nerdexam
Cisco

500-220 · Question #77

500-220 Question #77: Real Exam Question with Answer & Explanation

The correct answer is C. An 'Allow' rule must be added to the Outbound rules list to connect to the necessary resources.. The custom Outbound rule ordering is top-down, and the existing deny-Local-LAN rule blocks all wireless clients from reaching 10.0.0.0/8 resources. Placing an explicit “Allow IPv4 Any → Local LAN” rule (or more specific permit for the needed servers) above that deny rule restores

Question

Refer to the exhibit. After associating with the Officers SSID and receiving an IP address on the 10.0.0/8 subnet, a wireless user submitted a support ticket that they cannot access wired network resources. Which configuration will provide successful network communication?

Exhibit

500-220 question #77 exhibit

Options

  • AThe 'DHCP guard' setting should be adjusted from 'Disabled' to 'Enabled.'
  • BThe Layer 7 firewall rules prevent wired IP traffic from being forwarded and should be disabled.
  • CAn 'Allow' rule must be added to the Outbound rules list to connect to the necessary resources.
  • DThe Layer 2 LAN isolation setting should be adjusted from 'Disabled' to 'Enabled.'

Explanation

The custom Outbound rule ordering is top-down, and the existing deny-Local-LAN rule blocks all wireless clients from reaching 10.0.0.0/8 resources. Placing an explicit “Allow IPv4 Any → Local LAN” rule (or more specific permit for the needed servers) above that deny rule restores access.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 500-220 Practice