As mentioned in the section "How to Use This Book" in the Introduction, you have two choices for review questions: the Q&A questions here or the exam simulation questions on the CD-ROM. The questions that follow present a bigger challenge than the exam itself because they use an open-ended question format. By using this more difficult format, you can exercise your memory better and prove your conceptual and factual knowledge of this chapter. You can find the answers to these questions in the appendix.

1. Describe one of the functions of an ACL.

2. What is the difference between a standard and extended ACL?

3. Which types of ACLs do the corresponding number identifiers of 150, 750, and 1400 implement?

4. What command sets an ACL that will deny inbound traffic from from interface E0/0?

5. Where is the traffic filtered when an ACL is configured with the "out" command?

6. What command enables you to set the ACL time to limit Telnet access to Sunday evenings between 8 p.m. and 10 p.m.?

7. For security reasons, why is SNMPv1 ill suited for configuring devices that are directly connected to the Internet?

8. Why would the following command be issued?

Firewall(config)#ip http secure-server

9. Why is it a good practice to limit directed broadcasts on the Cisco devices? 10. Can routing protocols utilize ACLs? If so, what is the logic behind it?


0 0

Post a comment