[&] What will this Access-List configuration accomplish? ! access-list 2501 deny tcp host 1.1.1.1 23.140.17.1 255.255.255.254 eq 23 ! interface GigabitEthernet0/0 ip access-group 2501 in ! (Select the best answer) - All of these answers are correct -- Correct - The host at 1.1.1.1 will not be able to telnet to the host 23.140.17.27 - The host at 1.1.1.1 will not be able to telnet to the host 144.23.162.9 - All IPv4 packets arriving on interface GigabitEthernet0/0 will be dropped [&] Which partial ACL configuration will result in Cisco IOS providing you the ability to create an Extended Access-List? (Select two answers) - Device(config)#access-list 1601 - Device(config)#access-list 2400 -- Correct - Device(config)#access-list 90 - Device(config)#access-list 100 -- Correct [&] Which of the following statements are true about implementing Extended Access-Lists for packet filtering? (Select the best answer) - They must be implemented on interfaces connecting to Laptops and PCs - They must be implemented on interfaces connecting to Servers - Extended ACLs should never be used for packet filtering - They should be implemented as close to the source host/network as possible -- Correct - They should be implemented as close to the destination host/network as possible [&] What field(s) within an IPv4 header can be matched when implementing an Extended Access-List? (Select the best answer) - Only the source IPv4 address - Both the source and destination IPv4 addresses -- Correct - Only the destination IPv4 address and the TCP/UDP port number - Only the destination IPv4 address - Only the source IPv4 address and the TCP/UDP port number [&] Which of the following Access-Lists will prevent DNS A-Record lookups sourced from any host in the 180.34.29.24/29 subnet? (Select the best answer) - access-list 101 deny tcp 180.34.29.24 0.0.0.15 any eq 53 - access-list 101 deny tcp 180.34.29.24 0.0.0.15 any eq 25 - access-list 101 deny udp 180.34.29.24 0.0.0.7 any eq 53 -- Correct - access-list 101 deny udp 180.34.29.24 0.0.0.7 any eq 25