访问列表如下: access-list 4 deny 202.38.0.00.0.255.255 access-list 4 permit 202.38.160.10.0.0.255 应用于该路由器的配置如下: Quidway(config)#firew all default permit Quidway(config-if-Serical0)#ipaccess-group 4 in 该路由器E0口接本地局域网,S0口接到Internet,以下说法正确的有:()
第1题:
定义一个用于封禁ICMP协议而只允许转发166.129.130.0/24子网的ICMP数据包的访问控制列表,Cisco路由器的正确配置是
A.access-list 198 permit icmp 166.129.130.0 255.255.255.0 any access-list 198 deny icmp any any access-list 198 permit ip any any
B.access-list 198 permit icmp 166.129.130.0 0.0.0.255 any access-list 198 deny icmp any any access-list 198 permit ip any any
C.access-list 99 permit icmp 166.129.130:0 0.0.0.255 any access-list 99 deny icnip any any access-list 99 permit ip any any
D.access-list 100 permit icmp 166.129.130.0 0.0.0.255 any access-list 100 permit ip any any access-list 100 deny icmp any any
第2题:
( 22 )用 标准 访问控制列表禁止非法地址 192.168.0.0/16 的数据包进出路由器的正确配置是
A ) access-list 110 deny 192.168.0.0 0.0.255.255
access-list 110 permit any
B ) access-list 10 deny 192.168.0.0 255.255.0.0
access-list 10 permit any
C ) access-list 50 permit any
access-list 50 deny 192.168.0.0 0.0.255.255
D ) access-list 99 deny 192.168.0.0 0.0.255.255
access-list 99 permit an
第3题:
(22)下面的访问控制列表中,( )禁止所有TELNET访问子网10.10.1.0/24。
A) access-list 15 deny udp any 10.10.1.0 255.255 255.0 eq 23
B) access-list 115 deny tcp any 10.10.1.0 0.0.0.255 eq 23
C) access-list 115 deny udp any 10.10.1.0 eq telnet
D) access-list 15 deny telnet any 10.10.1.0 0.0.0.255 eq 23
第4题:
标准IP访问控制列表的基本格式为access-list[1ist number][permit|deny][host/any][sourceaddress][wild-card-mask][log],请填写其参数描述。
a、list number…………………………………… ______
b、permit/deny………………………………… ______
c、source address……………………………… ______
d、host/any…………………………………… ______
e、windcad-mask……………………………… ______
第5题:
Cisco路由器执行show access-list命令显示如下一组控制列表信息:
Standard IP acceSS list 30
deny 127.0.0.0,wildcard bits 0.255.255.255
deny 172.16.0.0,wiidcard bits 0.15.255.255
permft any
根据上述信息,正确的access-list配置是______。
A) Router(config)#access-list 30 deny 127.0.0.0 255.255.255.0
Router(config)#access-list 30 deny 172.16.0.0 255.240.0.0
Router(config)#access-list 30 permit any
B) Router(config-std-nacl)#access-list 30 deny 127.0.0.0 0.255.255.255
Router(config-std-nael)#access-list 30 deny 172.16.0.0 0.15.255.255
Router(config-std-nacl)#access-list 30 permit any
C) Router(config)#access-list 30 deny 127.0.0.0 0.255.255.255
Router(config)#access-list 30 deny 172.16.0.0 0.15.255.255
Router(config)#access-list 30 permit any
D) Router(config)#access-list 30 deny 127.0.0.0 0.255.255.255
Router(config)#access-list 30 permit any
Router(config)#access-list 30 deny 172.16.0.0 0.15.255.255
A.
B.
C.
D.
第6题:
在 Cisco 路由器匕用扩展访问控制列表封禁 1P 地址为 211.102.33.24 的主机,正确的配置语句是
A )
access-list 99 deny ip host 211.102.33.24 any
access-list 99 deny ip any host 211.102.33.24
access-list 99 permit ip any any
B )
access-list 100 permit ip any any
access-list 100 deny ip host 211.102.33.24 any
access-list 100 deny ip any host 211.102.33.24
C )
access-list 199 deny ip host 211.102.33.24 any
access-list 199 deny ip any host 211.102.33.24
access-list 199 permit ip any any
D )
access-list 166 deny ip host 211.102.33.24 any
access-list 166 permit ip any any
第7题:
要禁止内网中IP地址为198.168.46.8的PC访问外网,正确的ACL规则是(11)。
A.access-list 1 permit ip 192.168.46.00.0.0.255 any access-list 1 deny ip host 198.168.46.8 any
B.access-list 1 permit ip host 198.168.46.8 any access-list 1 deny ip 192.168.46.00.0.0.255 any
C.access-list 1 deny ip 192.168.46.00.0.0.255 any access-list 1 permit ip host 198.168.46.8 any
D.access-list 1 deny ip host 198.168.46.8 any access-list 1 permitip 192.168.46.00.0.0.255 any
第8题:
在Cisco路由器上,用扩展访问控制列表封禁IP地址为211.102.33.24的主机,正确的配置语句是______。
A.access-list 99 deny ip host 211.102.33.24 any access-list 99 deny ip any host 211.102.33.24 access-list 99 permit ip any any
B.access-list 100 permit ip any any access-list 100 deny ip host 211.102.33.24 any access-list 100 deny ip any host 211.102.33.24
C.access-list 199 deny ip host 211.102-33.24 any access-list 199 deny ip any host 211.102.33.24 access-list 199 permit ip any any
D.access-list 166 deny ip host 211.102.33.24 any access-list 166 permit ip any any
第9题:
标准IP访问控制列表的基本格式为access-list[list number] [permit | deny] [host/any] [sourceaddress] [wildcard-mask][log],请填写其参数描述。
a. list number .......................................... [11]
b. permit/deny ....................................... [12]
c. s
第10题:
A. Router(config)# access-list 1 deny 172.31.212.74 any
B. Router(config)# access-list 1 deny 10.6.111.48 host
C. Router(config)# access-list 1 deny 172.16.4.13 0.0.0.0
D. Router(config)# access-list 1 deny 192.168.14.132 255.255.255.0
E. Router(config)# access-list 1 deny 192.168.166.127 255.255.255.255