Chapter 7 Quiz
Which range represents all the IP addresses that are affected when network 10.120.160.0 with a wildcard mask of 0.0.7.255 is used in an ACE? 10.120.160.0 to 10.127.255.255 10.120.160.0 to 10.120.167.255 10.120.160.0 to 10.120.168.0 10.120.160.0 to 10.120.191.255
10.120.160.0 to 10.120.167.255 7.1.2
Refer to the exhibit. A network administrator is configuring a standard IPv4 ACL. What is the effect after the command no access-list 10 is entered? ACL 10 is disabled on Fa0/1. ACL 10 is removed from the running configuration. ACL 10 will be disabled and removed after R1 restarts. ACL 10 is removed from both the running configuration and the interface Fa0/1.
ACL 10 is removed from the running configuration. 7.2.2
What are two uses of an access control list? (Choose two.) ACLs assist the router in determining the best path to a destination. Standard ACLs can restrict access to specific applications and ports. ACLs provide a basic level of security for network access. ACLs can permit or deny traffic based upon the MAC address originating on the router. ACLs can control which areas a host can access on a network.
ACLs provide a basic level of security for network access. ACLs can control which areas a host can access on a network. 7.1.1
Which scenario would cause an ACL misconfiguration and deny all traffic? Apply a standard ACL in the inbound direction. Apply a named ACL to a VTY line. Apply an ACL that has all deny ACE statements. Apply a standard ACL using the ip access-group out command.
Apply an ACL that has all deny ACE statements. 7.3.1
Refer to the exhibit. A network administrator wants to create a standard ACL to prevent network 1 traffic from being transmitted to the Research and Development network. On which router interface and in which direction should the standard ACL be applied? R1 Gi0/0 inbound R1 Gi0/0 outbound R1 S0/0/0 outbound R2 S0/0/0 inbound R2 Gi0/0 outbound R2 Gi0/0 inbound
R2 Gi0/0 outbound 7.1.4
Which two commands will configure a standard ACL? (Choose two.) Router(config)# access-list 20 permit host 192.168.5.5 any any Router(config)# access-list 90 permit 192.168.10.5 0.0.0.0 Router(config)# access-list 45 permit 192.168.200.4 host Router(config)# access-list 10 permit 10.20.5.0 0.255.255.255 any Router(config)# access-list 35 permit host 172.31.22.7
Router(config)# access-list 90 permit 192.168.10.5 0.0.0.0 Router(config)# access-list 35 permit host 172.31.22.7 7.2.1
A network administrator is writing a standard ACL that will deny any traffic from the 172.16.0.0/16 network, but permit all other traffic. Which two commands should be used? (Choose two.) Router(config)# access-list 95 deny any Router(config)# access-list 95 deny 172.16.0.0 0.0.255.255 Router(config)# access-list 95 deny 172.16.0.0 255.255.0.0 Router(config)# access-list 95 permit any Router(config)# access-list 95 host 172.16.0.0 Router(config)# access-list 95 172.16.0.0 255.255.255.255
Router(config)# access-list 95 deny 172.16.0.0 0.0.255.255 Router(config)# access-list 95 permit any 7.2.1
Which type of standard ACL is easiest to modify on a production router? a numbered ACL that is applied inbound a numbered ACL that has not been applied yet a named ACL that has been applied with the access-class command a named ACL that has not been applied yet
a named ACL that has not been applied yet 7.2.2
True or False? A standard ACL filters network traffic based on the destination MAC address.
false 7.1.1
Which command produced the following output? R1# 10 permit 192.168.1.56 0.0.0.720 permit 192.168.1.64 0.0.0.63 (4 match(es))30 deny any (8 match(es)) no access-list 1 show access-lists show running-config | section access-list clear access-list counters
show access-lists 7.2.2
In applying an ACL to a router interface, which traffic is designated as outbound? traffic that is coming from the source IP address into the router traffic that is leaving the router and going toward the destination host traffic that is going from the destination IP address into the router traffic for which the router can find no routing table entry
traffic that is leaving the router and going toward the destination host 7.1.1
True or False? The name of a named standard ACL is case sensitive.
true 7.2.1