單項選擇題Which statement best describes configuring access control lists to control Telnet traffic destined to therouter itself?()

A.The ACL applied to the vty lines has no in or out option like ACL being applied to an interface.
B.The ACL is applied to the Telnet port with the ip access-group command.
C.The ACL must be applied to each vty line individually.
D.The ACL should be applied to all vty lines in the in direction to prevent an unwanted user from connecting to an unsecured port.


您可能感興趣的試卷

你可能感興趣的試題

1.單項選擇題Which feature is a potential security weakness of a traditional stateful firewall?()

A.It cannot support UDP flows.
B.It cannot ensure each TCP connection follows a legitimate TCP three-way handshake.
C.It cannot detect application-layer attacks.
D.The status of TCP sessions is retained in the state table after the sessions terminate.

2.單項選擇題Which statement best describes Cisco IOS Zone-Based Policy Firewall?()

A.A router interface can belong to multiple zones.
B.Policy maps are used to classify traffic into different traffic classes, and class maps are used to assignaction to the traffic classes.
C.The pass action works in only one direction
D.A zone-pair is bidirectional because it specifies traffic flowing among the interfaces within the zone-pair in both directions.

4.單項選擇題As a candidate for CCNA examination, when you are familiar with the basic commands, if you input thecommand "enable secret level 5 password" in the global mode , what does it indicate?()

A.Set the enable secret command to privilege level 5
B.The enable secret password is hashed using MD5
C.The enable secret password is for accessing exec privilege level 5
D.The enable secret password is hashed using SHA
E.The enable secret password is encrypted using Cisco proprietary level 5 encryption

7.單項選擇題Which description about asymmetric encryption algorithms is correct?()

A.They use the same key for encryption and decryption of data.
B.They use different keys for decryption but the same key for encryption of data.
C.They use different keys for encryption and decryption of data.
D.They use the same key for decryption but different keys for encryption of data.

8.單項選擇題For the following items ,which one can be used to authenticate the IPsec peers during IKE Phase 1?()

A.pre-shared key
B.integrity check value
C.XAUTH
D.Diffie-Hellman Nonce

9.單項選擇題

Which description is correct based on the exhibit and partial configuration?()

A.All traffic destined for network 172.16.150.0 will be denied due to the implicit denyall.
B.All traffic from network 10.0.0.0 will be permitted.
C.Access-list 101 will prevent address spoofing from interface E0.
D.This ACL will prevent any host on the Internet from spoofing the inside network address as the sourceaddress for packets coming into the router from the Internet.

最新試題

On the basis of the show policy-map type inspect zone-pair session command output provided in theexhibit.What can be determined about this Cisco IOS zone based firewall policy?()

題型:單項選擇題

Which type of MAC address is dynamically learned by a switch port and then added to the switch’s runningconfiguration?()

題型:單項選擇題

Which name is of the e-mail traffic monitoring service that underlies that architecture of IronPort?()

題型:單項選擇題

In an IEEE 802.1x deployment,between which two devices EAPOL messages typically are sent?()

題型:單項選擇題

Which method is of gaining access to a system that bypasses normal security measures?()

題型:單項選擇題

Which one of the Cisco IOS commands can be used to verify that either the Cisco IOS image, theconfiguration files,or both have been properly backed up and secured?()

題型:單項選擇題

Which statement is true about a Smurf attack?()

題型:單項選擇題

Which information is stored in the stateful session flow table while using a stateful firewall?()

題型:單項選擇題

Regarding constructing a good encryption algorithm, what does creating an avalanche effect indicate?()

題型:單項選擇題

Which two primary port authentication protocols are used with VSANs?()

題型:多項選擇題