1. requirement

2. Topology

 3. analysis

4. To configure

Configure the router ip

[r1]int g0/0/0
[r1-GigabitEthernet0/0/0]ip add 192.168.2.24 24
[r1]int g0/0/1
[r1-GigabitEthernet0/0/1]ip add 192.168.1.1 30

[r2]int g0/0/0
[r2-GigabitEthernet0/0/0]ip add 192.168.1.2 30

  to pc To configure ip, Replace gateway with default

[pc1]int g0/0/0
[pc1-GigabitEthernet0/0/0]ip add 192.168.2.1 24
[pc1]ip route-static 0.0.0.0 0 192.168.2.24

[pc2]int g0/0/0
[pc2-GigabitEthernet0/0/0]ip add 192.168.2.2 24
[pc2]ip route-static 0.0.0.0 0 192.168.2.24

  Create one on the router lyc Users of

[r1]aaa
[r1-aaa]local-user lyc privilege level 15 password cipher a12345
[r1-aaa]local-user lyc service-type telnet
[r1-aaa]q
[r1]user-interface vty 0 1
[r1-ui-vty0-1]authentication-mode aaa

[r2]aaa
[r2-aaa]local-user lyc privilege level 15 password cipher a12345
[r2-aaa]local-user lyc service-type telnet 
[r2-aaa]q
[r2]user-interface vty 0 1
[r2-ui-vty0-1]authentication-mode aaa

  Set reject ICMP and tcp23 Port number service

[r1]acl 3002
[r1-acl-adv-3002]rule deny icmp source 192.168.2.1 0 destination 192.168.2.24 0	
[r1-acl-adv-3002]rule deny tcp source 192.168.2.2 0 destination 192.168.2.24 0 destination-port eq 23
[r1]int g0/0/0
[r1-GigabitEthernet0/0/0]traffic-filter inbound acl 3002

[r2]acl 3003
[r2-acl-adv-3003]rule deny icmp source 192.168.2.2 0 destination 192.168.1.2 0	
[r2-acl-adv-3003]rule deny tcp source 192.168.2.1 0 destination 192.168.1.2 0 destination-port eq 23
[r2]int g0/0/0
[r2-GigabitEthernet0/0/0]traffic-filter inbound acl 3003

5. verification

PC1- ping - R1

 PC1- ping - R2

 PC1- Telnet -R1

 PC1- Telnet -R2

  PC2- ping - R1

  PC2- ping - R2

  PC2- Telnet -R1

 PC2- Telnet -R2