As mentioned in the section "How to Use This Book" in the Introduction, you have two choices for review questions. The questions that follow present a bigger challenge than the exam itself because they use an open-ended question format. By reviewing using this more difficult format, you can exercise your memory better and prove your conceptual and factual knowledge of this chapter. You can find the answers to these questions in the appendix.

For more practice with exam-like question formats, including questions using a router simulator and multiple-choice questions, use the exam engine on the CD-ROM.

1 What are the steps in the CBAC configuration process?

2. Are inspection rules a requirement for CBAC configuration?

3. What three categories of debug commands are commonly used to debug CBAC configuration?

4. Can CBAC be configured to inspect all TCP, UDP, and ICMP packets?

5. Which command enables you to show a complete CBAC inspection configured on the Cisco IOS Firewall?

6. Which command do you use to turn on audit trail messages?

7. What indicators in half-open sessions does CBAC measure before it takes steps to prevent a DoS attack?

8. Does CBAC block malicious Java applets that are in JAR format?

9. Name two features of the CBAC.

10. Name one restriction with using CBAC.

11. What are half-open sessions, and how does CBAC mitigate to many half-open sessions?

12. RTSP may use many different data transport modes. What transport modes does CBAC support?

13. What performance improvements does the new release of Cisco IOS Software CBAC provide?



0 0

Post a comment