logo

CuriousTab

CuriousTab

Discussion


Home Networking Security See What Others Are Saying!
  • Question
  • If you wanted to deny FTP access from network 200.200.10.0 to network 200.199.11.0 but allow everything else, which of the following command strings is valid?


  • Options
  • A. access-list 110 deny 200.200.10.0 to network 200.199.11.0 eq ftp
    access-list 111 permit ip any 0.0.0.0 255.255.255.255
  • B. access-list 1 deny ftp 200.200.10.0 200.199.11.0 any any
  • C. access-list 100 deny tcp 200.200.10.0 0.0.0.255 200.199.11.0 0.0.0.255 eq ftp
  • D. access-list 198 deny tcp 200.200.10.0 0.0.0.255 200.199.11.0 0.0.0.255 eq ftp
    access-list 198 permit ip any 0.0.0.0 255.255.255.255

  • Correct Answer
  • access-list 198 deny tcp 200.200.10.0 0.0.0.255 200.199.11.0 0.0.0.255 eq ftp
    access-list 198 permit ip any 0.0.0.0 255.255.255.255
     

    Explanation
    Extended IP access lists use numbers 100-199 and 2000-2699 and filter based on source and destination IP address, protocol number, and port number. The last option is correct because of the second line that specifies permit ip any any. (I used 0.0.0.0 255.255.255.255, which is the same as the any option.) The third option does not have this, so it would deny access but not allow everything else.

  • More questions

    • 1. You have an interface on a router with the IP address of 192.168.192.10/29. What is the broadcast address the hosts will use on this LAN?

    • Options
    • A. 192.168.192.15
    • B. 192.168.192.31
    • C. 192.168.192.63
    • D. 192.168.192.127
    • Discuss
    • 2. You need to configure a server that is on the subnet 192.168.19.24/29. The router has the first available host address. Which of the following should you assign to the server?

    • Options
    • A. 192.168.19.0 255.255.255.0
    • B. 192.168.19.33 255.255.255.240
    • C. 192.168.19.26 255.255.255.248
    • D. 192.168.19.31 255.255.255.248
    • Discuss
    • 3. Which protocol reduces administrative overhead in a switched network by allowing the configuration of a new VLAN to be distributed to all the switches in a domain?

    • Options
    • A. STP
    • B. VTP
    • C. DHCP
    • D. ISL
    • Discuss
    • 4. How many broadcast domains are created when you segment a network with a 12-port switch?

    • Options
    • A. 1
    • B. 2
    • C. 5
    • D. 12
    • Discuss
    • 5. If an Ethernet port on a router were assigned an IP address of 172.16.112.1/25, what would be the valid subnet address of this host?

    • Options
    • A. 172.16.112.0
    • B. 172.16.0.0
    • C. 172.16.96.0
    • D. 172.16.255.0
    • Discuss
    • 6. Which one of the following is true regarding VLANs?

    • Options
    • A. Two VLANs are configured by default on all Cisco switches.
    • B. VLANs only work if you have a complete Cisco switched internetwork. No off-brand switches are allowed.
    • C. You should not have more than 10 switches in the same VTP domain.
    • D. VTP is used to send VLAN information to switches in a configured VTP domain.
    • Discuss
    • 7. What is the maximum distance running the lowest data rate for 802.11b?

    • Options
    • A. About 100 feet
    • B. About 175 feet
    • C. About 300 feet
    • D. About 350 feet
    • Discuss
    • 8. You need the IP address of the devices with which the router has established an adjacency. Also, the retransmit interval and the queue counts for the adjacent routers need to be checked. What command will display the required information?

    • Options
    • A. show ip eigrp adjacency
    • B. show ip eigrp topology
    • C. show ip eigrp interfaces
    • D. show ip eigrp neighbors
    • Discuss
    • 9. What is the main reason the OSI model was created?

    • Options
    • A. To create a layered model larger than the DoD model.
    • B. So application developers can change only one layer's protocols at a time.
    • C. So different networks could communicate.
    • D. So Cisco could use the model.
    • Discuss
    • 10. Which command displays the configuration register setting?

    • Options
    • A. show ip route
    • B. show boot version
    • C. show version
    • D. show flash
    • Discuss


    Comments

    There are no comments.

Enter a new Comment