Which two conditions would cause a router to drop a packet? (Choose two.)

Pckt source address doesn't match source permitted in a stndrd inbound ACE.

No routing table entry exists for the packet destination

No inbound ACL exists on the interface where the packet enters the router.

The ACL affecting the packet does not contain at least one deny ACE.

No outbound ACL exists on the interface where the packet exits the router.

Which two statements describe appropriate general guidelines for configuring and applying ACLs? (Choose two.)

If an ACL contains no permit statements, all traffic is denied by default.

The most specific ACL statements should be entered first (top-down nature)

Multiple ACLs per protocol and per direction can be applied to interface.

Standard ACLs are placed closest to the source

Which scenario would cause an ACL misconfiguration and deny all traffic?

Apply an ACL that has all deny ACE statements.

Apply a standard ACL in the inbound direction.

Apply a named ACL to a VTY line.

Apply a standard ACL using the ip access-group out command.

What single access list matches all of the following networks? 192.168.16.0; 192.168.17.0; 192.168.18.0; 192.168.19.0

access-list 10 permit 192.168.16.0 0.0.3.255

access-list 10 permit 192.168.16.0 0.0.15.255

access-list 10 permit 192.168.16.0 0.0.0.255

access-list 10 permit 192.168.0.0 0.0.15.255

Which three statements describe ACL processing of packets? (Choose three.)

An implicit deny any rejects any packet doesn't match any ACE.

A packet can either be rejected or forwarded as directed by the ACE.

Each statement is checked till a match is detected or till end of ACE list

A packet doesn't match conditions of any ACE will be forwarded by default.

Each packet is compared to the conditions of every ACE in the ACL

What happens if ACL is incorrectly applied to an interface in the inbound direction instead of the outbound direction?

The ACL does not perform as designed.

The ACL will analyze traffic after it is routed to the outbound interface.

In applying an ACL to a router interface, which traffic is designated as outbound?

Traffic that is leaving the router and going toward the destination host

Traffic that is coming from the source IP address into the router

Traffic that is going from the destination IP address into the router

Traffic for which the router can find no routing table entry

Which location is recommended for extended numbered or extended named ACLs?

A location as close to the source of traffic as possible

A location as close to the destination of traffic as possible

A location centered between destinations and sources to filter most traffic

Using the established keyword is to ensure that return traffic is allowed

The computers used by the network administrators for a school are on the 10.7.0.0/27 network. Which two commands are needed at a minimum to apply an ACL that will ensure that only devices that are used by the network administrators will be allowed Telnet access to the routers? (Choose two.)

access-list 5 permit 10.7.0.0 0.0.0.31

Consider the configured access list. R1# show access-lists extended IP access list 100 deny tcp host 10.1.1.2 host 10.1.1.1 eq telnet deny tcp host 10.1.2.2 host 10.1.2.1 eq telnet permit ip any any (15 matches) What are two characteristics of this access list? (Choose two.)

The access list has been applied to an interface.

Any device on the 10.1.1.0/24 network (except the 10.1.1.2 device) can telnet to the router that has the IP address 10.1.1.1 assigned.

A network administrator would not be able to tell if the access list has been applied to an interface or not.

Any device can telnet to the 10.1.2.1 device.

The 10.1.2.1 device is not allowed to telnet to the 10.1.2.2 device.

Which access list statement permits HTTP traffic that is sourced from host 10.1.129.100 port 4300 and destined to host 192.168.30.10?

access-list 101 permit tcp 10.1.128.0 0.0.1.255 eq 4300 192.168.30.0 0.0.0.15 eq www

access-list 101 permit tcp any eq 4300

access-list 101 permit tcp 192.168.30.10 0.0.0.0 eq 80 10.1.0.0 0.0.255.255

access-list 101 permit tcp 10.1.129.0 0.0.0.255 eq www 192.168.30.10 0.0.0.0 eq www

access-list 101 permit tcp host 192.168.30.10 eq 80 10.1.0.0 0.0.255.255 eq 4300

What packets would match the access control list statement that is shown below? access-list 110 permit tcp 172.16.0.0 0.0.0.255 any eq 22

SSH traffic from the 172.16.0.0 network to any destination network

SSH traffic from any source network to the 172.16.0.0 network

Any TCP traffic from any host to the 172.16.0.0 network

Any TCP traffic from the 172.16.0.0 network to any destination network

Consider the access list command applied outbound on a router serial interface. access-list 100 deny icmp 192.168.10.0 0.0.0.255 any echo reply What is the effect of applying this access list command?

No traffic will be allowed outbound on the serial interface.

The only traffic denied is ICMP-based traffic. All other traffic is allowed.

The only traffic denied is echo-replies sourced from the 192.168.10.0/24 network. All other traffic is allowed.

Users on the 192.168.10.0/24 network are not allowed to transmit traffic to any other destination.

Consider the following output for an ACL that has been applied to a router via the access-class in command. What can a network administrator determine from the output that is shown? R1# <output omitted> Standard IP access list 2 10 permit 192.168.10.0, wildcard bits 0.0.0.255 (2 matches) 20 deny any (1 match)

Two devices were able to use SSH or Telnet to gain access to the router.

Two devices connected to the router have IP addresses of 192.168.10. x .

Traffic from one device was not allowed to come into one router port and be routed outbound a different router port.

Traffic from two devices was allowed to enter one router port and be routed outbound to a different router port.

Which two commands will configure a standard ACL? (Choose two.)

Router(config)# access-list 90 permit 192.168.10.5 0.0.0.0

Router(config)# access-list 35 permit host 172.31.22.7

Router(config)# access-list 20 permit host 192.168.5.5 any any

Router(config)# access-list 45 permit 192.168.200.4 host

Router(config)# access-list 10 permit 10.20.5.0 0.255.255.255 any

What two ACEs could be used to deny IP traffic from a single source host 10.1.1.1 to the 192.168.0.0/16 network? (Choose two.)

Access-list 100 deny ip host 10.1.1.1 192.168.0.0 0.0.255.255

Access-list 100 deny ip 10.1.1.1 0.0.0.0 192.168.0.0 0.0.255.255

Access-list 100 deny ip 192.168.0.0 0.0.255.255 host 10.1.1.1

Access-list 100 deny ip 10.1.1.1 255.255.255.255 192.168.0.0 0.0.255.255

Access-list 100 deny ip 192.168.0.0 0.0.255.255 10.1.1.1 0.0.0.0

Cisco Attacks

Authored by Pei Zhang

Computers

10th Grade

Used 3+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

26 questions

Show all answers

MULTIPLE CHOICE QUESTION

10 sec • 5 pts

What is a Malware that holds a computer system captive until a payment is made to the attacker?

Spyware

Adware

Ransomeware

Virus

MULTIPLE CHOICE QUESTION

10 sec • 3 pts

What is the most common goal of search engine optimization (SEO) poisoning?

To trick someone into installing malware or divulging personal information

To overwhelm a network device with maliciously formed packets

To build a botnet of zombies

To increase web traffic to malicious sites

MULTIPLE CHOICE QUESTION

10 sec • 3 pts

A set of changes done to any program or application with the aim of updating, fixing or improving it is what?

A fix

A hack

An install

A patch

MULTIPLE CHOICE QUESTION

10 sec • 3 pts

Which of the following should be carried out to address known software vulnerabilities of a specific application?

Change the hardware

Change the software

Remove the application

Install a security patch

MULTIPLE SELECT QUESTION

20 sec • 3 pts

Which of the following characteristics describe a worm? (Choose Two)

Infects computers by attaching to software code

Hides in a dormant state until needed by an attacker

Travels to new computers without any intervention or knowledge of the user

Is self-replicating

MULTIPLE CHOICE QUESTION

10 sec • 3 pts

Which statement about the operation of a standard ACL is incorrect?

The router extracts the source IPv4 address from the packet header.

Router starts at top of ACL and compares address to each ACE sequentially

When a match is made, the ACE either permits or denies the packet

If there are no matching ACEs in the ACL, the packet is forwarded

MULTIPLE CHOICE QUESTION

10 sec • 3 pts

Which of the following is an ACL best practice?

Always test ACLs on a production network.

Create your ACLs on a production router.

Document the ACLs using the description ACL command.

Write the ACL before configuring it on a router.

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

22 questions

Examen Ordinario FM/QB

Quiz

•

University

22 questions

Puertas Lógicas

Quiz

•

9th - 10th Grade

21 questions

Pemodelan & Simulasi Sistem PRAK

Quiz

•

University

21 questions

IP Address

Quiz

•

10th - 12th Grade

22 questions

Router Quiz for the Layer 3 connoisseur

Quiz

•

University

23 questions

Quiz de Modelagem de Dados

Quiz

•

12th Grade

21 questions

AP CSA Unit 2 Practise MCQ

Quiz

•

11th Grade

25 questions

Quiz on Operating System Basics

Quiz

•

University

Popular Resources on Wayground

10 questions

5.P.1.3 Distance/Time Graphs

Quiz

•

5th Grade

10 questions

Fire Drill

Quiz

•

2nd - 5th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

15 questions

Hargrett House Quiz: Community & Service

Quiz

•

5th Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

20 questions

Inferences

Quiz

•

4th Grade

15 questions

Equivalent Fractions

Quiz

•

4th Grade

Discover more resources for Computers

12 questions

Digital Ethics Challenge

Quiz

•

10th Grade

20 questions

[AP CSP] Create Task Prep Lesson: 🎞️Video and 💻Code ('25-26)

Lesson

•

9th - 12th Grade

Cisco Attacks

What is a Malware that holds a computer system captive until a payment is made to the attacker?

What is the most common goal of search engine optimization (SEO) poisoning?

A set of changes done to any program or application with the aim of updating, fixing or improving it is what?

Which of the following should be carried out to address known software vulnerabilities of a specific application?

Which of the following characteristics describe a worm? (Choose Two)

Which statement about the operation of a standard ACL is incorrect?

Which of the following is an ACL best practice?

Which two conditions would cause a router to drop a packet? (Choose two.)

Configuring ACL with R1(config)# access-list 1 permit 172.16.0.0 0.0.15.255. Which two IP addresses match ACL statement?

Which two statements describe appropriate general guidelines for configuring and applying ACLs? (Choose two.)

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers