502 Chapter 7: Understanding Access List Security
27
Name all the items that a named standard IP access list can examine to make a match.
28
Configure a SAP numbered access list so that SAPs 4 through 7 are matched in network
BEEF with a single command.
29
Configure a named IP access list that would stop packets from subnet 134.141.7.0,
255.255.255.0, from exiting serial 0 on some router. Allow all other packets.
30
Configure a named IP access list that allows only packets from subnet 193.7.6.0,
255.255.255.0, going to hosts in network 128.1.0.0 and using a Web server in 128.1.0.0,
to enter serial 0 on some router.
31
List the types of IP access lists (numbered standard, numbered extended, named standard,
named extended) that can be enabled to prevent Telnet access into a router. What
commands would be used to enable this function, assuming that access-list 2 was already
configured to match the right packets?
32
What command could someone who has only the telnet password, not the enable
password, use to find out what IPX access lists were enabled on which interfaces?
33
What command would display the contents of IPX access-list 904, and that access list
alone?
34
What command lists the IP extended access lists enabled on serial 1 without showing
other interfaces?
ch07.fm Page 502 Monday, March 20, 2000 5:14 PM