Correct Answer: A
Named Access-list & Port Security Sim
QUESTION 1
Guidelines
This is a lab item in which tasks will be performed on virtual devices.
+ Refer to the Tasks tab to view the tasks for this lab item.
+ Refer to the Topology tab to access the device console(s) and perform the tasks.
+ Console access is available for all required devices by clicking the device icon or using the tab(s) above the console window.
+ All necessary preconfigurations have been applied.
+ Do not change the enable password or hostname for any device.
+ Save your configurations to NVRAM before moving to the next item.
+ Click Next at the bottom of the screen to submit this lab and move to the next question.
+ When Next is clicked, the lab closes and cannot be reopened.
Topology
Tasks
Refer to the topology. All physical cabling is in place. Configure a local user account, a Named ACL (NACL), and security. Task 1. Configure a local account on Sw101 with telnet access only on virtual ports 0-4. Use the following information:
+ Username: support
+ Password: max2leam
+ Privilege level: Exec mode
Task 2. Configure and apply a single NACL on Sw101 using the following:
+ Name: ENT_ACL
+ Restrict only PC2 on VLAN 200 from pinging PC1
+ Allow only PC2 on VLAN 200 to telnet to Sw101
+ Prevent all other devices from telnetting from VLAN 200
+ Allow all other network traffic from VLAN 200
Task 3. Configure security on interface Ethernet 0/0 of Sw102:
+ Set the maximum number of secure MAC addresses to four.
+ Drop packets with unknown source addresses until the number of secure MAC addresses drops below the configured maximum value. No notification action is required.
+ Allow secure MAC addresses to be learned dynamically.
A. Solution
Note: Be careful that the username, password, ACL name… may be different.
Task 1. Configure a local account on Sw101 with telnet access only on virtual ports 0-4 On Sw101:
username support privilege 15 password max2learn line vty 0 4
transport input telnet login local
Dostları ilə paylaş: | 
