Chapter 4
| 1: | What is a net police filter? |
| A1: | Answer: It is a filter that does not allow any routes with prefixes more specific than /20 (or perhaps up to /24) to come in. |
| 2: | Why is fast convergence important for security? |
| A2: | Answer: A fast-converging routing architecture is quicker to recover from network-disruptive attacks, thereby reducing the impact of such attacks. |
| 3: | What is a null interface? |
| A3: | Answer: A null interface is a Cisco IOS interface that is used to drop traffic routed to it. It is sometimes used as an alternative to access lists. |
| 4: | What is prefix filtering? |
| A4: | Answer: Prefix filtering is a technique used to filter routes wherein instead of using specific subnets such as the ones in an access list, filtering is done based on prefix ... |
Get Network Security Principles and Practices now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
