Filter network traffic by controlling weather routed packets are forwarded or blocked at the router's interfaces.
determine the upper layer protocol access rights only.
Permit the router examines each packet to determine whether to forward or drop the packet, based on the what you specified within the access lists.
Criteria could be the source address of the traffic, the destination address of the traffic, the upper-layer protocol or the information
Pregunta 2
Pregunta
You Can control access to the router using the following methods
Respuesta
Console Access
Telnet/SSH Access
SNMP Access
Controlling Access to the Network Servers That Contain Configuration Files
Pregunta 3
Pregunta
Masquerading (NAPT) is not used very much in residential application as such applications tend to use Dynamic NAT
Respuesta
True
False
Pregunta 4
Pregunta
Match the Well-Known IP Protocol Port Numbers
Respuesta
FTP Data : 20
FTP program : 21
DNS : 53
SMTP : 25
Telnet : 23
TFTP : 69
Pregunta 5
Pregunta
IP Extended Access Lists are always configured with an ACL protocol number between 1-99
Respuesta
True
False
Pregunta 6
Pregunta
Why You Should Configure Access Lists
Respuesta
To restrict use access to the "show running-config" command
To restrict contents of routing updates
To provide traffic flow control
To provide security for your network
Pregunta 7
Pregunta
The command: ip nat inside source list 10 interface serial0/0 overload means:
Respuesta
The private IP addresses in the access-list 10 are allowed access to the serial0/0 interface where they will be Network Address Translated. The overload command overrides any instances of overloading.
The private IP addresses in the access-list 10 are allowed access to the serial0/0 interface where they will be Network Address Translated until the overload command is issued by the administrator,
The private IP addresses in the access-list 10 are allowed access to the serial0/0 interface where they will be Network Address Translated until the point where the system becomes overloaded.
The private IP addresses in the access-list 10 are allowed access to the serial0/0 interface where they will be Network Address Translated. The overload keyword specifies that these multiple internal LAN addresses can be Network Address Translated to that single instance.
Pregunta 8
Pregunta
An ACL in Cisco IOS parlance is an Accounting Control Link (ACL)
Respuesta
True
False
Pregunta 9
Pregunta
access-class access-list number (in|out)
Respuesta
access-class assigns access lists to a Cisco interface
access-class assigns access lists to a particular Cisco line like VTY terminals.
access-class assigns access lists to a particular Cisco VLAN tag
access-class assigns access lists to a particular Cisco Access interface.
Pregunta 10
Pregunta
______________________ address translation is necessary when the number of IP's to translate does not equal the number of IP's to translate to, or they are equal but for some reason it is not desirable to have a static Mapping ....(not multiple choice in exam)