Which one of the access control list statements below will deny all telnet connections to subnet 10.10.1.0/24?()A. access-list 15 deny telnet any 10.10.1.0 0.0.0.255 eq 23B. access-list 115 deny udp any 10.10.1.0 eq telnetC. access-list 15 deny tcp 10.10.
题目
A. access-list 15 deny telnet any 10.10.1.0 0.0.0.255 eq 23
B. access-list 115 deny udp any 10.10.1.0 eq telnet
C. access-list 15 deny tcp 10.10.1.0 255.255.255.0 eq telnet
D. access-list 115 deny tcp any 10.10.1.0 0.0.0.255 eq 23
E. access-list 15 deny udp any 10.10.1.0 255.255.255.0 eq 23
相似考题
更多“Which one of the access control list statements below will deny all telnet connections to subnet 10.10.1.0/24?() ”相关问题
-
第1题:
You have a class B network with a 255.255.255.0 mask. Which of the statements below are true of this network? (Select all valid answers)
A. There are 254 usable subnets.
B. There are 256 usable hosts per subnet.
C. There are 50 usable subnets.
D. There are 254 usable hosts per subnet.
E. There are 24 usable hosts per subnet.
F. There is one usable network.
正确答案:AD
A,D 解析:Explanation:
The default subnet mask for Class B is 255.255.0.0. Thus an extra 8 bits have been used for the network portion, leaving 8 for hosts. The 2n - 2 formula (28 - 2 in this case for both the network and IP hosts) gives us 254 networks and 254 hosts per network.
Incorrect Answers:
B: We must remember to always subtract 2 (one for the network, and one for the broadcast) so the result is 254, not 256.
C, E: No possible network mask would give us this exact number of subnets or hosts.
F: This would be true if this were a class C network, not a class B.
-
第2题:
利用扩展ACL禁止用户通过telnet访问子网202.112.111.0/24的命令是 (48) 。
A.access-list 10 deny telnet any 202.112.110.0 0.0.0.255 eq 23
B.access-list 110 deny udp any 202.112.110.0 eq telnet
C.access-list 110 deny tcp any 202.112.110.0 0.0.0.255 eq23
D.access-list 10 deny tcp any 202.112.110.0 255.255.255.0 eq23
正确答案:C
本题考查ACL配置命令的使用。首先,利用扩展ACL可排除A和D选项;其次B选项中使用了UDP.Telnet是基于TCP协议的,所以B选项错误。 -
第3题:
An access list was written with the four statements shown in the graphic.Which single access list statement will combine all four of these statements into a single statement that will have exactly the same effect?()
A.access-list10 permit 172.29.16.00.0.0.255
B.access-list10 permit 172.29.16.00.0.1.255
C.access-list10 permit 172.29.16.00.0.3.255
D.access-list10 permit 172.29.16.00.0.15.255
E.access-list10 permit 172.29.0.00.0.255.255
参考答案:C
-
第4题:
利用高级ACL禁止用户通过telnet访问子网202.112.111.0/24的命令是( )。A.access-list 3000
rule10 deny telnet any 202.112.111.0 0.0.0.255 ep 23
B.access-list 3000
rule 10 deny udp any 202.112.111.0 ep telnet
C.access-list 3000
rule 10 deny tcp any 202.112.111.0 0.0.0.255 ep 23
D.access-list 3000
rule 10 deny tcp any 202.112.111.0 255.255.255.0 ep 23答案:C解析:扩展 ACL(访问控制列表) 是一种路由器配置脚本,根据源地址、目的地址,以及协议或端口来控制路由器应该允许还是应该拒绝数据包。高级 ACL 比基本 ACL 更加灵活而且精度更高。 -
第5题:
计费服务器的ip地址在192.168.1.0/24子网内,为了保证计费服务器的安全,不允许任何用户telnet到该服务器,则需要配置的访问列表条目为:()
- A、access-list 11 deny tcp 192.168.1.0 0.0.0.255 eq telnet/access-list 111 permit ip any any
- B、access-list 111 deny tcp any 192.168.1.0 eq telnet/access-list 111 permit ip any any
- C、access-list 111 deny udp 192.168.1.0 0.0.0.255 eq telnet/access-list 111 permit ip any any
- D、access-list 111 deny tcp any 192.168.1.0 0.0.0.255 eq telnet/access-list 111 permit ip any any
正确答案:D -
第6题:
The following access list below was applied outbound on the E0 interface connected to the 192.169.1.8/29 LAN: access-list 135 deny tcp 192.169.1.8 0.0.0.7 eq 20 any access-list 135 deny tcp 192.169.1.8 0.0.0.7 eq 21 any How will the above access lists affect traffic? ()
- A、FTP traffic from 192.169.1.22 will be denied
- B、No traffic, except for FTP traffic will be allowed to exit E0
- C、FTP traffic from 192.169.1.9 to any host will be denied
- D、All traffic exiting E0 will be denied
- E、All FTP traffic to network 192.169.1.9/29 will be denied
正确答案:D -
第7题:
以下的访问控制列表中,()禁止所有Telnet访问子网10.10.1.0/24。
- A、access-list 15deny telnet any 10.10.1.0 0.0.0.255 eq 23
- B、access-listl l5 denyu卸any l0.10.1.0 eq telnet
- C、access-list 115deny tcp any 10.10.1.0 0.0.0.255 eq 23
- D、access-list 15deny udp any 10.10.1.0 255.255.255.0 eq 23
正确答案:C -
第8题:
You have a class B network with a 255.255.255.0 mask. Which of the statements below are true of this network?()
- A、There are 254 usable subnets.
- B、There are 256 usable hosts per subnet.
- C、There are 50 usable subnets.
- D、There are 254 usable hosts per subnet.
- E、There are 24 usable hosts per subnet.
- F、There is one usable network.
正确答案:A,D -
第9题:
单选题Which one of the access control list statements below will deny all telnet connections to subnet 10.10.1.0/24?()Aaccess-list 15 deny telnet any 10.10.1.0 0.0.0.255 eq 23
Baccess-list 115 deny udp any 10.10.1.0 eq telnet
Caccess-list 15 deny tcp 10.10.1.0 255.255.255.0 eq telnet
Daccess-list 115 deny tcp any 10.10.1.0 0.0.0.255 eq 23
Eaccess-list 15 deny udp any 10.10.1.0 255.255.255.0 eq 23
正确答案: A解析: 暂无解析 -
第10题:
单选题Which of the following access list statements would deny traffic from a specifichost?()ARouter(config)# access-list 1 deny 172.31.212.74 any
BRouter(config)# access-list 1 deny 10.6.111.48 host
CRouter(config)# access-list 1 deny 172.16.4.13 0.0.0.0
DRouter(config)# access-list 1 deny 192.168.14.132 255.255.255.0
ERouter(config)# access-list 1 deny 192.168.166.127 255.255.255.255
正确答案: E解析: 暂无解析 -
第11题:
单选题A network administrator wants to add a line to an access list that will block only Telnet access by the hosts on subnet 192.168.1.128/28 to the server at 192.168.1.5. What command should be issued to accomplish this task?()Aaccess-list 101 deny tcp 192.168.1.128 0.0.0.15 192.168.1.5 0.0.0.0 eq 23 access-list 101 permit ip any any
Baccess-list 101 deny tcp 192.168.1.128 0.0.0.240 192.168.1.5 0.0.0.0 eq 23 access-list 101 permit ip any any
Caccess-list 1 deny tcp 192.168.1.128 0.0.0.255 192.168.1.5 0.0.0.0 eq 21 access-list 1 permit ip any any
Daccess-list 1 deny tcp 192.168.1.128 0.0.0.15 host 192.168.1.5 eq 23 access-list 1 permit ip any any
正确答案: B解析: 暂无解析 -
第12题:
单选题以下的访问控制列表中,()禁止所有Telnet访问子网10.10.1.0/24。Aaccess-list 15deny telnet any 10.10.1.0 0.0.0.255 eq 23
Baccess-listl l5 denyu卸any l0.10.1.0 eq telnet
Caccess-list 115deny tcp any 10.10.1.0 0.0.0.255 eq 23
Daccess-list 15deny udp any 10.10.1.0 255.255.255.0 eq 23
正确答案: A解析: 暂无解析 -
第13题:
以下的访问控制列表中,(51)禁止所有Telnet访问子网10.10.1.0/24。
A.access-list 15 deny telnet any 10.10.1.0 0.0.0.255 eq 23
B.access-list 115 deny udp any 10.10.1.0 eq telnet
C.access-list 115 deny top any 10.10.1.0 0.0.0.255 eq 23
D.access-list 15 deny udp any 10.10.1.0 255.255.255.0 eq 23
正确答案:C
解析:根据对数据包的检查过程,ACL分为两种。
. 标准ACL:只检查网络层协议数据单元,根据源地址来过滤数据包,标准ACL的编号为1~99,执行过程如下图所示。
. 扩展ACL:根据网络层的源地址和目标地址、以及传输层信息(协议,端口号等)检查数据包,比标准ACL更灵活。例如,可以允许FTP访问通过,而不允许Telnet通过。扩展ACL的编号为100~199,其执行过程下图所示。
答案C是一条扩展ACL语句,由于Telnet的UDP端口号是23,按照ACL的语法,这条语句禁止 Telnet 访问子网10.10.1.0/24。注意,在ACL语句中使用了反掩码 255.255.255.0。 -
第14题:
Which of the following access list statements would deny traffic from a specifichost?()A. Router(config)# access-list 1 deny 172.31.212.74 any
B. Router(config)# access-list 1 deny 10.6.111.48 host
C. Router(config)# access-list 1 deny 172.16.4.13 0.0.0.0
D. Router(config)# access-list 1 deny 192.168.14.132 255.255.255.0
E. Router(config)# access-list 1 deny 192.168.166.127 255.255.255.255
参考答案:C
-
第15题:
Which item represents the standard IPACL?()A.access-list 50 deny 192.168.1.10.0.0.255
B.access-list 110 permit ip any any
C.access-list 2500 deny tcp any host 192.168.1.1 eq22
D.access-list 101 deny tcp any host 192.168.1.1
参考答案:A
-
第16题:
Which one of the access control list statements below will deny all telnet connections to subnet 10.10.1.0/24?()
- A、access-list 15 deny telnet any 10.10.1.0 0.0.0.255 eq 23
- B、access-list 115 deny udp any 10.10.1.0 eq telnet
- C、access-list 15 deny tcp 10.10.1.0 255.255.255.0 eq telnet
- D、access-list 115 deny tcp any 10.10.1.0 0.0.0.255 eq 23
- E、access-list 15 deny udp any 10.10.1.0 255.255.255.0 eq 23
正确答案:D -
第17题:
A network administrator wants to add a line to an access list that will block only Telnet access by the hosts on subnet 192.168.1.128/28 to the server at 192.168.1.5. What command should be issued to accomplish this task?()
- A、access-list 101 deny tcp 192.168.1.128 0.0.015 192.168.1.5 0.0.0.0 eq 23 access-list 101 permit ip any any
- B、access-list 1 deny tcp 192.168.1.128 0.0.0.15 host 192.168.1.5 eq 23 access-list 1 permit ip any any
- C、access-list 1 deny tcp 192.168.1.128 0.0.0.255 192.168.1.5 0.0.0.0 eq 21 access-list 1 permit ip any any
- D、access-list 101 deny tcp 192.168.1.128 0.0.0.240 192.168.1.5 0.0.0.0 eq 23 access-list 101 permit ip any any
- E、access-list 101 deny ip 192.168.1.128 0.0.0.240 192.158.1.5 0.0.0.0 eq 23 access-list 101 permit ip any any
- F、access-list 101 deny ip 192.168.1.128 0.0.0.15 192.168.1.5 0.0.0.0 eq 23 access-list 101 permit ip any any
正确答案:A -
第18题:
A network administrator wants to add a line to an access list that will block only Telnet access by the hosts on subnet 192.168.1.128/28 to the server at 192.168.1.5.What command should be issued to accomplish this task?()
- A、access-list 101 deny tcp192.168.1.1280.0.0.15192.168.1.50.0.0.0eq23 access-list 101 permit ip any any
- B、access-list 101 deny tcp192.168.1.1280.0.0.240192.168.1.50.0.0.0eq23 access-list101permit ip any any
- C、access-list 1 deny tcp192.168.1.1280.0.0.255192.168.1.50.0.0.0eq21 access-list1permit ip any any
- D、access-list 1 deny tcp192.168.1.1280.0.0.15host192.168.1.5eq23 access-list1permit ip any any
正确答案:A -
第19题:
Which item represents the standard IP ACL?()
- A、access-list 50 deny 192.168.1.10.0.0.255
- B、access-list 110 permitip any any
- C、access-list 2500 deny tcp any host 192.168.1.1eq22
- D、access-list 101 deny tcp any host 192.168.1.1
正确答案:A -
第20题:
A network administrator wants to add a line to an access list that will block only Telnet access by the hosts on subnet 192.168.1.128/28 to the server at 192.168.1.5. What command should be issued to accomplish this task?()
- A、access-list 101 deny tcp 192.168.1.128 0.0.0.15 192.168.1.5 0.0.0.0 eq 23 access-list 101 permit ip any any
- B、access-list 101 deny tcp 192.168.1.128 0.0.0.240 192.168.1.5 0.0.0.0 eq 23 access-list 101 permit ip any any
- C、access-list 1 deny tcp 192.168.1.128 0.0.0.255 192.168.1.5 0.0.0.0 eq 21 access-list 1 permit ip any any
- D、access-list 1 deny tcp 192.168.1.128 0.0.0.15 host 192.168.1.5 eq 23 access-list 1 permit ip any any
正确答案:A -
第21题:
单选题计费服务器的ip地址在192.168.1.0/24子网内,为了保证计费服务器的安全,不允许任何用户telnet到该服务器,则需要配置的访问列表条目为:()Aaccess-list 11 deny tcp 192.168.1.0 0.0.0.255 eq telnet/access-list 111 permit ip any any
Baccess-list 111 deny tcp any 192.168.1.0 eq telnet/access-list 111 permit ip any any
Caccess-list 111 deny udp 192.168.1.0 0.0.0.255 eq telnet/access-list 111 permit ip any any
Daccess-list 111 deny tcp any 192.168.1.0 0.0.0.255 eq telnet/access-list 111 permit ip any any
正确答案: D解析: 暂无解析 -
第22题:
单选题A network administrator wants to add a line to an access list that will block only Telnet access by the hosts on subnet 192.168.1.128/28 to the server at 192.168.1.5.What command should be issued to accomplish this task?()Aaccess-list 101 deny tcp192.168.1.1280.0.0.15192.168.1.50.0.0.0eq23 access-list 101 permit ip any any
Baccess-list 101 deny tcp192.168.1.1280.0.0.240192.168.1.50.0.0.0eq23 access-list101permit ip any any
Caccess-list 1 deny tcp192.168.1.1280.0.0.255192.168.1.50.0.0.0eq21 access-list1permit ip any any
Daccess-list 1 deny tcp192.168.1.1280.0.0.15host192.168.1.5eq23 access-list1permit ip any any
正确答案: D解析: 暂无解析 -
第23题:
单选题A network administrator wants to add a line to an access list that will block only Telnet access by the hosts on subnet 192.168.1.128/28 to the server at 192.168.1.5. What command should be issued to accomplish this task?()Aaccess-list 101 deny tcp 192.168.1.128 0.0.015 192.168.1.5 0.0.0.0 eq 23 access-list 101 permit ip any any
Baccess-list 1 deny tcp 192.168.1.128 0.0.0.15 host 192.168.1.5 eq 23 access-list 1 permit ip any any
Caccess-list 1 deny tcp 192.168.1.128 0.0.0.255 192.168.1.5 0.0.0.0 eq 21 access-list 1 permit ip any any
Daccess-list 101 deny tcp 192.168.1.128 0.0.0.240 192.168.1.5 0.0.0.0 eq 23 access-list 101 permit ip any any
Eaccess-list 101 deny ip 192.168.1.128 0.0.0.240 192.158.1.5 0.0.0.0 eq 23 access-list 101 permit ip any any
Faccess-list 101 deny ip 192.168.1.128 0.0.0.15 192.168.1.5 0.0.0.0 eq 23 access-list 101 permit ip any any
正确答案: B解析: 暂无解析