20) Consider the following access list:
ACCESS-LIST 50 DENY 136.120.3.1
ACCESS-LIST 50 DENY 143.22.1.0 0.0.0.255
Which statement represents the most complete description of the results of applying this list as a packet filter (考虑下述访问列表:
ACCESS-LIST 50 DENY 136.120.3.1
ACCESS-LIST 50 DENY 143.22.1.0 0.0.0.255
下列哪个陈述最完全地描述了访问列表作为数据包过滤的结果)?
A. It will deny all traffic destined for any host on network 136.120.3.0
B. It will deny all traffic destined for network 143.22.1.0
C. It will deny all traffic from the host at 136.120.3.1
D. It will deny all IP traff i c
21) Which command would be used to configure a packet filter for IP traffic (下列哪个命令 可用来配置I P通信量的数据包过滤)?
A. ROUTER(CONFIG-IF)#IP ACCESS-LIST 100
B. Router(config-if)#ip access-group 42
C. Router(config)#access-group 102
D. Router(config-if)#access-group 75
E. Router(config-if)#ip output-packet-filter 11 2
22) Which command would be used to configure an inbound packet filter for TCP traffic (下 列哪个命令可用来配置T C P通信量的入站数据包过滤)?
A. ROUTER(CONFIG-IF)#TCP PA C K E T- F I LTER 101
B. Router(config-if)#ip packet-filter 101 in
C. Router(config-if)#ip access-group 99 in
D. Router(config-if)#ip access-group 100 in
E. Router(config-if)#ip access-group 100
23) The address mask pair 172.16.64.0 0.0.3.255 specifies which range of IP addresses (地址掩码对172.16.64.0 0.0.3.255指定了什么I P地址范围)?
A. 172.16.64.255 through 172.16.67.255
B. 172.16.67.0 through 172.16.70.255
C. 172.16.64.0 through 172.16.67.255
D. 172.16.63.0 through 172.16.64.255
24) The following statement appears in an IP extended access list:
ACCESS-LIST 125 PERMIT IP ANY HOST 136.25.2.128
What does this line permit (下述是I P扩展访问列表中的语句:
ACCESS-LIST 125 PERMIT IP ANY HOST 136.25.2.128
HOST 136.25.2.128
该行允许了什么)?
A. Any IP traffic from host 136.25.2.128
B. IP traffic to any host on network 136.25.2.128
C. IP traffic from any address to the host at 136.25.2.128
D. The statement is invalid because there is no mask
25)The following access list, containing only one line, is applied as a packet filter on an interface.
ACCESS-LIST 100 PERMIT TCP 145.22.3.0 0.0.0.255 ANY EQ TELNET
What is the best description of the traffic that is denied by the implicit DENY ALL (下述访问列表,只有一行,用作一个接口的数据包过滤
ACCESS-LIST 100 PERMIT TCP 145.22.3.0 0.0.0.255 ANY EQ TELNET
对于隐含的DENY ALL,最合适的描述是什么)?
A. All IP traffic
B. All Telnet traffic
C. All TCP traffic
D. All TCP traffic except Te l n e t