Learn which ACL type inspects both source and destination IP addresses for the CCNA 200-301 exam. Understand how extended ACLs provide granular traffic filtering using multiple criteria, including IP addresses, protocols, and ports.
Table of Contents
Question
Which ACL type inspects both source and destination IP addresses?
A. Standard ACL
B. Named ACL
C. Reflexive ACL
D. Extended ACL
E. Dynamic ACL
Answer
D. Extended ACL
Explanation
Extended ACLs filter traffic based on source/destination IP, protocol, and port numbers for more granular control.
Extended Access Control Lists (ACLs) filter traffic based on both source and destination IP addresses, as well as protocols and port numbers. This allows for granular control over network traffic, enabling administrators to permit or deny packets with specific characteristics. Extended ACLs are more flexible than standard ACLs, which only filter by source IP address. By specifying both source and destination criteria, extended ACLs can enforce detailed security and access policies within a network.
Cisco Certified Network Associate CCNA 200-301 certification exam practice question and answer (Q&A) dump with detail explanation and reference available free, helpful to pass the Cisco Certified Network Associate CCNA 200-301 exam and earn Cisco Certified Network Associate CCNA 200-301 certification.