New Text Document.txt

en conf t hostname enable secret cisco service pass line vty 0 4 pass cisco login line con 0 pass cisco login int se0/1/1 ip add 192.168.2.118 255.255.255.252 no sh int se0/1/0 ip add 192.168.2.114 255.255.255.252 no sh intervlan(Router) int fa0/0.xx encapsulation dot1q xx ip add ... int fa0/0.yy encapsulation dot1q yy ip add ... int fa0/0.zz encapsulation dot1q zz ip add ... modeAccess(Switch) int fa0/2 swi mode access swi access vlan xx int fa0/3 swi mode access swi access vlan yy int fa0/4 swi mode access swi access vlan zz int fa0/1 swi mode trunk swi trunk allowed vlan xx,yy,zz do wr

routingsegala router rip version 2 network "ip network" segala yg nempel sm router network ~~~~~~ ~~~~~ ip nat inside source list 100 interfac fa0/0 overload ip route 0.0.0.0 0.0.0.0 f0/0 access-list 100 permit ip any any int fa0/1.10

ip nat inside int fa0/1.20 ip nat inside int fa0/0 ip nat outside Access list standard (number standard=1-99 extended=100-199) #access-list deny <wildcard> #access-list permit any #int ... #ip access-group in/out Access list extended #access-list deny <protocol> host host #access-list permit ip any any #access-list deny <protocol> <wild card> host #access-list permit ip any any ip dhcp excluded-address 172.16.6.129 172.16.6.139 ip dhcp excluded-address 172.16.7.129 172.16.7.139 ip dhcp pool vlan10 default-router 172.16.6.129 network 172.16.6.128 255.255.255.128 dns 203.10.0.2 ip dhcp pool vlan30 default-router 172.16.7.129 network 172.16.7.128 255.255.255.224 dns 203.10.0.2 R1#conf t Enter configuration commands, one per line. End with CNTL/Z. R1(config)#access-list 101 deny tcp 172.16.7.160 0.0.0.31 host 203.10.0.2 eq www R1(config)#access-list 101 deny tcp 172.16.7.160 0.0.0.31 host 203.10.1.2 eq www R1(config)#access-list 101 permit ip any any R1(config)#int fa0/1.20 R1(config-subif)#ip access-g R1(config-subif)#ip access-group 101 in R1(config-subif)#do wr Building configuration...

spanning-tree mode rapid-pvst interface fa0/x spanning-tree link-type point-to-point end interface range fa0/1-2 speed 100 duplex full channel-group 1 mode active shutdown exit

interface port-channel 1 switchport mode trunk switchport trunk allowed vlan all exit interface range fa0/1-1 shutdown

ospf single area #router ospf #network <wildcard> area ngeblock telnet&ping (config)#ip access-list extended 100 (config-ext-nacl)#10 deny tcp 192.100.0.0 0.0.0.127 host 10.10.10.6 eq telnet (config-ext-nacl)#20 deny tcp 192.100.0.0 0.0.0.127 172.10.10.0 0.0.0.255 eq telnet (config-ext-nacl)#30 deny icmp 192.100.0.0.128 0.0.0.31 172.10.10.192 0.0.0.15 (config-ext-nacl)#40 permit ip any any (config-ext-nacl)#exit (config)#int se0/0/0 (config-if)#ip access-group 100 in