A network administrator needs to prevent hosts in the 192.168.10.0/24 network from initiating Telnet sessions to a remote server with IP address 10.1.1.1, while allowing all other traffic. Which access control list configuration achieves this requirement?
An access-list 101 entry matching TCP traffic from host 10.1.1.1 to 192.168.10.0/24 on port 23
An access-list 101 entry matching TCP traffic from 192.168.10.0/24 to host 10.1.1.1 on port 23
An access-list 101 entry matching UDP traffic from 192.168.10.0/24 to host 10.1.1.1 on port 23
An access-list 101 entry matching TCP traffic from 192.168.10.0/24 to host 10.1.1.1 on port 80
The correct configuration is the access-list entry that matches TCP traffic from the 192.168.10.0/24 network to host 10.1.1.1 on port 23. This entry specifically targets Telnet traffic (which uses TCP port 23) from the specified source network to the destination host. By matching this traffic, the administrator can effectively prevent Telnet sessions without affecting other services. The other options either have incorrect source and destination parameters, incorrect protocols, or target the wrong port, and therefore would not achieve the intended restriction.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is an access control list (ACL)?
Open an interactive chat with Bash
Why is Telnet associated with TCP port 23?
Open an interactive chat with Bash
What is the significance of the /24 subnet in IP addressing?
Open an interactive chat with Bash
Cisco CCNA 200-301
Security Fundamentals
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
IT & Cybersecurity Package Join Premium for Full Access