LF9/lf9
2
0
Fork 0
Code Issues 31 Pull requests Projects 1 Releases Packages Wiki Activity Actions

Extension A aktualisiert

Baran Schöneberg 2025-06-22 23:30:47 +02:00
parent e4ba1fd578
commit 00cf913b36
1 changed files with 0 additions and 8 deletions
Download patch file Download diff file Expand all files Collapse all files

8
Extension-A.md

@ -1,7 +1,5 @@
### ACL Configuration (Access Control Lists) ### ACL Configuration (Access Control Lists)
🔹 Must-Have ACL Rules
SSH access only from Hamburg clients to infrastructure (e.g., router): SSH access only from Hamburg clients to infrastructure (e.g., router):
``` ```
@ -34,7 +32,6 @@ interface GigabitEthernet0/0/0.30
ipv6 traffic-filter HL_HTTPS_ONLY in ipv6 traffic-filter HL_HTTPS_ONLY in
``` ```
🔸 Should-Have Security Rule
Deny ICMPv6 to Routers from all but management VLANs: Deny ICMPv6 to Routers from all but management VLANs:
@ -49,8 +46,6 @@ interface Vlan1
### DHCPv6 Configuration ### DHCPv6 Configuration
🔹 Must-Have: SLAAC with DHCPv6 (Stateless) General Setup
``` ```
interface GigabitEthernet0/0/0.30 interface GigabitEthernet0/0/0.30
ipv6 address 2001:db8:2000:30::1/64 ipv6 address 2001:db8:2000:30::1/64
@ -62,7 +57,6 @@ ipv6 dhcp pool VLAN30-DHCP
domain-name example.local domain-name example.local
``` ```
🔸 Should-Have: Stateful DHCPv6 on Hamburg Router
``` ```
interface GigabitEthernet0/0/0.10 interface GigabitEthernet0/0/0.10
@ -76,7 +70,6 @@ ipv6 dhcp pool HH-STATEFUL
domain-name hh.example.local domain-name hh.example.local
``` ```
⚙️ Could-Have: Centralized DHCPv6 Setup (Documented)
Place DHCPv6 server on Berlin server or core router. Place DHCPv6 server on Berlin server or core router.
@ -91,7 +84,6 @@ interface GigabitEthernet0/0
### OSPFv3 Configuration (Replacing Static Routing) ### OSPFv3 Configuration (Replacing Static Routing)
🔹 Must-Have: Full OSPFv3 Setup with Process 42 and Area 0
``` ```
ipv6 unicast-routing ipv6 unicast-routing