nerdexam
Exams350-001Questions#97
Cisco

350-001 · Question #97

350-001 Question #97: Real Exam Question with Answer & Explanation

The correct answer is E: an inbound extended ACL applied to the untrusted interface. After the ACL is defined, it must be applied to the interface (inbound or outbound). In early software releases, out was the default when a keyword out or in was not specified. The direction must be specified in later software releases.

Question

Which of these is mandatory when configuring Cisco IOS Firewall?

Options

  • ACisco IOS IPS enabled on the untrusted interface
  • BNBAR enabled to perform protocol discovery and deep packet inspection
  • Ca route map to define the trusted outgoing traffic
  • Da route map to define the application inspection rules
  • Ean inbound extended ACL applied to the untrusted interface

Explanation

After the ACL is defined, it must be applied to the interface (inbound or outbound). In early software releases, out was the default when a keyword out or in was not specified. The direction must be specified in later software releases.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 350-001 Practice