Infrastructure ACLs on Cisco IOS Software | Cisco Exam 400-251 Answer

What Are Infrastructure ACLs on Cisco IOS Software?

Prev Question Next Question

Question

Which statement about Infrastructure ACLs on Cisco IOS software is true?

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

B.

Infrastructure Access Control Lists (ACLs) are used to protect the network infrastructure by filtering traffic that is destined for the control plane of the device, thereby mitigating the risk of attacks on the network infrastructure.

Answer (A) is the correct statement regarding Infrastructure ACLs on Cisco IOS software. Infrastructure ACLs are used to protect the device forwarding path. These ACLs are applied to the control plane of the device, which includes the CPU and the memory, to filter traffic that is destined for the control plane.

Answer (B) is incorrect because infrastructure ACLs are not used to protect device management and internal link addresses. There are other security features, such as Access Control Lists (ACLs) and Virtual Private Networks ( VPNs), that are used to protect device management and internal link addresses.

Answer (C) is also incorrect because infrastructure ACLs are not used to authorize transit traffic. Authorization is typically accomplished through authentication mechanisms such as usernames and passwords, digital certificates, and biometric authentication.

Answer (D) is incorrect because infrastructure ACLs do not only protect the device physical management interface. In fact, infrastructure ACLs are used to protect the control plane of the device, which includes the CPU and the memory.

In summary, the correct answer is A. Infrastructure ACLs are used to protect the device forwarding path. These ACLs are applied to the control plane of the device to filter traffic that is destined for the control plane.