ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 300-430 All Questions

View all questions & answers for the 300-430 exam
Go to Exam

Exam 300-430 topic 1 question 218 discussion

Actual exam question from Cisco's 300-430
Question #: 218
Topic #: 1
[All 300-430 Questions]



Refer to the exhibit. An administrator configures CPU ACLs on the AireOS WLC to implement security. After configuration, administrative users cannot access the user interface. Where must HTTP and HTTPS traffic be allowed on the ACLs, based on the configuration?

  • A. on the dynamic interface
  • B. on the service port of management traffic
  • C. on the management interface
  • D. on the virtual interface
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by MBCpt at Feb. 7, 2025, 3:05 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
rrahim
2 months, 2 weeks ago
Selected Answer: C
When configuring CPU ACLs on an AireOS Wireless LAN Controller (WLC) to implement security, HTTP and HTTPS traffic must be allowed on the management interface. The management interface is the primary interface used for administrative access to the WLC's web-based user interface (GUI) or CLI. If HTTP/HTTPS traffic is blocked on this interface, administrative users will be unable to access the WLC. Explanation of the options: A. on the dynamic interface: Dynamic interfaces are used for client data traffic and are not relevant for administrative access to the WLC. B. on the service port of management traffic: The service port is typically used for out-of-band management and is not the primary interface for HTTP/HTTPS access to the WLC's GUI. C. on the management interface: This is correct. The management interface is used for administrative access, and HTTP/HTTPS traffic must be allowed here for administrators to access the WLC's user interface. D. on the virtual interface: The virtual interface is used for guest web authentication and mobility-related functions, not for administrative access.
upvoted 1 times
...
MBCpt
2 months, 3 weeks ago
Selected Answer: B
Only port 22 is allowed, ports 80 and 443 should also be allowed.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago