访问控制列表access-list 109 deny icmp 10.1.10.100.0.255.255 any host-unreachable的含义是( )。
A.规则序列号是109,禁止从10.1.10.10主机来的rlogin访问
B.规则序列号是109,禁止从10.1.10.10/16网段来的WWW访问
C.规则序列号是109,禁止到10.1.10.10主机的telnet访问
D.规则序列号是109,禁止到10.1.10.10/16网段的WWW访问
第1题:
在Cisco路由器上,用扩展访问控制列表封禁IP地址为211.102.33.24的主机,正确的配置语句是______。
A.access-list 99 deny ip host 211.102.33.24 any access-list 99 deny ip any host 211.102.33.24 access-list 99 permit ip any any
B.access-list 100 permit ip any any access-list 100 deny ip host 211.102.33.24 any access-list 100 deny ip any host 211.102.33.24
C.access-list 199 deny ip host 211.102-33.24 any access-list 199 deny ip any host 211.102.33.24 access-list 199 permit ip any any
D.access-list 166 deny ip host 211.102.33.24 any access-list 166 permit ip any any
第2题:
在 Cisco 路由器匕用扩展访问控制列表封禁 1P 地址为 211.102.33.24 的主机,正确的配置语句是
A )
access-list 99 deny ip host 211.102.33.24 any
access-list 99 deny ip any host 211.102.33.24
access-list 99 permit ip any any
B )
access-list 100 permit ip any any
access-list 100 deny ip host 211.102.33.24 any
access-list 100 deny ip any host 211.102.33.24
C )
access-list 199 deny ip host 211.102.33.24 any
access-list 199 deny ip any host 211.102.33.24
access-list 199 permit ip any any
D )
access-list 166 deny ip host 211.102.33.24 any
access-list 166 permit ip any any
第3题:
(22)下面的访问控制列表中,( )禁止所有TELNET访问子网10.10.1.0/24。
A) access-list 15 deny udp any 10.10.1.0 255.255 255.0 eq 23
B) access-list 115 deny tcp any 10.10.1.0 0.0.0.255 eq 23
C) access-list 115 deny udp any 10.10.1.0 eq telnet
D) access-list 15 deny telnet any 10.10.1.0 0.0.0.255 eq 23
第4题:
访问控制列表“access-list 109 deny icmp 10.1.10.10 0.0.255.255 any host-unreachable”的含义是______。
A.规则序列号是109,禁止到10.1.10.10主机的telnet访问
B.规则序列号是109,禁止到10.1.10.10/16网段的www访问
C.规则序列号是109,禁止从10.1.10.10/16网段来的www访问
D.规则序列号是109,禁止从10.1.10.10主机来的rlogin访问
第5题:
访问控制列表“access—list 109 deny icmp 10.5.10.10 0.0.255.255 any host—unreach.able”的含义是——。
A.规则序列号是109,禁止从10.5.10.10/16网段来的WWW访问
B.规则序列号是109,禁止到10.5.10.10/16主机的’relnet访问
C.规则序列号是109,禁止到10.5.10.10/16网段的WWW访问
D.规则序列号是109,禁止从10.5.10.10/16主机来的rlogin访问
第6题:
定义一个用于封禁ICMP协议而只允许转发166.129.130.0/24子网的ICMP数据包的访问控制列表,Cisco路由器的正确配置是
A.access-list 198 permit icmp 166.129.130.0 255.255.255.0 any access-list 198 deny icmp any any access-list 198 permit ip any any
B.access-list 198 permit icmp 166.129.130.0 0.0.0.255 any access-list 198 deny icmp any any access-list 198 permit ip any any
C.access-list 99 permit icmp 166.129.130:0 0.0.0.255 any access-list 99 deny icnip any any access-list 99 permit ip any any
D.access-list 100 permit icmp 166.129.130.0 0.0.0.255 any access-list 100 permit ip any any access-list 100 deny icmp any any
第7题:
用扩展访问控制列表配置封禁ICMP协议,只允许l68.27.95.0/24子网的ICMP数据包通过路由器,正确的配置是(61) 。
A.access-list 90 deny icmp l68.27.95.0 255.255.255.0 any access-list 90 deny icmp any anyaccess—list 90 permit ip any any
B.access-list l00 permit icmp l68.27.95.0 0.0.0.255 any access-list l00 permit ip any any
C.access—list l l o permit icmp l68.27.95.0 255.255.255.0 any access—list l lo deny icmp any any
D.access-list l20 permit icmp l68.27.95.0 0.0.0.255 any access—list l20 deny icmp any any access—list l20 permit ip any any
第8题:
定义一个用于封禁ICMP协议而只允许转发166.129.130.0/24子网的ICMP数据包的访问控制列表,Cisco路由器的正确配置是( )。
A) access-list 198 permit icmp 166.129.130.0 255.255.255.0 any
access-list 198 deny icmp any any
access-list 198 permit ip any any
B) access-list 198 permit icmp 166.129.130.0 0.0.0 255 any
access-list 198 deny icmp any any
access-list 198 permit ip any any
C) access-list 99 permit icmp 166.129.130.0 0.0.0 255 any
access-list 99 deny icmp any any
access-list 99 permit ip any any
D) access-list 100 permit icmp 166.129.130.0 0.0.0 255 any
access-list 100 pernut ip any any
access-list 100 deny icmp any any
第9题:
访问控制列表“access-list 110 deny icmp 10.1.10.10 0.0.255.255 any host-unreachable”的含义是( )。
A)规则序列号是110,禁止到10.1.10.10主机的telnet访问
B)规则序列号是110,禁止从10.1.10.10/16网段来的WWW访问
C)规则序列号是110,禁止到10.1.10.10/16网段的WWW访问
D)规则序列号是110,禁止从10.1.10.10主机来的rlogin访问
第10题:
若要求路由器的某接口上只封禁ICMP协议,但允许159.67.183.0/24子网的ICMP数据包通过,那么使用的access-list命令是______。
A.access-list 120 deny icmp 159.67.183.0 0.0.0.255 any access-list 120 permit ip any any
B.access-list 10 permit icmp 159.67.183.0 0.0.0.255 any access-list 10 deny icmp any any access-list 10 permit ip any any
C.access-list 99 permit icmp 159.67.183.0 0.0.0.255 any access-list 99 deny icmp any any
D.access-list 110 permit icmp 159.67.183.0 0.0.0.255 any access-list 110 deny icmp any any access-list 110 permit ip any any