CCNA Security Practice Test Results

Question 1
59% answer correctly
What is the first step you should take when considering securing your network?
Install a firewall.
Install an intrusion prevention system.
Update servers and user PCs with the latest patches.
Develop a security policy.
Question 2
23% answer correctly
Which access list permits HTTP traffic sourced from host 10.1.129.100 port 3030 destined to host 192.168.1.10?
access-list 101 permit tcp host 192.168.1.10 eq 80 10.1.0.0 0.0.255.255 eq 3030
access-list 101 permit tcp any eq 3030
access-list 101 permit tcp 10.1.129.0 0.0.0.255 eq www 192.168.1.10 0.0.0.0 eq www
access-list 101 permit tcp 10.1.128.0 0.0.1.255 eq 3030 192.168.1.0 0.0.0.15 eq www
access-list 101 permit ip host 10.1.129.100 eq 3030 host 192.168.1.100 eq 80
access-list 101 permit tcp 192.168.1.10 0.0.0.0 eq 80 10.1.0.0 0.0.255.255
Question 3
57% answer correctly
Which option is a key principle of the Cisco Self-Defending Network strategy?
Integrate security throughout the existing infrastructure.
The self-defending network should be the key point of your security policy.
Security is static and should prevent most known attacks on the network.
Upper management is ultimately responsible for policy implementation.