Th efollowing access list below was applied outbound on the E0 interface connected to the 192.169.1.8/29LAN: access-list 135 deny tcp 192.169.1.80.0.0.7 eq 20 any access-list 135 deny tcp 192.169.1.80.0.0.7 e q21 any How will the above access lists affect traffic?()
第1题:
要禁止内网中IP地址为198.168.46.8的PC访问外网,正确的ACL规则是(11)。
A.access-list 1 permit ip 192.168.46.00.0.0.255 any access-list 1 deny ip host 198.168.46.8 any
B.access-list 1 permit ip host 198.168.46.8 any access-list 1 deny ip 192.168.46.00.0.0.255 any
C.access-list 1 deny ip 192.168.46.00.0.0.255 any access-list 1 permit ip host 198.168.46.8 any
D.access-list 1 deny ip host 198.168.46.8 any access-list 1 permitip 192.168.46.00.0.0.255 any
第2题:
封禁ICMP协议,只转发212.78.170.166/27所在子网的所有站点的ICMP数据包,正确的access-list配置是______。
A) Router(config)#access-list 110 permit icmp 212.78.170.166 0.0.0.0 any
Router(config)#access-list 110 deny icmp any any
Router(config)#access-list 110 permit ip any any
B) Router(config)#access-list 110 permit icmp 212.78.170.0 255.255.255.224 any
Router(config)#access-list 110 permit ip any any
Router(config)#access-list 110 deny icmp any any
C) Router(config)#access-list 110 perimt iemp 212.78.170.0 0.0.0.255 any
Router(config)#access-list 110 deny icmp any any
Router(config)#access-list 110 permit ip any any
D) Router(config)#access-list 110 permit icmp 212.78.170.160 0.0.0.31 any
Router(config)#access-list 110 deny icmp any any
Router(config)#access-list 110 permit ip any any
A.
B.
C.
D.
第3题:
A.access-list2500denytcpanyhosteq22
B.access-list101denytcpanyhost
C.access-list50deny55
D.access-list110denyipanyany
第4题:
A. Router(config)# access-list 1 deny 172.31.212.74 any
B. Router(config)# access-list 1 deny 10.6.111.48 host
C. Router(config)# access-list 1 deny 172.16.4.13 0.0.0.0
D. Router(config)# access-list 1 deny 192.168.14.132 255.255.255.0
E. Router(config)# access-list 1 deny 192.168.166.127 255.255.255.255
第5题:
A.Access-list101wasconfiguredforthetrustedinterface,andaccess-list100wasconfiguredfortheuntrustedinterface
B.Access-list100wasconfiguredforthetrustedinterface,andaccess-list101wasconfiguredfortheuntrustedinterface
C.Access-list100wasconfiguredfortheinbounddirection,andaccess-list101wasconfiguredfortheoutbounddirectiononthetrustedinterface
D.Access-list100wasconfiguredfortheinbounddirection,andaccess-list101wasconfiguredfortheoutbounddirectionontheuntrustedinterface
第6题:
A.access-list50deny192.168.1.10.0.0.255
B.access-list110permitipanyany
C.access-list2500denytcpanyhost192.168.1.1eq22
D.access-list101denytcpanyhost192.168.1.1
第7题:
An access list was written with the four statements shown in the graphic.Which single access list statement will combine all four of these statements into a single statement that will have exactly the same effect?()
A.access-list10 permit 172.29.16.00.0.0.255
B.access-list10 permit 172.29.16.00.0.1.255
C.access-list10 permit 172.29.16.00.0.3.255
D.access-list10 permit 172.29.16.00.0.15.255
E.access-list10 permit 172.29.0.00.0.255.255
第8题:
用标准访问控制列表禁止非法地址192.168.0.0/16的数据包进出路由器的正确配置是______。
A.access-list 110 deny 192.168.0.0 0.0.255.255 access-list 110 permit any
B.access-list 10 deny 192.168.0.0 255.255.0.0 access-list 10 permit any
C.access-list 50 permit any access-list 50 deny 192.168.0.0 0.0.255.255
D.access-list 99 deny 192.168.0.0 0.0.255.255 access-list 99 permit any
第9题:
下列选项中哪一条可以准确的匹配并代替以下四条访问控制列表() (1):access-list 10 permit172.29.16.00.0.0.255 (2):access-list 10 permit172.29.17.00.0.0.255 (3):access-lis t10 permit172.29.18.00.0.0.255 (4):access-list 10 permit172.29.19.00.0.0.255
第10题:
A network administrator wants to add a line to an access list that will block only Telnet access by the hosts on subnet 192.168.1.128/28 to the server at 192.168.1.5.What command should be issued to accomplish this task?()
第11题:
A network administrator wants to add a line to an access list that will block only Telnet access by the hosts on subnet 192.168.1.128/28 to the server at 192.168.1.5. What command should be issued to accomplish this task?()
第12题:
FTP traffic from 192.169.1.22 will be denied
No traffic, except for FTP traffic will be allowed to exit E0
FTP traffic from 192.169.1.9 to any host will be denied
All traffic exiting E0 will be denied
All FTP traffic to network 192.169.1.9/29 will be denied
第13题:
若要求路由器的某接口上只封禁ICMP协议,但允许159.67.183.0/24子网的ICMP数据包通过,那么使用的access-list命令是______。
A.access-list 120 deny icmp 159.67.183.0 0.0.0.255 any access-list 120 permit ip any any
B.access-list 10 permit icmp 159.67.183.0 0.0.0.255 any access-list 10 deny icmp any any access-list 10 permit ip any any
C.access-list 99 permit icmp 159.67.183.0 0.0.0.255 any access-list 99 deny icmp any any
D.access-list 110 permit icmp 159.67.183.0 0.0.0.255 any access-list 110 deny icmp any any access-list 110 permit ip any any
第14题:
Cisco路由器执行show access-list命令显示如下一组控制列表信息:
Standard IP acceSS list 30
deny 127.0.0.0,wildcard bits 0.255.255.255
deny 172.16.0.0,wiidcard bits 0.15.255.255
permft any
根据上述信息,正确的access-list配置是______。
A) Router(config)#access-list 30 deny 127.0.0.0 255.255.255.0
Router(config)#access-list 30 deny 172.16.0.0 255.240.0.0
Router(config)#access-list 30 permit any
B) Router(config-std-nacl)#access-list 30 deny 127.0.0.0 0.255.255.255
Router(config-std-nael)#access-list 30 deny 172.16.0.0 0.15.255.255
Router(config-std-nacl)#access-list 30 permit any
C) Router(config)#access-list 30 deny 127.0.0.0 0.255.255.255
Router(config)#access-list 30 deny 172.16.0.0 0.15.255.255
Router(config)#access-list 30 permit any
D) Router(config)#access-list 30 deny 127.0.0.0 0.255.255.255
Router(config)#access-list 30 permit any
Router(config)#access-list 30 deny 172.16.0.0 0.15.255.255
A.
B.
C.
D.
第15题:
只封禁一台地址为192.168.1.230主机的access-list正确配置是 (5) 。 A.access-list 110 permit中anyany access-list 110 deny中host 192.168.1.230 any access-list 110 deny ip anyhost 192.168.1.230
B.access-list 110 deny中host 192.168.1.230 any access-list 110 deny中any host 192.168.1.230 access-list 110 permit ip anyany
C.access-list 110 deny ip host 192.168.1.230 any access-list 110 deny ip any host 192.168.1.230
D.access-list 110 deny ip host 192.168.1.230 any access-list 110 permit ip anyany access-list 110 deny ip any host 192.168.1.230
第16题:
A. access-list 15 deny telnet any 10.10.1.0 0.0.0.255 eq 23
B. access-list 115 deny udp any 10.10.1.0 eq telnet
C. access-list 15 deny tcp 10.10.1.0 255.255.255.0 eq telnet
D. access-list 115 deny tcp any 10.10.1.0 0.0.0.255 eq 23
E. access-list 15 deny udp any 10.10.1.0 255.255.255.0 eq 23
第17题:
A.access-list50deny192.168.1.10.0.0.255
B.access-list110permitipanyany
C.access-list2500denytcpanyhost192.168.1.1eq22
D.access-list101denytcpanyhost192.168.1.1
第18题:
Th efollowing access list below was applied outbound on the E0 interface connected to the 192.169.1.8/29LAN:access-list 135 deny tcp 192.169.1.80.0.0.7 eq 20 anyaccess-list 135 deny tcp 192.169.1.80.0.0.7 e q21 anyHow will the above access lists affect traffic?()
A.FTP traffic from 192.169.1.22 wil lbe denied
B.Not raffic,except for FTP traffic wil lbe allowed to exit E0
C.FTP traffic from 192.169.1.9 to any host will be denied
D.All traffic exiting E0 will be denied
E.All FTP traffic to network 192.169.1.9/29 will be denied
第19题:
A.access-list 10 permit 172.29.16.0 0.0.0.255
B.access-list 10 permit 172.29.16.0 0.0.1.255
C.access-list 10 permit 172.29.16.0 0.0.3.255
D.access-list 10 permit 172.29.16.0 0.0.15.255
E.access-list 10 permit 172.29.0.0 0.0.255.255
第20题:
Which one of the access control list statements below will deny all telnet connections to subnet 10.10.1.0/24?()
第21题:
A network administrator wants to add a line to an access list that will block only Telnet access by the hosts on subnet 192.168.1.128/28 to the server at 192.168.1.5. What command should be issued to accomplish this task?()
第22题:
Which single access list statement will combine all four of these statements into a single statement that will have exactly the same effect()。
第23题:
access-list 15 deny telnet any 10.10.1.0 0.0.0.255 eq 23
access-list 115 deny udp any 10.10.1.0 eq telnet
access-list 15 deny tcp 10.10.1.0 255.255.255.0 eq telnet
access-list 115 deny tcp any 10.10.1.0 0.0.0.255 eq 23
access-list 15 deny udp any 10.10.1.0 255.255.255.0 eq 23
第24题:
FTP traffic from 192.169.1.22 wil lbe denied
Not raffic,except for FTP traffic wil lbe allowed to exit E0
FTP traffic from 192.169.1.9 to any host will be denied
All traffic exiting E0 will be denied
All FTP traffic to network 192.169.1.9/29 will be denied