An engineer must block all traffic from a router to its directly connected subnet 209.165.200.0/24. The engineer applies access control list EGRESS in the outbound direction on the GigabitEthernet0/0 interface of the router. However, the router can still ping hosts on the 209.165.200.0/24 subnet. Which explanation of this behavior is true?

By | November 28, 2022

Refer to the exhibit. An engineer must block all traffic from a router to its directly connected subnet 209.165.200.0/24. The engineer applies access control list EGRESS in the outbound direction on the GigabitEthernet0/0 interface of the router. However, the router can still ping hosts on the 209.165.200.0/24 subnet.
Which explanation of this behavior is true?

  • A. Access control lists that are applied outbound to a router interface do not affect traffic that is sourced from the router.
  • B. After an access control list is applied to an interface, that interface must be shut and no shut for the access control list to take effect.
  • C. Only standard access control lists can block traffic from a source IP address.
  • D. The access control list must contain an explicit deny to block traffic from the router.
Answer: Option A.
Explanation: 

No answer description available for this question

The post An engineer must block all traffic from a router to its directly connected subnet 209.165.200.0/24. The engineer applies access control list EGRESS in the outbound direction on the GigabitEthernet0/0 interface of the router. However, the router can still ping hosts on the 209.165.200.0/24 subnet.<br> Which explanation of this behavior is true? appeared first on Majanto.