312-50V10 · Question #257
Which type of access control is used on a router or firewall to limit network activity?
The correct answer is C. Rule-based. Routers and firewalls use rule-based access control, applying explicit ordered rules such as ACLs to permit or deny network traffic.
Question
Which type of access control is used on a router or firewall to limit network activity?
Options
- AMandatory
- BDiscretionary
- CRule-based
- DRole-based
How the community answered
(26 responses)- A4% (1)
- C96% (25)
Why each option
Routers and firewalls use rule-based access control, applying explicit ordered rules such as ACLs to permit or deny network traffic.
Mandatory access control (MAC) uses sensitivity labels and security clearances assigned to subjects and objects - not applicable to packet-level network filtering.
Discretionary access control (DAC) lets resource owners set permissions on their own resources, which does not map to how routers or firewalls filter traffic.
Rule-based access control (RuBAC) grants or denies access based on a set of predefined rules configured by an administrator, which is exactly how router ACLs and firewall policies function. Each packet is evaluated against an ordered rule set and permitted or denied based on criteria like source IP, destination IP, port, and protocol. This model is distinct from role-based control because access is tied to traffic attributes, not user identities.
Role-based access control (RBAC) grants access based on a user's assigned role within an organization, not on network traffic rules.
Concept tested: Rule-based access control on network devices
Source: https://docs.cisco.com/c/en/us/support/docs/security/ios-firewall/23602-confaccesslists.html
Topics
Community Discussion
No community discussion yet for this question.