What does the following access list, which is applied on the external interface FastEthernet 1/0 of the perimeter router, accomplish?
A.
It prevents incoming traffic from IP address ranges 10.0.0.0-10.0.0.255, 172.16.0.0-172.31.255.255, 192.168.0.0-192.168.255.255 and logs any intrusion attempts.
B.
It prevents the internal network from being used in spoofed denial of service attacks and logs any exit to the Internet.
C.
It filters incoming traffic from private addresses in order to prevent spoofing and logs any intrusion attempts.
D.
It prevents private internal addresses to be accessed directly from outside.
Suggested Answer:C🗳️
The private IP address ranges defined in RFC 1918 are as follows: 10.0.0.0 "" 10.255.255.255 172.16.0.0 "" 172.31.255.255 192.168.0.0 "" 192.168.255.255 These IP addresses should never be allowed from external networks into a corporate network as they would only be able to reach the network from the outside via routing problems or if the IP addresses were spoofed. This ACL is used to prevent all packets with a spoofed reserved private source IP address to enter the network. The log keyword also enables logging of this intrusion attempt.
Currently there are no comments in this discussion, be the first to comment!
This section is not available anymore. Please use the main Exam Page.300-101 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Comments