Chapter 21
| 1: | In what order are regular ACLs processed on a Cisco router? |
| A1: | Answer: Access control lists are scanned top-down sequentially to find a match. |
| 2: | What can be an advantage of having a VIP card on a router in terms of access list processing? |
| A2: | Answer: A VIP card with dCEF enabled can process access control lists rather than burdening the main CPU. |
| 3: | What set of ACLs can be used to detect a SYN flood? |
| A3: | Answer:
access-list 190 permit tcp any any established access-list 190 permit tcp any any access-list 190 permit ip any any |
| 4: | What is a smurf attack? |
| A4: | Answer: A smurf attack is an ICMP flood created using IP directed broadcasts. |
| 5: | How do turbo ACLs increase the speed of access list processing? |
| A5: | Answer: Turbo access control lists ... |
Get Network Security Principles and Practices now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
