tailieunhanh - Lab 11.2.3c Simple DMZ Extended Access Lists

The BMTC is a small manufacturing company located in Gadsden. They have decided that they would like to create an awareness of their products over the Internet. Therefore their immediate requirement is to promote their products to potential customers by providing product overviews, reports, and testimonials. Future requirements could include e-mail, FTP, DNS, and online ecommerce services. They have contracted you to design and configure a secure infrastructure to support their internal and external network requirements while maintaining fiscal responsibility which means “make it secure but keep costs down” | Cisco SrsTEMS Lab Simple DMZ Extended Access Lists Router 2 Demilitarized Zone DMZ Corporate Network Zone Router 1 Straight-through cable Serial cable Console Rollover Crossover cable Router Designation Router Name Enable secret password Enable VTY and console password Routing protocol RIP network statements Router 1 ISP class cisco RIP Router 2 GAD class cisco RIP Router Designation IP host names Fast Ethernet 0 Address Interface type Serial 0 Serial 0 Address Fast Ethernet 1 Address Router 1 ISP 24 DTE 24 24 Router 2 GAD 24 DCE 24 Host IP Address Subnet Mask Gateway Web Server A B Objective In this lab the use extended access lists to create a simple DeMilitarized Zone DMZ will be learned. 1 - 9 CCNA 2 Routers and Routing Basics v - Lab Copyright 2003 Cisco Systems Inc. Scenario The BMTC is a small manufacturing company located in Gadsden. They have decided that they would like to create an awareness of their products over the Internet. Therefore their immediate requirement is to promote their products to potential customers by providing product overviews reports and testimonials. Future requirements could include e-mail FTP DNS and online ecommerce services. They have contracted you to design and configure a secure infrastructure to support their internal and external network requirements while maintaining fiscal responsibility which means make it secure but keep costs down . After careful analysis it is proposed to create a two-tier security architecture consisting of a corporate network zone and a DeMilitarized Zone DMZ . The corporate network zone would house private servers and internal clients. The DMZ would house only one external server that would provide World Wide Web services. Although the one server creates a single point of failure the service

TỪ KHÓA LIÊN QUAN