Home > Access list Questions

Access list Questions

November 8th, 2017 Go to comments

Note: If you are not sure about Access list, please read our Access List Tutorial.

Question 1

Explanation

Below is the range of standard and extended access list:

Access list type Range
Standard 1-99, 1300-1999
Extended 100-199, 2000-2699

In most cases we only need to remember 1-99 is dedicated for standard access lists while 100 to 199 is dedicated for extended access lists.

Question 2

Explanation

The syntax of a named ACL is:

ip access-list {standard | extended} {name | number}

Therefore we can configure a standard acl with keyword “standard” and configure an extended acl with keyword “extended”. For example this is how to configure an named extended access-list:

Router(config)#ip access-list extended in_to_out permit tcp host 10.0.0.1 host 187.100.1.6 eq telnet

Question 3

Explanation

Below is the range of standard and extended access list

Access list type Range
Standard 1-99, 1300-1999
Extended 100-199, 2000-2699

Question 4

Explanation

We can use a dynamic access list to authenticate a remote user with a specific username and password. The authentication process is done by the router or a central access server such as a TACACS+ or RADIUS server. The configuration of dynamic ACL can be read here: http://www.cisco.com/en/US/tech/tk583/tk822/technologies_tech_note09186a0080094524.shtml

Question 5

Question 6

Explanation

You can check the named access-list with the “show ip access-list” (or “show access-list”) command:

R1#show ip access-list
Standard IP access list nat_traffic
    10 permit 10.1.0.0, wildcard bits 0.0.255.255
    15 permit 10.2.0.0, wildcard bits 0.0.255.255
    20 permit 10.3.0.0, wildcard bits 0.0.255.255

We can resequence a named access-list with the command: “ip access-list resequence access-list-name starting-sequence-number increment“. For example:

R1(config)#ip access-list nat_traffic 100 10

Then we can check this access-list again:

R1#show ip access-list
Standard IP access list nat_traffic
    100 permit 10.1.0.0, wildcard bits 0.0.255.255
    110 permit 10.2.0.0, wildcard bits 0.0.255.255
    120 permit 10.3.0.0, wildcard bits 0.0.255.255

We can see the starting sequence number is now 100 and the increment is 10. But notice that resequencing an access-list cannot change the order of entries inside it but it is the best choice in this question. Adding or removing a n entry does not change the order of entries. Maybe we should understand this question “how to renumber the entries in a named access-list”.

Question 7

Explanation

The range of standard ACL is 1-99, 1300-1999 so 50 and 1550 are two valid numbers.

Question 8

Question 9

Explanation

The range of standard ACL is 1-99, 1300-1999 so 50 is a valid number for standard ACL.

Question 10

Question 11

Comments (25) Comments
  1. JLopesn
    February 8th, 2017

    Someone could add link for these questions ?

  2. mandy
    February 21st, 2017

    did you find it? link is mentioned in their FAQ section

  3. Anonymous
    April 11th, 2017

    hi everyone here

  4. MM
    April 24th, 2017

    Which Cisco platform can verify ACLs?
    A. Cisco Prime Infrastructure
    B. Cisco Wireless LAN Controller
    C. Cisco APIC-EM
    D. Cisco IOS-XE
    Correct Answer:B or C ??(correct ans)

  5. Anees
    April 25th, 2017

    @MM. C. Cisco APIC-EM

  6. KACS
    April 27th, 2017

    Which Cisco platform can verify ACLs?
    Answer: Cisco APIC-EM

  7. Becky
    June 21st, 2017

    For question 6, i think the correct answer should be C

    We can add change the order by adding entry at specified line.
    For example, I can specify 15 before a rule to add entry between 10 and 20

  8. Neo
    July 18th, 2017

    Where can I find the actual questions? Not sure how to efficiently use this popular website. Please advise.

  9. Latest Dumps
    August 31st, 2017

    clkmein .com/q4pyws
    Remove the space before .com. You’ll be redirected to latest dumps pdf. Enjoy.

  10. Hello
    September 9th, 2017
  11. Podranok
    September 14th, 2017

    Question 6

    Which action can change the order of entries in a named access-list?
    A. removing an entry
    B. opening the access-list in notepad
    C. adding an entry
    D. resequencing

    Answer: D

    I think this Q is wrong. Can some1 agree or deny my thoughts?

    Actually to CHANGE the order of entries we must ADD or REMOVE the entry. packetlife(dot)net/blog/2010/apr/30/resequencing-acl-entries/

    Resequencing just changes seq. numbers by some value in order to we could add new acl rule between the lines if existing seq. numbers are occupied! But it DOES NOT change THE ORDER of lines themself! itknowledgeexchange(dot)techtarget(dot)com/network-technologies/resequence-the-access-list/

    The answer should be A or C.

  12. Tanios
    November 30th, 2017

    Hello Guys,

    Anyone took the CCNA this month? is all the questions here present in the CCNA?
    I am taking it tomorrow please I need some feedback will help

  13. alfred
    December 21st, 2017

    question 2 .
    named acls can filter layer -7(application) traffic like telnet using port and protocol field typed in the syntax..
    eg :ip access-list extended 110
    deny tcp any any eq 23 .

  14. david g
    December 27th, 2017

    I cant see the questions just the answers

  15. Markos Simov
    February 22nd, 2018

    @david g You said that You just see the Questions and you can’t see Answers. You know !
    You Have to Pay !! — You Know. Sign in. 9 USD for 30 days. Subscribe. You know.

  16. Charice :)
    March 28th, 2018

    Hi all, i need a feedback from someone who has recently taken the exam, how helpful is this site? do u need other questions or u can pass the exam by relying on what u learn from here…

    Thanks

  17. AB
    April 19th, 2018

    Hi Charice,

    I appeared for the exam and I can assure you all (no jokes) that if you buy 9tut premium membership ($12 USD) and go through all the SIMS on right hand side of the home page, all MCQ’s starting with CCNA Lab Sim, Bassic Questions,….. all the way till Drag and Drop 4 and if you have little experience in subnetting and devices (if not then i recommend just going through the CBT nuggets or simialr sort if possible – ICND1 plus ICND2) then you will PASS the exam with flying colours.

    Also, No need to have prior cisco knowledge as 9tut covers and explains you all. Also try the “15 Composite Quizzes” if you have time.

    All the best!!!

  18. Shakir
    May 3rd, 2018

    Hi, I am looking for a VCE EXAM SIMULATOR can any one provide me cracked version.

  19. Ronn
    May 21st, 2018

    I’ve found this VCE EXAM SIMULATOR and it’s very good.

    http*://*j.gs/*19626470/vce-simulator

    Just remove the “*”.

  20. Pegao
    June 3rd, 2018

    Which of the following are the valid numbers of standard ACL? (Choose two)
    A. 50
    B. 1550
    C. 150
    D. 1250
    E. 2050
    I understand that the answer is A & B, why not 1250. 1250 is within the range of 1300 – 1999.

    Keep the good work!

  21. John
    June 7th, 2018

    What is ACL reflexive

  22. fire13
    June 10th, 2018

    Hi all
    Who knows the access-list 2 lab in there?
    I HAVE A QUESTION IN ACL 2 LAB— > SO THERE ARE ASKED PERMIT 1 HOST TO 1 SERVER, AFTER CONFIG THERE IS A MODIFICATION 1,2,3,4. THESE MODIFICATIONS MAY BE ALSO GIVEN LIKE THE OTHER TASK RIGHT ? I MEAN IN EXAM THEY MAY GIVE US LIKE THIS TASKS (MODIFICATIONS 1.2.3.4 may be ) ?

  23. Regy Octavian
    June 13th, 2018

    hi all,
    can u explain me about q11, i didn’t get it why the answer is D, thx before

  24. BB
    June 13th, 2018

    @Regy Octavian….HTTPS uses TCP/443 & the Class A network IP (From IP’s) is 10.0.0.0 w/ wildcard mask of 0.255.255.255….You can eliminate answers this way….If you don’t know the answer, eliminate the possible choices….

  25. Regy Octavian
    June 14th, 2018

    @BB thx for your explain pal!! GBU

ciscoexam-online-sale-200-125-exam    | udemy-newccnax-sale-200-125-exam    | whats-new-with-ccna-sale-200-125-exam    | ccna-practice-quiz-sale-200-125-exam    | What-is-the-difference-sale-200-125-exam-cert    | boson-practice-sale-200-125-exam-practice    | measureup-Cisco-Certified-Network-Associate-sale-200-125-exam    | globed-cisco-new-ccna-sale-200-125-exam-standard    | exam-labs-sale-200-125-exam-cert    | streaming-ccna-sale-200-125-exam-technologies    | caring-charts-blood-pressure-sale-200-125-exam    | pluralsight-courses-networking-cisco-sale-200-125-exam    | pearsonitcertification-articles-sale-200-125-exam    | safaribooksonline-library-sale-200-125-exam-routing    | learncisco-ccna.php-sale-200-125-exam-tast    | protechgurus-fees-syllabus-sale-200-125-exam    | certificationkits-cisco-ccna-sale-200-125-exam-standard-kit    | zeqr-lazaro-diaz-course-sale-200-125-exam    | 9tut-faqs-tips-sale-200-125-exam    | scribd-document-CCNA-sale-200-125-exam    | itunes-ccnax-sale-200-125-exam    | linkedin-cisco-sale-200-125-exam-questions-details    | teachertube-ccna-sale-200-125-exam-practice    | killexams-detail-sale-200-125-exam    | examsboost-test-sale-200-125-exam    | ccnav6-online-full-collections-sale-200-125-exam    | spiceworks-topic-sale-200-125-exam    | behance-gallery-sale-200-125-exam    | vceguide-share-experience-sale-200-125-exam    | techexams-forums-ccna-sale-200-125-exam    | free4arab-sale-200-125-exam    | openlearning-courses-sale-200-125-exam    | mindhub-Cisco-Certified-Network-sale-200-125-exam    | vceplus-ccna-exam-sale-200-125-exam    | examsforall-cisco-sale-200-125-exam    | how2pass-ccna-practice-tests-sale-200-125-exam    | simulationexams-details-ccna-sale-200-125-exam    | teksystems-sale-200-125-exam-routing-switching    | cram-flashcards-sale-200-125-exam    | pass4cert-cisco-new-ccna-sale-200-125-exam    | snatpedia-ccnaa-sale-200-125-exam    | cert4sure-free-download-sale-200-125-exam    | logicindia-ccnarouting-switching-sale-200-125-exam    | justcerts-practice-questions-sale-200-125-exam    | isc2-cissp-sale-CISSP-exam    | infosecinstitute-cissp-boot-camp-sale-CISSP-exam    | tomsitpro-security-certifications-sale-CISSP-125-exam    | infoworld-cissp-certification-sale-CISSP-exam    | welivesecurity.com-cissp-certified-sale-CISSP-exam    | searchsecurity-definition-sale-CISSP-exam    | simplilearn-cyber-security-training-sale-CISSP-exam    | arstechnica-security-sale-CISSP-exam    | cybrary-course-cissp-sale-CISSP-exam    | skillset-cissp-sale-CISSP-exam    | transcender-certprep-sale-CISSP-exam    | pearsonvue-sale-CISSP-exam-cert    | gocertify-isc2-issp-sale-CISSP-exam    | trainingcamp-training-bootcamp-sale-CISSP-exam    | cbtnuggets-security-sale-CISSP-exam    | cglobalknowledge.com-us-en-sale-CISSP-exam    | itgovernance-cissp-sale-CISSP-exam    | boson-certification-sale-CISSP-exam    | firebrandnordic-training-sale-CISSP-exam    | firebrandnordic-sale-CISSP-exam-123    | cybervista-sale-CISSP-exam-cert    | becker-sale-CISSP-exam-pdf    | youracclaim-certified-information-sale-CISSP-exam    | techexams-forums-sale-CISSP-exam    | munitechacademy-courses-sale-CISSP-exam    | hot-topics-cyber-security-courses-sale-CISSP-exam    | pearsonitcertification-sale-CISSP-exam    | sybextestbanks-wiley-sale-CISSP-exam    | lifewire-preparing-sale-CISSP-exam    | villanovau.com-resources-iss-sale-CISSP-exam    | intenseschool-boot-sale-CISSP-exam    | phoenixts-training-sale-CISSP-exam    | infosecisland-blogview-sale-CISSP-exam    | centralohioissa-member-sale-CISSP-exam    | learningtree-courses-certified-information-sale-CISSP-exam    | udallas.edu-executive-education-sale-CISSP-exam    | umbctraining-Courses-catalog-sale-CISSP-exam    | skyhighnetworks-cloud-security-sale-CISSP-exam    | helpnetsecurity-cert-sale-CISSP-exam    | secureninja-certification-bootcamp-sale-CISSP-exam    | mercurysolutions-information-sale-CISSP-exam    | exam-labs-info-sale-100-105-exam-pdf    | cbtnuggets-training-ccna-icnd1-sale-100-105-exam    | gocertify-ccent-practice-quiz-sale-100-105-exam    | ciscopress.com-ccna-icnd1-sale-100-105-exam    | boson-practice-sale-100-105-exam    | examcollectionuk-vce-download-sale-100-105-exam    | pearsonitcertification-articles-sale-100-105-exam    | transcender-practice-sale-100-105-exam-test    | techexams-forums-ccna-ccent-sale-100-105-exam    | shop-oreilly-sale-100-105-exam    | safaribooksonline-library-view-sale-100-105-exam    | subnetting-download-ccent-sale-100-105-exam    | 2cram-icnd1-online-quiz-sale-100-105-exam    | networklessons-routing-sale-100-105-exam    | centriq-123-ccna-certification-sale-100-105-exam    | ituonline-interconnecting-sale-100-105-exam    | transcender-introducing-the-new-sale-100-105-exam    | measureup-Networking-Devices-Part-sale-100-105-exam    | vceguide-icnd1-experience-sale-100-105-exam    | dumpscollection-dumps-sale-100-105-exam    | computerminds-business-sale-100-105-exam    | globed-ccent-or-icnd1-sale-100-105-exam    | ucertify-load-course-sale-100-105-exam    | academy-gns3-sale-100-105-exam    | visiontrainingsystems-product-sale-100-105-exam    | pearsonhighered-program-Wilkins-CCENT-sale-100-105-exam    | vceplus-ccent-sale-100-105-exam    | mindhub-Interconnecting-sale-100-105-exam    | sale-70-410-exam    | we-sale-70-410-exam    |
http://mleb.net/    | http://mleb.net/    |