How to Configure Firewall on Cisco Packet Tracer
Task Firewall configuration on Cisco Packet Tracer.
So that 1 or more PCs cannot ping the server and other PCs.
Required devices:
- 1 Server
- 1 Router type 1841
- 1 Switch Type 2950-24
- PC Client 3 Units
First connect all devices with Copper Cross-over cables for Server to Router.
And a Straight-Through Cable for Switch to PC, then enter a different server IP for Server to Router, and Router to PC.
For example for Server: 192.168.10.1
– Router fa0/0: 192.168.10.2
– Router fa0/1: 192.168.11.1
Then for the client PC, fill in the Router field fa0/1 192.168.11.2…. so on.
So that all devices can connect to PING, enter the RIP command on the router, enter each IP.
After that, test it by carrying out the PING command.
So next, configure FIREWALL, so that one PC cannot ping other devices.
Firewall Configuration Steps
Go to the CLI menu on the router, then enter the following command:
Router#conf
Configuring from terminal, memory, or network [terminal]?
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#access-list 1 deny host 192.168.11.3
Router(config)#access-list 1 permit any
Router(config)#int fa0/1
Router(config-if)#ip access-group 1 in
Router(config-if)#
Router(config-if)#exit
Now we try to ping.
CLI description above:
access-list 1 deny host 192.168.11.3, command for the router to block the PC that has that IP.
access-list 1 permit any, This command is to allow PCs that have the same IP as the blocked PC.
int fa0/1, Ethernet connection used.
ip access-group 1 incommand to introduce 1 group of similar devices.
So, those are the results of the Firewall Configuration Process on Cisco Packet Tracer.
