Soal Dumps 65 - 135
QUESTION 66
Which two outcomes are predictable behaviors for HSRP? (Choose two)
A. The two routers share a virtual IP address that is used as the default gateway for devices on the LAN.
B. The two routers negotiate one router as the active router and the other as the standby router.
C. Each router has a different IP address both routers act as the default gateway on the LAN, and traffic is load balanced between them.
D. The two routers synchronize configurations to provide consistent packet forwarding.
E. The two routed share the same IP address, and default gateway traffic is load-balanced between them.
Correct Answer: AB
Section: 3. IP Connectivity
QUESTION 67
Which action is taken by a switch port enabled for PoE power classification override?
A. When a powered device begins drawing power from a PoE switch port a syslog message is generated.
B. As power usage on a PoE switch port is checked data flow to the connected device is temporarily paused.
C. If a switch determines that a device is using less than the minimum configured power it assumes the device has failed and disconnects.
D. If a monitored port exceeds the maximum administrative value for power, the port is shutdown and err-disabled.
Correct Answer: D
Section: 1. Network Fundamentals
Explanation/Reference:
Explanation: PoE monitoring and policing compares the power consumption on ports with the administrative maximum value (either a configured maximum value or the port’s default value).
If the power consumption on a monitored port exceeds the administrative maximum value, the following actions occur:
– A syslog message is issued.
– The monitored port is shut down and error-disabled.
– The allocated power is freed.
Reference: https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst6500/ios/12-2SX/configuration/guide/book/power_over_ethernet.pdf
QUESTION 68
Which 802.11 frame type is association response?
A. management
B. protected frame
C. control
D. action
Correct Answer: A
Section: 1. Network Fundamentals
Explanation/Reference:
There are three main types of 802.11 frames: the Data Frame, the Management Frame and the Control Frame. Association Response belongs to Management Frame.
Association response is sent in response to an association request.
Reference: https://en.wikipedia.org/wiki/802.11_Frame_Types
QUESTION 69
Which two tasks must be performed to configure NTP to a trusted server in client mode on a single network device? (Choose two)
A. Enable NTP authentication.
B. Verify the time zone.
C. Disable NTP broadcasts.
D. Specify the IP address of the NTP server.
E. Set the NTP server private key.
Correct Answer: AD
Section: 4. IP Services
Explanation/Reference:
To configure authentication, perform this task in privileged mode:
Step 1: Configure an authentication key pair for NTP and specify whether the key will be trusted or untrusted.
Step 2: Set the IP address of the NTP server and the public key.
Step 3: Enable NTP client mode.
Step 4: Enable NTP authentication.
Step 5: Verify the NTP configuration.
QUESTION 70
Refer to the exhibit. The New York router is configured with static routes pointing to the Atlanta and Washington sites.
Which two tasks must be performed so that the Serial0/0/0 interfaces on the Atlanta and Washington routers can reach one another? (Choose two.)
A. Configure the ipv6 route 2012::/126 2023::1 command on the Washington router.
B. Configure the ipv6 route 2023::/126 2012::1 command on the Atlanta router.
C. Configure the Ipv6 route 2012::/126 s0/0/0 command on the Atlanta router.
D. Configure the ipv6 route 2023::/126 2012::2 command on the Atlanta router.
E. Configure the ipv6 route 2012::/126 2023::2 command on the Washington router.
Correct Answer: DE
Section: 3. IP Connectivity
Explanation/Reference:
The short syntax of static IPv6 route is:
ipv6 route <destination-IPv6-address> {next-hop-IPv6-address | exit-interface}
QUESTION 71
Which result occurs when PortFast is enabled on an interface that is connected to another switch?
A. Spanning tree may fail to detect a switching loop in the network that causes broadcast storms.
B. VTP is allowed to propagate VLAN configuration information from switch to switch automatically.
C. Root port choice and spanning tree recalculation are accelerated when a switch link goes down.
D. After spanning tree converges PortFast shuts down any port that receives BPDUS.
Correct Answer: A
Section: 2. Network Access
Explanation/Reference:
Enabling the PortFast feature causes a switch or a trunk port to enter the STP forwarding-state immediately or upon a linkup event, thus bypassing the listening and learning states.
Note: To enable portfast on a trunk port you need the trunk keyword "spanning-tree portfast trunk"
QUESTION 72
Refer to exhibit. Which statement explains the configuration error message that is received?
A. It is a broadcast IP address.
B. The router does not support/28 mask.
C. It belongs to a private IP address range.
D. It is a network IP address.
Correct Answer: A
Section: 1. Network Fundamentals
QUESTION 73
When a floating static route is configured, which action ensures that the backup route is used when the primary route fails?
A. The floating static route must have a higher administrative distance than the primary route so it is used as a backup.
B. The administrative distance must be higher on the primary route so that the backup route becomes secondary
C. The floating static route must have a lower administrative distance than the primary route so it is used as a backup.
D. The default-information originate command must be configured for the route to be installed into the routing table.
Correct Answer: A
Section: 3. IP Connectivity
QUESTION 74
What makes Cisco DNA Center different from traditional network management applications and their management of networks?
A. It only supports auto-discovery of network elements in a greenfield deployment.
B. It modular design allows someone to implement different versions to meet the specific needs of an organization.
C. It abstracts policy from the actual device configuration.
D. It does not support high availability of management functions when operating in cluster mode.
Correct Answer: C
Section: 6. Automation and Programmability
QUESTION 75
Which network allows devices to communicate without the need to access the Internet?
A. 172.9.0.0/16
B. 172.28.0.0/16
C. 192.0.0.0/8
D. 209.165.201.0/24
Correct Answer: B
Section: 1. Network Fundamentals
Explanation/Reference:
This question asks about the private ranges of IPv4 addresses. The private ranges of each class of IPv4 are listed below:
Class A private IP address ranges from 10.0.0.0 to 10.255.255.255 Class B private IP address ranges from 172.16.0.0 to 172.31.255.255 Class C private IP address ranges from 192.168.0.0 to 192.168.255.255 Only the network 172.28.0.0/16 belongs to the private IP address (of class B).
QUESTION 76
Refer to the exhibit. What does router R1 use as its OSPF router-ID?
A. 10.10.1.10
B. 10.10.10.20
C. 172.16.15.10
D. 192.168.0.1
Correct Answer: C
Section: 3. IP Connectivity
Explanation/Reference:
OSPF uses the following criteria to select the router ID:
1. Manual configuration of the router ID (via the "router-id x.x.x.x" command under OSPF router configuration mode).
2. Highest IP address on a loopback interface.
3. Highest IP address on a non-loopback and active (no shutdown) interface
QUESTION 77
Refer to the exhibit. If OSPF is running on this network, how does Router 2 handle traffic from Site B to 10.10.13.128/25 at Site A?
A. It sends packets out of interface Fa0/2 only.
B. It sends packets out of interface Fa0/1 only
C. It cannot send packets to 10.10.13.128/25.
D. It load-balances traffic out of Fa0/1 and Fa0/2.
Correct Answer: C
Section: 3. IP Connectivity
Explanation/Reference:
Router2 does not have an entry for the subnet 10.10.13.128/25. It only has an entry for 10.10.13.0/25, which ranges from 10.10.13.0 to 10.10.13.127.
QUESTION 78
When a site-to-site VPN is used, which protocol is responsible for the transport of user data?
A. IKEv2
B. IKEv1
C. IPsec
D. MD5
Correct Answer: C
Section: 5. Security Fundamentals
Explanation/Reference:
A site-to-site VPN allows offices in multiple fixed locations to establish secure connections with each other over a public network such as the Internet. A site-to-site VPN means that two sites create a VPN tunnel by encrypting and sending data between two devices. One set of rules for creating a siteto-site VPN is defined by IPsec.
QUESTION 79
Refer to the exhibit. An extended ACL has been configured and applied to router R2 The configuration started to work as intended. Which two changes stop outbound traffic on TCP ports 25 and 80 to 10.0.20.0/26 from the 10.0.10.0/26 subnet while still allowing all other traffic? (Choose two)
A. Add a “permit ip any any” statement to the begining of ACL 101 for allowed traffic.
B. Add a “permit ip any any” statement at the end of ACL 101 for allowed traffic.
C. The source and destination IPs must be swapped in ACL 101.
D. The ACL must be configured the Gi0/2 interface inbound on R1.
E. The ACL must be moved to the Gio/1 interface outbound on R2.
Correct Answer: BC
Section: 5. Security Fundamentals
QUESTION 80
Which mode must be used to configure EtherChannel between two switches without using a negotiation protocol?
A. on
B. auto
C. active
D. desirable
Correct Answer: A
Section: 2. Network Access
Explanation/Reference:
The Static Persistence (or “on” mode) bundles the links unconditionally and no negotiation protocol is used. In this mode, neither PAgP nor LACP packets are sent or received.
QUESTION 81
A router running EIGRP has learned the same route from two different paths. Which parameter does the router use to select the best path?
A. cost
B. adminstrative distance
C. metric
D. as-path
Correct Answer: C
Section: 3. IP Connectivity
Explanation/Reference:
If a router learns two different paths for the same network from the same routing protocol, it has to decide which route is better and will be placed in the routing table. Metric is the measure used to decide which route is better (lower number is better). Each routing protocol uses its own metric.
For example, RIP uses hop counts as a metric, while OSPF uses cost.
Click hereClick here
QUESTION 82
R1 has learned route 192.168.12.0/24 via IS-IS. OSPF, RIP. and Internal EIGRP Under normal operating conditions, which routing protocol is installed in the routing table?
A. IS-IS
B. RIP
C. Internal EIGRP
D. OSPF
Correct Answer: C
Section: 3. IP Connectivity
Explanation/Reference:
With the same route (prefix), the router will choose the routing protocol with lowest Administrative Distance (AD) to install into the routing table. The AD of Internal EIGRP (90) is lowest so it would be chosen. The table below lists the ADs of popular routing protocols.
Note: The AD of IS-IS is 115. The "EIGRP" in the table above is "Internal EIGRP". The AD of "External EIGRP" is 170. An EIGRP external route is a route that was redistributed into EIGRP.
QUESTION 83
Which MAC address is recognized as a VRRP virtual address?
A. 0000.5E00.010a
B. 0005.3711.0975
C. 0000.0C07.AC99
D. 0007.C070/AB01
Correct Answer: A
Section: 3. IP Connectivity
Explanation/Reference:
With VRRP, the virtual router's MAC address is 0000.5E00.01xx , in which xx is the VRRP group.
QUESTION 84
Which statement correctly compares traditional networks and controller-based networks?
A. Only traditional networks offer a centralized control plane.
B. Only traditional networks natively support centralized management.
C. Traditional and controller-based networks abstract policies from device configurations.
D. Only controller-based networks decouple the control plane and the data plane.
Correct Answer: D
Section: 6. Automation and Programmability
Explanation/Reference:
Most traditional devices use a distributed architecture, in which each control plane is resided in a networking device. Therefore they need to communicate with each other via messages to work correctly.
In contrast to distributed architecture, centralized (or controller-based) architectures centralizes the control of networking devices into one device, called SDN controller -> Answer D is correct.
QUESTION 85
If a notice-level messaging is sent to a syslog server, which event has occurred?
A. A network device has restarted.
B. An ARP inspection has failed.
C. A routing instance has flapped.
D. A debug operation is running.
Correct Answer: C
Section: 4. IP Services
Explanation/Reference:
Usually no action is required when a route flaps so it generates the notification syslog level message (level 5).
QUESTION 86
Refer to the exhibit. With which metric was the route to host 172.16.0.202 learned?
A. 0
B. 110
C. 38443
D. 3184439
Correct Answer: C
Section: 3. IP Connectivity
Explanation/Reference:
Both the line "O 172.16.0.128/25" and "S 172.16.0.0/24" cover the host 172.16.0.202 but with the "longest (prefix) match" rule the router will choose the first route.
QUESTION 87
Refer to the exhibit. If configuring a static default route on the router with the ip route 0.0.0.0 0.0.0.0 10.13.0.1 120 command, how does the router respond?
A. It ignores the new static route until the existing OSPF default route is removed.
B. It immediately replaces the existing OSPF route in the routing table with the newly configured static route.
C. It starts load-balancing traffic between the two default routes.
D. It starts sending traffic without a specific matching entry in the routing table to GigabitEthernet0/1.
Correct Answer: A
Section: 3. IP Connectivity
Explanation/Reference:
Our new static default route has the Administrative Distance (AD) of 120, which is bigger than the AD of OSPF External route (O*E2) so it will not be pushed into the routing table until the current OSPF External route is removed.
For your information, if you don't type the AD of 120 (using the command "ip route 0.0.0.0 0.0.0.0 10.13.0.1") then the new static default route would replace the OSPF default route as the default AD of static route is 1. You will see such line in the routing table:
S* 0.0.0.0/0 [1/0] via 10.13.0.1
QUESTION 88
Refer to the Exhibit. After the switch configuration the ping test fails between PC A and PC B Based on the output for switch 1.
Which error must be corrected?
A. There is a native VLAN mismatch.
B. Access mode is configured on the switch ports.
C. The PCs are in the incorrect VLAN.
D. All VLANs are not enabled on the trunk.
Correct Answer: A
Section: 2. Network Access
Explanation/Reference:
From the output we see the native VLAN of Switch1 on Gi0/1 interface is VLAN 1 while that of Switch2 is VLAN 99 so there would be a native VLAN mismatch.
QUESTION 89
An engineer must configure a WLAN using the strongest encryption type for WPA2-PSK. Which cipher fulfills the configuration requirement?
A. WEP
B. RC4
C. AES
D. TKIP
Correct Answer: C
Section: 5. Security Fundamentals Explanation
Explanation/Reference:
Many routers provide WPA2-PSK (TKIP), WPA2-PSK (AES), and WPA2-PSK (TKIP/AES) as options.
TKIP is actually an older encryption protocol introduced with WPA to replace the very-insecure WEP encryption at the time. TKIP is actually quite similar to WEP encryption. TKIP is no longer considered secure, and is now deprecated. In other words, you shouldn't be using it.
AES is a more secure encryption protocol introduced with WPA2 and it is currently the strongest encryption type for WPA2-PSK/
QUESTION 90
Which statement about Link Aggregation when implemented on a Cisco Wireless LAN Controller is true?
A. To pass client traffic two or more ports must be configured.
B. The EtherChannel must be configured in “mode active”.
C. When enabled, the WLC bandwidth drops to 500 Mbps.
D. One functional physical port is needed to pass client traffic.
Correct Answer: D
Section: 2. Network Access Explanation
Explanation/Reference:
Link aggregation (LAG) is a partial implementation of the 802.3ad port aggregation standard. It bundles all of the controller's distribution system ports into a single 802.3ad port channel.
Restriction for Link aggregation:
- LAG requires the EtherChannel to be configured for `mode on' on both the controller and the Catalyst switch -> Answer B is not correct.
- If the recommended load-balancing method cannot be configured on the Catalyst switch, then configure the LAG connection as a single member link or disable LAG on the controller -> Answer A is not correct while answer D is correct.
Reference: Click here
QUESTION 91
When configuring a WLAN with WPA2 PSK in the Cisco Wireless LAN Controller GUI, which two formats are available to select? (Choose two)
A. ASCII
B. base64
C. binary
D. decimal
E. hexadecimal
Correct Answer: AE
Section: 5. Security Fundamentals Explanation
Explanation/Reference:
When configuring a WLAN with WPA2 Preshared Key (PSK), we can choose the encryption key format as either ASCII or HEX. Reference: https://www.cisco.com/c/en/us/td/docs/wireless/controller/7-4/configuration/guides/consolidated/b_cg74_CONSOLIDATED/ b_cg74_CONSOLIDATED_chapter_01010001.html
QUESTION 92
Which API is used in controller-based architectures to interact with edge devices?
A. overlay
B. northbound
C. underlay
D. southbound
Correct Answer: D
Section: 6. Automation and Programmability
QUESTION 93
Refer to the exhibit. A network administrator is configuring an EtherChannel between SW1 and SW2. The SW1 configuration is shown.
What is the correct configuration for SW2?
A. interface FastEthernet 0/1
channel-group 1 mode active
switchport trunk encapsulation dot1q s
witchport mode trunk
interface FastEthernet 0/2
channel-group 1 mode active
switchport trunk encapsulation dot1q
switchport mode trunk
B. interface FastEthernet 0/1
channel-group 2 mode auto
switchport trunk encapsulation dot1q
switchport mode trunk
interface FastEthernet 0/2
channel-group 2 mode auto
switchport trunk encapsulation dot1q
switchport mode trunk
C. interface FastEthernet 0/1
channel-group 1 mode desirable
switchport trunk encapsulation dot1q
switchport mode trunk
interface FastEthernet 0/2
channel-group 1 mode desirable
switchport trunk encapsulation dot1q
switchport mode trunk
D. interface FastEthernet 0/1
channel-group 1 mode passive
switchport trunk encapsulation dot1q
switchport mode trunk
interface FastEthernet 0/2
channel-group 1 mode passive
switchport trunk encapsulation dot1q
switchport mode trunk
Correct Answer: C
Section: Not categorized
Explanation/Reference:
If the etherchannel was configured with mode “auto”, it was using PagP, so, we need to configure the other switch with “desirable” mode. PagP modes: auto | Desirable LACP modes: active | pasive
QUESTION 94
Refer to the exhibit. A frame on VLAN 1 on switch S1 is sent to switch S2 where the frame is received on VLAN 2.
What causes this behavior?
A. trunk mode mismatches
B. allowing only VLAN 2 on the destination
C. native VLAN mismatches
D. VLANs that do not correspond to a unique IP subnet
Correct Answer: C
Section: Not categorized
Explanation/Reference:
Untagged frames are encapsulated with the native VLAN. In this case, the native VLANs are different so although S1 will tag it as VLAN 1 it will be received by S2.
QUESTION 95
What are two enhancements that OSPFv3 supports over OSPFV2? (Choose two.)
A. It requires the use of ARP.
B. It can support multiple IPv6 subnets on a single link.
C. It supports up to 2 instances of OSPFv3 over a common link.
D. It routes over links rather than over networks.
Correct Answer: BD
Section: Not categorized
QUESTION 96
Which option is a valid IPv6 address?
A. 2001:0000:130F::099a::12a
B. 2002:7654:A1AD:61:81AF:CCC1
C. FEC0:ABCD:WXYZ:0067::2A4
D. 2004:1:25A4:886F::1
Correct Answer: D
Section: Not categorized
Explanation/Reference:
An IPv6 address is represented as eight groups of four hexadecimal digits, each group representing 16bits (two octets). The groups are separated by colons (:). An example of an IPv6 address is 2001:0db8:85a3:0000:0000:8a2e:0370:7334.
The leading 0’s in a group can be collapsed using ::, but this can only be done once in an IP address.
QUESTION 97
Which three are characteristics of an IPv6 anycast address? (Choose three.)
A. one-to-many communication model
B. one-to-nearest communication model
C. any-to-many communication model
D. a unique IPv6 address for each device in the group
E. the same address for multiple devices in the group
F. delivery of packets to the group interface that is closest to the sending device
Correct Answer: BEF
Section: Not categorized
Explanation/Reference:
A new address type made specifically for IPv6 is called the Anycast Address. These IPv6 addresses are global addresses, these addresses can be assigned to more than one interface unlike an IPv6 unicast address.
Anycast is designed to send a packet to the nearest interface that is a part of that anycast group. The sender creates a packet and forwards the packet to the anycast address as the destination address which goes to the nearest router.
The nearest router or interface is found by using the metric of a routing protocol currently running on the network. However in a LAN setting the nearest interface is found depending on the order the neighbors were learned. The anycast packet in a LAN setting forwards the packet to the neighbor it learned about first.
QUESTION 98
Which two statements describe characteristics of IPv6 unicast addressing? (Choose two.)
A. Global addresses start with 2000::/3.
B. Link-local addresses start with FE00:/12.
C. Link-local addresses start with FF00::/10.
D. There is only one loopback address and it is ::1.
E. If a global address is assigned to an interface, then that is the only allowable address for the interface.
Correct Answer: AD
Section: Not categorized
Explanation/Reference:
Below is the list of common kinds of IPv6 addresses:
Loopback address ::1
Link-local address FE80::/10
Site-local address FEC0::/10
Global address 2000::/3
Multicast address FF00::/8
QUESTION 99
What is the alternative notation for the IPv6 address B514:82C3:0000:0000:0029:EC7A:0000:EC72?
A. B514 : 82C3 : 0029 : EC7A : EC72
B. B514 : 82C3 :: 0029 : EC7A : EC72
C. B514 : 82C3 : 0029 :: EC7A : 0000 : EC72
D. B514 : 82C3 :: 0029 : EC7A : 0 : EC72
Correct Answer: D
Section: Not categorized
Explanation/Reference:
There are two ways that an IPv6 address can be additionally compressed: compressing leading zeros and substituting a group of consecutive zeros with a single double colon(::). Both of these can be used in any number of combinations to notate the same address. It is important to note
that the double colon (::) can only be used once within a single IPv6 address notation. So, the extra 0’s can only be compressed once.
QUESTION 100
Which IPv6 address is valid?
A. 2001:0db8:0000:130F:0000:0000:08GC:140B
B. 2001:0db8:0:130H::87C:140B
C. 2031::130F::9C0:876A:130B
D. 2031:0:130F::9C0:876A:130B
Correct Answer: D
Section: Not categorized
Explanation/Reference:
An IPv6 address is represented as eight groups of four hexadecimal digits, each group representing 16 bits (two octets). The groups are separated by colons (:). An example of an IPv6 address is 2001:0db8:85a3:0000:0000:8a2e:0370:7334.
The leading O’s in a group can be collapsed using ::, but this can only be done once in an IP address.
QUESTION 101
Which two are features of IPv6? (Choose two.)
A. anycast
B. broadcast
C. multicast
D. podcast
E. allcast
Correct Answer: AC
Section: Not categorized
Explanation/Reference:
IPv6 addresses are classified by the primary addressing and routing methodologies common in networking: unicast addressing, anycast addressing, and multicast addressing.
A unicast address identifies a single network interface. The Internet Protocol delivers packets sent to a unicast address to that specific interface.
An anycast address is assigned to a group of interfaces, usually belonging to different nodes. A packet sent to an anycast address is delivered to just one of the member interfaces, typically the nearest host, according to the routing protocol’s definition of distance.
Anycast addresses cannot be identified easily, they have the same format as unicast addresses, and differ only by their presence in the network at multiple points. Almost any unicast address can be employed as an anycast address.
A multicast address is also used by multiple hosts, which acquire the multicast address destination by participating in the multicast distribution protocol among the network routers.
A packet that is sent to a multicast address is delivered to all interfaces that have joined the corresponding multicast group.
QUESTION 102
Which command enables IPv6 forwarding on a Cisco router?
A. ipv6 local
B. ipv6 host
C. ipv6 unicast-routing
D. ipv6 neighbor
Correct Answer: C
Section: Not categorized
Explanation/Reference:
To enable IPv6 routing on the Cisco router use the following command: ipv6 unicast-routing If this command is not recognized, your version of IOS does not support IPv6.
QUESTION 103
Which IPv6 address is the equivalent of the IPv4 interface loopback address 127.0.0.1?
A. : :1
B. ::
C. 2000::/3
D. 0::/10
Correct Answer: A
Section: Not categorized
Explanation/Reference:
In IPv6 the loopback address is written as, ::1
This is a 128bit number, with the first 127 bits being ‘0’ and the 128th bit being ‘1’. It’s just a single address, so could also be written as ::1/128.
QUESTION 104
In which two formats can the IPv6 address fd15:0db8:0000:0000:0700:0003:400F:572B be written? (Choose two.)
A. fd15:0db8:0000:0000:700:3:400F:527B
B. fd15::db8::700:3:400F:527B
C. fd15:db8:0::700:3:4F:527B
D. fd15:0db8::7:3:4F:527B
E. fd15:db8::700:3:400F:572B
Correct Answer: AE
Section: Not categorized Explanation
QUESTION 105
Refer to the exhibit. The MAC address table is shown in its entirety. The Ethernet frame that is shown arrives at the switch.
What two operations will the switch perform when it receives this frame? (Choose two.)
A. The switch will not forward a frame with this destination MAC address.
B. The frame will be forwarded out of all the ports on the switch.
C. The MAC address of ffff.ffff.ffff will be added to the MAC address table.
D. The frame will be forwarded out of all the active switch ports except for port fa0/0.
E. The MAC address of 0000.00aa.aaaa will be added to the MAC Address Table.
F. The frame will be forwarded out of fa0/0 and fa0/1 only.
Correct Answer: DE
Section: Not categorized Explanation
QUESTION 106
Refer to the exhibit. Which switch in this configuration becomes the root bridge?
A. SW1
B. SW2
C. SW3
D. SW4
Correct Answer: C
Section: Not categorized
QUESTION 107
Refer to the exhibit. Which two statements are true about the loopback address that is configured on RouterB? (Choose two.)
A. It ensures that data will be forwarded by RouterB.
B. It provides stability for the OSPF process on RouterB.
C. It specifies that the router ID for RouterB should be 10.0.0.1.
D. It decreases the metric for routes that are advertised from RouterB.
E. It indicates that RouterB should be elected the DR for the LAN.
Correct Answer: BC
Section: Not categorized Explanation
Explanation/Reference:
A loopback interface never comes down even if the link is broken so it provides stability for the OSPF process (for example we use that loopback interface as the router-id) – The router-ID is chosen in the order below:
+ The highest IP address assigned to a loopback (logical) interface.+ If a loopback interface is not defined, the highest IP address of all active router’s physical interfaces will be chosen. -> The loopback interface will be chosen as the router ID of RouterB ?
QUESTION 108
Refer to the exhibit. Which two statements about the interface that generated the output are true? (Choose two.)
A. Two secure MAC address are manually configured on the interface.
B. A syslog message is generated when the maximum number of secure MAC addresses is on the interface.
C. The interface is error-disabled.
D. The interface dynamically learned two secure MAC addresses.
E. An SNMP trap is generated when the maximum number of secure MAC addresses is reached on the interface.
Correct Answer: CD
Section: Not categorized Explanation
QUESTION 109
Refer to the exhibit. Which two statements about the interface that generated the output are true? (Choose two.)
A. learned MAC addresses are deleted after five minutes of inactivity
B. the interface is error-diabled if packets arrive from a new unknown source address
C. it has dynamically learned two secure MAC addresses
D. it has dynamically learned three secure MAC addresses
E. the security violation counter increments if packets arrive from a new unknown source address
Correct Answer: AC
Section: Not categorized Explanation
QUESTION 110
Refer to the exhibit. Which two events occur on the interface, if packets from an unknown Source address arrive after the interface learns the maximum number of secure MAC address? (Choose two.)
A. The security violation counter dose not increment
B. The port LED turns off
C. The interface is error-disabled
D. A syslog message is generated
E. The interface drops traffic from unknown MAC address
Correct Answer: AE
Section: Not categorized Explanation
QUESTION 111
Refer to the exhibit. Which two statements about the network environment of router R1 must be true? (Choose two.)
A. there are 20 different network masks within the 10.0.0.0/8 network
B. A static default route to 10.85.33.14 was defined
C. Ten routes are equally load-balanced between Te0/1/0.100 and Te0/2/0.100
D. The 10.0.0.0/8 network was learned via external EIGRP
E. The EIGRP administrative distance was manually changed from 90 to 170
Correct Answer: AC
Section: Not categorized Explanation
QUESTION 112
Refer to the exhibit. Which statement about the interface that generated the output is true?
A. Five secure MAC addresses are dynamically learned on the interface.
B. A syslog message is generated when a violation occurs.
C. One secure MAC address is manually configured on the interface.
D. One secure MAC address is dynamically configured on the interface.
Correct Answer: C
Section: Not categorized Explanation
QUESTION 113
Refer to the exhibit. When PC 1 sends a packet to PC2,the packet has. Which source and destination IP address when it arrives at interface Gi0/0 on router R2?
A. source 192.168.10.10 and destination 10.10.2.2
B. source 192.168.20.10 and destination 192.168.20.1
C. source 192.168.10.10 and destination 192.168.20.10
D. source 10.10.1.1 and destination 10.10.2.2
Correct Answer: C
Section: Not categorized Explanation
Explanation/Reference:
The source and destination IP addresses of the packets are unchanged on all the way. Only source and destination MAC addresses are changed.
QUESTION 114
Refer to the exhibit Users in your office are complaining that they cannot connect to the severs at a remote site. When troubleshooting, you find that you can successfully reach the severs from router R2. What is the most likely reason that the other users are experiencing connection failure?
A. interface ports are shut down on the remote servers
B. The DHCP address pool has been exhausted
C. The ip helper-address command is missing on the R2 interface that connects to the switch
D. VLSM is misconfigured between the router interface and the DHCP pool.
Correct Answer: D
Section: Not categorized Explanation
QUESTION 115
After you deploy a new WLAN controller on your network, which two additional tasks should you consider? (Choose two)
A. deploy load balancers
B. configure additional vlans
C. configure multiple VRRP groups
D. deploy POE switches
E. configure additional security policies
Correct Answer: AE
Section: Not categorized Explanation
QUESTION 116
Refer to the exhibit. The default-information originate command is configured under the R1 OSPF configuration. After testing, workstations on VLAN 20 at Site B cannot reach a DNS server on the Internet.
Which action corrects the configuration issue?
A. Add the default-information originate command on R2.
B. Add the always keyword to the default-information originate command on R1.
C. Configure the ip route 0.0.0.0 0.0.0.0 10.10.10.18 command on R1.
D. Configure the ip route 0.0.0.0 0.0.0.0 10.10.10.2 command on R2.
Correct Answer: C
Section: Not categorized Explanation
QUESTION 117
Which of the following is the JSON encoding of a dictionary or hash?
A. {“key”:”value”}
B. [“key”,”value”]
C. {“key”,”value”}
D. (“key”:”value”)
Correct Answer: A
Section: Not categorized Explanation
QUESTION 118
Which option best describes an API?
A contract that describes how various components communicate and exchange data with each other.
B. an architectural style (versus a protocol) for designing applications
C. a stateless client-server model
D. request a certain type of data by specifying the URL path that models the data
Correct Answer: A
Section: Not categorized Explanation
QUESTION 119
Which command verifies whether any IPv6 ACLs are configured on a router?
A. show ipv6 interface
B. show access-list
C. show ipv6 access-list
D. show ipv6 route
Correct Answer: C
Section: Not categorized Explanation
QUESTION 120
Which command can you enter to allow Telnet to be supported in addition to SSH?
A. transport input telnet ssh
B. transport input telnet
C. no transport input telnet
D. privilege level 15
Correct Answer: A
Section: Not categorized Explanation
QUESTION 121
AAA stands for authentication, authorization, and accounting
A. False
B. True
Correct Answer: B
Section: Not categorized Explanation
QUESTION 122
What will happen if you configure the logging trap debug command on a router?
A. It causes the router to send messages with lower severity levels to the syslog server.
B. It causes the router to send all messages with the severity levels Warning, Error, Critical, and Emergency to the syslog server.
C. It causes the router to send all messages to the syslog server
D. It causes the router to stop sending all messages to the syslog server.
Correct Answer: C
Section: Not categorized Explanation
QUESTION 123
Which Cisco IOS command will indicate that interface GigabitEthernet 0/0 is configured via DHCP?
A. show ip interface GigabitEthernet 0/0 dhcp
B. show interface GigabitEthernet 0/0
C. show ip interface dhcp
D. show ip interface GigabitEthernet 0/0
E. show ip interface GigabitEthernet 0/0 brief
Correct Answer: D
Section: Not categorized Explanation
QUESTION 124
Which statement about the nature of NAT overload is true?
A. applies a one-to-many relationship to internal IP addresses
B. applies a one-to-one relationship to internal IP addresses
C. applies a many-to-many relationship to internal IP addresses
D. can be configured only on Gigabit interface
Correct Answer: A
Section: Not categorized Explanation
QUESTION 125
Which command is used to configure an IPv6 static default route?
A. ipv6 route ::/0 interface next-hop5
B. ipv6 route default interface next-hop
C. ipv6 route 0.0.0.0/0 interface next-hop
D. ip route 0.0.0.0/0 interface next-hop
Correct Answer: A
Section: Not categorized Explanation
QUESTION 126
Which statement about static and dynamic routes is true?
A. Dynamic routes are manually configured by a network administrator, while static routes are automatically learned and adjusted by a routing protocol.
B. Static routes are manually configured by a network administrator, while dynamic routes are automatically learned and adjusted by a routing protocol.
C. Static routes tell the router how to forward packets to networks that are not directly connected, while dynamic routes tell the router how to forward packets to networks that are directly connected.
D. Dynamic routes tell the router how to forward packets to networks that are not directly connected, while static routes tell the router how to forward packets to networks that are directly connected.
Correct Answer: B
Section: Not categorized Explanation
QUESTION 127
What is the purpose of the show ip ospf interface command?
A. displaying OSPF-related interface information
B. displaying general information about OSPF routing processes
C. displaying OSPF neighbor information on a per-interface basis
D. displaying OSPF neighbor information on a per-interface-type basis
Correct Answer: A
Section: Not categorized Explanation
QUESTION 128
How can the Cisco Discovery Protocol be used?
A. to allow a switch to discover the devices that are connected to its ports
B. to determine the hardware platform of the device
C. to determine the IP addresses of connected Cisco devices
D. all of the above
Correct Answer: D
Section: Not categorized Explanation
QUESTION 129
How does STP prevent forwarding loops at OSI Layer 2?
A. TTL
B. MAC address forwarding
C. Collision avoidance
D. Port blocking
Correct Answer: D
Section: Not categorized Explanation
QUESTION 130
Which two statements about EtherChannel technology are true? (Choose two.)
A. EtherChannel provides increased bandwidth by bundling existing FastEthernet or Gigabit Ethernet interfaces into a single EtherChannel.
B. STP does not block EtherChannel links.
C. You can configure multiple EtherChannel links between two switches, using up to a limit of sixteen physical ports.
D. EtherChannel does not allow load sharing of traffic among the physical links within the EtherChannel.
E. EtherChannel allows redundancy in case one or more links in the EtherChannel fail.
Correct Answer: AE
Section: Not categorized Explanation
QUESTION 131
Which three statements about MAC addresses are correct? (Choose three.)
A. To communicate with other devices on a network, a network device must have a unique MAC address.
B. The MAC address is also referred to as the IP address.
C. The MAC address of a device must be configured in the Cisco IOS CLI by a user with administrative privileges.
D. A MAC address contains two main components, the first of which identifies the manufacturer of the hardware and the second of which uniquely identifies the hardware.
E. An example of a MAC address is 0A:26:38: D6:65:90.
F. A MAC address contains two main components, the first of which identifies the network on which the host resides and the second of which uniquely identifies the host on the network.
Correct Answer: ADE
Section: Not categorized Explanation
QUESTION 132
Which three statements about network characteristics are true? (Choose three.)
A. Speed is a measure of the data rate in bits per second of a given link in the network.
B. Scalability indicates how many nodes are currently on the network.
C. The logical topology is the arrangement of cables, network devices, and end systems.
D. Availability is a measure of the probability that the network will be available for use when it is required.
E. Reliability indicates the dependability of the components that make up the network.
Correct Answer: ADE
Section: Not categorized Explanation
QUESTION 133
Which two statements about the purpose of the OSI model are accurate? (Choose two.)
A. Defines the network functions that occur at each layer
B. Facilitates an understanding of how information travels throughout a network
C. Changes in one layer do not impact other layer
D. Ensures reliable data delivery through its layered approach
Correct Answer: AB
Section: Not categorized Explanation
QUESTION 134
You have two paths for the 10.10.10.0 network – one that has a feasible distance of 3072 and the other of 6144. What do you need to do to load balance your EIGRP routes?
A. Change the maximum paths to 2
B. Change the configuration so they both have the same feasible distance
C. Change the variance for the path that has a feasible distance of 3072 to 2
D. Change the IP addresses so both paths have the same source IP address
Correct Answer: BC
Section: (none) Explanation
QUESTION 135
Which of the following dynamic routing protocols are Distance Vector routing protocols?
A. IS-IS
B. EIGRP
C. OSPF
D. BGP
E. RIP
Correct Answer: BE
aaa