- Home
- Networking
- CCNA Routing and Switching 200-105
91.
Which of the following access-list commands permits packets going to any web
client from all web servers whose IP addresses begin with 172.16.5?
- A.access-list 101 permit tcp host 10.1.1.1 172.16.5.0 0.0.0.255 eq www
- B.access-list 1951 permit ip host 10.1.1.1 172.16.5.0 0.0.0.255 eq www
- C.access-list 2523 permit tcp any eq www 172.16.5.0 0.0.0.255
- D.access-list 2523 permit tcp 172.16.5.0 0.0.0.255 eq www 172.16.5.0 0.0.0.255
- E.access-list 2523 permit tcp 172.16.5.0 0.0.0.255 eq www any
- Answer & Explanation
- Report
Answer : [E]
Explanation :
Explanation :
| Because the packet is going toward any web client, you need to check for the web server’s port number as a source port. The client IP address range is not specified in the question, but the servers are, so the source address beginning with 172.16.5 is the correct answer. |
92.
In a router running a recent IOS version (at least version 15.0), an engineer needs to
delete the second line in ACL 101, which currently has four commands configured.
Which of the following options could be used? (Choose two answers.)
- A.Delete the entire ACL and reconfigure the three ACL statements that should remain in the ACL.
- B.Delete one line from the ACL using the no access-list... global command.
- C.Delete one line from the ACL by entering ACL configuration mode for the ACL and then deleting only the second line based on its sequence number.
- D.Delete the last three lines from the ACL from global configuration mode, and then add the last two statements back into the ACL.
- Answer & Explanation
- Report
Answer : [A and C]
Explanation :
Explanation :
| Before IOS 12.3, numbered ACLs must be removed and then reconfigured to remove a line from the ACL. As of IOS 12.3, you can also use ACL configuration mode and sequence numbers to delete one ACL line at a time. |
93.
An engineer is considering configuring an ACL on Router R1. The engineer could use
ACL A, which would be enabled with the ip access-group A out command on interface G0/1, or ACL B, which would be enabled with the ip access-group B in command on that same interface. R1’s G0/1 interface uses IPv4 address 1.1.1.1. Which of the answers are true when comparing these options? (Choose two answers.)
- A.ACL A creates more risk of filtering important overhead traffic than ACL B.
- B.ACL B creates more risk of filtering important overhead traffic than ACL A.
- C.A ping 1.1.1.1 command on R1 would bypass ACL A even if enabled.
- D.A ping 1.1.1.1 command on R1 would bypass ACL B even if enabled.
- Answer & Explanation
- Report
Answer : [B and C]
Explanation :
Explanation :
|
A router bypasses the ACL logic for its own outbound ACLs for packets created by that router. Routers do not make any kind of exception for inbound packets.
As a result, ACL B creates more risk than ACL A, because B is enabled as an inbound
ACL. The ping 1.1.1.1 command in two answers is a self-ping of a router’s Ethernet interface. As a result, the router would bypass any outbound ACL logic on that interface, but consider any inbound ACL logic. So router R1 would bypass the logic of ACL A, which would be enabled as an outbound ACL on R1’s G0/1 interface. |
94.
An engineer configures an ACL but forgets to save the configuration. At that point,
which of the following commands display the configuration of an IPv4 ACL, including line numbers? (Choose two answers.)
- A.show running-config
- B.show startup-config
- C.show ip access-lists
- D.show access-lists
- Answer & Explanation
- Report
Answer : [C and D]
Explanation :
Explanation :
| The show ip access-lists and show access-lists commands both display the configuration of IPv4 access lists, including ACL line numbers. Neither the show running-config nor show startup-config commands list the ACL line numbers; in this case, the startup-config file would not contain the ACL configuration at all. |
95.
Which of the following attributes do QoS tools manage? (Choose three answers.)
- A.Bandwidth
- B.Delay
- C.Load
- D.MTU
- E.Loss
- Answer & Explanation
- Report
Answer : [A, B and E]
Explanation :
Explanation :
| QoS tools manage bandwidth, delay, jitter, and loss. |
|
|
||||||||||||||||||||||||||||
