Security

Q1: If you wanted to deny all Telnet connections to only network 192.168.10.0, which command could you use?

A access-list 100 deny tcp 192.168.10.0 255.255.255.0 eq telnet

B access-list 100 deny tcp 192.168.10.0 0.255.255.255 eq telnet

C access-list 100 deny tcp any 192.168.10.0 0.0.0.255 eq 23

D access-list 100 deny 192.168.10.0 0.0.0.255 any eq 23

ANS:C - access-list 100 deny tcp any 192.168.10.0 0.0.0.255 eq 23

The extended access list ranges are 100-199 and 2000-2699, so the access-list number of 100 is valid. Telnet uses TCP, so the protocol TCP is valid. Now you just need to look for the source and destination address. Only the third option has the correct sequence of parameters. Answer B may work, but the question specifically states "only" to network 192.168.10.0, and the wildcard in answer B is too broad.



img not found
img

For help Students Orientation
Mcqs Questions

One stop destination for examination, preparation, recruitment, and more. Specially designed online test to solve all your preparation worries. Go wherever you want to and practice whenever you want, using the online test platform.