Network topology exhibit:
You work as a network administrator at . You study the network topology exhibit carefully. is a small
company that has an existing enterprise network consisting of two switches named 1 and 2. The network topology schemata indicates their layer 2 mapping. VLAN 40 is a new VLAN that will be used to provide the shipping personnel access to the server. For security reasons, it is necessary to restrict access to VLAN 20 in the following manner:
Users connecting to 1’s port must be authenticate before they are given access to the network. Authentication is to be done via a Radius server:
Radius server host: 172.120.39.46
Radius key: key
Authentication should be implemented as close to the host device possible.
Devices on VLAN 20 are restricted to in the address range of 172.120.40.0/24.
Packets from devices in the address range of 172.120.40.0/24 should be passed on VLAN 20.
Packets from devices in any other address range should be dropped on VLAN 20. Filtering should be implemented as close to the server farm as possible.
The Radius server and application servers will be installed at a future date. You have been tasked with implementing the above access control as a pre-condition to installing the servers. You must use the available IOS switch features.
您可能感興趣的試卷
你可能感興趣的試題
A.32928 000d bd33 029b
B.24623 000f 34f5 039b
C.32928 000d bd03 029b
D.32768 000d bd33 029b
E.32769 000d 65db 01dd
F.32815 000d bd03 029b
G.None of the other alternatives apply
A.Listening
B.Learning
C.Disabled
D.Blocking
E.Forwarding
F.Discarding
G.None of the other alternatives apply
A.Root port
B.Nondesigned port
C.Designated port
D.Backup port
E.Alternate port
F.None of the other alternatives apply
A.32928 000d bd33 029b
B.24623 000f 34f5 039b
C.32928 000d bd03 029b
D.32768 000d bd33 029b
E.32769 000d 65db 01dd
F.32815 000d bd03 029b
G.None of the other alternatives apply
A.STP/IEEE 802.1D
B.MSTP/IEEE 802.1s
C.PVST+
D.PVRST
E.None of the other alternatives apply
最新試題
Which statement is correct about RSTP port roles?()
During routine maintenance, G1/0/1 on DS1 was shutdown. All other interface were up. DS2 became the active HSRP device for Vlan101 as desired. However, after G1/0/1 on DS1 was reactivated. DS1 did not become the active HSRP device as desired. What need to be done to make the group for Vlan101 function properly ? ()
Refer to the exhibit. STP has been implemented in the network. Switch SW_A is the root switch for the default VLAN. To reduce the broadcast domain, the network administrator decides to split users on the network into VLAN 2 and VLAN 10. The administrator issues the command spanning-tree vlan 2 root primary on switch SW_A. What will happen as a result of this change?()
Refer to the exhibit. For what purpose is the command show ip cef used?()
Examine the diagram. A network administrator has recently installed the above switched network using 3550s and would like to control the selection of the root bridge.Which switch should theadministrator configure as the root bridge and which configuration command must theadministrator enter to accomplish this?()
Refer to the exhibit. Which statement is true about the output?()
Refer to the exhibit. On the basis of the output of the show spanning-tree inconsistentports command, which statement about interfaces FastEthernet 0/1 and FastEthernet 0/2 is true?()
Refer to the exhibit. Initially, LinkA is connected and forwarding traffic. A new LinkB is then attached between SwitchA and HubA. Which two statements are true about the possible result of attaching the second link?()
Based on the show spanning-tree vlan 200 output shown in the exhibit, which two statements about the STP process for VLAN 200 are true? ()
Refer to the exhibit. The command switchport mode access is issued on interface FastEthernet0/13 on switch CAT1. What will be the result?()