谐和 2008-6-17 10:18
扩展ACL控制列表的配置
大家看看……
Press Enter to Start
Router>
Router>en
Router#conf t
Enter [url=http://whatis.ctocio.com.cn/searchwhatis/388/5947388.shtml]configuration[/url] commands, one per line. End with CNTL/Z.
Router(config)#[url=http://whatis.ctocio.com.cn/searchwhatis/69/6025569.shtml]int[/url] e0
Router(config-if)#ip add 172.16.1.1 255.255.255.0
Router(config-if)#no shut
%LINK-3-UPDOWN: Interface Ethernet0, changed state to up
Router(config-if)#int e1
Router(config-if)#ip add 172.16.2.1 255.255.255.0
Router(config-if)#no shut
%LINK-3-UPDOWN: Interface Ethernet1, changed state to up
Router(config-if)#exit
Router(config)#[url=http://database.ctocio.com.cn/databaseprogramme/tt-database-dpa/]access[/url]-list 101 deny tcp 172.16.2.0 0.0.0.255 any eq telnet
Router(config)#access-list 101 permit ip any any
Router(config)#int e0
Router(config-if)#ip access-group 101 out
Router(config-if)#end
//配置telnet
Router(config)#line vty 0 4
Router(config-line)#login
Router(config-line)#[url=http://whatis.ctocio.com.cn/searchwhatis/435/6025935.shtml]password[/url] cisco
Router(config-line)#end
两台[url=http://whatis.ctocio.com.cn/searchwhatis/461/6025961.shtml]PC[/url]的IP和网关
pc1:172.16.1.2/24 172.16.1.1
pc2:172.16.2.2/24 172.16.2.1
本文出自 51CTO.COM技术博客