350-601 · Question #374
350-601 Question #374: Real Exam Question with Answer & Explanation
The correct answer is B: Option B. To permit remote SSH access from a specific jump host and allow switches to SSH to a specific subnet, the configuration must include an SSH access group permitting the jump host IP on VTY lines and an ACL for outbound connections.
Question
An engineer mus! configure the remote SSH management connectivity for Cisco Nexus 9000 Series Switches to meet these requirements: - The connectivity must be permitted from a jump host with an IP address of 10.10.10.10/24. - All switches must be permitted to connect via SSH to other devices from the subnet of 10.20.20.0/24. Which configuration set accomplishes these requirements?
Options
- AOption A
- BOption B
- COption C
- DOption D
Explanation
To permit remote SSH access from a specific jump host and allow switches to SSH to a specific subnet, the configuration must include an SSH access group permitting the jump host IP on VTY lines and an ACL for outbound connections.
Common mistakes.
- A. This option is incorrect because it likely misconfigures the ACLs or applies them incorrectly, failing to meet both specified requirements for SSH connectivity.
- C. This option is incorrect because it probably uses incorrect ACL statements or applies them to the wrong interfaces or VTY lines, preventing the required SSH access.
- D. This option is incorrect because it likely has a logical flaw in the ACLs or their application, which would prevent the specified SSH connectivity from being established.
Concept tested. Cisco Nexus SSH security, VTY access, ACL configuration
Topics
Community Discussion
No community discussion yet for this question.