Open the Lab6_CNS_Topology.net file.

Important! Writing answers:

• Whenever you are asked to answer a question that doesn’t require configuration, type the answer in a notepad window and keep it until the lab assistant checks that task.

1. [2p] Ensure connectivity between all devices using the addressing scheme printed above. Use static routes or a routing protocol (not recommended…).
   • If you decide to use a routing protocol, make sure all your future access lists will allow the routing protocol’s traffic.
2. [+3p=5p] Configure CBAC to inspect all TCP, UDP and ICMP traffic on Scooby’s FastEthernet1/0 interface. Use „show ip inspect sessions” to view an active Telnet session between Muttley and Pluto’s loopback0 interface. Make sure you don’t allow Pluto to connect to Muttley. From a firewall point of view:
   1. Muttley is on the INSIDE zone
   2. Pluto is on the OUTSIDE zone
3. [+4p=9p] Create a ZPF configuration on Muttley while considering the following requirements:
   1. The inside interface will be Muttley’s connection to Spike
   2. The outside interface wll be Muttley’s connection to Scooby.
   3. All telnet traffic from the Muttley-Spike network to any outside destination is to be inspected.
   4. To check yourself, use the „show policy-map type inspect zone-pair sessions” command.
4. [+2p=11p] Add to the above ZPF configuration of the Muttley router the necessary commands to pass all ping connections through the firewall.