访问控制列表access-list 100 deny ip10.1.10.100.0.255.255 any eq80的含义是:()A、规则序列号是100,禁止到10.1.10.10主机的telnet访问B、规则序列号是100,禁止到10.1.0.0/16网段的www访问C、规则序列号是100,禁止从10.1.0.0/16网段来的www访问D、规则序列号是100,禁止从10.1.10.10主机来的rlogin访问
访问控制列表access-list 100 deny ip10.1.10.100.0.255.255 any eq80的含义是:()
- A、规则序列号是100,禁止到10.1.10.10主机的telnet访问
- B、规则序列号是100,禁止到10.1.0.0/16网段的www访问
- C、规则序列号是100,禁止从10.1.0.0/16网段来的www访问
- D、规则序列号是100,禁止从10.1.10.10主机来的rlogin访问
相关考题:
(22)下面的访问控制列表中,()禁止所有TELNET访问子网10.10.1.0/24。A)access-list 15 deny udp any 10.10.1.0 255.255 255.0 eq 23B) access-list 115 deny tcp any 10.10.1.0 0.0.0.255 eq 23C)access-list 115 deny udp any 10.10.1.0 eq telnetD)access-list 15 deny telnet any 10.10.1.0 0.0.0.255 eq 23
定义一个用于封禁ICMP协议而只允许转发166.129.130.0/24子网的ICMP数据包的访问控制列表,Cisco路由器的正确配置是( )。A) access-list 198 permit icmp 166.129.130.0 255.255.255.0 anyaccess-list 198 deny icmp any anyaccess-list 198 permit ip any anyB) access-list 198 permit icmp 166.129.130.0 0.0.0 255 anyaccess-list 198 deny icmp any anyaccess-list 198 permit ip any anyC) access-list 99 permit icmp 166.129.130.0 0.0.0 255 anyaccess-list 99 deny icmp any anyaccess-list 99 permit ip any anyD) access-list 100 permit icmp 166.129.130.0 0.0.0 255 anyaccess-list 100 pernut ip any anyaccess-list 100 deny icmp any any
在Cisco路由器上,用扩展访问控制列表封禁IP地址为211.102.33.24的主机,正确的配置语句是______。A.access-list 99 deny ip host 211.102.33.24 any access-list 99 deny ip any host 211.102.33.24 access-list 99 permit ip any anyB.access-list 100 permit ip any any access-list 100 deny ip host 211.102.33.24 any access-list 100 deny ip any host 211.102.33.24C.access-list 199 deny ip host 211.102-33.24 any access-list 199 deny ip any host 211.102.33.24 access-list 199 permit ip any anyD.access-list 166 deny ip host 211.102.33.24 any access-list 166 permit ip any any
定义一个用于封禁ICMP协议而只允许转发166.129.130.0/24子网的ICMP数据包的访问控制列表,Cisco路由器的正确配置是A.access-list 198 permit icmp 166.129.130.0 255.255.255.0 any access-list 198 deny icmp any any access-list 198 permit ip any anyB.access-list 198 permit icmp 166.129.130.0 0.0.0.255 any access-list 198 deny icmp any any access-list 198 permit ip any anyC.access-list 99 permit icmp 166.129.130:0 0.0.0.255 any access-list 99 deny icnip any any access-list 99 permit ip any anyD.access-list 100 permit icmp 166.129.130.0 0.0.0.255 any access-list 100 permit ip any any access-list 100 deny icmp any any
如果要在路由器的某端口上过滤所有端口号为 1434 的 UDP 数据包,那么使用的 access-list 命令是A)access-list 100 deny udp any any lt 1434B)access-list 100 deny udp any any gt 1434C)access-list 100 deny udp any any eq 1434D)access-list 100 deny udp any any neq 1434
在 Cisco 路由器匕用扩展访问控制列表封禁 1P 地址为 211.102.33.24 的主机,正确的配置语句是A )access-list 99 deny ip host 211.102.33.24 anyaccess-list 99 deny ip any host 211.102.33.24access-list 99 permit ip any anyB )access-list 100 permit ip any anyaccess-list 100 deny ip host 211.102.33.24 anyaccess-list 100 deny ip any host 211.102.33.24C )access-list 199 deny ip host 211.102.33.24 anyaccess-list 199 deny ip any host 211.102.33.24access-list 199 permit ip any anyD )access-list 166 deny ip host 211.102.33.24 anyaccess-list 166 permit ip any any
( 22 )用 标准 访问控制列表禁止非法地址 192.168.0.0/16 的数据包进出路由器的正确配置是A ) access-list 110 deny 192.168.0.0 0.0.255.255access-list 110 permit anyB ) access-list 10 deny 192.168.0.0 255.255.0.0access-list 10 permit anyC ) access-list 50 permit anyaccess-list 50 deny 192.168.0.0 0.0.255.255D ) access-list 99 deny 192.168.0.0 0.0.255.255access-list 99 permit an
Cisco路由器执行show access-list命令显示如下一组控制列表信息:Standard IP acceSS list 30deny 127.0.0.0,wildcard bits 0.255.255.255deny 172.16.0.0,wiidcard bits 0.15.255.255permft any根据上述信息,正确的access-list配置是______。A) Router(config)#access-list 30 deny 127.0.0.0 255.255.255.0Router(config)#access-list 30 deny 172.16.0.0 255.240.0.0Router(config)#access-list 30 permit anyB) Router(config-std-nacl)#access-list 30 deny 127.0.0.0 0.255.255.255Router(config-std-nael)#access-list 30 deny 172.16.0.0 0.15.255.255Router(config-std-nacl)#access-list 30 permit anyC) Router(config)#access-list 30 deny 127.0.0.0 0.255.255.255Router(config)#access-list 30 deny 172.16.0.0 0.15.255.255Router(config)#access-list 30 permit anyD) Router(config)#access-list 30 deny 127.0.0.0 0.255.255.255Router(config)#access-list 30 permit anyRouter(config)#access-list 30 deny 172.16.0.0 0.15.255.255A.B.C.D.
标准IP访问控制列表的基本格式为access-list[list number] [permit | deny] [host/any] [sourceaddress] [wildcard-mask][log],请填写其参数描述。a. list number .......................................... [11]b. permit/deny ....................................... [12]c. s
访问控制表是防火墙实现安全管理的重要手段。完成下列访问控制列表(access-control-list)的配置内容,使内部所有主机不能访问外部IP地址段为202.117.12.0/24Web服务器。Firewall(config)access-list 100 deny tcp (11) 202.197.12.0 255.255.255.0 eq (12)(11)
标准IP访问控制列表的基本格式为access-list[1ist number][permit|deny][host/any][sourceaddress][wild-card-mask][log],请填写其参数描述。a、list number…………………………………… ______b、permit/deny………………………………… ______c、source address……………………………… ______d、host/any…………………………………… ______e、windcad-mask……………………………… ______
下面格式是正确的标准访问控制列表有()。A、access-list standard 172.16.4.13B、access-list 2 deny 172.16.4.13 0.0.0.0C、access-list 101 deny 172.16.4.13 0.0.0.0D、access-list 199 deny 172.16.4.13 255.255.255.255
计费服务器的ip地址在192.168.1.0/24子网内,为了保证计费服务器的安全,不允许任何用户telnet到该服务器,则需要配置的访问列表条目为:()A、access-list 11 deny tcp 192.168.1.0 0.0.0.255 eq telnet/access-list 111 permit ip any anyB、access-list 111 deny tcp any 192.168.1.0 eq telnet/access-list 111 permit ip any anyC、access-list 111 deny udp 192.168.1.0 0.0.0.255 eq telnet/access-list 111 permit ip any anyD、access-list 111 deny tcp any 192.168.1.0 0.0.0.255 eq telnet/access-list 111 permit ip any any
下面能够表示“禁止129.9.0.0网段中的主机访问202.38.16.0网段内的WEB服务器”的访问控制列表是()A、access-list 101 deny tcp 129.9.0.00.0.255.255202.38.16.00.0.0.255 eq wwwB、access-list 100 deny tcp 129.9.0.00.0.255.255202.38.16.00.0.0.255 eq 53C、access-list 100 deny udp 129.9.0.00.0.255.255202.38.16.00.0.0.255 eq wwwD、access-list 99 deny ucp 129.9.0.00.0.255.255202.38.16.00.0.0.255 eq 80
创建一个标准访问控制列表用来拒绝网络192.168.160.0到192.168.191.0内的主机,下面表达式正确的是()。A、access-list 10 deny 192.168.160.0 255.255.240.0B、access-list 10 deny 192.168.160.0 0.0.191.255C、access-list 10 deny 192.168.160.0 0.0.31.255D、access-list 10 deny 192.168.0.0 0.0.31.255
你需要创建一个标准访问控制列表用来拒绝主机172.16.198.94/19所在的子网,表示错误的有()。A、access-list 10 deny 172.16.192.00.0.31.255B、access-list 10 deny 172.16.0.00.0.255.255C、access-list 10 deny 172.16.172.00.0.31.255D、access-list 10 deny 172.16.188.00.0.15.255E、access-list 10 deny 172.16.192.00.0.15.255
访问列表是路由器的一种安全策略,你决定用一个标准ip访问列表来做安全控制,以下为标准访问列表的例子为:()A、access-list standart 192.168.10.23B、access-list 10 deny 192.168.10.23 0.0.0.0C、access-list 101 deny 192.168.10.23 0.0.0.0D、access-list 101 deny 192.168.10.23 255.255.255.255
要限制源地址为10.0.0.16到10.0.0.31之间的网络主机访问目标地址,则访问列表ACL配置语句为: router(Config)#ip access-list 99 deny() router(Config)#ip access-list 99()any
以下的访问控制列表中,()禁止所有Telnet访问子网10.10.1.0/24。A、access-list 15deny telnet any 10.10.1.0 0.0.0.255 eq 23B、access-listl l5 denyu卸any l0.10.1.0 eq telnetC、access-list 115deny tcp any 10.10.1.0 0.0.0.255 eq 23D、access-list 15deny udp any 10.10.1.0 255.255.255.0 eq 23
创建一个标准命名访问控制列表cisco用来拒绝网络192.168.160.0到192.168.191.0内的主机,下面表达式正确的是()。A、ip access-list standard cisco deny 192.168.160.0 255.255.240.0B、ip access-list standard cisco deny 192.168.160.0 0.0.191.255C、ip access-list standard cisco deny 192.168.160.0 0.0.31.255D、ip access-list standard cisco deny 192.168.0.0 0.0.31.255
访问控制列表access-list 100 deny ip 10.1.10.100.0.255.255 anyeq80的含义是:()。A、规则序列号是100,禁止到10.1.10.10主机的telnet访问B、规则序列号是100,禁止到10.1.0.0/16网段的www访问C、规则序列号是100,禁止从10.1.0.0/16网段来的www访问D、规则序列号是100,禁止从10.1.10.10主机来的rlogin访问
单选题访问控制列表access-list 100 deny ip 10.1.10.100.0.255.255 anyeq80的含义是:()。A规则序列号是100,禁止到10.1.10.10主机的telnet访问B规则序列号是100,禁止到10.1.0.0/16网段的www访问C规则序列号是100,禁止从10.1.0.0/16网段来的www访问D规则序列号是100,禁止从10.1.10.10主机来的rlogin访问
多选题你需要创建一个标准命名访问控制列表cisco用来拒绝主机172.16.198.94/19所在的子网,表示错误的有()。Aip access-list standard cisco deny 172.16.192.0 0.0.31.255Bip access-list standard cisco deny 172.16.0.0 0.0.255.255Cip access-list standard cisco deny 172.16.172.0 0.0.31.255Dip access-list standard cisco deny 172.16.188.0 0.0.15.255Eip access-list standard cisco deny 172.16.192.0 0.0.15.255
填空题要限制源地址为10.0.0.16到10.0.0.31之间的网络主机访问目标地址,则访问列表ACL配置语句为: router(Config)#ip access-list 99 deny() router(Config)#ip access-list 99()any
单选题访问控制列表access-list 100 deny ip10.1.10.100.0.255.255 any eq80的含义是:()A规则序列号是100,禁止到10.1.10.10主机的telnet访问B规则序列号是100,禁止到10.1.0.0/16网段的www访问C规则序列号是100,禁止从10.1.0.0/16网段来的www访问D规则序列号是100,禁止从10.1.10.10主机来的rlogin访问