# 200-301 — Question 1710

**Type:** case_study
**Topics:** network_configuration, topology, security, access_control

## Question

SIMULATION
-


Guidelines
-

This is a lab item in which tasks will be performed on virtual devices.

• Refer to the Tasks tab to view the tasks for this lab item.
• Refer to the Topology tab to access the device console(s) and perform the tasks.
• Console access is available for all required devices by clicking the device icon or using the tab(s) above the console window.
• All necessary preconfigurations have been applied.
• Do not change the enable password or hostname for any device.
• Save your configurations to NVRAM before moving to the next item.
• Click Next at the bottom of the screen to submit this lab and move to the next question.
• When Next is clicked, the lab doses and cannot be reopened.


Topology
-

//IMG//



Tasks
-

Refer to the topology. All physical cabling is in place. Configure a local user account, a Named ACL (NACL) and security.

1. Configure a local account on Sw101 with telnet access only on virtual ports 0-4. Use the following information:

o Username: netops
o Password: ipsec4all
o Algorithm: "Vigenere"
o Privilege level: Exec mode

2. Configure and apply a single NACL on Sw103 using the following:

o name: ENT_ACL
o Restrict only PC1 on VLAN 10 from pinging PC2
o Allow only PC1 on VLAN 10 to telnet to R1 (172.16.30.2)
o Prevent all other devices from telnetting from VLAN 10
o Allow all other network traffic from VLAN 10

3. Configure security on interface Ethernet 0/0 of Sw102:

o Set the maximum number of secure MAC addresses to two
o Ensure that the port discards the packet, counts the number of violations and sends a syslog message
o Allow secure mac addresses to be learned dynamically

## Correct Answer

_See scenario._

**Reference:** examtopics_top_comment

---
Source: https://hiexam.net/q/cisco/200-301/1710  
Practice (tracked): https://hiexam.net/study/200-301/practice