Home » Cisco » 210-260 v.2 » Which three protocols should the default ACL allow on an access port to enable wired BYOD devices to supply valid credentials and connect to the network?
According to Cisco best practices, which three protocols should the default ACL allow on an access port to enable wired BYOD devices to supply valid credentials and connect to the network? (Choose three.)
A. BOOTP
B. TFTP
C. DNS
D. MAB
E. HTTP
F. 802.1x
Correct Answer: ABC
Explanation/Reference:
ACL-DEFAULT allows DHCP, DNS, ICMP, and TFTP traffic and denies everything else.
Reference: http://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/Borderless_Networks/Unified_Access/BYOD_Design_Guide/BYOD_Wired.html
Extended IP access list ACL-DEFAULT
10 permit udp any eq bootpc any eq bootps log (2604 matches) –> BOOTP
20 permit udp any host 10.230.1.45 eq domain –> DNS
30 permit icmp any any –> ICMP
40 permit udp any any eq tftp –> TFTP
50 deny ip any any log (40 matches)
Answers: A, B, C