The Sunset School project requires the following as security measures:
· To allow e-mail and directory services to enter the administrator network and deny anything else
· To allow internet access except telnet to the network
The following ACLs (Access Control Lists) code will be applied to satisfy such security requirements:
access list 101 permit tcp any 160.66.192.0 0.0.0.255 eq 25 (for email)
access list 101 permit tcp any 160.66.192.0 0.0.0.255 eq 53 (for Directory Services)
access list 102 deny tcp any any eq 23 (telnet)
access list 102 permit ip any any
interface ethernet0
ip access group 101 out
interface serial0
ip access group 102 in