CCNA Security Practice Test Results

Question 1
59% answer correctly
What is the first step you should take when considering securing your network?
Develop a security policy.
Install a firewall.
Update servers and user PCs with the latest patches.
Install an intrusion prevention system.
Question 2
23% answer correctly
Which access list permits HTTP traffic sourced from host 10.1.129.100 port 3030 destined to host 192.168.1.10?
access-list 101 permit tcp 10.1.129.0 0.0.0.255 eq www 192.168.1.10 0.0.0.0 eq www
access-list 101 permit tcp 192.168.1.10 0.0.0.0 eq 80 10.1.0.0 0.0.255.255
access-list 101 permit tcp any eq 3030
access-list 101 permit ip host 10.1.129.100 eq 3030 host 192.168.1.100 eq 80
access-list 101 permit tcp 10.1.128.0 0.0.1.255 eq 3030 192.168.1.0 0.0.0.15 eq www
access-list 101 permit tcp host 192.168.1.10 eq 80 10.1.0.0 0.0.255.255 eq 3030
Question 3
43% answer correctly
You have several operating groups in your enterprise that require differing access restrictions to the routers to perform their job roles. These groups range from Help Desk personnel to advanced troubleshooters. What is one methodology for controlling access rights to the routers in these situations?
Implement syslogging to monitor the activities of the groups
Configure TACACS+ to perform scalable authentication
Configure ACLs to control access for the different groups
Configure multiple privilege level access