Chapter 8 : Lab 8.5.2 Configuring ACLs and Recording Activity to a Syslog ServerTelah dituliskan: Januari 6, 2011
Step 1: Connect the equipment
a. Connect the Serial 0/0/0 interface of Router 1 to the Serial 0/0/0 interface of Router 2 using a serial
b. Connect the Fa0/0 interface of Router 1 to the Fa0/1 port on Switch 1 using a straight-through cable.
c. Connect Host 1 to the Fa0/3 port on Switch 1 using a straight-through cable.
d. Connect Host 2 to the Fa0/2 port on Switch 1 with a straight-through cable.
e. Connect the Discovery Server with a crossover cable to the Fa0/0 interface of Router 2.
Step 2: Perform basic configuration on Router 1
Step 3: Perform basic configuration on Router 2
Step 4: Perform basic configuration on Switch 1
Step 5: Configure the hosts with the proper IP address, subnet mask, and default gateway
a. Configure each host with the proper IP address, subnet mask, and default gateway.
b. Each host should be able to ping the other hosts. If the ping is not successful, troubleshoot as
necessary. Check and verify that the workstation has been assigned a specific IP address and default
Step 6: Configure and apply ACLs
ACLs will be configured to control what services Hosts 1 and 2 can access from the server.
Step 7: Configure the syslog service on Host 2
Using the logging option in an access-list line provides helpful information but also has its disadvantages:
* • It can require a lot of router resources.
* • It also requires that a router console connection be active at all times or else messages are missed.
Step 8: Configure the router to properly use the syslog service
Displaying the correct time and date on the syslog messages is vital when using syslog to monitor a network. If the correct time and date of a message is not known, it is sometimes impossible to determine what network event caused the message.
Step 9: Reflection
1. State the advantages of using a syslog server instead of console logging. Jawaban: A syslog server takes some of the burden off of the router processor. Even though the router is still generating messages, it can process them more quickly to a server than the console. Also, a constant console connection is not required with the syslog server. A syslog server is also capable of storing a large number of syslog messages, limited only by the size of the hard drive.
2. What factor determines the maximum number of messages stored on the syslog server? Jawaban: The amount of hard disk space available.