Cisco Chapter 8 and 9
In applying an ACL to a router interface, which traffic is designated as outbound? traffic that is coming from the source IP address into the router. traffic that is leaving the router and going toward the destination host. traffic that is going from the destination IP address into the router. traffic for which the router can find no routing table entry.
traffic that is leaving the router and going toward the destination host.
Which range represents all the IP addresses that are affected when network 10.120.160.0 with a wildcard mask of 0.0.7.255 is used in an ACE? 10.120.160.0 to 10.127.255.255 10.120.160.0 to 10.120.167.255 10.120.160.0 to 10.120.168.0 10.120.160.0 to 10.120.191.255
10.120.160.0 to 10.120.167.255
Fill in the blank. Refer to the exhibit. With the default metric settings, the OSPF cost for R1 to reach the network 172.16.1.0 is ____?
1564
Refer to the exhibit. This ACL is applied on traffic outbound from the router on the interface that directly connects to the 10.0.70.5 server. A request for information from a secure web page is sent from host 10.0.55.23 and is destined for the 10.0.70.5 server. Which line of the access list will cause the router to take action (forward the packet onward or drop the packet)? 1 2 3 4 5 the deny ip any any that is at the end of every ACL
3
The OSPF hello timer has been set to 15 seconds on a router in a point-to-point network. By default, what is the dead interval on this router? 15 Seconds 30 Seconds 45 Seconds 60 Seconds
60 Seconds
Which command is used to activate an IPv6 ACL named ENG_ACL on an interface so that the router filters traffic prior to accessing the routing table? ipv6 access-class ENG_ACL in ipv6 access-class ENG_ACL out ipv6 traffic-filter ENG_ACL in ipv6 traffic-filter ENG_ACL out
ipv6 traffic-filter ENG_ACL in
Fill in the blank. Do not use abbreviations. The command "clear ip ospf _____" forces a router with a new or changed router ID to form new adjacencies.
process
ACLs are used primarily to filter traffic. What are two additional uses of ACLs? (Choose two.): specifying internal hosts for NAT. identifying traffic for QoS. reorganizing traffic into VLANs filtering VTP packets
specifying internal hosts for NAT. identifying traffic for QoS.
A network technician issues the following commands when configuring a router: R1(config)# router ospf 11 R1(config-router)# network 10.10.10.0 0.0.0.255 area 0 What does the number 11 represent? the autonomous system number to which R1 belongs the area number where R1 is located the cost of the link to R1 the OSPF process ID on R1 the administrative distance that is manually assigned to R1
the OSPF process ID on R1
What are three entries that are displayed by the show ip ospf neighbor command? (Choose three.) the route metric and neighbor next hop address. the router ID of the neighboring routers. the OSPF state of each interface. the OSPF process ID used to establish the adjacency. the OSPF area number shared by the neighbor routers. the IP address of the neighbor router interface to which this router is directly connected.
the router ID of the neighboring routers. the OSPF state of each interface. the IP address of the neighbor router interface to which this router is directly connected.
In the creation of an IPv6 ACL, what is the purpose of the implicit final command entries, permit icmp any any nd-na and permit icmp any any nd-ns? to allow IPv6 to MAC address resolution to allow forwarding of IPv6 multicast packets to allow automatic address configuration to allow forwarding of ICMPv6 packets
to allow IPv6 to MAC address resolution
Which OSPF wildcard mask would be appropriate to use for the given network prefix?
/13 and 0.7.255.255
Fill in the blank. The wildcard mask that is used to advertise exactly the network 192.168.160.0 with subnet mask 255.255.240.0 is what?
0.0.15.255
Refer to the exhibit. A network administrator is configuring a standard IPv4 ACL. What is the effect after the command no access-list 10 is entered? ACL 10 is disabled on Fa0/1. ACL 10 is removed from the running configuration. ACL 10 will be disabled and removed after R1 restarts. ACL 10 is removed from both the running configuration and the interface Fa0/1.
ACL 10 is removed from the running configuration.
Which statement is correct about multiarea OSPF? OSPF can consolidate a fragmented OSPF area into one large area All routers are in one area called the backbone area (area 0). Arranging routers into areas partitions a large autonomous system in order to lighten the load on routers. OSPF multiarea increases the frequency of SPF calculation
Arranging routers into areas partitions a large autonomous system in order to lighten the load on routers.
Which statement describes a difference or similarity between OSPFv2 and OSPFv3? OSPFv2 requires the DR/BDR election to occur on multiaccess networks only, whereas OSPv3 requires DR/BDR elections for all network types. Both OSPFv2 and OSPFv3 use the router configuration network command to advertise networks. Both OSPFv2 and OSPFv3 use multicast destination addresses for link-state packets. OSPFv2 uses a 32 bit router ID and OSPFv3 uses a 128 bit router ID.
Both OSPFv2 and OSPFv3 use multicast destination addresses for link-state packets.
Which two statements are correct about extended ACLs? (Choose two) Extended ACLs use a number range from 1-99. Extended ACLs end with an implicit permit statement. Extended ACLs evaluate the source and destination addresses. Answer Port numbers can be used to add greater definition to an ACL.
Extended ACLs evaluate the source and destination addresses. Answer Port numbers can be used to add greater definition to an ACL.
At which OSPF state are neighbor routers converged and able to exchange routing updates? Two-Way ExStart Exchange Full
Full
Which series of commands will cause access list 15 to restrict Telnet access on a router? R1(config)# line vty 0 4 R1(config-line)# access-class 15 in R1(config)# line vty 0 4 R1(config-line)# ip access-group 15 in R1(config)# int gi0/0 R1(config-if)# access-class 15 in R1(config)# int gi0/0 R1(config-if)# ip access-group 15 in
R1(config)# line vty 0 4 R1(config-line)# access-class 15 in
Refer to the exhibit. A network administrator wants to create a standard ACL to prevent network 1 traffic from being transmitted to the Research and Development network. On which router interface and in which direction should the standard ACL be applied? R1 Gi0/0 inbound R1 Gi0/0 outbound R1 S0/0/0 outbound R2 S0/0/0 inbound R2 Gi0/0 outbound R2 Gi0/0 inbound
R2 Gi0/0 outbound
Refer to the exhibit. A network administrator configures a named ACL on the router. Why is there no output displayed when the show command is issued? The ACL is not activated. The ACL name is case sensitive. The ACL has not been applied to an interface. No packets have matched the ACL statements yet.
The ACL name is case sensitive.
Refer to the exhibit. A network administrator is configuring an ACL to limit the connection to R1 vty lines to only the IT group workstations in the network 192.168.22.0/28. The administrator verifies the successful Telnet connections from a workstation with IP 192.168.22.5 to R1 before the ACL is applied. However, after the ACL is applied to the interface Fa0/0, Telnet connections are denied. What is the cause of the connection failure? The permit ACE specifies a wrong port number. The enable secret password is not configured on R1. The login command has not been entered for vty lines. The IT group network is included in the deny statement. The permit ACE should specify protocol ip instead of tcp.
The IT group network is included in the deny statement.
Which two statements are correct about the OSPF passive-interface command? (Choose two.) The OSPF network will benefit from more efficient use of bandwidth and resources. The router will not advertise the network of the passive interface to its neighbors. OSPF link-state information is still sent and received through the passive interface. The router will not establish any OSPF neighbor relationships with routers on that link.
The OSPF network will benefit from more efficient use of bandwidth and resources. The router will not establish any OSPF neighbor relationships with routers on that link.
Refer to the exhibit. What can be determined from this output? The ACL is missing the deny ip any any ACE. Because there are no matches for line 10, the ACL is not working. The ACL is only monitoring traffic destined for 10.23.77.101 from three specific hosts. The router has not had any Telnet packets from 10.35.80.22 that are destined for 10.23.77.101.
The router has not had any Telnet packets from 10.35.80.22 that are destined for 10.23.77.101.
A network administrator configures a loopback interface as the OSPF router ID with the IP address of 192.168.1.1/30. What could be the consequence of using this 30-bit mask for the loopback interface? Older routers do not recognize the router-id command. The interface is not enabled for OSPF. OSPF routers must also be configured with a router priority value. This loopback interface may be advertised as a reachable network.
This loopback interface may be advertised as a reachable network.
Which set of access control entries would allow all users on the 192.168.10.0/24 network to access a web server that is located at 172.17.80.1, but would not allow them to use Telnet? access-list 103 deny tcp host 192.168.10.0 any eq 23 access-list 103 permit tcp host 192.168.10.1 eq 80 access-list 103 permit 192.168.10.0 0.0.0.255 host 172.17.80.1 access-list 103 deny tcp 192.168.10.0 0.0.0.255 any eq telnet access-list 103 permit tcp 192.168.10.0 0.0.0.255 host 172.17.80.1 eq 80 access-list 103 deny tcp 192.168.10.0 0.0.0.255 any eq 23 access-list 103 permit tcp 192.168.10.0 0.0.0.255 any eq 80 access-list 103 deny tcp 192.168.10.0 0.0.0.255 any eq 23
access-list 103 permit tcp 192.168.10.0 0.0.0.255 host 172.17.80.1 eq 80 access-list 103 deny tcp 192.168.10.0 0.0.0.255 any eq 23
Match each OSPF packet type to how it is used by a router. (Not all options are used.) In Order:
advertise: LSU packet compare: DBD packet establish: hello packet query: LSR packet
What is the effect of the established parameter in an extended ACL? blocks all incoming traffic from reaching a network. allows external traffic into a network only if it is part of an existing connection with an internal host. allows external sources to send unsolicited requests for information to source IP addresses in the network. allows traffic from a permitted source address to go to any destination outside the network.
allows external traffic into a network only if it is part of an existing connection with an internal host.
What will an OSPF router prefer to use first as a router ID? any IP address that is configured using the router-id command. a loopback interface that is configured with the highest IP address on the router. the highest active interface IP that is configured on the router. the highest active interface that participates in the routing process because of a specifically configured network statement.
any IP address that is configured using the router-id command.