2# R2#sho access-lists BLOQ_TELNET_R1 Extended IP access list BLOQ_TELNET_R1 10 deny ip 10.1.1.0 0.0.0.255 10.3.1.0 0.0.0.

255 (4 matches) 20 permit ospf any any (106 matches) 30 permit icmp any host 10.1.0.2 40 permit icmp any host 10.3.0.1 (4 matches) 50 permit icmp any host 10.13.205.1 (4 matches) 60 permit tcp any host 10.13.205.1 eq www 70 deny ip any any log (8 matches) R2#conf t Enter configuration commands, one per line. End with CNTL/Z. R2(config)#inter R2(config)#interface ser R2(config)#interface serial 0/0/0 R2(config-if)#no ip acces R2(config-if)#no ip access-group BLOQ_TELNET_R1 % Incomplete command. R2(config-if)#no ip access-group BLOQ_TELNET_R1 in R2(config-if)#^Z R2# R2# R2# R2# Mar 26 02:02:46.983: %SYS-5-CONFIG_I: Configured from console by console R2#sho access-lists BLOQ_TELNET_R1 Extended IP access list BLOQ_TELNET_R1 10 deny ip 10.1.1.0 0.0.0.255 10.3.1.0 0.0.0.255 (4 matches) 20 permit ospf any any (110 matches) 30 permit icmp any host 10.1.0.2 40 permit icmp any host 10.3.0.1 (4 matches) 50 permit icmp any host 10.13.205.1 (4 matches) 60 permit tcp any host 10.13.205.1 eq www 70 deny ip any any log (8 matches) R2#conf t Enter configuration commands, one per line. End with CNTL/Z. R2(config)#ip acces R2(config)#ip access-list ex R2(config)#ip access-list extended BLOQ_TELNET_R1 R2(config-ext-nacl)#per R2(config-ext-nacl)#permit ? <0-255> An IP protocol number ahp Authentication Header Protocol eigrp Cisco's EIGRP routing protocol esp Encapsulation Security Payload gre Cisco's GRE tunneling icmp Internet Control Message Protocol igmp Internet Gateway Message Protocol ip Any Internet Protocol ipinip IP in IP tunneling nos KA9Q NOS compatible IP over IP tunneling object-group Service object group ospf OSPF routing protocol pcp Payload Compression Protocol pim Protocol Independent Multicast tcp Transmission Control Protocol udp User Datagram Protocol R2(config-ext-nacl)#permit tc

R2(config-ext-nacl)#permit tcp host R2(config-ext-nacl)#permit tcp host 200.2.2.2 eq 80 192.168.3.0 0.0.0.255 R2(config-ext-nacl)#permit tcp host 200.2.2.1 eq 80 host R2(config-ext-nacl)#permit tcp host 200.2.2.1 eq 80 host 1.2.4.8 eq 80 R2(config-ext-nacl)# R2(config-ext-nacl)# R2(config-ext-nacl)#^Z R2# R2# R2#conf t Mar 26 02:05:23.127: %SYS-5-CONFIG_I: Configured from console by console R2#sho access-lists BLOQ_TELNET_R1 Extended IP access list BLOQ_TELNET_R1 10 deny ip 10.1.1.0 0.0.0.255 10.3.1.0 0.0.0.255 (4 matches) 20 permit ospf any any (110 matches) 30 permit icmp any host 10.1.0.2 40 permit icmp any host 10.3.0.1 (4 matches) 50 permit icmp any host 10.13.205.1 (4 matches) 60 permit tcp any host 10.13.205.1 eq www 70 deny ip any any log (8 matches) 80 permit tcp host 200.2.2.2 eq www 192.168.3.0 0.0.0.255 90 permit tcp host 200.2.2.1 eq www host 1.2.4.8 eq www R2#conf t Enter configuration commands, one per line. End with CNTL/Z. R2(config)#ip access-list extended BLOQ_TELNET_R1 R2(config-ext-nacl)# R2(config-ext-nacl)# R2(config-ext-nacl)# R2(config-ext-nacl)#no 70 R2(config-ext-nacl)#den R2(config-ext-nacl)#deny ip any any R2(config-ext-nacl)# R2(config-ext-nacl)# R2(config-ext-nacl)#^Z R2# R2# Mar 26 02:06:27.151: %SYS-5-CONFIG_I: Configured from console by console R2#sho access-lists BLOQ_TELNET_R1 Extended IP access list BLOQ_TELNET_R1 10 deny ip 10.1.1.0 0.0.0.255 10.3.1.0 0.0.0.255 (4 matches) 20 permit ospf any any (110 matches) 30 permit icmp any host 10.1.0.2 40 permit icmp any host 10.3.0.1 (4 matches) 50 permit icmp any host 10.13.205.1 (4 matches) 60 permit tcp any host 10.13.205.1 eq www 80 permit tcp host 200.2.2.2 eq www 192.168.3.0 0.0.0.255 90 permit tcp host 200.2.2.1 eq www host 1.2.4.8 eq www 100 deny ip any any R2#conf ty ^ % Invalid input detected at '^' marker. R2#conf t Enter configuration commands, one per line. End with CNTL/Z. R2(config)#ip access-list extended BLOQ_TELNET_R1 R2(config-ext-nacl)# R2(config-ext-nacl)# R2(config-ext-nacl)#5 permit ip host 10.1.1.1 host 10.3.1.1 R2(config-ext-nacl)# R2(config-ext-nacl)#

R2(config-ext-nacl)#^Z R2#conf ty Mar 26 02:07:18.483: %SYS-5-CONFIG_I: Configured from console by console R2#sho access-lists BLOQ_TELNET_R1 Extended IP access list BLOQ_TELNET_R1 5 permit ip host 10.1.1.1 host 10.3.1.1 10 deny ip 10.1.1.0 0.0.0.255 10.3.1.0 0.0.0.255 (4 matches) 20 permit ospf any any (110 matches) 30 permit icmp any host 10.1.0.2 40 permit icmp any host 10.3.0.1 (4 matches) 50 permit icmp any host 10.13.205.1 (4 matches) 60 permit tcp any host 10.13.205.1 eq www 80 permit tcp host 200.2.2.2 eq www 192.168.3.0 0.0.0.255 90 permit tcp host 200.2.2.1 eq www host 1.2.4.8 eq www 100 deny ip any any R2# R2# R2# R2#conf t Enter configuration commands, one per line. End with CNTL/Z. R2(config)# R2(config)#ip access-list extended BLOQ_TELNET_R1 R2(config-ext-nacl)# R2(config-ext-nacl)# R2(config-ext-nacl)#? Ext Access List configuration commands: <1-2147483647> Sequence Number default Set a command to its defaults deny Specify packets to reject dynamic Specify a DYNAMIC list of PERMITs or DENYs evaluate Evaluate an access list exit Exit from access-list configuration mode no Negate a command or set its defaults permit Specify packets to forward remark Access list entry comment R2(config-ext-nacl)#1 deny ip any any R2(config-ext-nacl)#^Z R2#sho access-lists BLOQ_TELNET_R1 Mar 26 02:08:34.663: %SYS-5-CONFIG_I: Configured from console by console R2#sho access-lists BLOQ_TELNET_R1 Extended IP access list BLOQ_TELNET_R1 5 permit ip host 10.1.1.1 host 10.3.1.1 10 deny ip 10.1.1.0 0.0.0.255 10.3.1.0 0.0.0.255 (4 matches) 20 permit ospf any any (110 matches) 30 permit icmp any host 10.1.0.2 40 permit icmp any host 10.3.0.1 (4 matches) 50 permit icmp any host 10.13.205.1 (4 matches) 60 permit tcp any host 10.13.205.1 eq www 80 permit tcp host 200.2.2.2 eq www 192.168.3.0 0.0.0.255 90 permit tcp host 200.2.2.1 eq www host 1.2.4.8 eq www 100 deny ip any any R2#conf t Enter configuration commands, one per line. End with CNTL/Z. R2(config)# R2(config)# R2(config)#ip access-list extended BLOQ_TELNET_R1 R2(config-ext-nacl)# R2(config-ext-nacl)#1 den R2(config-ext-nacl)#1 deny eigr

R2(config-ext-nacl)#1 deny eigrp any any R2(config-ext-nacl)# R2(config-ext-nacl)# R2(config-ext-nacl)#^Z R2#sho access-lists BLOQ_TELNET_R1 Extended IP access list BLOQ_TELNET_R1 1 deny eigrp any any 5 permit ip host 10.1.1.1 host 10.3.1.1 10 deny ip 10.1.1.0 0.0.0.255 10.3.1.0 0.0.0.255 (4 matches) 20 permit ospf any any (110 matches) 30 permit icmp any host 10.1.0.2 40 permit icmp any host 10.3.0.1 (4 matches) 50 permit icmp any host 10.13.205.1 (4 matches) 60 permit tcp any host 10.13.205.1 eq www 80 permit tcp host 200.2.2.2 eq www 192.168.3.0 0.0.0.255 90 permit tcp host 200.2.2.1 eq www h Mar 26 02:08:54.591: %SYS-5-CONFIG_I: Configured from console by consoleost 1.2. 4.8 eq www 100 deny ip any any R2# R2# R2# R2# R2# R2#conf t Enter configuration commands, one per line. End with CNTL/Z. R2(config)# R2(config)# R2(config)# R2(config)#acces R2(config)#access-list 150 per R2(config)#access-list 150 permit ip host 11.1.1.1 any R2(config)#access-list 150 deny R2(config)#access-list 150 deny any host 1.1.1.1 ^ % Invalid input detected at '^' marker. R2(config)#access-list 150 deny ip any host 1.1.1.1 R2(config)# access-list 150 deny any 192.168.3.0 0.0.0.255 ^ % Invalid input detected at '^' marker. R2(config)# R2(config)# R2(config)# access-list 150 deny ip any 192.168.3.0 0.0.0.255 R2(config)# R2(config)# R2(config)#^Z R2# R2# R2# R2#sho Mar 26 02:10:39.059: %SYS-5-CONFIG_I: Configured from console by console R2#sho acces R2#sho access-li R2#sho access-lists 150 Extended IP access list 150 10 permit ip host 11.1.1.1 any 20 deny ip any host 1.1.1.1 30 deny ip any 192.168.3.0 0.0.0.255

R2#conf t Enter configuration commands, one per line. End R2(config)#no acces R2(config)#no access-list 150 de R2(config)#no access-list 150 deny R2(config)#ip acces R2(config)#ip access-list ex R2(config)#ip access-list extended 150 R2(config-ext-nacl)# R2(config-ext-nacl)# R2(config-ext-nacl)#5 deny eigr R2(config-ext-nacl)#5 deny eigrp any any R2(config-ext-nacl)#25 pwer R2(config-ext-nacl)#25 per R2(config-ext-nacl)#25 permit ic R2(config-ext-nacl)#25 permit icmp any any R2(config-ext-nacl)#^Z R2# R2# R2# Mar 26 02:11:35.387: %SYS-5-CONFIG_I: Configured R2# R2# R2#sho access-lists 150 Extended IP access list 150 5 deny eigrp any any 10 permit ip host 11.1.1.1 any 20 deny ip any host 1.1.1.1 25 permit icmp any any 30 deny ip any 192.168.3.0 0.0.0.255 R2#conf t Enter configuration commands, one per line. End R2(config)# R2(config)# R2(config)#acces R2(config)#ip acces R2(config)#ip access-list ex R2(config)#ip access-list extended 100 R2(config-ext-nacl)#deny R2(config-ext-nacl)#deny ip any host 1.1.1.1 R2(config-ext-nacl)#^Z R2# R2#sho R2#show Mar 26 02:12:35.995: %SYS-5-CONFIG_I: Configured R2#show rn R2#show run R2#show running-config Building configuration...

with CNTL/Z.

from console by console

with CNTL/Z.

from console by console

Current configuration : 2842 bytes ! ! Last configuration change at 02:12:35 UTC Tue Mar 26 2013 ! NVRAM config last updated at 01:44:02 UTC Tue Mar 26 2013 ! NVRAM config last updated at 01:44:02 UTC Tue Mar 26 2013 version 15.1 service timestamps debug datetime msec service timestamps log datetime msec no service password-encryption !

hostname R2 ! boot-start-marker boot-end-marker ! ! enable secret 5 $1$es.B$iZBEIpYtNV/.KHYgpvxZN. enable password cisco ! no aaa new-model ! memory-size iomem 10 ! no ipv6 cef ip source-route ip cef ! ! ! ! ! no ip domain lookup ! multilink bundle-name authenticated ! ! crypto pki token default removal timeout 0 ! ! license udi pid CISCO2901/K9 sn FTX155085H0 ! ! ! redundancy ! ! ! ! ! ! ! ! ! ! ! interface Loopback0 ip address 10.13.205.1 255.255.0.0 ! interface Embedded-Service-Engine0/0 no ip address shutdown ! interface GigabitEthernet0/0 no ip address shutdown duplex auto speed auto ! interface GigabitEthernet0/1 no ip address

shutdown duplex auto speed auto ! interface Serial0/0/0 ip address 10.1.0.2 255.255.255.0 ! interface Serial0/0/1 ip address 10.3.0.1 255.255.255.0 ip access-group NO_TELNET_R3 in clock rate 64000 ! interface Serial0/1/0 no ip address shutdown clock rate 2000000 ! interface Serial0/1/1 no ip address shutdown clock rate 2000000 ! router ospf 1 network 10.1.0.0 0.0.0.255 area 0 network 10.3.0.0 0.0.0.255 area 0 network 10.13.0.0 0.0.255.255 area 0 ! ip forward-protocol nd ! no ip http server no ip http secure-server ! ! ip access-list extended BLOQ_TELNET_R1 deny eigrp any any permit ip host 10.1.1.1 host 10.3.1.1 deny ip 10.1.1.0 0.0.0.255 10.3.1.0 0.0.0.255 permit ospf any any permit icmp any host 10.1.0.2 permit icmp any host 10.3.0.1 permit icmp any host 10.13.205.1 permit tcp any host 10.13.205.1 eq www permit tcp host 200.2.2.2 eq www 192.168.3.0 0.0.0.255 permit tcp host 200.2.2.1 eq www host 1.2.4.8 eq www deny ip any any ip access-list extended NO_TELNET_R3 deny ip 10.3.1.0 0.0.0.255 10.1.1.0 0.0.0.255 permit ospf any any permit icmp any host 10.1.0.2 permit icmp any host 10.3.0.1 permit icmp any host 10.13.205.1 permit tcp any host 10.13.205.1 eq www deny ip any any log ! access-list 100 deny ip any host 1.1.1.1 access-list 150 deny eigrp any any access-list 150 permit ip host 11.1.1.1 any access-list 150 deny ip any host 1.1.1.1 access-list 150 permit icmp any any access-list 150 deny ip any 192.168.3.0 0.0.0.255

! ! ! ! ! R2#reload R2# R2# R2# R2#wr Building configuration... [OK] R2#reload R2#reload ? at Reload at a specific time/date cancel Cancel pending reload in Reload after a time interval reason Reload reason warm Reload should be warm <cr> R2#reload in ? Delay before reload (mmm or hhh:mm) R2#reload in 15 Reload scheduled for 02:29:19 UTC Tue Mar 26 2013 (in 15 minutes) by console Reload reason: Reload Command Proceed with reload? [confirm] R2# R2# R2# Mar 26 02:14:22.711: %SYS-5-SCHEDULED_RELOAD: Reload requested for 02:29:19 UTC Tue Mar 26 2013 at 02:14:19 UTC Tue Mar 26 2013 by console. Reload Reason: Reloa d Command. R2# R2# R2# R2# R2# R2#reload can R2#reload cancel R2# *** *** --- SHUTDOWN ABORTED --*** R2# R2# R2# R2# Mar 26 02:14:49.443: %SYS-5-SCHEDULED_RELOAD_CANCELLED: Scheduled reload cancel led at 02:14:49 UTC Tue Mar 26 2013 R2# R2# R2# R2#send R2#send ?

* <0-392> aux console log qdm tty vty x/y x/y/z R2#send * ? <cr>

All tty lines Send a message to a specific line Auxiliary line Primary terminal line Logging destinations Send a message to QDM client Terminal controller Virtual terminal Slot/Port for Modems Slot/Subslot/Port for Modems

R2#send * Enter message, end with CTRL/Z; abort with CTRL/C: ACABO DE CONFIGURAR LA IFACE; POR FAVOR VERIFICA^Z Send message? [confirm] R2# *** *** *** Message from tty0 to all terminals: *** ACABO DE CONFIGURAR LA IFACE; POR FAVOR VERIFICA R2#