CCNA 2 Chapter 9 (SYC) Flashcards
Terms : Hide Images [1]
8721910084 | controls if a router forwards or drops packets based on information found in the packet header | What is an ACL? | 0 | |
8721914165 | 1. limits traffic 2. traffic flow control 3. basic network access security 4. filters traffic based on traffic type 5. screen hosts to permit or deny access to network services a. specifying internal hosts for NAT b. identifying traffic for QoS | What 5 tasks does an ACL perform when configured on a router interface? What are 2 additional uses of ACLs? | 1 | |
8721920323 | source & destination IP address source & destination TCP/UDP ports protocol type | What do extended ACLs filter IP packets on? | 2 | |
8721929314 | Calculate 255.255.255.255 - 0.0.15.255 = subnet mask Use the info to find the range of IP addresses on a subnet calculator. | How would you find the range of IP addresses represented by the network and wildcard mask 172.16.32.0 and 0.0.15.255? | 3 | |
8721934015 | 1. in firewall routers between internal and external networks 2. on a router between 2 parts of your network to control traffic 3. on border routers 4. for each network protocol configured on the border router interfaces | In general, which 4 areas should you use ACLs on routers? | 4 | |
8721942685 | * specify an access list # and in or out ** only numbered access lists can be applied to VTYs *** verify ACL with show access-lists | Restricting VTY access allows you to define which IP addresses are allowed Telnet access to the router. Which command restricts incoming and outgoing connections between a VTY and the access list addresses. R1(config-line)# access-class | 5 | |
8721947096 | Before forwarding a packet to outbound interface, the router checks the routing table to see if packet is routable. If it isn't - it's dropped. If it is, the router checks to see whether the outbound interface is grouped to an ACL. If it isn't, the packet can be sent to the output buffer. If it is grouped, the packet is tested by the ACEs associated with that interface and then either denied or permitted. | What is outbound ACL logic? | 6 |