ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 200-301 All Questions

View all questions & answers for the 200-301 exam
Go to Exam

Exam 200-301 topic 1 question 1357 discussion

Actual exam question from Cisco's 200-301
Question #: 1357
Topic #: 1
[All 200-301 Questions]

SIMULATION
-


Guidelines
-

This is a lab item in which tasks will be performed on virtual devices.

• Refer to the Tasks tab to view the tasks for this lab item.
• Refer to the Topology tab to access the device console(s) and perform the tasks.
• Console access is available for all required devices by clicking the device icon or using the tab(s) above the console window.
• All necessary preconfigurations have been applied.
• Do not change the enable password or hostname for any device.
• Save your configurations to NVRAM before moving to the next item.
• Click Next at the bottom of the screen to submit this lab and move to the next question.
• When Next is clicked, the lab closes and cannot be reopened.


Topology
-




Tasks
-

IP connectivity between the three routers is established. IP Services must be configured in the order presented to complete the implementation.

1. Configure dynamic one-to-one address mapping on R2 using a standard list named XLATE, which allows all traffic to translate the source address of R3 to a pool named test_pool using the 10.10.10.0/24 network for traffic sent from R3 to R1. Avoid using an NVI configuration. Verify reachability by sending a ping to 192.168.100.1 from R3.
2. Configure R3 to dynamically receive an IP address on Ethernet0/2 from the DHCP server.
3. Configure R1 as an NTP server and R2 as a client, not as a peer, using the IP address 10.1.2.1.
4. Configure SSH access from R1 to R3, while excluding access via other remote connection protocols using the user root and password s3cret on router R3 using RSA. Verify connectivity from router R1 to R3 using a destination address assigned to interface E0/2 on R3.

Show Suggested Answer Hide Answer
Suggested Answer:
by matass_md at Aug. 15, 2024, 6:55 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
dasand
3 months, 1 week ago
Task-1 R2 conf t ip access-list standard XLATE permit 10.2.3.3 permit 192.168.3.1 permit 10.1.3.11 interface e0/1 ip nat inside exit interface e0/0 ip nat outside exit ip nat pool test_pool 10.10.10.1 10.10.10.254 netmask 255.255.255.0 ip nat inside source list XLATE pool test_pool end wr Task-2 R3 conf t interface 0/2 ip address dhcp end wr Task-3 R1 conf t ntp master end wr R2 conf t ntp server 10.1.2.1 end wr Task-4 R3 conf t ip domain name cisco.com line vty 0 4 login local exit username root password s3cret crypto key generate rsa (1024) end wr
upvoted 2 times
MinSun600
3 weeks, 4 days ago
the username and password should be on the first line before the line vty 0 4 username root password s3cret line vty 04 login local transport input ssh exit
upvoted 1 times
...
...
3040636
7 months, 2 weeks ago
1. NAT ip access-list Standard XLATE permit ip 192.168.3.1 permit ip 10.2.3.3 permit ip 10.1.3.11 INT G0/1 ip nat inside int g0/0 ip nat outside IP nap pool test_pool 10.10.10.1 10.10.10.254 netmask 255.255.255.0 ip nat inside source list XLATE pool test-pool 2. e0/2 ip add dhcp 3. r1. NTP master 1 r2 ntp server 10.1.2.1 4. ssh from r1-r2 r3. access list standard r1-r3 permit 192.168.100.1 permit 10.1.3.1 permit 10.1.2.1 usename root sec s3cret ip domain nam .bt.bt cry key gen rsa 1024 line vty 0 4 login local tran in ssh access -class r1-r3 in
upvoted 2 times
MicroDiff
5 months, 3 weeks ago
You forgot to aply access-list XLATE in inside interface
upvoted 1 times
...
exiledwl
7 months, 1 week ago
Thanks for the output I got similar but can you help explain why do you config "line vty 0 4" instead of "line vty 0 15"
upvoted 1 times
MinSun600
2 weeks, 1 day ago
0 4 is security private 0 15 is public
upvoted 1 times
...
...
...
matass_md
8 months, 3 weeks ago
The only thing that makes me think about this laboratory is the fact that ast Task 4 we are told to make SSH from R1 to R3 , while the SSH configuration is easy and correct in the given answers , I think the fact that we can only connect from R1 to R3 implies that we need to make an Access list on R3 for the VTY lines because if we don't do that , we can easy connect from R2 as well via SSH , I know it does not state that only from R1 but if not it would be said Configure R3 SSH access ( this would have been the most easy way) . So to be sure i would make an standard ACL ip access-list standard VTY permit 10.1.3.1 permit 10.1.2.1 permit 192.168.100.1 line vty 0 -15 access-class VTY in
upvoted 1 times
MicroDiff
6 months, 3 weeks ago
I believe that ACL is not necessary for apply in lines becose the question dont say the word 'only' R1 for R3.
upvoted 2 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago