这两题答案应该是哪个呀
QUESTION 266Which device controls the forwarding of authentication requests for users when connecting to the network using a lightweight access point?
A. TACACS server
B. wireless access point
C. RADIUS server
D. wireless LAN controller
控制和转发是WLC吗,AP相当于一个接入?
QUESTION 264
Refer to the exhibit. A network administrator has been tasked with securing VTY access to a router. Which access-list entry accomplishes this task?
access-list 101 permit ospf any any
access-list 101 permit tcp any any eq 179
access-list 101 permit tcp any eq 179 any
access-list 101 permit gre any any
access-list 101 permit esp any any
access-list 101 deny ospf any any
access-list 101 permit tcp 10.1.1.0 0.0.0.255 172.16.1.0 0.0.0.255 eq telnet
access-list 101 permit udp 10.1.1.0 0.0.0.255 172.16.1.0 0.0.0.255 eq 500
access-list 101 permit udp 10.1.1.0 0.0.0.255 172.16.1.0 0.0.0.255 eq 4500
access-list 101 deny ip any any log
interface ethernet0/0
ip address 10.1.1.25 255.255.255.0
ip access-group 101 in
A. access-list 101 permit tcp 10.1.10 0.0.0.255 172.16.10 0.0.0.255 eq ssh
B. access-list 101 permit tcp 10.11.0 0.0.0.255 172.16.10 0.0.0.255 eq scp
C. access-list 101 permit tcp 10.11.0 0.0.0.255 172.16.10 0.0.0.255 eq telnet
D. access-list 101 permit tcp 10.1.10 0.0.0.255 172.16.10 0.0.0.255 eq https
这题从哪里看出是ssh而不是telnet
这两题答案应该是哪个呀 第一题应该是WLC,首先那两个AAA服务器的答案肯定是错的,因为两个本质上就是相同的东西
那就只剩WLC和AP了,然后题目那边它有特别强调是lightweight AP
根据思科官方说法 APs are “lightweight,” which means that they cannot act independently of a wireless LAN controller (WLC).
那就是在思科官方的定义中, AP是不能独立工作的,必需通过控制器集中转發的
那答案就只有WLC了
第二道题的问题是 网络管理员的任务是保护对路由器的VTY访问。 哪个访问列表条目可以完成此任务?
我认为重点在于securing这个词 telnet是不加密的 SSH是加密的 就是这麽简单
以上都是个人观点,有错的话等大神指正
leort 发表于 2021-5-5 20:52
第一题应该是WLC,首先那两个AAA服务器的答案肯定是错的,因为两个本质上就是相同的东西
那就只剩WLC和AP了, ...
理解到位,本以为securing是确保,担保的意思 第一题为WLC,LWAPP模式下所有Control Plane通讯都经由WLC处理,而第二题很明显ssh是TCP/22, 但ACL里面的deny ip any any会阻挡到,所以vty只能是telnet,tcp/23, 答案是C {:6_264:} 1st question is WLC 第一题是WLC 第二題,securing vty,所以是ssh
页:
[1]