168.2.1 Pinging 192.168.2.1 with 32 bytes of data: Reply from 192.168.2.1: bytes=32 time=60ms TTL=241 Reply from 192.168.2.1: bytes=32 time=60ms TTL=241 Reply from 192.168.2.1: bytes=32 time=60ms TTL=241 Reply from 192.168.2.1: bytes=32 time=60ms TTL=241 Reply from 192.168.2.1: bytes=32 time=60ms TTL=241 Ping statistics for 192.168.2.1: Packets: Sent = 5, Received = 5, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 50ms, Maximum = 60ms, Average = 55ms

10 Tugas

11 Rule Dari gambar diatas, tentukan PC441 dideny ke semua jaringan. PC442 & PC443 diallow ke semua jaringan. Access list ini dikonfigurasi pada router R-JKT-44 IP address Tentukan sendiri Uji hasil ping PC_441, PC_442, PC_443

12 Selamat Mencoba


Download ppt "ACL (Access Control List). Definisi Firewall pada Router/switch Cisco untuk mem- filter (men-deny atau meng-allow) packet yang masuk ataupun keluar."

Presentasi serupa


Iklan oleh Google