Filter
Top Products
640 - 607
Leading the way in IT testing and certification tools, www.testking.com
- 120 -
Q. 193
Given the following criteria for granting access from a remote site to your LAN :
restrict access on interface E0
E0=128.12.22.55
Deny access to telnet, FTP
All other types of operations.
Which line should come last in configuring your access list?
A. Access-List 101
B. Access-List 101 deny E0 telnet FTP
C. Access list 101 allow all except FTP telnet
D. Access list 101 permit IP 0.0.0.0 255.255.255.255 any
E. Access List 101 deny IP 128.12.22.55 TCP EQ 20 21 23
Answer: D
Explanation: D is correct, it will permit all other traffic and protocols to pass.
This question seems to lack some information. Usually you want to deny access to functions on an IP address
and allow other data to pass. One thing to remember is that when using an access list, anything that is not
matched is denied. That means that If we restrict this one entry, and do NOTHING else, all other data will NOT
pass through the router. So, does ALL other types of operations in the question imply allow all other operations
and traffic? Assuming so, we need a entry that allows all other operations and traffic.
Incorrect Answers:
A is incorrect; this is an incomplete command.
B is incorrect; the interface is not used in the access list, the access list will be binded later.
C is incorrect; the command is not even in the correct format. And it is permit or deny, not allow.
E is incorrect; we are doing the last line and want remaining traffic to pass.
Steve McQuerry. Interconnecting Cisco Network Devices. (Cisco Press: 2000) pages 318-321.
Q. 194
Which configuration task must you complete if a remote Frame Relay Router does not support Inverse
ARP?
A. Configure static maps.
B. Define an IP address
C. Disable DHCP on the Frame Relay router.
D. Configure a static route to the remote network.