Hi all,

Could anyone please help me with this packet tracer lab, Please use the file attached and please help me with step 12. (ACL FIREWALL)

NOTE: change the file extention from .pdf to .zip to retrieve the actual packet tracer file or you can download the file from http://www.4shared.com/file/140288413/78c3b0ab/Packet_Tracer.html



Your help will be appreciated.

Thankx

It's worded in a way that sounds quite ambiguous, but I think it's asking you to create an ACL that satifies the following:

Only ping requests from internal sources are allowed to get replies. permit icmp for internal hosts
Allow TCP traffic through from the Internet only if it was initiated from the internal network. permit tcp from Internet & use established keyword
Deny all other traffic coming from Internet to internal network. deny ip from Internet

So what kind of ACL do you need? Well if you're going to be dealing with specific traffic (TCP) then you need an extended list, placed on the ISP router, on the interface for the internal network outbound direction (closest to source).

HTH

I will try it out then,and will let you know how it goes. Thanx