Summer Sale 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: exams65

ExamsBrite Dumps

Implementing and Administering Cisco Solutions (200-301 CCNA) v1.1 Question and Answers

Implementing and Administering Cisco Solutions (200-301 CCNA) v1.1

Last Update Jul 17, 2026
Total Questions : 1242

We are offering FREE 200-301 Cisco exam questions. All you do is to just go and sign up. Give your details, prepare 200-301 free exam questions and then go for complete pool of Implementing and Administering Cisco Solutions (200-301 CCNA) v1.1 test questions that will help you more.

200-301 pdf

200-301 PDF

Include Study Guide
$40.25  $114.99
200-301 Engine

200-301 Testing Engine

Include Study Guide
$47.25  $134.99
200-301 PDF + Engine

200-301 PDF + Testing Engine

$61.25  $174.99
Questions 1

Which technology is appropriate for communication between an SDN controller and applications running over the network?

Options:

A.  

REST API

B.  

OpenFlow

C.  

Southbound API

D.  

NETCONF

Discussion 0
Questions 2

What is the RFC 4627 default encoding for JSDN text?

Options:

A.  

UCS-2

B.  

UTF-8

C.  

Hex

D.  

GB18030

Discussion 0
Questions 3

Refer to the exhibit.

Which IP route command created the best path for a packet destined for 10.10.10.3

Options:

A.  

ip route 10.10.0.0 255.255.252.0 g0/0

B.  

ip route 10.0.0.0 255.0.0.0 g0/0

C.  

ip route 10.10.10.1 255.255.255.255 g0/0

D.  

ip route 10.10.10.0 255.255.255.240 g0/0

Discussion 0
Questions 4

Refer to the exhibit. Routers R1 and R2 have been configured with their respective LAN interfaces. The two circuits are operational and reachable across the WAN. Which command set establishes failover redundancy if the primary circuit goes down?

Options:

A.  

Ri(config)#ip route 0.0.0.0 0.0.0.0 10.10.10.62R2(config)#ip route 0.0.0.0 0.0.0.0 10.10.10.5 2

B.  

Ri(config)#ip route 10.10.13.10 255.255.255.255 10.10.10.6R2(config)#ip route 192.168.0.100 255.255.255.255 10.10.10.5

C.  

Ri(config)#ip route 0.0.0.0 0.0.0.0 10.10.10.6R2(config)#ip route 0.0.0.0 0.0.0.0 10.10.10.5

D.  

Ri(config)#ip route 10.10.13.10 255.255.255.255 10.10.10.2R2(config)#ip route 192.168.0.100 255.255.255.255 10.10.10.1

Discussion 0
Questions 5

How does MAC learning function on a switch?

Options:

A.  

broadcasts frames to all ports without queueing

B.  

adds unknown source MAC addresses to the address table

C.  

sends a retransmission request when a new frame is received

D.  

sends frames with unknown destinations to a multicast group

Discussion 0
Questions 6

Refer to the exhibit.

Which route does R1 select for traffic that is destined to 192.168.16.2?

Options:

A.  

192.168.16.0/21

B.  

192.168.16.0/24

C.  

192.168.16.0/26

D.  

192.168.16.0/27

Discussion 0
Questions 7

Exhibit.

The switches are connected via a Cat5 Ethernet cable that was successfully tested. The Interfaces are configured as access ports and are both in a ' down " status. What is the cause of this issue?

Options:

A.  

The switches are configured with incompatible duplex settings.

B.  

The distance between the two switches is not supported by Cut5.

C.  

The speed settings on the switches are mismatched.

D.  

The portfast command is missing froin the configuration.

Discussion 0
Questions 8

Refer to the exhibit.

How many arrays are present in the JSDN data?

Options:

A.  

one

B.  

three

C.  

six

D.  

nine

Discussion 0
Questions 9

Refer to the exhibit. What is the cause of the issue?

Options:

A.  

STP

B.  

port security

C.  

wrong cable type

D.  

shutdown command

Discussion 0
Questions 10

Which mechanism carries multicast traffic between remote sites and supports encryption?

Options:

A.  

GRE over IPsec

B.  

IPsec over ISATAP

C.  

GRE

D.  

ISATAP

Discussion 0
Questions 11

Refer to the exhibit. This ACL is configured to allow client access only to HTTP, HTTPS, and DNS services via UDP. The new administrator wants to add TCP access to the DNS service. Which configuration updates the ACL efficiently?

Options:

A.  

ip access list extended Services35 permit tcp 10.0.0.0 0.255.255.255 host 198.51.100.11 eq domain

B.  

no ip access list extended Servicesip access list extended Services30 permit tcp 10.0.0.0 0.255.255.255 host 198.51.100.11 eq domain

C.  

ip access list extended Servicespermit tcp 10.0.0.0 0.255.255.255 host 198.51.100.11 eq domain

D.  

no ip access list extended Servicesip access list extended Servicespermit udp 10.0.0.0 0.255.255.255 any eq 53permit tcp 10.0.0.0 0.255.255.255 host 198.51.100.11 eq domaindeny ip any any log

Discussion 0
Questions 12

Refer to the exhibit.

Which type of JSDN data is represented?

Options:

A.  

string

B.  

array

C.  

number

D.  

object

Discussion 0
Questions 13

Refer to the exhibit.

What is the prefix length for the route that router1 will use to reach host A?

Options:

A.  

/25

B.  

/27

C.  

/28

D.  

/29

Discussion 0
Questions 14

What is the function of generative AI in network operations?

Options:

A.  

It disables unused services.

B.  

It deploys network firmware updates.

C.  

It creates synthetic network configurations.

D.  

It computes optimal data storage solutions.

Discussion 0
Questions 15

Refer to the exhibit.

A network engineer must configure R1 so that it sends all packets destined to the 10.0.0.0/24 network to R3, and all packets destined to PCI to R2. Which configuration must the engineer implement?

A)

B)

C)

D)

Options:

A.  

Option A

B.  

Option B

C.  

Option C

D.  

Option D

Discussion 0
Questions 16

Refer to the exhibit.

Host A switch interface is configured in VLAN 2. Host D sends a unicast packet destined for the IP address of host A.

What does the switch do when it receives the frame from host D?

Options:

A.  

It creates a broadcast storm.

B.  

It drops the frame from the MAC table of the switch.

C.  

It shuts down the source port and places It In err-disable mode.

D.  

It floods the frame out of every port except the source port.

Discussion 0
Questions 17

How does encryption protect the wireless network?

Options:

A.  

via integrity checks to identify wireless forgery attacks in the frame

B.  

via specific ciphers to detect and prevent zero-day network attacks

C.  

via an algorithm to change wireless data so that only the access point and client understand it

D.  

via a policy to prevent unauthorized users from communicating on the wireless network

Discussion 0
Questions 18

Refer to the exhibit.

A network engineer must update the configuration on Switch2 so that it sends LLDP packets.

A)

B)

C)

D)

Options:

A.  

Option A

B.  

Option B

C.  

Option C

D.  

Option D

Discussion 0
Questions 19

What is an advantage of using auto mode versus static mode for power allocation when an access point is connected to a PoE switch port?

Options:

A.  

All four pairs of the cable are used

B.  

It detects the device is a powered device

C.  

The default level is used for the access point

D.  

Power policing is enabled at the same time

Discussion 0
Questions 20

Refer to the exhibit.

An engineer is updating the management access configuration of switch SW1 to allow secured, encrypted remote configuration. Which two commands or command sequences must the engineer apply to the switch? (Choose two.)

Options:

A.  

SW1(config)#enable secret ccnaTest123

B.  

SW1(config)#username NEW secret R3mote123

C.  

SW1(config)#line vty 0 15 SW1(config-line)#transport input ssh

D.  

SW1(config)# crypto key generate rsa

E.  

SW1(config)# interface f0/1 SW1(config-if)# switchport mode trunk

Discussion 0
Questions 21

Which IPv6 address range is suitable for anycast addresses for distributed services such DHCP or DNS?

Options:

A.  

FF00:1/12

B.  

2001:db8:0234:ca3e::1/128

C.  

2002:db84:3f37:ca98:be05:8/64

D.  

FE80::1/10

Discussion 0
Questions 22

Which functionality is provided by the console connection on a Cisco WLC?

Options:

A.  

out-of-band management

B.  

secure in-band connectivity for device administration

C.  

unencrypted in-band connectivity for file transfers

D.  

HTTP-based GUI connectivity

Discussion 0
Questions 23

Which enhancement is implemented in WPA3?

Options:

A.  

applies 802.1x authentication

B.  

uses TKIP

C.  

employs PKI to identify access points

D.  

protects against brute force attacks

Discussion 0
Questions 24

hostname CPE

service password-encryption

ip domain name ccna.cisco.com

ip name-server 198.51.100.210

crypto key generate rsa modulus 1024

username admin privilege 15 secret s0m3s3cr3t

line vty 0 4

transport input ssh

login local

Refer to the exhibit. An engineer executed the script and added commands that were not necessary for SSH and now must remove the commands. Which two commands must be executed to correct the configuration? (Choose two.)

Options:

A.  

no ip name-server 198.51.100.210

B.  

no login local

C.  

no service password-encryption

D.  

no ip domain name ccna.cisco.com

E.  

no hostname CPE

Discussion 0
Questions 25

Refer to the exhibit. An engineer is building a new Layer 2 LACP EtherChannel between SW1 and SW2. and they executed the given show commands to verify the work Which additional task must be performed so that the switches successfully bundle the second member in the LACP port-channel?

Options:

A.  

Configure the switchport trunk allowed vlan 300 command on SW1 port-channel 1

B.  

Configure the switchport trunk allowed vlan 300 command on interface Fa0/2 on SW1.

C.  

Configure the switchport trunk allowed vlan add 300 command on interface Fa0/2 on SW2.

D.  

Configure the switchport trunk allowed vlan add 300 command on SW1 port-channel 1

Discussion 0
Questions 26

What is a syslog facility?

Options:

A.  

Host that is configured for the system to send log messages

B.  

password that authenticates a network management system to receive log messages

C.  

group of log messages associated with the configured severity level

D.  

set of values that represent the processes that can generate a log message

Discussion 0
Questions 27

Refer to the exhibit.

With which metric was the route to host 172.16.0.202 learned?

Options:

A.  

0

B.  

110

C.  

38443

D.  

3184439

Discussion 0
Questions 28

What is the definition of backdoor malware?

Options:

A.  

malicious code that is installed onto a computer to allow access by an unauthorized user

B.  

malicious code with the main purpose of downloading other malicious code

C.  

malicious program that is used to launch other malicious programs

D.  

malicious code that infects a user machine and then uses that machine to send spam

Discussion 0
Questions 29

What are two examples of multifactor authentication? (Choose two.)

Options:

A.  

single sign-on

B.  

unique user knowledge

C.  

passwords that expire

D.  

soft tokens

E.  

shared password responsibility

Discussion 0
Questions 30

Refer to the exhibit.

The EtherChannel is configured with a speed of 1000 and duplex as full on both ends of channel group 1. What is the next step to configure the channel on switch A to respond to but not initiate LACP communication?

Options:

A.  

interface range gigabitethernet0/0/0-15 channel-group 1 mode on

B.  

interface range gigabitethernet0/0/0-15 channel-group 1 mode desirable

C.  

interface port-channel 1 channel-group 1 mode auto

D.  

interface port-channel 1 channel-group 1 mode passive

Discussion 0
Questions 31

Which type of IPv4 address must be assigned to a server to protect it from external access and allow only internal users access while restricting internet access?

Options:

A.  

global unicast

B.  

public

C.  

private

D.  

multicast

Discussion 0
Questions 32

Which interface IP addressss serves as the tunnel source for CAPWAP packets froin the WLC to an AP?

Options:

A.  

service

B.  

trunk

C.  

AP-manager

D.  

virtual AP connection

Discussion 0
Questions 33

Which technology allows for logical Layer 3 separation on physical network equipment?

Options:

A.  

Virtual Route Forwarding

B.  

Virtual Switch System

C.  

IPsec Transport Mode

D.  

Time Division Multiplexer

Discussion 0
Questions 34

What is the put method within HTTP?

Options:

A.  

It is a read-only operation.

B.  

It is a nonldempotent operation.

C.  

It replaces data at the destination.

D.  

It displays a web site.

Discussion 0
Questions 35

Refer to the exhibit. What is the next-hop IP address for R2 so that PC2 reaches the application server via ElGRP?

Options:

A.  

192.168.30.1

B.  

10.10.10.5

C.  

10.10.10.6

D.  

192.168.20.1

Discussion 0
Questions 36

Refer to the exhibit.

An engineer is configuring a Layer 3 port-channel interface with LACP. The configuration on the first device is complete, and it is verified that both interfaces have registered the neighbor device in the CDP table. Which task on the neighbor device enables the new port channel to come up without negotiating the channel?

Options:

A.  

Change the EtherChannel mode on the neighboring interfaces to auto.

B.  

Configure the IP address of the neighboring device.

C.  

Bring up the neighboring interfaces using the no shutdown command.

D.  

Modify the static EtherChannel configuration of the device to passive mode.

Discussion 0
Questions 37

Refer to the exhibit. How will the device handle a packet destined to IP addressss 100.100.100.100?

Options:

A.  

If will choose the route with the longest match.O 100.100.100.100 ' 32 (110/21) via 192.168.1.1. 00:05:57. EmernetO/1.

B.  

It will always prefer the static route over dynamic routes and choose the routeS 100.100.0.0/16(1/0] via 192.168.4.1.

C.  

It will choose the route with the highest metric.D 100.100.100.0/24 (90/435200) via 192.168.2.1. 00:00:13. EthernetO/2.

D.  

It will choose the route with the lowest metric,R 100.0.0.0/8 [120/2] via 192.168.3.1. 00:00:13. EthernetO/3.

Discussion 0
Questions 38

What is a function of a southbound API?

Options:

A.  

Automate configuration changes between a server and a switching fabric.

B.  

Use orchestration to provision a virtual server configuration from a web server.

C.  

Manage flow control between an SDN controller and a switching fabric.

D.  

Facilitate the information exchange between an SDN controller and application.

Discussion 0
Questions 39

Why does an administrator choose to implement a remote access IPsec VPN?

Options:

A.  

to establish an encrypted tunnel between a remote user and a private network over the internet

B.  

to allow access to an enterprise network using any internet-enabled location via a web browser using SSL

C.  

to provide a secure link between an HTTPS server, authentication subsystem, and an end-user

D.  

to use cryptography for authentication between a device and user over a negotiated VPN gateway

Discussion 0
Questions 40

What does the implementation of a first-hop redundancy protocol protect against on a network?

Options:

A.  

root-bridge loss

B.  

spanning-tree loops

C.  

default gateway failure

D.  

BGP neighbor flapping

Discussion 0
Questions 41

Refer to the exhibit. An engineer must transtate the PC1 IIP address to 10.199.77.100 and permit PC1 to ping the loopback 0 on router R2. What command set must be used?

A)

B)

C)

D)

Options:

A.  

Option A

B.  

Option B

C.  

Option C

D.  

Option D

Discussion 0
Questions 42

Refer to the exhibit. An engineer configured the New York router with static routes that point to the Atlanta and Washington sites. Which command must be configured on the Atlanta and Washington routers so that both sites are able to reach the Lo2 interface on the New York router?

Options:

A.  

ipv6 route ::/0 Serial 0/0/0

B.  

ipv6 route 0.0.0.0 0.0.0.0 Serial 0/0/0

C.  

ipv6 route ::/0 2000::2

D.  

ipv6 route ::/0 Serial 0/0/1

Discussion 0
Questions 43

Refer to the exhibit.

Which per-hop QoS behavior is R1 applying to incoming packets?

Options:

A.  

queuing

B.  

marking

C.  

shaping

D.  

policing

Discussion 0
Questions 44

How does a network administrator securely manage an AP in lightweight mode?

Options:

A.  

using the CLI via an out-of-band connection

B.  

using the WLC GUI via HTTPS

C.  

using the AP GUI via an in-band SSH connection

D.  

using the CLI via a virtual interface with SSH

Discussion 0
Questions 45

Refer to the exhibit. Traffic from R1 to the 10.10.2.0/24 subnet uses 192.168.1.2 as its next hop. A network engineer wants to update the R1 configuration so that traffic with destination 10.10.2.1 passes through router R3, and all other traffic to the 10.10.2.0/24 subnet passes through R2.

Which command must be used?

Options:

A.  

ip route 10.10.2.0 255.255.255.0 192.168.1.4 100

B.  

ip route 10.10.2.0 255.255.255.0 192.168.1.4 115

C.  

ip route 10.10.2.1 255.255.255.255 192.168.1.4 100

D.  

ip route 10.10.2.1 255.255.255.255 192.168.1.4 115

Discussion 0
Questions 46

Refer to the exhibit Routers R1 R2 and R3 use a protocol to identify their neighbors ' IP addresssses hardware platforms, and software versions. A network engineer must configure R2 to avoid sharing any neighbor information with R3, and maintain its relationship with R1. What action meets this requirement?

Options:

A.  

Configure the no cdp enable command on gO/2.

B.  

Configure the no cdp run command globally.

C.  

Configure the no lldp run command globally.

D.  

Configure the no lldp receive command on gQV1.

Discussion 0
Questions 47

What does a switch search for in the CAM table when forwarding a frame?

Options:

A.  

source MAC addresss and aging time

B.  

destination MAC addresss and flush time

C.  

source MAC addresss and source port

D.  

destination MAC addresss and destination port

Discussion 0
Questions 48

Which components are contained within a virtual machine?

Options:

A.  

physical resources, including the NIC, RAM, disk, and CPU

B.  

configuration files backed by physical resources froin the Hypervisor

C.  

applications running on the Hypervisor

D.  

processes running on the Hypervisor and a guest OS

Discussion 0
Questions 49

Refer to the exhibit.

What is occurring on this switch?

Options:

A.  

A high number of frames smaller than 64 bytes are received.

B.  

Frames are dropped after 16 failed transmission attempts.

C.  

The internal transmit buffer is overloaded.

D.  

An excessive number of frames greater than 1518 bytes are received.

Discussion 0
Questions 50

Refer to the exhibit.

What is the metric for the route to the 192.168.10.33 host?

Options:

A.  

84

B.  

110

C.  

192

D.  

193

Discussion 0
Questions 51

Refer to the exhibit.

The P2P blocking action option is disabled on the WLC.

Options:

A.  

Enable the Static IP Tunneling option.

B.  

Disable the Coverage Hole Detection option.

C.  

Check the DHCP Addr. Assignment check box.

D.  

Set the P2P Blocking Action option to Forward-UpStream.

Discussion 0
Questions 52

Drag and drop the AAA features from the left onto the corresponding AAA security services on the right. Not all options are used.

Options:

Discussion 0
Questions 53

Why is TCP desired over UDP for application that require extensive error checking, such as HTTPS?

Options:

A.  

UDP operates without acknowledgments, and TCP sends an acknowledgment for every packet received.

B.  

UDP reliably guarantees delivery of all packets, and TCP drops packets under heavy load.

C.  

UDP uses flow control mechanisms for the delivery of packets, and TCP uses congestion control for efficient packet delivery.

D.  

UDP uses sequencing data tor packets to arrive in order, and TCP offers the capability to receive packets in random order.

Discussion 0
Questions 54

A packet from a company s branch office is destined to host 172.31.0.1 at headquarters. The sending router has three possible matches in its routing table for the packet prefixes: 172.31.0.0/16, 172.31.0.0/24, and 172.31.0.0/25. How does the router handle the packet?

Options:

A.  

It sends the traffic via prefix 172.31.0.0/16

B.  

It sends the traffic via the default gateway 0.0.0.0/0.

C.  

It sends the traffic via prefix 172.31.0.0/24

D.  

It sends the traffic via prefix 172.31.0.0/25

Discussion 0
Questions 55

Which two features introduced in SNMPv2 provide the ability to retrieve large amounts of data in one request

Options:

A.  

Get

B.  

GetNext

C.  

Set

D.  

GetBulk

E.  

Inform

Discussion 0
Questions 56

Refer to the exhibit.

Traffic from R1 to the 10.10.2.0/24 subnet uses 192.168.1.2 as its next hop. An network engineer wants to update the R1 configuration so that traffic with destination 10.10.2.1 passes through router R3, and all other traffic to the 10.10.20/24 subnet passes through r2. Which command must be used?

Options:

A.  

ip route 10.10.2.1 255.255.255.255 192.168.1.4 115

B.  

ip route 10.10.2.0 255.255.255.0 192.168.1.4 100

C.  

ip route 10.10.2.0 255.255.255.0 192.168.1.4 115

D.  

ip route 10.10.2.1 255.255.255.255 192.168.1.4 100

Discussion 0
Questions 57

Refer to the exhibit. Drag and drop the learned prefixes from the left onto the preferred route methods from which they were learned on the right.

Options:

Discussion 0
Questions 58

A network architect planning a new Wi-Fi network must decide between autonomous, cloud-based, and split MAC architectures. Which two facts should the architect consider? (Choose two.)

Options:

A.  

Lightweight access points are solely used by split MAC architectures.

B.  

Cloud-based architectures uniquely use the CAPWAP protocol to communicate between access points and clients.

C.  

Each of the three architectures must use WLCs to manage their access points.

D.  

All three architectures use access points to manage the wirelesss devices connected to the wired infrastructure.

E.  

Autonomous architectures exclusively use tunneling protocols to manage access points remotely.

Discussion 0
Questions 59

Refer to the exhibit.

An engineer must document all Wi-Fi services on a new wirelesss LAN controller. The Wi-Fi SSID " Office_WLan " has Layer 2 Security. What is determined by this configuration?

Options:

A.  

There is a strong mutual authentication used between NAC and the network devices using x.509 standard.

B.  

There is an extra layer of security that ensures only authorized devices with known MAC addressses connect to the network.

C.  

There is a robust security mechanism configured to protect against various Layer 2 and Layer 3 attacks.

D.  

There is Galois cache algorithm configured that provides strong encryption and authentication.

Discussion 0
Questions 60

What is the purpose of classifying network traffic in QoS?

Options:

A.  

services traffic according to its class

B.  

identifies the type of traffic that will receive a particular treatment

C.  

writes the class identifier of a packet to a dedicated field in the packet header

D.  

configures traffic-matching rules on network devices

Discussion 0
Questions 61

Refer to the exhibit.

The network engineer is configuring a new WLAN and is told to use a static password for authentication instead of the RADIUS servers. Which additional set of tasks must the engineer perform to complete the configuration?

Options:

A.  

Crable PSKEnable iod 1s

B.  

Select WPA2 PolicyDisable PMFEnable PSK

C.  

Select WPA PolicyEnable PSK

D.  

Select WPA PolicySelect WRAS Policy

Discussion 0
Questions 62

Which interface condition is occurring in this output?

Options:

A.  

duplex mismatch

B.  

queueing

C.  

bad NIC

D.  

broadcast storm

Discussion 0
Questions 63

What is represented by the word " LB13 " within this JSDN schema?

Options:

A.  

value

B.  

object

C.  

array

D.  

key

Discussion 0
Questions 64

How does MAC learning function?

Options:

A.  

Sends frames with unknown destinations to a multicast group.

B.  

Increases security on the management VLAN.

C.  

Rewrites the source and destination MAC addresss.

D.  

Associates the MAC addresss with the port on which it is received.

Discussion 0
Questions 65

What is a function of a northbound API in an SDN environment?

Options:

A.  

It supports distributed processing for configuration.

B.  

It relies on global provisioning and configuration.

C.  

It upgrades software and restores files.

D.  

It provides orchestration and network automation services.

Discussion 0
Questions 66

Refer to the exhibit.

What is the correct next hop for router R1 to reach IP addresssses 192.168.2.86 and 10.20.1.50?

Options:

A.  

172.16.1.4

B.  

172.16.1.1

C.  

172.16.1.2

D.  

172.16.1.3

Discussion 0
Questions 67

Refer to the exhibit. Which functionalities will this SSID have while being used by wirelesss clients?

Options:

A.  

decreases network security against offline dictionary attacks and encourages easy access to the network

B.  

increases network security against offline dictionary attacks and discourages time-consuming brute force attacks

C.  

increases network security against man in the middle attacks and discourages denial of service attacks

D.  

decreases network security against air sniffing attacks and discourages the use of complex passwords

Discussion 0
Questions 68

An engineer must configure a core router with a floating static default route to the backup router at 10.200.0.2. Which command meets the requirements?

Options:

A.  

ip route 0.0.0.0 0.0.0.0 10.200.0.2 1

B.  

Ip route 0.0.0.0 0.0.0.0 10.200.0.2 floating

C.  

ip route 0.0.0.0 0.0.0.0 10.200.0.2

D.  

Ip route 0.0.0.0 0.0.0.0 10.200.0.2 10

Discussion 0
Questions 69

What is a characteristic of a Layer 2 switch?

Options:

A.  

tracks the number of active TCP connections

B.  

transmits exclusively at half duplex

C.  

offers link bundling to servers

D.  

uses routers to create collision domains

Discussion 0
Questions 70

R1 has learned route 192.168.12.0/24 via IS-IS, OSPF, RIP, and Internal EIGRP. Under normal operating conditions, which routing protocol ' s route will be installed in the routing table?

Options:

A.  

IS-IS

B.  

RIP

C.  

OSPF

D.  

Internal EIGRP

Discussion 0
Questions 71

Why choose Cisco DNA Center for automated lifecycle management?

Options:

A.  

To perform upgrades without service interruption

B.  

To provide fast and accurate deployment of patches and updates

C.  

To allow SSH access to all nodes in the network.

D.  

To provide software redundancy in the network.

Discussion 0
Questions 72

How does MAC learning function?

Options:

A.  

inserts MAC addressses dynamically into the CAM table

B.  

restricts ports to a maximum of 10 dynamically-learned addressses

C.  

protects against denial of service attacks

D.  

rewrites the source and destination MAC addresss

Discussion 0
Questions 73

Refer to the exhibit.

Router R1 receives static routing updates from routers A. B, C, and D. The network engineer wants R1 to advertise static routes in OSPF area 1. Which nary addresss must be advertised in OSPF?

Options:

A.  

10.1.40.0/25

B.  

10.1.40.0/24

C.  

10.1.40.0/23

D.  

10.1.41.0/25

Discussion 0
Questions 74

Refer to the exhibit.

Refer to the exhibit. The IPv6 address for the LAN segment on router R1 must be configured using the EUI-64 format. When configured which ipv6 address is produced by the router?

Options:

A.  

2001:db8:1a44:41a4:C801:BEFF:FE4A:1

B.  

2001:db8:1a44:41a4:C081:BFFF:FE4A:1

C.  

2001:db8:1a44:41a4:4562:098F:FE36:1

D.  

2001:db8:1a44:41a4:C800:BAFE:FF00:1

Discussion 0
Questions 75

What is the main purpose of SSH management access?

Options:

A.  

To support DES 56-bit and 3DES (168-bit) ciphers

B.  

To enable secured access to the inbound management interface

C.  

To validate management access with username and domain name only

D.  

To allow passwords protected with HTTPS encryption to be sent

Discussion 0
Questions 76

Which IP addressss is used when an administrator must open a web-based management session with a lightweight AP?

Options:

A.  

WLCIP

B.  

gateway IP

C.  

autonomous AP IP

D.  

ACS IP

Discussion 0
Questions 77

Refer to the exhibit. How must OSPF be configured on the GigabitEthernet0/0 interface of the neighbor device to achieve the desired neighbor relationship?

Options:

A.  

Router(config)#interface GigabitEthernet 0/0Router(config-if)#ip ospf network point-to-point

B.  

Router(config)#interface GigabitEthernet 0/0Router(config-if)#ip ospf cost 5

C.  

Router(config)#interface GigabitEthernet 0/0Router(config-if)#ip ospf 1 area 2

D.  

Router(config)#interface GigabitEthernet 0/0Router(config-if)#ip ospf priority 1

Discussion 0
Questions 78

Which feature, when used on a WLC, allows it to bundle its distribution system ports into one 802.3ad group?

Options:

A.  

QinQ

B.  

ISL

C.  

PAgP

D.  

LAG

Discussion 0
Questions 79

Refer to the exhibit. During initial configuration testing, the Windows workstation PC1 cannot connect with the 172.16.2.0/24 network.

Which set of actions corrects the configuration?

Options:

A.  

Change the IP addressss to 172.16.1.6 and change the subnet mask to 255.255.255.248.

B.  

Change the IP addressss to 172.16.1.6 and change the DNS servers to 172.16.1.12 and 172.16.1.13.

C.  

Change the IP addressss to 172.16.1.9 and change the default gateway to 172.16.1.7.

D.  

Change the IP addressss to 172.16.1.9 and change the DNS server to 172.16.1.12 only.

Discussion 0
Questions 80

What is a characteristic of private IPv4 addresssing?

Options:

A.  

Reduces the forwarding table on network routers

B.  

Used on the external interface of a firewall

C.  

Used by ISPs when only one IP is needed to connect to the internet

D.  

Address space which is isolated froin the internet

Discussion 0
Questions 81

Refer to the exhibit.

What is the issue with the interface GigabitEthernet0/0/1?

Options:

A.  

Port security

B.  

High throughput

C.  

Cable disconnect

D.  

duplex mismatch

Discussion 0
Questions 82

Which component controls and distributes physical resources for each virtual machine?

Options:

A.  

OS

B.  

hypervisor

C.  

CPU

D.  

physical enclosure

Discussion 0
Questions 83

What is a characteristic of a Layer 2 switch?

Options:

A.  

Maintains stateful transaction information

B.  

Responsible for sending data in a particular sequence

C.  

Makes forwarding decisions based on MAC addressses

D.  

Filters based on a transport layer protocol

Discussion 0
Questions 84

Which type of DNS record is used to specify the mail server responsible for accepting email messages on behalf of a recipient ' s domain?

Options:

A.  

MX record

B.  

TXT record

C.  

A record

D.  

SRV record

Discussion 0
Questions 85

What is the difference between controller-based networks and traditional networks as they relate to control-plane and/or data-plane functions?

Options:

A.  

Controller-based networks centralize all important data-plane functions, and traditional networks distribute data-plane functions.

B.  

Controller-based networks centralize all important control-plane functions, and traditional networks distribute control-plane functions.

C.  

Traditional networks centralize all important control-plane functions, and controller-based networks distribute control-plane functions.

D.  

Traditional networks centralize all important data-plane functions, and controller-based networks distribute data-plane functions.

Discussion 0
Questions 86

Which role do predictive Al models play in network load balancing?

Options:

A.  

They anticipate future traffic spikes.

B.  

They assign IP addresssses to devices.

C.  

They select correct cabling types for deployment.

D.  

They solely monitor historical traffic volumes.

Discussion 0
Questions 87

What are two benefits of network automation? (Choose two.)

Options:

A.  

Faster changes with more reliable results

B.  

Reduced operational costs

C.  

Fewer network failures

D.  

Reduced hardware footprint

E.  

Increased network security

Discussion 0
Questions 88

What happens when a switch receives a frame with a destination MAC addresss that recently aged out?

Options:

A.  

The switch references the MAC addresss aging table for historical addressses on the port that received the frame.

B.  

The switch floods the frame to all ports in all VLANs except the port that received the frame

C.  

The switch drops the frame and learns the destination MAC addresss again froin the port that received the frame

D.  

The switch floods the frame to all ports in the VLAN except the port that received the frame.

Discussion 0
Questions 89

What is a specification for SSIDS?

Options:

A.  

They are a Cisco proprietary security feature.

B.  

They must include one number and one letter.

C.  

They define the VLAN on a switch.

D.  

They are case sensitive.

Discussion 0
Questions 90

What is the maximum bandwidth of a T1 point-to-point connection?

Options:

A.  

1.544 Mbps

B.  

2.048 Mbps

C.  

34.368 Mbps

D.  

43.7 Mbps

Discussion 0
Questions 91

Drag and drop the statements about networking from the left onto the corresponding networking types on the right

Options:

Discussion 0
Questions 92

Refer to the exhibit.

The loopback1 interface of the Atlanta router must reach the loopback3 interface of the Washington router.

Options:

A.  

ipv6 route 2000::1/128 2012::2

B.  

ipv6 route 2000::1/128 2012::1

C.  

ipv6 route 2000:3 123 s0/0/0

D.  

ipv6 route 2000::3/128 2023::3

E.  

ipv6 route 2000::1/128 s0/0/1

Discussion 0
Questions 93

Refer to the exhibit.

Which two values does router R1 use to identify valid routes for the R3 loopback address 1.1.1.3/32? (Choose two.)

Options:

A.  

lowest cost to reach the next hop

B.  

highest metric

C.  

highest administrative distance

D.  

lowest metric

E.  

lowest administrative distance

Discussion 0
Questions 94

What is a characteristic of a Layer 2 switch?

Options:

A.  

Provides a single broadcast domain for all connected devices

B.  

Performs packet fragmentation and reassembly

C.  

Tracks the number of active TCP connections

D.  

Uses the data link layer for communications

Discussion 0
Questions 95

Which WPA mode uses PSK authentication?

Options:

A.  

Local

B.  

Client

C.  

Enterprise

D.  

Personal

Discussion 0
Questions 96

Drag and drop the IPv6 address types from the left onto their description on the right.

Options:

Discussion 0
Questions 97

Which cable type must be used to interconnect one switch using 1000 BASE-SX GBIC modules and another switch using 1000 BASE-SX SFP modules?

Options:

A.  

LC to SC

B.  

SC t ST

C.  

SC to SC

D.  

LC to LC

Discussion 0
Questions 98

A network analyst is tasked with configuring the date and time on a router using EXEC mode. The date must be set to January 1. 2020 and the time must be set to 12:00 am. Which command should be used?

Options:

A.  

clock summer-time recurring

B.  

clock timezone

C.  

clock summer-time date

D.  

clock set

Discussion 0
Questions 99

Refer to the exhibit.

A)

B)

C)

D)

Options:

A.  

Option A

B.  

Option B

C.  

Option C

D.  

Option D

Discussion 0
Questions 100

Refer to the exhibit.

Which configuration is needed to configure a WLAN with WPA2 only and with a password that is 63 characters long?

Options:

A.  

Disable WPA Policy and WPA Encryption and then enable PSK using ASCII.

B.  

Enable PSK and FT PSK and then disable WPA Policy.

C.  

Disable WPA Encryption and then enable FT PSK.

D.  

Enable PSK using Hex format and then disable WPA Policy.

Discussion 0
Questions 101

When a WPA2-PSK WLAN is configured in the Wireless LAN Controller, what is the minimum number of characters that is required in ASCII format?

Options:

A.  

6

B.  

8

C.  

12

D.  

18

Discussion 0
Questions 102

Refer to the exhibit. Router R1 Fa0/0 is unable to ping router R3 Fa0/1. Which action must be taken on router R1 to resolve the configuration issue?

Options:

A.  

set the default network as 20.20.20.0/24

B.  

set the default gateway as 20.20.20.2

C.  

configure a static route with Fa0/1 as the egress interface to reach the 20.20.20.0/24 network

D.  

configure a static route with 10.10.10.2 as the next hop to reach the 20.20.20.0/24 network

Discussion 0
Questions 103

An engineering team asks an implementer to configure syslog for warning conditions and error conditions. Which command does the implementer configure to achieve the desired result?

Options:

A.  

logging trap 5

B.  

logging trap 2

C.  

logging trap 4

D.  

logging trap 3

Discussion 0
Questions 104

What does a switch use to build its MAC address table?

Options:

A.  

VTP

B.  

DTP

C.  

egress traffic

D.  

ingress traffic

Discussion 0
Questions 105

Which technology is used to improve web traffic performance by proxy caching?

Options:

A.  

WSA

B.  

Firepower

C.  

ASA

D.  

FireSIGHT

Discussion 0
Questions 106

Which two WAN architecture options help a business improve scalability and reliability for the network? (Choose two.)

Options:

A.  

asynchronous routing

B.  

single-homed branches

C.  

dual-homed branches

D.  

static routing

E.  

dynamic routing

Discussion 0
Questions 107

Which configuration ensures that the switch is always the root for VLAN 750?

Options:

A.  

Switch(config)#spanning-tree vlan 750 priority 38003685

B.  

Switch(config)#spanning-tree vlan 750 root primary

C.  

Switch(config)#spanning-tree vlan 750 priority 614440

D.  

Switch(config)#spanning-tree vlan 750 priority 0

Discussion 0
Questions 108

Which QoS Profile is selected in the GUI when configuring a voice over WLAN deployment?

Options:

A.  

Bronze

B.  

Platinum

C.  

Silver

D.  

Gold

Discussion 0
Questions 109

Refer to the exhibit. Routers R1 and R2 have been configured with their respective LAN interfaces. The two circuits are operational and reachable across the WAN. Which command set establishes failover redundancy if the primary circuit goes down?

Options:

A.  

Option A

B.  

Option B

C.  

Option C

D.  

Option D

Discussion 0
Questions 110

What uses HTTP messages to transfer data to applications residing on different hosts?

Options:

A.  

OpenFlow

B.  

OpenStack

C.  

OpFlex

D.  

REST

Discussion 0
Questions 111

Which function does the range of private IPv4 addresses perform?

Options:

A.  

allows multiple companies to each use the same addresses without conflicts

B.  

provides a direct connection for hosts from outside of the enterprise network

C.  

ensures that NAT is not required to reach the internet with private range addressing

D.  

enables secure communications to the internet for all external hosts

Discussion 0
Questions 112

Which WAN access technology is preferred for a small office/home office architecture?

Options:

A.  

broadband cable access

B.  

frame-relay packet switching

C.  

dedicated point-to-point leased line

D.  

Integrated Services Digital Network switching.

Discussion 0
Questions 113

Which network allows devices to communicate without the need to access the Internet?

Options:

A.  

172.9.0.0/16

B.  

172.28.0.0/16

C.  

192.0.0.0/8

D.  

209.165.201.0/24

Discussion 0
Questions 114

What is recommended for the wireless infrastructure design of an organization?

Options:

A.  

group access points together to increase throughput on a given channel

B.  

configure the first three access points are configured to use Channels 1, 6, and 11

C.  

include a least two access points on nonoverlapping channels to support load balancing

D.  

assign physically adjacent access points to the same Wi-Fi channel

Discussion 0
Questions 115

How does HSRP provide first hop redundancy?

Options:

A.  

It load-balances traffic by assigning the same metric value to more than one route to the same destination m the IP routing table.

B.  

It load-balances Layer 2 traffic along the path by flooding traffic out all interfaces configured with the same VLAN.

C.  

It forwards multiple packets to the same destination over different routed links n the data path

D.  

It uses a shared virtual MAC and a virtual IP address to a group of routers that serve as the default gateway for hosts on a LAN

Discussion 0
Questions 116

Refer to the exhibit.

What is the result if Gig1/11 receives an STP BPDU?

Options:

A.  

The port transitions to STP blocking

B.  

The port transitions to the root port

C.  

The port immediately transitions to STP forwarding.

D.  

The port goes into error-disable state

Discussion 0
Questions 117

Refer to the exhibit.

If OSPF is running on this network, how does Router 2 handle traffic from Site B to 10.10.13/25 at Site A?

Options:

A.  

It sends packets out of interface Fa0/2 only.

B.  

It sends packets out of interface Fa0/1 only.

C.  

It cannot send packets to 10.10.13 128/25

D.  

It load-balances traffic out of Fa0/1 and Fa0/2

Discussion 0
Questions 118

Refer to the exhibit.

What is the next step to complete the implementation for the partial NAT configuration shown?

Options:

A.  

Reconfigure the static NAT entries that overlap the NAT pool

B.  

configure the NAT outside interface

C.  

Modify the access list for the internal network on e0/1

D.  

Apply the ACL to the pool configuration

Discussion 0
Questions 119

How do TCP and UDP fit into a query-response model?

Options:

A.  

TCP establishes a connection prior to sending data, and UDP sends immediately.

B.  

TCP uses error detection for packets, and UDP uses error recovery.

C.  

TCP avoids using sequencing, and UDP avoids using acknowledgments.

D.  

TCP encourages out-of-order packet delivery, and UDP prevents re-ordering.

Discussion 0
Questions 120

What is the functionality of the Cisco DNA Center?

Options:

A.  

data center network policy control

B.  

console server that permits secure access to all network devices

C.  

IP address pool distribution scheduler

D.  

software-defined controller for automation of devices and services

Discussion 0
Questions 121

NO: 346

What must a network administrator consider when deciding whether to configure a new wireless network with APs in autonomous mode or APs running in cloud-based mode?

Autonomous mode APs are less dependent on an underlay but more complex to maintain than APs in cloud-based mode.

Cloud-based mode APs rely on underlays and are more complex to maintain than APs in autonomous mode.

Options:

A.  

Cloud-based mode APs are easy to deploy but harder to automate than APs in autonomous mode.

B.  

Autonomous mode APs are easy to deploy and automate than APs in cloud-based mode.

Discussion 0
Questions 122

Refer to the exhibit.

Drag and drop the destination IPs from the left onto the paths to reach those destinations on the right.

Options:

Discussion 0
Questions 123

A network engineer must configure an interface with IIP address 10.10.10.145 and a subnet mask equivalent to 11111111.11111111.11111111.11111000. Which subnet mask must the engineer use?

Options:

A.  

/29

B.  

/30

C.  

/27

D.  

/28

Discussion 0
Questions 124

What is a characteristic of a collapsed-core network topology?

Options:

A.  

It allows the core and distribution layers to run as a single combined layer.

B.  

It enables the core and access layers to connect to one logical distribution device over an EtherChannel.

C.  

It enables all workstations in a SOHO environment to connect on a single switch with internet access.

D.  

It allows wireless devices to connect directly to the core layer, which enables faster data transmission.

Discussion 0
Questions 125

Refer to the exhibit.

Wireless LAN access must be set up to force all clients from the NA WLAN to authenticate against the local database. The WLAN is configured for local EAP authentication. The time that users access the network must not be limited. Which action completes this configuration?

Options:

A.  

Uncheck the Guest User check box

B.  

Check the Guest User Role check box

C.  

Set the Lifetime (seconds) value to 0

D.  

Clear the Lifetime (seconds) value

Discussion 0
Questions 126

Refer to the exhibit

A network engineer started to configure port security on a new switch. These requirements must be met:

* MAC addresses must be learned dynamically

* Log messages must be generated without disabling the interface when unwanted traffic is seen

Which two commands must be configuredd to complete this task " ? (Choose two)

Options:

A.  

SW(config-if)=switchport port-security mac-address sticky

B.  

SW(config-if)=switchport port-security violation restrict

C.  

SW(config-if)sswitchport port-security mac-address 0010.7B84.45E6

D.  

SW(config-if)switchport port-security maximum 2

E.  

SW(config-if)=switchport port-security violation shutdown

Discussion 0
Questions 127

Refer to the exhibit.

What is the subnet mask of the route to the 10.10.13.160 prefix?

Options:

A.  

255.255.255.240

B.  

255.255.255.128

C.  

255.255.248.

D.  

255.255.255.248

Discussion 0
Questions 128

Two switches have been implemented and all interfaces are at the default configuration level. A trunk link must be implemented between two switches with these requirements:

• using an industry-standard trunking protocol

• permitting VLANs 1 -10 and denying other VLANs

How must the interconnecting ports be configured?

A)

B)

C)

D)

Options:

A.  

Option A

B.  

Option B

C.  

Option C

D.  

Option D

Discussion 0
Questions 129

Refer to the exhibit.

An engineer must configure a floating static route on an external EIGRP network. The destination subnet is the /29 on the LAN Interface of R86. Which command must be executed on R14?

Options:

A.  

ip route 10.80.65.0.255.255.248.0.10.73.65.66.1

B.  

ip route 10.80.65.0.255.255.255..240 fa0/1 89

C.  

ip route 10.80.65.0.255.255.248.0.10.73.65.66.171

D.  

ip route 10.80.65.0.0.0.224.10.80.65.0. 255

Discussion 0
Questions 130

Drag and drop the DNS commands from the left onto their effects on the right.

Options:

Discussion 0
Questions 131

Refer to the exhibit.

Which command must enable a floating default route on router A?

Options:

A.  

ip route 0.0.0.0.0.0.0.0 192.168.1.2

B.  

ip default-gateway 192.168.2.1

C.  

ip route 0.0.0.0.0.0.0.0 192.168.1.2 10

D.  

ip route 0.0.0.0.0.0.0.0 192.168.2.1 10

Discussion 0
Questions 132

What does a switch do when it receives a frame whose destination MAC address is missing from the MAC address table?

Options:

A.  

It floods the frame unchanged across all remaining ports in the incoming VLAN.

B.  

It appends the table with a static entry for the MAC and shuts down the port.

C.  

It updates the CAM table with the destination MAC address of the frame.

D.  

It changes the checksum of the frame to a value that indicates an invalid frame.

Discussion 0
Questions 133

What is the purpose of configuring different levels of syslog for different devices on the network?

Options:

A.  

to rate-limit messages for different severity levels from each device

B.  

to set the severity of syslog messages from each device

C.  

to identify the source from which each syslog message originated

D.  

to control the number of syslog messages from different devices that are stored locally

Discussion 0
Questions 134

Refer to the exhibit.

A network engineer must provide configured IP addressing details to investigate a firewall rule Issue. Which subnet and mask Identify what is configured on the en0 interface?

Options:

A.  

10.8.0.0/16

B.  

10.8.64.0/18

C.  

10.8.128.0/19

D.  

10.8.138.0/24

Discussion 0
Questions 135

Which protocol is used in Software Defined Access (SDA) to provide a tunnel between two edge nodes in different fabrics?

Options:

A.  

Generic Router Encapsulation (GRE)

B.  

Virtual Local Area Network (VLAN)

C.  

Virtual Extensible LAN (VXLAN)

D.  

Point-to-Point Protocol

Discussion 0
Questions 136

What provides connection redundancy increased bandwidth and load sharing between a wireless LAN controller and a Layer 2 switch?

Options:

A.  

VLAN trunking

B.  

tunneling

C.  

first hop redundancy

D.  

link aggregation

Discussion 0
Questions 137

Refer to the exhibit.

User traffic originating within site 0 is failing to reach an application hosted on IIP address 192.168.0.10. Which is located within site A What is determined by the routing table?

Options:

A.  

The default gateway for site B is configured incorrectly

B.  

The lack of a default route prevents delivery of the traffic

C.  

The traffic is blocked by an implicit deny in an ACL on router2

D.  

The traffic to 192.168.0.10 requires a static route to be configured in router 1.

Discussion 0
Questions 138

Which IP header field is changed by a Cisco device when QoS marking is enabled?

Options:

A.  

Header Checksum

B.  

Type of service

C.  

DSCP

D.  

ECN

Discussion 0
Questions 139

Which networking function occurs on the data plane?

Options:

A.  

forwarding remote client/server traffic

B.  

facilitates spanning-tree elections

C.  

processing inbound SSH management traffic

D.  

sending and receiving OSPF Helto packets

Discussion 0
Questions 140

What are two benefits of network automation? (Choose two)

Options:

A.  

reduced operational costs

B.  

reduced hardware footprint

C.  

faster changes with more reliable results

D.  

fewer network failures

E.  

increased network security

Discussion 0
Questions 141

How does QoS optimize voice traffic?

Options:

A.  

reducing bandwidth usage

B.  

by reducing packet loss

C.  

by differentiating voice and video traffic

D.  

by increasing jitter

Discussion 0
Questions 142

The service password-encryption command is entered on a router. What is the effect of this configuration?

Options:

A.  

restricts unauthorized users from viewing clear-text passwords in the running configuration

B.  

encrypts the password exchange when a VPN tunnel is established

C.  

prevents network administrators from configuring clear-text passwords

D.  

protects the VLAN database from unauthorized PC connections on the switch

Discussion 0
Questions 143

What is the same for both copper and fiber interfaces when using SFP modules?

Options:

A.  

They support an inline optical attenuator to enhance signal strength

B.  

They provide minimal interruption to services by being hot-swappable

C.  

They offer reliable bandwidth up to 100 Mbps in half duplex mode

D.  

They accommodate single-mode and multi-mode in a single module

Discussion 0
Questions 144

Which HTTP status code is returned after a successful REST API request?

Options:

A.  

200

B.  

301

C.  

404

D.  

500

Discussion 0
Questions 145

An engineer requires a scratch interface to actively attempt to establish a trunk link with a neighbor switch. What command must be configured?

Options:

A.  

switchport mode trunk

B.  

switchport mode dynamic desirable

C.  

switchport mode dynamic auto

D.  

switchport nonegotiate

Discussion 0
Questions 146

When a WLAN with WPA2 PSK is configured in the Wireless LAN Controller GUI which format is supported?

Options:

A.  

Unicode

B.  

base64

C.  

decimal

D.  

ASCII

Discussion 0
Questions 147

Refer to the exhibit.

An engineer must configure GigabitEthernet1/1 to accommodate voice and data traffic Which configuration accomplishes this task?

Options:

A.  

Option A

B.  

Option B

C.  

Option C

D.  

Option D

Discussion 0
Questions 148

Which mode must be set for APs to communicate to a Wireless LAN Controller using the Control and Provisioning of Wireless Access Points (CAPWAP) protocol?

Options:

A.  

bridge

B.  

route

C.  

autonomous

D.  

lightweight

Discussion 0
Questions 149

What is the expected outcome when an EUI-64 address is generated?

Options:

A.  

The seventh bit of the original MAC address of the interface is inverted

B.  

The interface ID is configured as a random 64-bit value

C.  

The characters FE80 are inserted at the beginning of the MAC address of the interface

D.  

The MAC address of the interface is used as the interface ID without modification

Discussion 0
Questions 150

Refer to the exhibit.

An engineer is required to verify that the network parameters are valid for the user wireless LAN connectivity on a /24 subnet. Drag and drop the values from the left onto the network parameters on the right. Not all values are used.

Options:

Discussion 0
Questions 151

Which statement about Link Aggregation when implemented on a Cisco Wireless LAN Controller is true?

Options:

A.  

To pass client traffic two or more ports must be configured.

B.  

The EtherChannel must be configured in " mode active "

C.  

When enabled the WLC bandwidth drops to 500 Mbps

D.  

One functional physical port is needed to pass client traffic

Discussion 0
Questions 152

R1 has learned route 10.10.10.0/24 via numerous routing protocols. Which route is installed?

Options:

A.  

route with the lowest cost

B.  

route with the next hop that has the highest IP

C.  

route with the shortest prefix length

D.  

route with the lowest administrative distance

Discussion 0
Questions 153

How are VLAN hopping attacks mitigated?

Options:

A.  

enable dynamic ARP inspection

B.  

manually implement trunk ports and disable DTP

C.  

activate all ports and place in the default VLAN

D.  

configure extended VLANs

Discussion 0
Questions 154

What prevents a workstation from receiving a DHCP address?

Options:

A.  

DTP

B.  

STP

C.  

VTP

D.  

802.10

Discussion 0
Questions 155

A user configured OSPF and advertised the Gigabit Ethernet interface in OSPF By default, which type of OSPF network does this interface belong to?

Options:

A.  

point-to-multipoint

B.  

point-to-point

C.  

broadcast

D.  

nonbroadcast

Discussion 0
Questions 156

Refer to the exhibit.

An access list is created to deny Telnet access from host PC-1 to RTR-1 and allow access from all other hosts A Telnet attempt from PC-2 gives this message: " % Connection refused by remote host " Without allowing Telnet access from PC-1, which action must be taken to permit the traffic?

Options:

A.  

Add the access-list 10 permit any command to the configuration

B.  

Remove the access-class 10 in command from line vty 0.4.

C.  

Add the ip access-group 10 out command to interface g0/0.

D.  

Remove the password command from line vty 0 4.

Discussion 0
Questions 157

Which level of severity must be set to get informational syslogs?

Options:

A.  

alert

B.  

critical

C.  

notice

D.  

debug

Discussion 0
Questions 158

Drag and drop to the characteristics of networking from the left onto the correct networking types on the right.

Options:

Discussion 0
Questions 159

What is a characteristic of spine-and-leaf architecture?

Options:

A.  

Each device is separated by the same number of hops

B.  

It provides variable latency

C.  

It provides greater predictability on STP blocked ports.

D.  

Each link between leaf switches allows for higher bandwidth.

Discussion 0
Questions 160

Refer to the exhibit.

Which route type does the routing protocol Code D represent in the output?

Options:

A.  

internal BGP route

B.  

/24 route of a locally configured IP

C.  

statically assigned route

D.  

route learned through EIGRP

Discussion 0
Questions 161

Refer to the exhibit.

What does router R1 use as its OSPF router-ID?

Options:

A.  

10.10.1.10

B.  

10.10.10.20

C.  

172.16.15.10

D.  

192.168.0.1

Discussion 0
Questions 162

What benefit does controller-based networking provide versus traditional networking?

Options:

A.  

moves from a two-tier to a three-tier network architecture to provide maximum redundancy

B.  

provides an added layer of security to protect from DDoS attacks

C.  

allows configuration and monitoring of the network from one centralized port

D.  

combines control and data plane functionality on a single device to minimize latency

Discussion 0
Questions 163

Which action does the router take as it forwards a packet through the network?

Options:

A.  

The router replaces the source and destination labels with the sending router interface label as a source and the next hop router label as a desbnabon

B.  

The router encapsulates the source and destination IP addresses with the sending router P address as the source and the neighbor IP address as the destination

C.  

The router replaces the original source and destination MAC addresses with the sending router MAC address as the source and neighbor MAC address as the destination

D.  

The router encapsulates the original packet and then includes a tag that identifies the source router MAC address and transmit transparently to the destination

Discussion 0
Questions 164

An engineer must configure a WLAN using the strongest encryption type for WPA2- PSK. Which cipher fulfills the configuration requirement?

Options:

A.  

WEP

B.  

RC4

C.  

AES

D.  

TKIP

Discussion 0
Questions 165

Refer to the exhibit.

Which command must be executed for Gi1.1 on SW1 to become a trunk port if Gi1/1 on SW2 is configured in desirable or trunk mode?

Options:

A.  

switchport mode trunk

B.  

switchport mode dot1-tunnel

C.  

switchport mode dynamic auto

D.  

switchport mode dynamic desirable

Discussion 0
Questions 166

Which action does the router take as it forwards a packet through the network?

Options:

A.  

The router replaces the original source and destination MAC addresses with the sending router MAC address as the source and neighbor MAC address as the destination

B.  

The router encapsulates the original packet and then includes a tag that identifies the source router MAC address and transmits it transparently to the destination

C.  

The router encapsulates the source and destination IP addresses with the sending router IP address as the source and the neighbor IP address as the destination

D.  

The router replaces the source and destination labels with the sending router interface label as a source and the next hop router label as a destination

Discussion 0
Questions 167

What is the function of a server?

Options:

A.  

It transmits packets between hosts in the same broadcast domain.

B.  

It provides shared applications to end users.

C.  

It routes traffic between Layer 3 devices.

D.  

It Creates security zones between trusted and untrusted networks

Discussion 0
Questions 168

Drag and drop the statement about networking from the left into the Corresponding networking types on the right. Not all statements are used.

Options:

Discussion 0
Questions 169

Where does a switch maintain DHCP snooping information?

Options:

A.  

in the MAC address table

B.  

in the CAM table

C.  

in the binding database

D.  

in the frame forwarding database

Discussion 0
Questions 170

Which statement correctly compares traditional networks and controller-based networks?

Options:

A.  

Only traditional networks offer a centralized control plane

B.  

Only traditional networks natively support centralized management

C.  

Traditional and controller-based networks abstract policies from device configurations

D.  

Only controller-based networks decouple the control plane and the data plane

Discussion 0
Questions 171

How does CAPWAP communicate between an access point in local mode and a WLC?

Options:

A.  

The access point must directly connect to the WLC using a copper cable

B.  

The access point must not be connected to the wired network, as it would create a loop

C.  

The access point must be connected to the same switch as the WLC

D.  

The access point has the ability to link to any switch in the network, assuming connectivity to the WLC

Discussion 0
Questions 172

A Cisco IP phone receive untagged data traffic from an attached PC. Which action is taken by the phone?

Options:

A.  

It allows the traffic to pass through unchanged

B.  

It drops the traffic

C.  

It tags the traffic with the default VLAN

D.  

It tags the traffic with the native VLAN

Discussion 0
Questions 173

Refer to the exhibit.

Which change to the configuration on Switch?

allows the two switches to establish an EtherChannel?

Options:

A.  

Change the protocol to EtherChannel mode on.

B.  

Change the LACP mode to active

C.  

Change the LACP mode to desirable

D.  

Change the protocol to PAqP and use auto mode

Discussion 0
Questions 174

Which function does an SNMP agent perform?

Options:

A.  

it sends information about MIB variables in response to requests from the NMS

B.  

it requests information from remote network nodes about catastrophic system events.

C.  

it manages routing between Layer 3 devices in a network

D.  

it coordinates user authentication between a network device and a TACACS+ or RADIUS server

Discussion 0
Questions 175

Where does wireless authentication happen?

Options:

A.  

SSID

B.  

radio

C.  

band

D.  

Layer 2

Discussion 0
Questions 176

Refer to the exhibit.

If R1 receives a packet destined to 172.161.1, to which IP address does it send the packet?

Options:

A.  

192.168.12.2

B.  

192.168.13.3

C.  

192.168.14.4

D.  

192.168.15.5

Discussion 0
Questions 177

How does the dynamically-learned MAC address feature function?

Options:

A.  

The CAM table is empty until ingress traffic arrives at each port

B.  

Switches dynamically learn MAC addresses of each connecting CAM table.

C.  

The ports are restricted and learn up to a maximum of 10 dynamically-learned addresses

D.  

It requires a minimum number of secure MAC addresses to be filled dynamically

Discussion 0
Questions 178

Which JSON data type is an unordered set of attribute- value pairs?

Options:

A.  

array

B.  

string

C.  

object

D.  

Boolean

Discussion 0
Questions 179

Refer to the exhibit.

An administrator is tasked with configuring a voice VLAN. What is the expected outcome when a Cisco phone is connected to the GigabitEthernet3/1/4 port on a switch?

Options:

A.  

The phone and a workstation that is connected to the phone do not have VLAN connectivity

B.  

The phone and a workstation that is connected to the phone send and receive data in VLAN 50.

C.  

The phone sends and receives data in VLAN 50, but a workstation connected to the phone has no VLAN connectivity

D.  

The phone sends and receives data in VLAN 50, but a workstation connected to the phone sends and receives data in VLAN 1

Discussion 0
Questions 180

Which port type supports the spanning-tree portfast command without additional configuration?

Options:

A.  

access ports

B.  

Layer 3 main Interfaces

C.  

Layer 3 suninterfaces

D.  

trunk ports

Discussion 0
Questions 181

What is a role of access points in an enterprise network?

Options:

A.  

connect wireless devices to a wired network

B.  

support secure user logins to devices or the network

C.  

integrate with SNMP in preventing DDoS attacks

D.  

serve as a first line of defense in an enterprise network

Discussion 0
Questions 182

Which WPA3 enhancement protects against hackers viewing traffic on the Wi-Fi network?

Options:

A.  

TKiP encryption

B.  

AES encryption

C.  

scrambled encryption key

D.  

SAE encryption

Discussion 0
Questions 183

How does WPA3 improve security?

Options:

A.  

It uses SAE for authentication.

B.  

It uses a 4-way handshake for authentication.

C.  

It uses RC4 for encryption.

D.  

It uses TKIP for encryption.

Discussion 0
Questions 184

An administrator must secure the WLC from receiving spoofed association requests. Which steps must be taken to configure the WLC to restrict the requests and force the user to wait 10 ms to retry an association request?

Options:

A.  

Enable Security Association Teardown Protection and set the SA Query timeout to 10

B.  

Enable MAC filtering and set the SA Query timeout to 10

C.  

Enable 802.1x Layer 2 security and set me comeback timer to 10

D.  

Enable the Protected Management Frame service and set the comeback timer to 10

Discussion 0
Questions 185

What are two benefits of FHRPs? (Choose two.)

Options:

A.  

They prevent (loops in the Layer 2 network.

B.  

They allow encrypted traffic.

C.  

They are able to bundle multiple ports to increase bandwidth

D.  

They enable automatic failover of the default gateway.

E.  

They allow multiple devices to serve as a single virtual gateway for clients in the network

Discussion 0
Questions 186

Connectivity between four routers has been established. IP connectivity must be configured in the order presented to complete the implementation. No dynamic routing protocols are included.

1. Configure static routing using host routes to establish connectivity from router R3 to the router R1 Loopback address using the source IP of 209.165.200.230.

2. Configure an IPv4 default route on router R2 destined for router R4.

3. Configure an IPv6 default router on router R2 destined for router R4.

Options:

Discussion 0
Questions 187

IP connectivity and OSPF are preconfigured on all devices where necessary. Do not make any changes to the IP addressing or OSPF. The company policy uses connected interfaces and next hops when configuring static routes except for load balancing or redundancy without floating static. Connectivity must be established between subnet 172.20.20.128/25 on the Internet and the LAN at 192.168.0.0/24 connected to SW1:

1. Configure reachability to the switch SW1 LAN subnet in router R2.

2. Configure default reachability to the Internet subnet in router R1.

3. Configure a single static route in router R2 to reach to the Internet subnet considering both redundant links between routers R1 and R2. A default route is NOT allowed in router R2.

4. Configure a static route in router R1 toward the switch SW1 LAN subnet where the primary link must be through Ethernet0/1. and the backup link must be through Ethernet0/2 using a floating route. Use the minimal administrative distance value when required.

Options:

Discussion 0
Questions 188

When an access point is seeking to join wireless LAN controller, which message is sent to the AP- Manager interface?

Options:

A.  

Discovery response

B.  

DHCP request

C.  

DHCP discover

D.  

Discovery request

Discussion 0
Questions 189

A network engineer is upgrading a small data center to host several new applications, including server backups that are expected to account for up to 90% of the bandwidth during peak times. The data center connects to the MPLS network provider via a primary circuit and a secondary circuit. How does the engineer inexpensively update the data center to avoid saturation of the primary circuit by traffic associated with the backups?

Options:

A.  

Assign traffic from the backup servers to a dedicated switch.

B.  

configure a dedicated circuit for the backup traffic.

C.  

Place the backup servers in a dedicated VLAN.

D.  

Advertise a more specific route for the backup traffic via the secondary circuit.

Discussion 0
Questions 190

Drag and drop the Ansible terms from the left onto the right.

Options:

Discussion 0
Questions 191

Drag and drop the REST API call method for HTTP from the left onto the action they perform on the right.

Options:

Discussion 0
Questions 192

Drag and drop the TCP/IP protocols from the left onto their primary transmission protocols on the right.

Options:

Discussion 0
Questions 193

Configure IPv4 and IPv6 connectivity between two routers. For IPv4, use a /28 network from the 192.168.1.0/24 private range. For IPv6, use the first /64 subnet from the 2001:0db8:aaaa::/48 subnet.

1. Using Ethernet0/1 on routers R1 and R2, configure the next usable/28 from the 192.168.1.0/24 range. The network 192.168.1.0/28 is unavailable.

2. For the IPv4 /28 subnet, router R1 must be configured with the first usable host address.

3. For the IPv4 /28 subnet, router R2 must be configured with the last usable host address.

4. For the IPv6 /64 subnet, configure the routers with the IP addressing provided from the topology.

5. A ping must work between the routers on the IPv4 and IPv6 address ranges.

Options:

Discussion 0
Questions 194

Topology:

Configure OSPF routing for the network by completing the following tasks:

Task 1

Configure OSPF on R2. Ensure that R1 and R3 become neighbors.

    Use process ID 30.

    Use 10.22.22.22 as the router ID.

    Under the OSPF process, advertise the following specific prefixes:

      10.0.23.0/28

      10.0.12.0/30

Task 2

Ensure that R2 always becomes the designated router (DR).

Options:

Discussion 0
Questions 195

Three switches must be configured for Layer 2 connectivity. The company requires only the designated VLANs to be configured on their respective switches and permitted accross any links between switches for security purposes. Do not modify or delete VTP configurations.

The network needs two user-defined VLANs configured:

VLAN 110: MARKETING

VLAN 210: FINANCE

1. Configure the VLANs on the designated switches and assign them as access ports to the interfaces connected to the PCs.

2. Configure the e0/2 interfaces on Sw1 and Sw2 as 802.1q trunks with only the required VLANs permitted.

3. Configure the e0/3 interfaces on Sw2 and Sw3 as 802.1q trunks with only the required VLANs permitted.

Options:

Discussion 0
Questions 196

All physical cabling between the two switches is installed. Configure the network connectivity between the switches using the designated VLANs and interfaces.

1. Configure VLAN 100 named Compute and VLAN 200 named Telephony where required for each task.

2. Configure Ethernet0/1 on SW2 to use the existing VLAN named Available.

3. Configure the connection between the switches using access ports.

4. Configure Ethernet0/1 on SW1 using data and voice VLANs.

5. Configure Ethemet0/1 on SW2 so that the Cisco proprietary neighbor discovery protocol is turned off for the designated interface only.

Options:

Discussion 0
Questions 197

All physical cabling is in place. A company plans to deploy 32 new sites.

The sites will utilize both IPv4 and IPv6 networks.

1 . Subnet 172.25.0.0/16 to meet the subnet requirements and maximize

the number of hosts

Using the second subnet

• Assign the first usable IP address to e0/0 on Sw1O1

• Assign the last usable IP address to e0/0 on Sw102

2. Subnet to meet the subnet requirements and maximize

the number of hosts

c Using the second subnet

• Assign an IPv6 GUA using a unique 64-Bit interface identifier

on e0/0 on Sw101

• Assign an IPv6 GUA using a unique 64-Bit interface identifier

on eO/O on swi02

Guidelines

This is a lab item in which tasks will be performed on virtual devices.

• Refer to the Tasks tab to view the tasks for this lab item.

• Refer to the Topology tab to access the device console(s) and perform the tasks.

• Console access is available for all required devices by clicking the device icon or using

the tab(s) above the console window.

• All necessary preconfigurations have been applied.

• Do not change the enable password or hostname for any device.

• Save your configurations to NVRAM before moving to the next item.

• Click Next at the bottom of the screen to submit this lab and move to the next question.

• When Next is clicked, the lab closes and cannot be reopened.

Options:

Discussion 0
Questions 198

Connectivity between three routers has been established, and IP services must be configured jn the order presented to complete the implementation Tasks assigned include configuration of NAT, NTP, DHCP, and SSH services.

1. All traffic sent from R3 to the R1 Loopback address must be configured for NAT on R2. All source addresses must be translated from R3 to the IP address of Ethernet0/0 on R2, while using only a standard access list named NAT To verify, a ping must be successful to the R1 Loopback address sourced from R3. Do not use NVI NAT configuration.

2. Configure R1 as an NTP server and R2 as a client, not as a peer, using the IP address of the R1 Ethernet0/2 interface. Set the clock on the NTP server for midnight on January 1, 2019.

3. Configure R1 as a DHCP server for the network 10.1.3.0/24 in a pool named TEST. Using a single command, exclude addresses 1-10 from the range. Interface Ethernet0/2 on R3 must be issued the IP address of 10.1.3.11 via DHCP.

4. Configure SSH connectivity from R1 to R3, while excluding access via other remote connection protocols. Access for user root and password Cisco must be set on router R3 using RSA and 1024 bits. Verify connectivity using an SSH session from router R1 using a destination address of 10.1.3.11. Do NOT modify console access or line numbers to accomplish this task.

Options:

Discussion 0
Questions 199

Physical connectivity is implemented between the two Layer 2 switches, and the network connectivity between them must be configured

1. Configure an LACP EtherChannel and number it as 1; configure it between switches SW1 and SVV2 using interfaces Ethernet0/0 and Ethernet0/1 on both sides. The LACP mode must match on both ends

2 Configure the EtherChannel as a trunk link.

3. Configure the trunk link with 802.1 q tags.

4. Configure the native VLAN of the EtherChannel as VLAN 15.

Options:

Discussion 0
Questions 200

IP connectivity between the three routers is configured. OSPF adjacencies must be established.

1. Configure R1 and R2 Router IDs using the interface IP addresses from the link that is shared between them.

2. Configure the R2 links with a max value facing R1 and R3. R2 must become the DR. R1 and R3 links facing R2 must remain with the default OSPF configuration for DR election. Verify the configuration after clearing the OSPF process.

3. Using a host wildcard mask, configure all three routers to advertise their respective Loopback1 networks.

4. Configure the link between R1 and R3 to disable their ability to add other OSPF routers.

Options:

Discussion 0
Questions 201

All physical cabling is in place. Router R4 and PCI are fully configured and

inaccessible. R4 ' s WAN interfaces use .4 in the last octet for each subnet.

Configurations should ensure that connectivity is established end-to-end.

1 . Configure static routing to ensure RI prefers the path through R2 to

reach only PCI on R4 ' s LAN

2. Configure static routing that ensures traffic sourced from RI will take

an alternate path through R3 to PCI in the event of an outage along

the primary path

3. Configure default routes on RI and R3 to the Internet using the least number of hops

Guidelines

This is a lab item in which tasks will be performed on virtual devices.

• Refer to the Tasks tab to view the tasks for this lab item.

• Refer to the Topology tab to access the device console(s) and perform the tasks.

• Console access is available for all required devices by clicking the device icon or using

the tab(s) above the console window.

• All necessary preconfigurations have been applied.

• Do not change the enable password or hostname for any device.

• Save your configurations to NVRAM before moving to the next item.

• Click Next at the bottom of the screen to submit this lab and move to the next question.

• When Next is clicked, the lab closes and cannot be reopened.

Options:

Discussion 0
Questions 202

Physical connectivity is implemented between the two Layer 2 switches,

and the network connectivity between them must be configured.

I . Configure an LACP EtherChanneI and number it as 44; configure it

between switches SWI and SW2 using interfaces EthernetO/O and

Ethernet0/1 on both sides. The LACP mode must match on both ends.

2. Configure the EtherChanneI as a trunk link.

3. Configure the trunk link with 802. Iq tags.

4. Configure VLAN ' MONITORING ' as the untagged VLAN of the

EtherChannel.

==================

Guidelines

This is a lab item in which tasks will be performed on virtual devices.

• Refer to the Tasks tab to view the tasks for this lab item.

• Refer to the Topology tab to access the device console(s) and perform the tasks.

• Console access is available for all required devices by clicking the device icon or using

the tab(s) above the console window.

• All necessary preconfigurations have been applied.

• Do not change the enable password or hostname for any device.

• Save your configurations to NVRAM before moving to the next item.

• Click Next at the bottom of the screen to submit this lab and move to the next question.

• When Next is clicked, the lab closes and cannot be reopened.

Options:

Discussion 0
Questions 203

Topology:

All relevant ports are preconfigured as IEEE 802.1Q trunks.

Task 1

Configure SW-1 port Ethernet0/0 to permit only VLANs 5 and 6.

Task 2

Configure ports Ethernet0/1 on SW-1 and SW-2 to use VLAN 77 as the native VLAN.

Task 3

Configure SW-2 port Ethernet0/2 to permit only VLAN 6.

Task 4

Using LACP, create a Port-Channel between SW-3 and SW-4.

    Combine Ethernet0/0 and Ethernet0/1 into a Port-Channel while leaving the existing trunk configurations intact.

    Assign Port-Channel number 34.

    Only SW-3 must initiate LACP negotiations.

Options:

Discussion 0
Questions 204

Which two minimum parameters must be configured on an active interface to enable OSPFv2 to operate? (Choose two)

Options:

A.  

OSPF area

B.  

OSPF MD5 authentication key

C.  

IPv6 address

D.  

OSPF process ID

E.  

OSPF stub flag

Discussion 0
Questions 205

Drag and drop the SNMP manager and agent identifier commands from the left onto the functions on the right

Options:

Discussion 0
Questions 206

Which global command encrypt all passwords in the running configuration?

Options:

A.  

password-encrypt

B.  

enable password-encryption

C.  

enable secret

D.  

service password-encryption

Discussion 0
Questions 207

In software-defined architectures, which plane is distributed and responsible for traffic forwarding?

Options:

A.  

management plane

B.  

control plane

C.  

policy plane

D.  

data plane

Discussion 0
Questions 208

What is an appropriate use for private IPv4 addressing?

Options:

A.  

on the public-facing interface of a firewall

B.  

to allow hosts inside to communicate in both directions with hosts outside the organization

C.  

on internal hosts that stream data solely to external resources

D.  

on hosts that communicates only with other internal hosts

Discussion 0
Questions 209

Drag and drop the SNMP components from the left onto the descriptions on the right.

Options:

Discussion 0
Questions 210

What criteria is used first during me root port selection process?

Options:

A.  

local port ID

B.  

lowest path cost to the root bridge

C.  

lowest neighbor ' s bridge ID

D.  

lowest neighbor ' s port ID

Discussion 0
Questions 211

Refer to the exhibit.

What is the next hop address for traffic that is destined to host 10.0.1.5?

Options:

A.  

10.0.1.3

B.  

10.0.1.50

C.  

10.0.1.4

D.  

Loopback D

Discussion 0
Questions 212

Refer to the exhibit.

The network administrator wants VLAN 67 traffic to be untagged between Switch 1 and Switch 2 while all other VLANs are to remain tagged.

Which command accomplishes this task?

Options:

A.  

switchport access vlan 67

B.  

switchport trunk allowed vlan 67

C.  

switchport private-vlan association host 67

D.  

switchport trunk native vlan 67

Discussion 0
Questions 213

What software-defined architecture plane assists network devices with making packet-forwarding decisions by providing Layer 2 reachability and Layer 3 routing information?

Options:

A.  

data plane

B.  

control plane

C.  

policy plane

D.  

management plane

Discussion 0
Questions 214

Refer to the exhibit.

An administrator must turn off the Cisco Discovery Protocol on the port configured with address last usable address in the 10.0.0.0/30 subnet. Which command set meets the requirement?

Options:

A.  

interface gi0/1no cdp enable

B.  

interface gi0/1clear cdp table

C.  

interface gi0/0no cdp advertise-v2

D.  

interface gi0/0no cdp run

Discussion 0
Questions 215

Refer to the exhibit.

An engineer configured NAT translations and has verified that the configuration is correct.

Which IP address is the source IP?

Options:

A.  

10.4.4.4

B.  

10.4.4.5

C.  

172.23.103.10

D.  

172.23.104.4

Discussion 0
Questions 216

Which two encoding methods are supported by REST APIs? (Choose two)

Options:

A.  

YAML

B.  

JSON

C.  

EBCDIC

D.  

SGML

E.  

XML

Discussion 0
Questions 217

What is a benefit of VRRP?

Options:

A.  

It provides traffic load balancing to destinations that are more than two hops from the source.

B.  

It provides the default gateway redundancy on a LAN using two or more routers.

C.  

It allows neighbors to share routing table information between each other.

D.  

It prevents lloops in a Layer 2 LAN by forwarding all traffic to a root bridge, which then makes the final forwarding decision.

Discussion 0
Questions 218

Which type of information resides on a DHCP server?

Options:

A.  

a list of the available IP addresses in a pool

B.  

a list of public IP addresses and their corresponding names

C.  

usernames and passwords for the end users in a domain

D.  

a list of statically assigned MAC addresses

Discussion 0
Questions 219

What is a characteristic of a SOHO network?

Options:

A.  

connects each switch to every other switch in the network

B.  

enables multiple users to share a single broadband connection

C.  

provides high throughput access for 1000 or more users

D.  

includes at least three tiers of devices to provide load balancing and redundancy

Discussion 0
Questions 220

How will Link Aggregation be implemented on a Cisco Wireless LAN Controller?

Options:

A.  

One functional physical port is needed to pass client traffic.

B.  

The EtherChannel must be configured in " mode active " .

C.  

When enabled, the WLC bandwidth drops to 500 Mbps.

D.  

To pass client traffic, two or more ports must be configured.

Discussion 0
Questions 221

What protocol allows an engineer to back up 20 network router configurations globally while using the copy function?

Options:

A.  

SMTP

B.  

SNMP

C.  

TCP

D.  

FTP

Discussion 0
Questions 222

Which CRUD operation corresponds to the HTTP GET method?

Options:

A.  

read

B.  

update

C.  

create

D.  

delete

Discussion 0
Questions 223

When using Rapid PVST+, which command guarantees the switch is always the root bridge for VLAN 200?

Options:

A.  

spanning -tree vlan 200 priority 614440

B.  

spanning -tree vlan 200 priority 38572422

C.  

spanning -tree vlan 200 priority 0

D.  

spanning -tree vlan 200 root primary

Discussion 0
Questions 224

What mechanism carries multicast traffic between remote sites and supports encryption?

Options:

A.  

ISATAP

B.  

GRE over IPsec

C.  

IPsec over ISATAP

D.  

GRE

Discussion 0
Questions 225

What is a role of wireless controllers in an enterprise network?

Options:

A.  

centralize the management of access points in an enterprise network

B.  

support standalone or controller-based architectures

C.  

serve as the first line of defense in an enterprise network

D.  

provide secure user logins to devices on the network.

Discussion 0
Questions 226

What facilitates a Telnet connection between devices by entering the device name?

Options:

A.  

SNMP

B.  

DNS lookup

C.  

syslog

D.  

NTP

Discussion 0
Questions 227

By default, how does EIGRP determine the metric of a route for the routing table?

Options:

A.  

it uses the bandwidth and delay values of the path to calculate the route metric

B.  

it uses a default metric of 10 for all routes that are learned by the router

C.  

it uses a reference bandwidth and the actual bandwidth of the connected link to calculate the route metric

D.  

it counts the number of hops between the receiving and destination routers and uses that value as the metric

Discussion 0
Questions 228

Refer to the exhibit.

If OSPF Is running on this network, how does Router2 handle traffic from Site B to 10.10.13.128/25 at Site A?

Options:

A.  

It load-balances traffic out of Fa0/1 and Fa0/2.

B.  

It is unreachable and discards the traffic.

C.  

It sends packets out of interface Fa0/2.

D.  

It sends packets out of interface Fa0/1.

Discussion 0
Questions 229

An engineer must configure interswitch VLAN communication between a Cisco switch and a third-party switch. Which action should be taken?

Options:

A.  

configure IEEE 802.1p

B.  

configure IEEE 802.1q

C.  

configure ISL

D.  

configure DSCP

Discussion 0
Questions 230

Which IPv6 address block sends packets to a group address rather than a single address?

Options:

A.  

2000::/3

B.  

FC00::/7

C.  

FE80::/10

D.  

FF00::/8

Discussion 0
Questions 231

Which WLC port connects to a switch to pass normal access-point traffic?

Options:

A.  

redundancy

B.  

console

C.  

distribution system

D.  

service

Discussion 0
Questions 232

How do TCP and UDP differ in the way that they establish a connection between two endpoints?

Options:

A.  

TCP uses synchronization packets, and UDP uses acknowledgment packets.

B.  

UDP uses SYN, SYN ACK and FIN bits in the frame header while TCP uses SYN, SYN ACK and ACK bits

C.  

UDP provides reliable message transfer and TCP is a connectionless protocol

D.  

TCP uses the three-way handshake and UDP does not guarantee message delivery

Discussion 0
Questions 233

Which type of wireless encryption is used for WPA2 in preshared key mode?

Options:

A.  

TKIP with RC4

B.  

RC4

C.  

AES-128

D.  

AES-256

Discussion 0
Questions 234

Drag and drop the DHCP snooping terms from the left onto the descriptions on the right.

Options:

Discussion 0
Questions 235

What is a difference between local AP mode and FlexConnect AP mode?

Options:

A.  

Local AP mode creates two CAPWAP tunnels per AP to the WLC

B.  

FlexConnect AP mode fails to function if the AP loses connectivity with the WLC

C.  

FlexConnect AP mode bridges the traffic from the AP to the WLC when local switching is configured

D.  

Local AP mode causes the AP to behave as if it were an autonomous AP

Discussion 0
Questions 236

Refer to the exhibit.

Which type of configuration is represented in the output?

Options:

A.  

Ansible

B.  

JSON

C.  

Chef

D.  

Puppet

Discussion 0
Questions 237

An organization has decided to start using cloud-provided services. Which cloud service allows the organization to install its own operating system on a virtual machine?

Options:

A.  

platform-as-a-service

B.  

software-as-a-service

C.  

network-as-a-service

D.  

infrastructure-as-a-service

Discussion 0
Questions 238

Refer to the Exhibit.

After the switch configuration the ping test fails between PC A and PC B Based on the output for switch 1. which error must be corrected?

Options:

A.  

There is a native VLAN mismatch

B.  

Access mode is configured on the switch ports.

C.  

The PCs are in the incorrect VLAN

D.  

All VLANs are not enabled on the trunk

Discussion 0
Questions 239

When implementing a router as a DHCP server, which two features must be configured ' ? (Choose two)

Options:

A.  

relay agent information

B.  

database agent

C.  

address pool

D.  

smart-relay

E.  

manual bindings

Discussion 0
Questions 240

Refer to the exhibit.

After the election process what is the root bridge in the HQ LAN?

Options:

A.  

Switch 1

B.  

Switch 2

C.  

Switch 3

D.  

Switch 4

Discussion 0
Questions 241

Which API is used in controller-based architectures to interact with edge devices?

Options:

A.  

overlay

B.  

northbound

C.  

underlay

D.  

southbound

Discussion 0
Questions 242

Refer to the exhibit.

An access list is required to permit traffic from any host on interface G0/0 and deny traffic from interface G/0/1. Which access list must be applied?

Options:

A.  

Option A

B.  

Option B

C.  

Option C

D.  

Option D

Discussion 0
Questions 243

Which network action occurs within the data plane?

Options:

A.  

compare the destination IP address to the IP routing table.

B.  

run routing protocols (OSPF, EIGRP, RIP, BGP)

C.  

make a configuration change from an incoming NETCONF RPC

D.  

reply to an incoming ICMP echo request

Discussion 0
Questions 244

Which command enables a router to become a DHCP client?

Options:

A.  

ip address dhcp

B.  

ip helper-address

C.  

ip dhcp pool

D.  

ip dhcp client

Discussion 0
Questions 245

Which function is performed by the collapsed core layer in a two-tier architecture?

Options:

A.  

enforcing routing policies

B.  

marking interesting traffic for data polices

C.  

attaching users to the edge of the network

D.  

applying security policies

Discussion 0
Questions 246

What is a practice that protects a network from VLAN hopping attacks?

Options:

A.  

Enable dynamic ARP inspection

B.  

Configure an ACL to prevent traffic from changing VLANs

C.  

Change native VLAN to an unused VLAN ID

D.  

Implement port security on internet-facing VLANs

Discussion 0
Questions 247

Which command prevents passwords from being stored in the configuration as plain text on a router or switch?

Options:

A.  

enable secret

B.  

service password-encryption

C.  

username Cisco password encrypt

D.  

enable password

Discussion 0
Questions 248

Drag and drop the QoS congestion management terms from the left onto the description on the right.

Options:

Discussion 0
Questions 249

Refer to the exhibit.

Site A was recently connected to site B over a new single-mode fiber path. Users at site A report Intermittent connectivity Issues with applications hosted at site B. What is the reason for the problem?

Options:

A.  

Heavy usage is causing high latency.

B.  

An incorrect type of transceiver has been inserted into a device on the link.

C.  

physical network errors are being transmitted between the two sites.

D.  

The wrong cable type was used to make the connection.

Discussion 0
Questions 250

Drag and drop the facts about wireless architectures from the left onto the types of access point on the right. Not all options are used.

Options:

Discussion 0
Questions 251

What is a requirement for nonoverlapping Wi-Fi channels?

Options:

A.  

different security settings

B.  

discontinuous frequency ranges

C.  

different transmission speeds

D.  

unique SSIDs

Discussion 0
Questions 252

What is a function of Cisco Advanced Malware Protection for a Next-Generation IPS?

Options:

A.  

authorizing potentially compromised wireless traffic

B.  

inspecting specific files and file types for malware

C.  

authenticating end users

D.  

URL filtering

Discussion 0
Questions 253

Drag and drop the threat-mitigation techniques from the left onto the types of threat or attack they mitigate on the right.

Options:

Discussion 0
Questions 254

What is the difference between 1000BASE-LX/LH and 1000BASE-ZX interfaces?

Options:

A.  

1000BASE-ZX is supported on links up to 1000km, and 1000BASE-LX/LH operates over links up to 70 km.

B.  

1000BASE-LX/LH interoperates with multimode and single-mode fiber, and 10008ASE-ZX needs a conditioning patch cable with a multimode.

C.  

1000BASE-LX/LH is supported on links up to 10km, and 1000BASE-ZX operates over links up to 70 km

D.  

1000BASE-ZX interoperates with dual-rate 100M/1G 10Km SFP over multimode fiber, and 1000BASE-LX/LH supports only single-rate.

Discussion 0
Questions 255

Which QoS per-hop behavior changes the value of the ToS field in the IPv4 packet header?

Options:

A.  

shaping

B.  

classification

C.  

policing

D.  

marking

Discussion 0
Questions 256

An engineer must configure traffic for a VLAN that is untagged by the switch as it crosses a trunk link. Which command should be used?

Options:

A.  

switchport trunk allowed vlan 10

B.  

switchport trunk native vlan 10

C.  

switchport mode trunk

D.  

switchport trunk encapsulation dot1q

Discussion 0
Questions 257

Refer to the exhibit.

An engineer has started to configure replacement switch SW1. To verify part of the configuration, the engineer issued the commands as shown and noticed that the entry for PC2 is missing. Which change must be applied to SW1 so that PC1 and PC2 communicate normally?

A)

B)

C)

D)

Options:

A.  

Option A

B.  

Option B

C.  

Option C

D.  

Option D

Discussion 0
Questions 258

Refer to the exhibit.

How should the configuration be updated to allow PC1 and PC2 access to the Internet?

Options:

A.  

Modify the configured number of the second access list.

B.  

Add either the ip nat {inside|outside} command under both interfaces.

C.  

Remove the overload keyword from the ip nat inside source command.

D.  

Change the ip nat inside source command to use interface GigabitEthernet0/0.

Discussion 0
Questions 259

Refer to the exhibit.

The administrator must configure a floating static default route that points to 2001:db8:1234:2::1 and replaces the current default route only if it fails. Which command must the engineer configure on the CPE?

Options:

A.  

ipv6 route ::/0 2001:db8:1234:2::1 3

B.  

ipv6 route ::/128 2001 :db8:1234:2::1 3

C.  

ipv6 route ::/0 2001:db8:1234:2::1 1

D.  

ipv6 route ::/0 2001:db8:1234:2::1 2

Discussion 0
Questions 260

Refer to the exhibit.

An engineer built a new Layer 2 LACP EtherChannel between SW1 and SW2 and executed these show commands to verify the work. Which additional task allows the two switches to establish an LACP port channel?

Options:

A.  

Change the channel-group mode on SW2 to auto

B.  

Change the channel-group mode on SW1 to desirable.

C.  

Configure the interface port-channel 1 command on both switches.

D.  

Change the channel-group mode on SW1 to active or passive.

Discussion 0
Questions 261

A network engineer is installing an IPv6-only capable device. The client has requested that the device IP address be reachable only from the internal network. Which type of IPv6 address must the engineer assign?

Options:

A.  

unique local address

B.  

link-local address

C.  

aggregatable global address

D.  

IPv4-compatible IPv6 address

Discussion 0
Questions 262

What causes a port to be placed in the err-disabled state?

Options:

A.  

nothing plugged into the port

B.  

link flapping

C.  

shutdown command issued on the port

D.  

latency

Discussion 0
Questions 263

Refer to the exhibit. Each router must be configured with the last usable IP address in the subnet. Which configuration fulfills this requirement?

Options:

A.  

Option A

B.  

Option B

C.  

Option C

D.  

Option D

Discussion 0
Questions 264

What is the purpose of the ip address dhcp command?

Options:

A.  

to configure an Interface as a DHCP server

B.  

to configure an interface as a DHCP helper

C.  

to configure an interface as a DHCP relay

D.  

to configure an interface as a DHCP client

Discussion 0
Questions 265

Drag and drop the IPv6 address details from the left onto the corresponding types on the right.

Options:

Discussion 0
Questions 266

A network engineer is configuring a switch so that it is remotely reachable via SSH. The engineer has already configured the host name on the router. Which additional command must the engineer configure before entering the command to generate the RSA key?

Options:

A.  

password password

B.  

crypto key generate rsa modulus 1024

C.  

ip domain-name domain

D.  

ip ssh authentication-retries 2

Discussion 0
Questions 267

Which type of organization should use a collapsed-core architecture?

Options:

A.  

large and requires a flexible, scalable network design

B.  

large and must minimize downtime when hardware fails

C.  

small and needs to reduce networking costs currently

D.  

small but is expected to grow dramatically in the near future

Discussion 0
Questions 268

Refer to the exhibit.

The New York router is configured with static routes pointing to the Atlanta and Washington sites. Which two tasks must be performed so that the Serial0/0/0 interfaces on the Atlanta and Washington routers can reach one another?

(Choose two.)

Options:

A.  

Configure the ipv6 route 2012::/126 2023::1 command on the Washington router.

B.  

Configure the ipv6 route 2023::/126 2012::1 command on the Atlanta router.

C.  

Configure the Ipv6 route 2012::/126 s0/0/0 command on the Atlanta router.

D.  

Configure the ipv6 route 2023::/126 2012::2 command on the Atlanta router.

E.  

Configure the ipv6 route 2012::/126 2023::2 command on the Washington router.

Discussion 0
Questions 269

Refer to the exhibit.

An engineer is updating the R1 configuration to connect a new server to the management network. The PCs on the management network must be blocked from pinging the default gateway of the new server. Which command must be configured on R1 to complete the task?

Options:

A.  

R1(config)#ip route 172.16.2.2 255.255.255.248 gi0/1

B.  

R1(config)#ip route 172.16.2.2 255.255.255.255 gi0/0

C.  

R1(config)#ip route 172.16.2.0 255.255.255.0 192.168.1.15

D.  

R1(config)#ip route 172.16.2.0 255.255.255.0 192.168.1.5

Discussion 0
Questions 270

Which QoS tool is used to optimize voice traffic on a network that is primarily intended for data traffic?

Options:

A.  

FIFO

B.  

WFQ

C.  

PQ

D.  

WRED

Discussion 0
Questions 271

Refer to the exhibit.

Packets received by the router from BGP enter via a serial interface at 209 165 201 1 Each route is present within the routing table Which interface is used to forward traffic with a destination IP of 10.1.1.19?

Options:

A.  

F0/4

B.  

F0/0

C.  

F0/1

D.  

F0/3

Discussion 0
Questions 272

A network administrator enabled port security on a switch interface connected to a printer. What is the next configuration action in order to allow the port to learn the MAC address of the printer and insert it into the table automatically?

Options:

A.  

enable dynamic MAC address learning

B.  

implement static MAC addressing.

C.  

enable sticky MAC addressing

D.  

implement auto MAC address learning

Discussion 0
Questions 273

When a client and server are not on the same physical network, which device is used to forward requests and replies between client and server for DHCP?

Options:

A.  

DHCP relay agent

B.  

DHCP server

C.  

DHCPDISCOVER

D.  

DHCPOFFER

Discussion 0
Questions 274

Refer to the exhibit.

What are two conclusions about this configuration? {Choose two.)

Options:

A.  

The spanning-tree mode is Rapid PVST+.

B.  

This is a root bridge.

C.  

The root port is FastEthernet 2/1.

D.  

The designated port is FastEthernet 2/1.

E.  

The spanning-tree mode is PVST+.

Discussion 0
Questions 275

Drag and drop the Rapid PVST+ forwarding state actions from the loft to the right. Not all actions are used.

Options:

Discussion 0
Questions 276

Drag and drop the descriptions of AAA services from the left onto the corresponding services on the right.

Options:

Discussion 0
Questions 277

What is an expected outcome when network management automation is deployed?

Options:

A.  

A distributed management plane must be used.

B.  

Software upgrades are performed from a central controller

C.  

Complexity increases when new device configurations are added

D.  

Custom applications are needed to configure network devices

Discussion 0
Questions 278

After a recent security breach and a RADIUS failure, an engineer must secure the console port of each enterprise router with a local username and password. Which configuration must the engineer apply to accomplish this task?

Options:

A.  

Option A

B.  

Option B

C.  

Option C

D.  

Option D

Discussion 0
Questions 279

Refer to the exhibit.

Which configuration enables DHCP addressing for hosts connected to interface FastEthernet0/1 on router R4?

Options:

A.  

interface FastEthernet0/0ip helper-address 10.0.1.1iaccess-list 100 permit udp host 10.0.1.1 eq bootps host 10.148.2.1

B.  

interface FastEthernet0/1ip helper-address 10.0.1.1!access-list 100 permit tcp host 10.0.1.1 eq 67 host 10.148.2.1

C.  

interface FastEthernet0/0ip helper-address 10.0.1.1Iaccess-list 100 permit host 10.0.1.1 host 10.148.2.1 eq bootps

D.  

interface FastEthernet0/1ip helper-address 10.0.1.1!access-list 100 permit udp host 10.0.1.1 eq bootps host 10.148.2.1

Discussion 0
Questions 280

What provides centralized control of authentication and roaming In an enterprise network?

Options:

A.  

a lightweight access point

B.  

a firewall

C.  

a wireless LAN controller

D.  

a LAN switch

Discussion 0
Questions 281

Refer to the exhibit.

An engineer assumes a configuration task from a peer Router A must establish an OSPF neighbor relationship with neighbor 172.1.1.1 The output displays the status of the adjacency after 2 hours. What is the next step in the configuration process for the routers to establish an adjacency?

Options:

A.  

Configure router A to use the same MTU size as router B.

B.  

Set the router B OSPF ID to a nonhost address.

C.  

Configure a point-to-point link between router A and router B.

D.  

Set the router B OSPF ID to the same value as its IP address

Discussion 0
Questions 282

Refer to the exhibit.

R1 has taken the DROTHER role in the OSPF DR/BDR election process. Which configuration must an engineer implement so that R1 is elected as the DR?

Options:

A.  

Option A

B.  

Option B

C.  

Option C

D.  

Option D

Discussion 0
Questions 283

Refer to the exhibit.

A network engineer is in the process of establishing IP connectivity between two sites. Routers R1 and R2 are partially configured with IP addressing. Both routers have the ability to access devices on their respective LANs. Which command set configures the IP connectivity between devices located on both LANs in each site?

Options:

A.  

Option A

B.  

Option B

C.  

Option C

D.  

Option D

Discussion 0
Questions 284

Drag and drop the Cisco IOS attack mitigation features from the left onto the types of network attack they mitigate on the right.

Options:

Discussion 0
Questions 285

Why does a switch flood a frame to all ports?

Options:

A.  

The frame has zero destination MAC addresses.

B.  

The source MAC address of the frame is unknown

C.  

The source and destination MAC addresses of the frame are the same

D.  

The destination MAC address of the frame is unknown.

Discussion 0
Questions 286

Refer to the exhibit.

When router R1 is sending traffic to IP address 10.56.192.1, which interface or next hop address does it use to route the packet?

Options:

A.  

0.0.0.0.0/0

B.  

10.56.0.1

C.  

10.56.128.19

D.  

Vlan57

Discussion 0
Questions 287

An organization secures its network with multi-factor authentication using an authenticator app on employee smartphone. How is the application secured in the case of a user’s smartphone being lost or stolen?

Options:

A.  

The application requires an administrator password to reactivate after a configured Interval.

B.  

The application requires the user to enter a PIN before it provides the second factor.

C.  

The application challenges a user by requiring an administrator password to reactivate when the smartphone is rebooted.

D.  

The application verifies that the user is in a specific location before it provides the second factor.

Discussion 0
Questions 288

What is the collapsed layer in collapsed core architectures?

Options:

A.  

core and WAN

B.  

access and WAN

C.  

distribution and access

D.  

core and distribution

Discussion 0
Questions 289

Refer to the exhibit.

The DHCP server and clients are connected to the same switch. What is the next step to complete the DHCP configuration to allow clients on VLAN 1 to receive addresses from the DHCP server?

Options:

A.  

Configure the ip dhcp snooping trust command on the interface that is connected to the DHCP client.

B.  

Configure the ip dhcp relay information option command on the interface that is connected to the DHCP client.

C.  

Configure the ip dhcp snooping trust command on the interface that is connected to the DHCP server.

D.  

Configure the Ip dhcp relay information option command on the interface that is connected to the DHCP server.

Discussion 0
Questions 290

Drag and drop the statements about networking from the left onto the corresponding networking types on the right

Options:

Discussion 0
Questions 291

An engineer is configuring switch SW1 to act an NTP server when all upstream NTP server connectivity fails. Which configuration must be used?

A)

B)

C)

D)

Options:

A.  

Option A

B.  

Option B

C.  

Option C

D.  

Option D

Discussion 0
Questions 292

Refer to the exhibit.

Which configuration allows routers R14 and R86 to form an OSPFv2 adjacency while acting as a central point for exchanging OSPF information between routers?

A)

B)

C)

D)

Options:

A.  

Option A

B.  

Option B

C.  

Option C

D.  

Option D

Discussion 0
Questions 293

What is a feature of WPA?

Options:

A.  

802.1x authentication

B.  

preshared key

C.  

TKIP/MIC encryption

D.  

small Wi-Fi application

Discussion 0
Questions 294

Refer to the exhibit.

What is the effect of this configuration?

Options:

A.  

The switch port interface trust state becomes untrusted

B.  

The switch port remains administratively down until the interface is connected to another switch

C.  

Dynamic ARP inspection is disabled because the ARP ACL is missing

D.  

The switch port remains down until it is configured to trust or untrust incoming packets

Discussion 0
Questions 295

Refer to the exhibit.

The ntp server 192.168.0.3 command has been configured on router 1 to make it an NTP client of router 2. Which command must be configured on router 2 so that it operates in server-only mode and relies only on its internal clock?

Options:

A.  

Router2(config)#ntp passive

B.  

Router2(config)#ntp server 172.17.0.1

C.  

Router2(config)#ntp master 4

D.  

Router2(config)#ntp server 192.168.0.2

Discussion 0
Questions 296

How does Rapid PVST+ create a fast loop-free network topology?

Options:

A.  

lt requires multiple links between core switches

B.  

It generates one spanning-tree instance for each VLAN

C.  

It maps multiple VLANs into the same spanning-tree instance

D.  

It uses multiple active paths between end stations.

Discussion 0
Questions 297

Which PoE mode enables powered-device detection and guarantees power when the device is detected?

Options:

A.  

dynamic

B.  

static

C.  

active

D.  

auto

Discussion 0
Questions 298

Which WAN topology has the highest degree of reliability?

Options:

A.  

full mesh

B.  

Point-to-point

C.  

hub-and-spoke

D.  

router-on-a-stick

Discussion 0
Questions 299

Refer to the exhibit.

Users on existing VLAN 100 can reach sites on the Internet. Which action must the administrator take to establish connectivity to the Internet for users in VLAN 200?

Options:

A.  

Define a NAT pool on the router.

B.  

Configure static NAT translations for VLAN 200.

C.  

Configure the ip nat outside command on another interface for VLAN 200.

D.  

Update the NAT INSIDF RANGFS ACL

Discussion 0
Questions 300

Refer to the exhibit.

What are the two steps an engineer must take to provide the highest encryption and authentication using domain credentials from LDAP?

Options:

A.  

Select PSK under Authentication Key Management

B.  

Select WPA+WPA2 on Layer 2 Security

C.  

Select Static-WEP + 802.1X on Layer 2 Security

D.  

Select WPA Policy with TKIP Encryption

E.  

Select 802.1X from under Authentication Key Management

Discussion 0
Questions 301

An engineer is configuring SSH version 2 exclusively on the R1 router. What is the minimum configuration required to permit remote management using the cryptographic protocol?

Options:

A.  

Option A

B.  

Option B

C.  

Option C

D.  

Option D

Discussion 0
Questions 302

An engineer is tasked to configure a switch with port security to ensure devices that forward unicasts multicasts and broadcasts are unable to flood the port The port must be configured to permit only two random MAC addresses at a time Drag and drop the required configuration commands from the left onto the sequence on the right Not all commands are used.

Options:

Discussion 0
Questions 303

Refer to the exhibit.

Traffic that is flowing over interface TenGigabitEthernet0/0 experiences slow transfer speeds. What is the reason for the issue?

Options:

A.  

heavy traffic congestion

B.  

a duplex incompatibility

C.  

a speed conflict

D.  

queuing drops

Discussion 0
Questions 304

Refer to the exhibit.

All traffic enters the CPE router from interface Serial0/3 with an IP address of 192 168 50 1 Web traffic from the WAN is destined for a LAN network where servers are load-balanced An IP packet with a destination address of the HTTP virtual IP of 192 1681 250 must be forwarded Which routing table entry does the router use?

Options:

A.  

192.168.1.0/24 via 192.168.12.2

B.  

192.168.1.128/25 via 192.168.13.3

C.  

192.168.1.192/26 via 192.168.14.4

D.  

192.168.1.224/27 via 192.168.15.5

Discussion 0
Questions 305

Refer to the exhibit.

How many JSON objects are represented?

Options:

A.  

1

B.  

2

C.  

3

D.  

4

Discussion 0
Questions 306

OSPF must be configured between routers R1 and R2. Which OSPF configuration must be applied to router R1 to avoid a DR/BDR election?

Options:

A.  

router ospf 1network 192.168.1.1 0.0.0.0 area 0interface e1/1ip address 192.168.1.1 255.255.255.252ip ospf network broadcast

B.  

router ospf 1network 192.168.1.1 0.0.0.0 area 0interface e1/1ip address 192.168.1.1 255.255.255.252ip ospf network point-to-point

C.  

router ospf 1network 192.168.1.1 0.0.0.0 area 0interface e1/1ip address 192.168.1.1 255.255.255.252ip ospf cost 0

D.  

router ospf 1network 192.168.1.1 0.0.0.0 area 0hello interval 15interface e1/1Ip address 192.168.1.1 255.255.255.252

Discussion 0
Questions 307

What is a function of a Layer 3 switch?

Options:

A.  

move frames between endpoints limited to IP addresses

B.  

transmit broadcast traffic when operating in Layer 3 mode exclusively

C.  

forward Ethernet frames between VLANs using only MAC addresses

D.  

flood broadcast traffic within a VLAN

Discussion 0
Questions 308

Refer to the exhibit. An engineer is asked to configure router R1 so that it forms an OSPF single-area neighbor relationship with R2. Which command sequence must be implemented to configure the router?

Options:

A.  

Option A

B.  

Option B

C.  

Option C

D.  

Option D

Discussion 0
Questions 309

Refer to the exhibit.

What is a reason for poor performance on the network interface?

Options:

A.  

The interface is receiving excessive broadcast traffic.

B.  

The cable connection between the two devices is faulty.

C.  

The interface is operating at a different speed than the connected device.

D.  

The bandwidth setting of the interface is misconfigured

Discussion 0
Questions 310

A network engineer must configure two new subnets using the address block 10.70.128.0/19 to meet these requirements:

• The first subnet must support 24 hosts

• The second subnet must support 472 hosts

• Both subnets must use the longest subnet mask possible from the address block

Which two configurations must be used to configure the new subnets and meet a requirement to use the first available address in each subnet for the router interfaces? (Choose two )

Options:

A.  

interface vlan 1234ip address 10.70.159.1 255.255.254.0

B.  

interface vlan 1148ip address 10.70.148.1 255.255.254.0

C.  

interface vlan 4722ip address 10.70.133.17 255.255.255.192

D.  

interface vlan 3002ip address 10.70.147.17 255.255.255.224

E.  

interface vlan 155ip address 10.70.155.65 255.255.255.224

Discussion 0