You want to create a policy that allows all TCP traffic in the port range of 20 to 110, except for telnet traffic, which should be dropped. Which of the following access control lists will accomplish this?
A.
deny tcp any any eq 22 permit tcp any any gt 20 lt 110
B.
permit tcp any any range 22 443 deny tcp any any eq 23
C.
deny tcp any any eq 23 permit tcp any any
D.
deny tcp any any eq 23 permit tcp any any range 20 110
D. looks good but cisco IOS swapped numbers to port names:
Extended IP access list Q_648
20 deny tcp any any eq telnet
40 permit tcp any any range ftp-data pop3
==
original cmd:
cisco(config-ext-nacl)#40 permit tcp any any range 20 110
The question doesn't specifically refer to a policy-map, just says policy.
upvoted 2 times
...
...
This section is not available anymore. Please use the main Exam Page.350-401 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
[Removed]
6 months, 2 weeks agoCCNPWILL
1 year, 2 months ago[Removed]
1 year, 5 months agonushadu
1 year, 11 months agonushadu
1 year, 11 months agoiGlitch
2 years agoAndreasThornus
1 year, 11 months ago