READ Free Dumps For CISCO- 100-105
| Question ID 14560 | Which of the following statements are TRUE regarding Cisco access lists? (Choose two.)
|
| Option A | In an inbound access list, packets are filtered as they enter an interface.
|
| Option B | In an inbound access list, packets are filtered before they exit an interface.
|
| Option C | Extended access lists are used to filter protocol-specific packets.
|
| Option D | You must specify a deny statement at the end of each access list to filter unwanted traffic.
|
| Option E | When a line is added to an existing access list, it is inserted at the beginning of the access list.
|
| Correct Answer | A,C |
Explanation Explanation: In an inbound access list, packets are filtered as they enter an interface. Extended access lists are used to filter protocol specific packets. Access lists can be used in a variety of situations when the router needs to be given guidelines for decision-making. These situations include: Filtering traffic as it passes through the router To control access to the VTY lines (Telnet) To identify "interesting" traffic to invoke Demand Dial Routing (DDR) calls To filter and control routing updates from one router to another There are two types of access lists, standard and extended. Standard access lists are applied as close to the destination as possible (outbound), and can only base their filtering criteria on the source IP address. The number used while creating an access list specifies the type of access list created. The range used for standard access lists is 1 to 99 and 1300 to 1999. Extended access lists are applied as close to the source as possible (inbound), and can base their filtering criteria on the source or destination IP address, or on the specific protocol being used. The range used for extended access lists is 100 to 199 and 2000 to 2699. Other features of access lists include: Inbound access lists are processed before the packet is routed. Outbound access lists are processed after the packet has been routed to an exit interface. An "implicit deny" is at the bottom of every access list, which means that if a packet has not matched any preceding access list condition, it will be filtered (dropped). Access lists require at least one permit statement, or all packets will be filtered (dropped). One access list may be configured per direction for each Layer 3 protocol configured on an interface The option stating that in an inbound access list, packets are filtered before they exit an interface is incorrect. Packets are filtered as they exit an interface when using an outbound access list. The option stating that a deny statement must be specific
| Question ID 14561 | Which of the following statements are TRUE regarding Cisco access lists? (Choose two.)
|
| Option A | In an inbound access list, packets are filtered as they enter an interface.
|
| Option B | In an inbound access list, packets are filtered before they exit an interface.
|
| Option C | Extended access lists are used to filter protocol-specific packets.
|
| Option D | You must specify a deny statement at the end of each access list to filter unwanted traffic.
|
| Option E | When a line is added to an existing access list, it is inserted at the beginning of the access list.
|
| Correct Answer | A,C |
Explanation Explanation: In an inbound access list, packets are filtered as they enter an interface. Extended access lists are used to filter protocol specific packets. Access lists can be used in a variety of situations when the router needs to be given guidelines for decision-making. These situations include: Filtering traffic as it passes through the router To control access to the VTY lines (Telnet) To identify "interesting" traffic to invoke Demand Dial Routing (DDR) calls To filter and control routing updates from one router to another There are two types of access lists, standard and extended. Standard access lists are applied as close to the destination as possible (outbound), and can only base their filtering criteria on the source IP address. The number used while creating an access list specifies the type of access list created. The range used for standard access lists is 1 to 99 and 1300 to 1999. Extended access lists are applied as close to the source as possible (inbound), and can base their filtering criteria on the source or destination IP address, or on the specific protocol being used. The range used for extended access lists is 100 to 199 and 2000 to 2699. Other features of access lists include: Inbound access lists are processed before the packet is routed. Outbound access lists are processed after the packet has been routed to an exit interface. An "implicit deny" is at the bottom of every access list, which means that if a packet has not matched any preceding access list condition, it will be filtered (dropped). Access lists require at least one permit statement, or all packets will be filtered (dropped). One access list may be configured per direction for each Layer 3 protocol configured on an interface The option stating that in an inbound access list, packets are filtered before they exit an interface is incorrect. Packets are filtered as they exit an interface when using an outbound access list. The option stating that a deny statement must be specifie