Below you will find our ACL download for Packet Tracer 220.127.116.11
This packet tracer details the access control list configuration, but with extended ACLs over basic ones. Specifically, this PT details the control on WEB and PING sequences from the specific 172 address within the scenario.
Provided is a packet tracer download and a tutorial.
Alternatively, you may use the commands from the following tutorial.First, open the only router on the PT (R1).
Enter your basic mode, then copy and paste the line from the Instruction Window, copy the command string from "i" of Part 1, Step 1 as well as "J" from Part 1, Step 1.
R1(config)#access-list 100 permit tcp 172.22.34.64 0.0.0.31 host 172.22.34.62 eq ftp
R1(config)#access-list 100 permit icmp 172.22.34.64 0.0.0.31 host 172.22.34.62
Then, once finished with both ACL commands, use "ip access-group 100 in" on interface G0/0 (Assign that ACL to that port via command above).
R1(config-if)#ip access-group 100 in
Now we need to extend our ACL, so using the designated command, we will create an extended ACL called "HTTP_ONLY", which comes with the 'permit' command and it's following arguments.
R1(config)#ip access-list extended HTTP_ONLY
R1(config-ext-nacl)#permit tcp 172.22.34.96 0.0.0.15 host 172.22.34.62 eq www
R1(config-ext-nacl)#permit icmp 172.22.34.96 0.0.0.15 host 172.22.34.62
See how the commands above follow the same type used with the regular 'access-list' command?
Finally, assign the ACL to the interface once more.
R1(config-if)#ip access-group HTTP_ONLY in
You should have 100% (100/100 Points) on your Packet Tracer.