On the Hong Kong router an access list is needed that will accomplish the following:1. Allow a Telnet connection to the HR Server through the Internet2. Allow internet HTTP traffic to access the webserver3. Block any other traffic from the internet to eve

题目

On the Hong Kong router an access list is needed that will accomplish the following:1. Allow a Telnet connection to the HR Server through the Internet2. Allow internet HTTP traffic to access the webserver3. Block any other traffic from the internet to everything elseWhich of the following access list statements are capable of accomplishing thesethree goals?()

A. access-list 101 permit tcp any 172.17.18.252 0.0.0.0 eq 80

B. access-list 1 permit tcp any 172.17.17.252 0.0.0.0 eq 23

C. access-list 101 permit tcp 172.17.17.252 0.0.0.0 any eq 23

D. access-list 101 deny tcp any 172.17.17.252 0.0.0.0 eq 23

E. access-list 101 deny tcp any 172.17.18.252 0.0.0.0 eq 80

F. access-list 101 permit tcp any 172.17.17.252 0.0.0.0 eq 23

相似考题

1.拒绝转发所有IP地址进与出方向的、端口号为1434的UDP和端口号为4444的TCP数据包,下列正确的access-list配置是A)Router (config)#access-list 30 deny udp any any eq 1434Router (config)#access-list 30 deny tcp any any eq 4444Router (config)#access-list 30 permit ip any anyB)Router (config)#access-list 130 deny udp any any eq 1434Router (config)#access-list 130 deny tcp any any eq 4444Router (config)#access-list 130 permit ip any anyC)Router (config)#access-list 110 deny any any udp eq 1434Router (config)#access-list 110 deny any any tcp eq 4444Router (config)#access-list 110 permit ip any anyD)Router (config)#access-list 150 deny udp ep 1434 any anyRouter (config)#access-list 150 deny tcp ep 4444 any anyRouter (config)#access-list 150 permit ip any any

2.Cisco路由器执行show access-list命令显示如下一组控制列表信息:Standard IP acceSS list 30deny 127.0.0.0,wildcard bits 0.255.255.255deny 172.16.0.0,wiidcard bits 0.15.255.255permft any根据上述信息,正确的access-list配置是______。A) Router(config)#access-list 30 deny 127.0.0.0 255.255.255.0Router(config)#access-list 30 deny 172.16.0.0 255.240.0.0Router(config)#access-list 30 permit anyB) Router(config-std-nacl)#access-list 30 deny 127.0.0.0 0.255.255.255Router(config-std-nael)#access-list 30 deny 172.16.0.0 0.15.255.255Router(config-std-nacl)#access-list 30 permit anyC) Router(config)#access-list 30 deny 127.0.0.0 0.255.255.255Router(config)#access-list 30 deny 172.16.0.0 0.15.255.255Router(config)#access-list 30 permit anyD) Router(config)#access-list 30 deny 127.0.0.0 0.255.255.255Router(config)#access-list 30 permit anyRouter(config)#access-list 30 deny 172.16.0.0 0.15.255.255A.B.C.D.

3.Refer to the exhibits. Router B should advertise the network co nnected to the E0/0/0 interface to router A and block all other network advertisements. The IP routing table on router A indicates that it is not receiving this prefix from router B. What is the probable cause of the problem?()A. An access list on router B is causing the 192.168.3.16/28 network to be deniedB. An access list on router B is causing the 192.168.3.32/28 network to be deniedC. The distribute list on router B is referencing a numbered access list that does not exist on router BD. The d istribute list on router B is referencing the wrong interface

4.22. When did Jackie Chan's parents move to Hong Kong?A. They moved to Hong Kong a short time after Jackie Chan was born.B. They moved to Hong Kong a short time before Jackie Chan was born.C. They moved to Hong Kong after they came back from America.D. They moved to Hong Kong after Jackie Chan studied in the China Drama Acade-my.

参考答案和解析
参考答案:A, F
更多“On the Hong Kong router an access list is needed that will accomplish the following:1. All ”相关问题

  • 第1题:

    Which command is required to apply an access list on a virtual terminal line of a router?()

    A. Router(config-line)# access-class 10 in

    B. Router(config-if)# ip access-class 23 out

    C. Router(config-line)# access-group 15 out

    D. Router(config-if)# ip access-group 110 in

    E. Router(config-line)# access-list 150 in

    F. Router(config-if)# ip access-list 128 out


    参考答案:A

  • 第2题:

    You wish to limit telnet access into your Cisco router to only a single host. In order to accomplish this, access list 1 has been written to allow host 172.16.1.224 access to the router vty lines.What command would assign this access- list to the Virtual Terminal Lines?()

    A. router(config-line)# ip access-group 1 in

    B. router(config-line)# access-class 1 in

    C. router(config-line)# ip access-list 1 in

    D. router(config-line)# access-line 1 in


    参考答案:B

  • 第3题:

    Which of the following access list statements would deny traffic from a specifichost?()

    A. Router(config)# access-list 1 deny 172.31.212.74 any

    B. Router(config)# access-list 1 deny 10.6.111.48 host

    C. Router(config)# access-list 1 deny 172.16.4.13 0.0.0.0

    D. Router(config)# access-list 1 deny 192.168.14.132 255.255.255.0

    E. Router(config)# access-list 1 deny 192.168.166.127 255.255.255.255


    参考答案:C

  • 第4题:

    As a network administrator, you have been instructed to prevent all traffic originating on the LAN from entering the R2 router. Which the following command would implement the access list on the interface of the R2 router?()

    A.access-list 101 in

    B.access-list 101 out

    C.ip access-group 101 in

    D.ip access-group 101 out


    参考答案:C

  • 第5题:

    Which of the following access list statements would deny traffic from a specifichost?()

    • A、Router(config)# access-list 1 deny 172.31.212.74 any
    • B、Router(config)# access-list 1 deny 10.6.111.48 host
    • C、Router(config)# access-list 1 deny 172.16.4.13 0.0.0.0
    • D、Router(config)# access-list 1 deny 192.168.14.132 255.255.255.0
    • E、Router(config)# access-list 1 deny 192.168.166.127 255.255.255.255

    正确答案:C

  • 第6题:

    On the Hong Kong router an access list is needed that will accomplish the following:1. Allow a Telnet connection to the HR Server through the Internet2. Allow internet HTTP traffic to access the webserver3. Block any other traffic from the internet to everything elseWhich of the following access list statements are capable of accomplishing thesethree goals?()

    • A、access-list 101 permit tcp any 172.17.18.252 0.0.0.0 eq 80
    • B、access-list 1 permit tcp any 172.17.17.252 0.0.0.0 eq 23
    • C、access-list 101 permit tcp 172.17.17.252 0.0.0.0 any eq 23
    • D、access-list 101 deny tcp any 172.17.17.252 0.0.0.0 eq 23
    • E、access-list 101 deny tcp any 172.17.18.252 0.0.0.0 eq 80
    • F、access-list 101 permit tcp any 172.17.17.252 0.0.0.0 eq 23

    正确答案:A,F

  • 第7题:

    Which command is required to apply an access list on a virtual terminal line of a router?()

    • A、Router(config-line)# access-class 10 in
    • B、Router(config-if)# ip access-class 23 out
    • C、Router(config-line)# access-group 15 out
    • D、Router(config-if)# ip access-group 110 in
    • E、Router(config-line)# access-list 150 in
    • F、Router(config-if)# ip access-list 128 out

    正确答案:A

  • 第8题:

    The following configuration line was added to router R1 Access-list 101 permit ip 10.25.30.0 0.0.0.255 any What is the effect of this access list configuration?()

    • A、permit all packets matching the first three octets of the source address to all destinations
    • B、permit all packet matching the last octet of the destination address and accept all source addresses
    • C、permit all packet matching the host bits in the source address to all destinations
    • D、permit all packet from the third subnet of the network address to all destinations

    正确答案:A

  • 第9题:

    单选题
    As a network administrator, you have been instructed to prevent all traffic originating on the LAN from entering the R2 router. Which the following command would implement the access list on the interface of the R2 router?()
    A

    access-list 101 in

    B

    access-list 101 out

    C

    ip access-group 101 in

    D

    ip access-group 101 out


    正确答案: B
    解析: 暂无解析

  • 第10题:

    单选题
    The following configuration line was added to router R1 Access-list 101 permit ip 10.25.30.00.0.0.255 any What is the effect of this access list configuration?()
    A

    ermit all packets matching the first three octets of the source address to all destinations

    B

    permit all packet matching the last octet of the destination address and accept all source addresses

    C

    permit all packet matching the host bits in the source address to all destinations

    D

    permit all packet from the third subnet of the network address to all destinations


    正确答案: D
    解析: 暂无解析

  • 第11题:

    单选题
    You wish to limit telnet access into your Cisco router to only a single host. In order to accomplish this, access list 1 has been written to allow host 172.16.1.224 access to the router vty lines. What command would assign this access- list to the Virtual Terminal Lines?()
    A

    router(config-line)# ip access-group 1 in

    B

    router(config-line)# access-class 1 in

    C

    router(config-line)# ip access-list 1 in

    D

    router(config-line)# access-line 1 in


    正确答案: A
    解析: 暂无解析

  • 第12题:

    单选题
    You are securing a network for TestKing and want to apply an ACL (access control list) to an interface of a router. Which one of the following commands would you use?()
    A

    permit access-list 101 out

    B

    ip access-group 101 out

    C

    apply access-list 101 out

    D

    access-class 101 out

    E

    ip access-list e0 out


    正确答案: E
    解析: 暂无解析

  • 第13题:

    You are securing a network for TestKing and want to apply an ACL (access control list) to an interface of a router. Which one of the following commands would you use?()

    A. permit access-list 101 out

    B. ip access-group 101 out

    C. apply access-list 101 out

    D. access-class 101 out

    E. ip access-list e0 out


    参考答案:B

  • 第14题:

    A standard IP access list is applied to an Ethernet interface of a router. What does this standard access list filter on?()

    A. The source and destination addresses

    B. The destination port number

    C. The destination address

    D. The source address

    E. All of the above


    参考答案:D

  • 第15题:

    The following configuration line was added to router R1 Access-list 101 permit ip 10.25.30.0 0.0.0.255 any What is the effect of this access list configuration?()

    A. permit all packets matching the first three octets of the source address to all destinations

    B. permit all packet matching the last octet of the destination address and accept all source addresses

    C. permit all packet matching the host bits in the source address to all destinations

    D. permit all packet from the third subnet of the network address to all destinations


    参考答案:A

  • 第16题:

    As a network administrator,you have been instructed to prevent all traffic or iginating on the LAN from entering the R2 router.Which the following command would implement the access list on the interface of theR2 router?()

    A.access-list 101 in

    B.access-list 101 out

    C.ipaccess-group 101 in

    D.ipaccess-group 101 out


    参考答案:C

  • 第17题:

    You are securing a network for TestKing and want to apply an ACL (access control list) to an interface of a router. Which one of the following commands would you use?()

    • A、permit access-list 101 out
    • B、ip access-group 101 out
    • C、apply access-list 101 out
    • D、access-class 101 out
    • E、ip access-list e0 out

    正确答案:B

  • 第18题:

    A standard IP access list is applied to an Ethernet interface of a router. What does this standard access list filter on?()

    • A、The source and destination addresses
    • B、The destination port number
    • C、The destination address
    • D、The source address
    • E、All of the above

    正确答案:D

  • 第19题:

    You wish to limit telnet access into your Cisco router to only a single host. In order to accomplish this, access list 1 has been written to allow host 172.16.1.224 access to the router vty lines. What command would assign this access- list to the Virtual Terminal Lines?()

    • A、router(config-line)# ip access-group 1 in
    • B、router(config-line)# access-class 1 in
    • C、router(config-line)# ip access-list 1 in
    • D、router(config-line)# access-line 1 in

    正确答案:B

  • 第20题:

    As a network administrator, you have been instructed to prevent all traffic originating on the LAN from entering the R2 router. Which the following command would implement the access list on the interface of the R2 router?()

    • A、access-list 101 in
    • B、access-list 101 out
    • C、ip access-group 101 in
    • D、ip access-group 101 out

    正确答案:C

  • 第21题:

    单选题
    When is an IPSec SA built on the Teleworker Router?()
    A

    when the router is booted up

    B

    when the router administratively does a no shutdown on the IPSec SA 

    C

    when traffic matches a line of the access-list tied into the crypto-map in the router configuration, and that particular IPSec SA is not already up 

    D

    when the ISAKMP SA completes negotiation of all IPSec SAs (one per access-list line in the crypto ACL), it will be brought up immediately


    正确答案: C
    解析: 暂无解析

  • 第22题:

    单选题
    How would you characterize the source and type in a denial of service attack on a router?()
    A

    By perfornubg a show ip interface to see the type and source of the attack based upon the access-listmatches

    B

    By performing a show interface to see the transmitted load txload and receive load rxload ;if the interface utilization is not maxed out ,there is no attack underway

    C

    By setting up an access-list to permit all ICMP,TCP,and UDP traffic with the log or log-input commands,then use the show access-list and show log commands to determine the type and sourceof attack

    D

    By applying an access-list to all incoming and outgoing interfaces,turning off route-cache on all interfaces,then,when telnetting into the router perform a debug IP packet detail


    正确答案: A
    解析: 暂无解析

  • 第23题:

    多选题
    On the Hong Kong router an access list is needed that will accomplish the following:1. Allow a Telnet connection to the HR Server through the Internet2. Allow internet HTTP traffic to access the webserver3. Block any other traffic from the internet to everything elseWhich of the following access list statements are capable of accomplishing thesethree goals?()
    A

    access-list 101 permit tcp any 172.17.18.252 0.0.0.0 eq 80

    B

    access-list 1 permit tcp any 172.17.17.252 0.0.0.0 eq 23

    C

    access-list 101 permit tcp 172.17.17.252 0.0.0.0 any eq 23

    D

    access-list 101 deny tcp any 172.17.17.252 0.0.0.0 eq 23

    E

    access-list 101 deny tcp any 172.17.18.252 0.0.0.0 eq 80

    F

    access-list 101 permit tcp any 172.17.17.252 0.0.0.0 eq 23


    正确答案: B,E
    解析: 暂无解析

相关内容