CCNA Security Practice Test Results

Question 1
59% answer correctly
What is the first step you should take when considering securing your network?
Develop a security policy.
Update servers and user PCs with the latest patches.
Install a firewall.
Install an intrusion prevention system.
Question 2
23% answer correctly
Which access list permits HTTP traffic sourced from host 10.1.129.100 port 3030 destined to host 192.168.1.10?
access-list 101 permit ip host 10.1.129.100 eq 3030 host 192.168.1.100 eq 80
access-list 101 permit tcp 10.1.129.0 0.0.0.255 eq www 192.168.1.10 0.0.0.0 eq www
access-list 101 permit tcp 10.1.128.0 0.0.1.255 eq 3030 192.168.1.0 0.0.0.15 eq www
access-list 101 permit tcp 192.168.1.10 0.0.0.0 eq 80 10.1.0.0 0.0.255.255
access-list 101 permit tcp any eq 3030
access-list 101 permit tcp host 192.168.1.10 eq 80 10.1.0.0 0.0.255.255 eq 3030
Question 3
57% answer correctly
Which option is a key principle of the Cisco Self-Defending Network strategy?
The self-defending network should be the key point of your security policy.
Integrate security throughout the existing infrastructure.
Upper management is ultimately responsible for policy implementation.
Security is static and should prevent most known attacks on the network.