Free Cisco 300-620 Actual Exam Questions - Question 9 Discussion
from external subnets 10 0 0024 and 192.168 20 G'25. Which configuration set accomplishes this
goal?
D imo, because it specifically matches those exact subnets and uses an access list applied only to the OOB management interface, which fits the requirement tighter than B or C.
Makes sense to block everything else after allowing those subnets. I think option C nails that with explicit permits and a deny at the end. C
The question’s subnet masks look like /24 and /25 to me, so I think option B fits best with those exact ranges and denies everything else cleanly. B.
Option C uses explicit permits and a clear deny, which feels safer to me.
Not B, it doesn't clearly isolate just those two subnets like C does.
Guessing B on this one since it uses explicit permit statements for those subnets and then denies everything else, which is usually the safest way to restrict access strictly.
Probably D here. It seems to specifically target those two subnets without any overlap or broader ranges, which matches the question’s need for limiting access strictly to those.
Maybe C on this one. From what I saw, option C explicitly denies all other subnets after permitting just those two, which feels like a cleaner and more secure approach. Just allowing the exact external subnets and blocking everything else is usually the safest bet for OOB management access. Plus, if the question’s stressing secure access, that strict control makes sense.
This is tricky, but I think it’s option B since it matches the specific subnet masks mentioned.