Filter network traffic by controlling weather routed packets are forwarded or blocked at the router's interfaces.
determine the upper layer protocol access rights only.
Permit the router examines each packet to determine whether to forward or drop the packet, based on the what you specified within the access lists.
Criteria could be the source address of the traffic, the destination address of the traffic, the upper-layer protocol or the information
Question 2
Question
You Can control access to the router using the following methods
Answer
Console Access
Telnet/SSH Access
SNMP Access
Controlling Access to the Network Servers That Contain Configuration Files
Question 3
Question
Masquerading (NAPT) is not used very much in residential application as such applications tend to use Dynamic NAT
Answer
True
False
Question 4
Question
Match the Well-Known IP Protocol Port Numbers
Answer
FTP Data : 20
FTP program : 21
DNS : 53
SMTP : 25
Telnet : 23
TFTP : 69
Question 5
Question
IP Extended Access Lists are always configured with an ACL protocol number between 1-99
Answer
True
False
Question 6
Question
Why You Should Configure Access Lists
Answer
To restrict use access to the "show running-config" command
To restrict contents of routing updates
To provide traffic flow control
To provide security for your network
Question 7
Question
The command: ip nat inside source list 10 interface serial0/0 overload means:
Answer
The private IP addresses in the access-list 10 are allowed access to the serial0/0 interface where they will be Network Address Translated. The overload command overrides any instances of overloading.
The private IP addresses in the access-list 10 are allowed access to the serial0/0 interface where they will be Network Address Translated until the overload command is issued by the administrator,
The private IP addresses in the access-list 10 are allowed access to the serial0/0 interface where they will be Network Address Translated until the point where the system becomes overloaded.
The private IP addresses in the access-list 10 are allowed access to the serial0/0 interface where they will be Network Address Translated. The overload keyword specifies that these multiple internal LAN addresses can be Network Address Translated to that single instance.
Question 8
Question
An ACL in Cisco IOS parlance is an Accounting Control Link (ACL)
Answer
True
False
Question 9
Question
access-class access-list number (in|out)
Answer
access-class assigns access lists to a Cisco interface
access-class assigns access lists to a particular Cisco line like VTY terminals.
access-class assigns access lists to a particular Cisco VLAN tag
access-class assigns access lists to a particular Cisco Access interface.
Question 10
Question
______________________ address translation is necessary when the number of IP's to translate does not equal the number of IP's to translate to, or they are equal but for some reason it is not desirable to have a static Mapping ....(not multiple choice in exam)