A network engineer must configure a switch to allow remote access for all feasible protocols Only a password must be requested for device authentication and all idle sessions must be terminated in 30 minutes. Which configuration must be applied?
A.
line vty 0 15 password cisco transport input telnet ssh exec-timeout 30 0
B.
line vty 0 15 password cisco transport input all exec-timeout 0 30
C.
username cisco privilege 15 cisco line vty 0 15 transport input telnet ssh login local exec-timeout 0 30
D.
line console 0 password cisco exec-timeout 30 0
Router(config-line)# exec-timeout 3 30
In the example configuration above, exec-timeout is set with 3 minutes and 30
https://study-ccnp.com/cisco-exec-timeout-absolute-timeout-commands/#:~:text=The%20Cisco%20'exec%2Dtimeout'%20command%20sets%20a%20specific%20time,run%20before%20it%20will%20timeout.
You're right but look at the exec-timeout command.
It's wrong on B, so it makes A the most reasonable choice even if A just specifies just telnet and SSH only
transport input ?
all All protocols
lapb-ta LAPB Terminal Adapter
lat DEC LAT protocol
mop DEC MOP Remote Console Protocol
none No protocols
pad X.3 PAD
rlogin Unix rlogin protocol
ssh TCP/IP SSH protocol
telnet TCP/IP Telnet protocol
udptn UDPTN async via UDP protocol
v120 Async over ISDN
There's no way in 2023 that anything but telnet or ssh is feasible and it's questionable that telnet still qualifies as feasible. We can actually still configure DLCIs but there's no way we can expect it work.
Options B, C, and D are incorrect.
B is incorrect, "exec-timeout <min> <sec>" is set to 0 minutes with 30 seconds (we need 30 minutes with zero seconds.)
C is incorrect, we are required to use only a password (no username.)
D is incorrect, we're setting up remote, not console access.
B is correct i just lab it ( all feasible protocols means transport input all )
line vty 0 4
exec-timeout 30 0
password cisco
login
transport input all
line vty 5 15
exec-timeout 30 0
password cisco
login
transport input all
A is the absolute 1000% answer
Only a password? CHECK (password cisco)
Terminated in 30 minutes? CHECK (30 0)
ALLOW ALL FEASIBLE PROTOCOLS? CHECK CHECK CHECK - SSH AND TELNET ARE THE ONLY PROTOCOLS AVAILABLE, SO BECAUSE BOTH ARE THERE, IT TECHNICALLY MEANS ALL ARE ALLOWED
Tell me what other feasible protocols, other than SSH and Telnet are available for VTY?
Well it goes beyond the scope of this exam but if you want to have a deep dive, have a look at RFC 1149, but for the sake of this exam A is the right answer as given by the others.
A is wrong because you need a username and password to connect via SSH so login local is requrired.
B is wrong because of incorrect exec-timeout
C has wrong exec-timeout value.
D. uses the console line
How do you create a ssh session without using login local or AAA?
Vague question cisco.
exec-timeout 30 0
exec-timeout 0 30 means time out after 0 minutes and 30 seconds.
A is right answer kinda exec-timeout timing wise but it does not cover all porotocols such as -
Router(config-line)#transport input ?
all All protocols
lapb-ta LAPB Terminal Adapter
lat DEC LAT protocol
mop DEC MOP Remote Console Protocol
none No protocols
pad X.3 PAD
rlogin Unix rlogin protocol
ssh TCP/IP SSH protocol
telnet TCP/IP Telnet protocol
udptn UDPTN async via UDP protocol
v120 Async over ISDN
I intially thought B, but the times are out for the Exec-Timeout, so the only option really then is A. I don't like how they ask for "all feasible protocols". They are making a trick question, so you have to hope that they mean SSH and Telnet when they said "all feasible protocols"
This statement right here just proved to me you have ZERO real-world experience
Tell me what other feasible protocols, other than SSH and Telnet are available for VTY?
This section is not available anymore. Please use the main Exam Page.350-401 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
jj970us
Highly Voted 2 years, 7 months agoronin
2 years, 7 months agoDeu_Inder
2 years, 7 months agoPilgrim5
1 year, 12 months agoCaledonia
Highly Voted 2 years, 7 months agoHarwinderSekhon
1 year, 10 months agoSplashisthegreatestmovie
1 year, 10 months agoAbdullahMohammad251
Most Recent 7 months ago[Removed]
11 months agoamadeu
1 year agoAM17212
1 year, 2 months agoTadese
1 year, 3 months agoeearmani
1 year, 3 months agoeearmani
1 year, 3 months agomgiuseppe86
1 year, 7 months agoslacker_at_work
1 year, 2 months agopc_evans
1 year, 7 months agoHarwinderSekhon
1 year, 10 months agoando2023
1 year, 10 months agoPapins
1 year, 11 months agomgiuseppe86
1 year, 7 months agoPapins
1 year, 11 months agoVlad_Is_Love_ua
2 years, 2 months agosnarkymark
2 years, 2 months agoHenokFU
2 years, 2 months ago