CCNA Security Practice Test Results

Question 1
59% answer correctly
What is the first step you should take when considering securing your network?
Install an intrusion prevention system.
Update servers and user PCs with the latest patches.
Develop a security policy.
Install a firewall.
Question 2
23% answer correctly
Which access list permits HTTP traffic sourced from host 10.1.129.100 port 3030 destined to host 192.168.1.10?
access-list 101 permit tcp 10.1.128.0 0.0.1.255 eq 3030 192.168.1.0 0.0.0.15 eq www
access-list 101 permit tcp 10.1.129.0 0.0.0.255 eq www 192.168.1.10 0.0.0.0 eq www
access-list 101 permit tcp host 192.168.1.10 eq 80 10.1.0.0 0.0.255.255 eq 3030
access-list 101 permit tcp any eq 3030
access-list 101 permit ip host 10.1.129.100 eq 3030 host 192.168.1.100 eq 80
access-list 101 permit tcp 192.168.1.10 0.0.0.0 eq 80 10.1.0.0 0.0.255.255
Question 3
57% answer correctly
Which option is a key principle of the Cisco Self-Defending Network strategy?
Upper management is ultimately responsible for policy implementation.
The self-defending network should be the key point of your security policy.
Security is static and should prevent most known attacks on the network.
Integrate security throughout the existing infrastructure.