nerdexam
Cisco

350-401 · Question #930

Drag and Drop Question Drag and drop the code snippets from the bottom onto the blanks in the code to construct a request that configures a deny rule on an access list. Answer:

The correct answer is access-list-seq-rule; deny; ip; dst-any. The correct arrangement follows the proper hierarchical structure for configuring an ACL deny rule in a network OS (such as Cisco NX-OS or similar): 'access-list-seq-rule' defines the sequence rule container, 'deny' specifies the action, 'ip' defines the protocol being matched, a

Submitted by lukas.cz· Mar 6, 2026Network Security / Access Control - configuring and implementing access control lists (ACLs) to control and filter network traffic using permit and deny rules.

Question

Drag and Drop Question Drag and drop the code snippets from the bottom onto the blanks in the code to construct a request that configures a deny rule on an access list. Answer:

Exhibit

350-401 question #930 exhibit

Answer Area

Drag items

denyaccess-list-seq-ruledst-anyip

Correct arrangement

  • access-list-seq-rule
  • deny
  • ip
  • dst-any

Explanation

The correct arrangement follows the proper hierarchical structure for configuring an ACL deny rule in a network OS (such as Cisco NX-OS or similar): 'access-list-seq-rule' defines the sequence rule container, 'deny' specifies the action, 'ip' defines the protocol being matched, and 'dst-any' specifies the destination. This ordering reflects the logical nesting of ACL configuration elements where the rule type comes first, followed by the action, protocol, and then match criteria.

Topics

#Access Control Lists#Network Security Policy#ACL Configuration#Deny Rules

Community Discussion

No community discussion yet for this question.

Full 350-401 Practice