Refer to the exhibit. An engineer is creating an ACL to restrict some traffic to the WLC CPU. Which selection must be made from the direction drop-down list?
A.
It must be Inbound because traffic goes to the WLC.
B.
Packet direction has no significance; it is always Any.
C.
It must be Outbound because it is traffic that is generated from the WLC.
D.
To have the complete list of options, the CPU ACL must be created only by the CLI.
Does not matter which direction is selected. It will always be any for a CPU ACL.
Answer is B.
Source:
https://www.cisco.com/c/en/us/td/docs/wireless/controller/8-5/config-guide/b_cg85/access_control_lists.html#:~:text=If%20you%20are%20planning%20to%20apply%20this%20ACL%20to%20the%20controller%20CPU%2C%20the%20packet%20direction%20does%20not%20have%20any%20significance%2C%20it%20is%20always%20%E2%80%98Any%E2%80%99.
"For AireOS controllers using versions 6.0 and later, CPU ACLs are
applicable for traffic originating both to and from the controller. Thus,
when you’re creating the ACLs and attaching them to the CPU, the ACL
direction fields do not have any relevance." as per Official Cert Guide
If you are planning to apply this ACL to the controller CPU, the packet direction does not have any significance, it is always ‘Any’.
https://www.cisco.com/c/en/us/td/docs/wireless/controller/8-5/config-guide/b_cg85/access_control_lists.html#ID2622:~:text=If%20you%20are%20planning%20to%20apply%20this%20ACL%20to%20the%20controller%20CPU%2C%20the%20packet%20direction%20does%20not%20have%20any%20significance%2C%20it%20is%20always%20%E2%80%98Any%E2%80%99.
https://www.cisco.com/c/en/us/support/docs/wireless-mobility/wlan-security/71978-acl-wlc.html
"Because this example uses any for the Source and Destination fields, you do not have to specify the direction. It can be left at its default value of any."
In this instance, the answer is any but not alway any as the second portion of option B states. per the source documentation referenced, this would only be any due to the source and destination being any making A the best choice.
CPU ACLs only filter traffic towards the CPU, and not any traffic exiting or generated by the CPU.
Note: For the WLC 5500 series in versions 6.0 and later, the CPU ACL is applicable for traffic originated from the WLC as well. For the other WLC platforms, this behavior is implemented in versions 7.0 and later. Also, when creating CPU ACLs direction fields do not have any impact.
Also, when creating CPU ACLs direction fields do not have any impact
https://www.cisco.com/c/en/us/support/docs/wireless/4400-series-wireless-lan-controllers/109669-secure-wlc.html#t4
I think the correct answer is ( B ) because source and destination in the exhibit are Any
what do u think ??
https://www.cisco.com/c/en/us/support/docs/wireless-mobility/wlan-security/71978-acl-wlc.html
I think the correct answer is ( B ) because source and direction in the exhibit are Any
what do u think ??
https://www.cisco.com/c/en/us/support/docs/wireless-mobility/wlan-security/71978-acl-wlc.html
upvoted 4 times
...
This section is not available anymore. Please use the main Exam Page.300-430 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Mimimimimi
Highly Voted 1 year, 7 months agoDen07
Highly Voted 3 years, 2 months agoPicoOstrava
Most Recent 6 months, 3 weeks agoVlad_Is_Love_ua
9 months, 2 weeks agoGuglielmino
2 years, 1 month agoanonymonkey
2 years, 1 month agomalkana
2 years, 2 months agokthekillerc
2 years, 6 months agoPawnstar
2 years, 6 months agoVikiboy
3 years, 1 month agomaro_moh
3 years, 2 months agomaro_moh
3 years, 2 months ago