Exercise :: Security - Security
- Security - Security
1. | Which of the following is true regarding access lists applied to an interface? |
|||||||
Answer: Option C Explanation: A Cisco router has rules regarding the placement of access lists on a router interface. You can place one access list per direction for each layer 3 protocol configured on an interface.
|
2. | Which command would you use to apply an access list to a router interface? |
|||||||
Answer: Option C Explanation: To apply an access list, the proper command is ip access-group 101 in.
|
3. | Which of the following is an example of a standard IP access list? |
|||||||
Answer: Option B Explanation: Standard IP access lists use the numbers 1-99 and 1300-1999 and filter based on source IP address only. Option C is incorrect because the mask must be in wildcard format.
|
4. | You need to create an access list that will prevent hosts in the network range of 192.168.160.0 to 192.168.191.0. Which of the following lists will you use? |
|||||||
Answer: Option C Explanation: The range of 192.168.160.0 to 192.168.191.0 is a block size of 32. The network address is 192.168.160.0 and the mask would be 255.255.224.0, which for an access list must be a wildcard format of 0.0.31.255. The 31 is used for a block size of 32. The wildcard is always one less than the block size.
|
5. | You are working on a router that has established privilege levels that restrict access to certain functions. You discover that you are not able to execute the command show running-configuration. How can you view and confirm the access lists that have been applied to the Ethernet 0 interface on your router? |
|||||||
Answer: Option D Explanation: The only command that shows which access lists have been applied to an interface is show ip interface Ethernet 0. The command show access-lists displays all configured access lists, and show ip access-lists displays all configured IP access lists, but neither command indicates whether the displayed access lists have been applied to an interface.
|