Cisco Packet Tracer - Enabling A Router

Question 1

What is the first step to secure a router in Cisco Packet Tracer?

Answer 1

Access the router’s command line interface (CLI).

Question 2

True or False: The default username and password should be kept unchanged for security.

Answer 2

False.

Question 3

What command is used to enter privileged EXEC mode?

Answer 3

The command ‘enable’ is used.

Question 4

Fill in the blank: To change the router’s hostname, use the command ______.

Answer 4

hostname [new_hostname]

Question 5

What is the purpose of setting a console password?

Answer 5

To prevent unauthorized access to the router’s console.

Question 6

Which command sets a password for console access?

Answer 6

The command ‘line con 0’ followed by ‘password [your_password]’ and ‘login’.

Question 7

What command is used to secure remote access to the router?

Answer 7

The command ‘line vty 0 4’ followed by ‘password [your_password]’ and ‘login’.

Question 8

True or False: Enabling secret passwords is less secure than enabling simple passwords.

Answer 8

False.

Question 9

What command is used to set an enable secret password?

Answer 9

The command ‘enable secret [your_secret_password]’.

Question 10

What is the function of the ‘service password-encryption’ command?

Answer 10

It encrypts plain text passwords in the configuration file.

Question 11

Fill in the blank: To configure the SNMP community string, use the command ______.

Answer 11

snmp-server community [community_string] [RO|RW]

Question 12

What is the purpose of access control lists (ACLs) in router security?

Answer 12

To filter traffic and enhance security by restricting access to the router.

Question 13

Which command is used to create a standard access list?

Answer 13

The command ‘access-list [number] permit [source]’.

Question 14

What is the range of numbers for standard access lists?

Answer 14

1 to 99.

Question 15

True or False: Extended access lists can filter traffic based on protocol type.

Answer 15

True.

Question 16

What command is used to apply an access list to an interface?

Answer 16

The command ‘ip access-group [access-list-number] [in|out]’.

Question 17

Fill in the blank: To configure SSH access, you need to generate ______.

Answer 17

RSA keys.

Question 18

What command generates RSA keys for SSH?

Answer 18

The command ‘crypto key generate rsa’.

Question 19

What is the minimum key length recommended for RSA keys?

Answer 19

2048 bits.

Question 20

True or False: Telnet is a secure protocol for remote router access.

Answer 20

False.

Question 21

What command is used to enable SSH on the router?

Answer 21

The command ‘ip ssh version 2’.

Question 22

What is the purpose of the ‘banner motd’ command?

Answer 22

To display a message of the day to users when they connect to the router.

Question 23

Fill in the blank: The command to set a banner is ______.

Answer 23

banner motd [message]

Question 24

What is the command to disable unused interfaces?

Answer 24

The command ‘interface [interface_id]’ followed by ‘shutdown’.

Question 25

True or False: Keeping unused services enabled on a router enhances security.

Answer 25

False.

Question 26

What command is used to view the running configuration?

Answer 26

The command 'show running-config'.

Question 27

What is the importance of regularly updating router firmware?

Answer 27

To protect against vulnerabilities and enhance security features.

Question 28

Fill in the blank: The command to save the running configuration to startup is ______.

Answer 28

write memory or copy running-config startup-config.

Question 29

What is the purpose of logging to a remote server?

Answer 29

To keep a record of events and access attempts for security auditing.

Question 30

Which command enables logging to a remote syslog server?

Answer 30

The command 'logging [syslog_server_ip]'.

Question 31

True or False: All users should have administrative privileges on a router.

Answer 31

False.

Question 32

What command is used to create a user account with privilege level?

Answer 32

The command 'username [username] privilege [level] secret [password]'.

Question 33

Fill in the blank: To configure a timeout for inactive sessions, use the command ______.

Answer 33

exec-timeout [minutes] [seconds]

Question 34

What is the command to disable IP source routing?

Answer 34

The command 'no ip source-route'.

Question 35

True or False: Using ACLs can help mitigate DoS attacks.

Answer 35

True.

Question 36

What command is used to verify the status of ACLs?

Answer 36

The command 'show access-lists'.

Question 37

What is the primary benefit of using dynamic routing protocols?

Answer 37

To automatically adjust routes based on network changes.

Question 38

Fill in the blank: The command to enable a routing protocol like OSPF is ______.

Answer 38

router ospf [process_id]

Question 39

What is the purpose of configuring NAT on a router?

Answer 39

To allow multiple devices on a private network to access the internet using a single public IP.

Question 40

True or False: NAT increases the number of IP addresses available on a network.

Answer 40

False.

Question 41

What command is used to configure NAT overload?

Answer 41

The command 'ip nat inside source list [access-list] interface [interface] overload'.

Question 42

What is the function of the 'ip dhcp snooping' command?

Answer 42

To prevent rogue DHCP servers from assigning IP addresses.

Question 43

Fill in the blank: To enable DHCP snooping, use the command ______.

Answer 43

ip dhcp snooping

Question 44

What command is used to verify DHCP snooping status?

Answer 44

The command 'show ip dhcp snooping'.

Question 45

True or False: Port security can help prevent unauthorized devices from accessing the network.

Answer 45

True.

Question 46

What command is used to enable port security on an interface?

Answer 46

The command 'switchport port-security'.

Question 47

Fill in the blank: To limit the number of MAC addresses on a port, use the command ______.

Answer 47

switchport port-security maximum [number]

Question 48

What is the purpose of the 'show ip interface brief' command?

Answer 48

To display the status of all interfaces on the router.

Question 49

What command is used to perform a basic security assessment of the router?

Answer 49

The command 'show running-config'.