Last Updated on July 31, 2021 by Admin 1
Which statements in regards to route filtering are true? (Choose two.)
- Network security is the primary role of route filtering.
- If no route filter exists for an interface, the packet is processed normally.
- Route filtering on an interface cannot filter routes that originate from the same router.
- The distribute-list command enables the administrator to filter redistributed routes.
- The network keyword of the passive-interface command enables you identify the routes to advertise.
Distribute lists are used to filter inbound, outbound, or redistributed routing updates. Instead of using the passive-interface command, distribute lists enable you to selectively control which routes are processed.
If no distribute list is associated with the interface, the routing update packets are processed normally.
If a distribute list is associated with an interface, the routing update is compared to the access list that was specified in the distribute list. If a match is found to a permit statement, then the packet is forwarded. If a match is found to a deny statement, the packet is discarded. If no match is found, the implicit deny statement at the end of the access list will drop the packet.
Network security is not the primary role of route filtering. Its primary function is to reduce unnecessary routing update traffic.
Route filtering on an interface can filter routes that originate from the same router.
The network keyword of the passive-interface command does not enable you identify the routes to advertise.
Objective:
Layer 3 Technologies
Sub-Objective:
Configure and verify filtering with any protocol