Free and Premium Cisco 200-301 Dumps Questions Answers

It sends packets out of interface Fa0/2 only.

It sends packets out of interface Fa0/1 only.

It cannot send packets to 10.10.13 128/25

It load-balances traffic out of Fa0/1 and Fa0/2

lt drops the frame immediately.

It forwards the frame back out of interface Fa0/1.

It floods the frame to all interfaces except Fa0/1.

It holds the frame until the MAC address timer expires and then drops the frame.

Dynamic ARP Inspection

using a non-default native VLAN

802.1x

DHCP snooping

role-based access control

biometrics

multifactor authentication

physical access control

read

create

replace

update

alert

critical

notice

debug

It load-balances traffic by assigning the same metric value to more than one route to the same destination m the IP routing table.

It load-balances Layer 2 traffic along the path by flooding traffic out all interfaces configured with the same VLAN.

It forwards multiple packets to the same destination over different routed links n the data path

It uses a shared virtual MAC and a virtual IP address to a group of routers that serve as the default gateway for hosts on a LAN

reduced management overhead on network routers

balancing traffic across multiple gateways in proportion to their loads

higher degree of availability

reduced ARP traffic on the network

TCP uses synchronization packets, and UDP uses acknowledgment packets.

UDP uses SYN, SYN ACK and FIN bits in the frame header while TCP uses SYN, SYN ACK and ACK bits

UDP provides reliable message transfer and TCP is a connectionless protocol

TCP uses the three-way handshake and UDP does not guarantee message delivery

acts as a central point for association and authentication servers

selects the best route between networks on a WAN

moves packets within a VLAN

moves packets between different VLANs

makes forwarding decisions based on the MAC address of a packet

It is compatible with 802 lib- and 802 11-compliant wireless devices

It is used in place of 802 11b/g when many nonoverlapping channels are required

It is susceptible to interference from 2 4 GHz devices such as microwave ovens.

It is chosen over 802 11b/g when a lower-cost solution is necessary

Layer 2 forwarding

coordinating VTNs

tracking hosts

managing the topology

protecting against DDoS attacks

achieves redundancy by exclusively using virtual server clustering

runs applications that send and retrieve data for workstations that make requests

handles requests from multiple workstations at the same time

runs the same operating system in order to communicate with other servers

housed solely in a data center that is dedicated to a single client

local port ID

lowest path cost to the root bridge

lowest neighbor's bridge ID

lowest neighbor's port ID

logging trap 5

logging trap 2

logging trap 4

logging trap 3

It provides a summary of the top 10 global issues.

It provides detailed activity logging for the 10 devices and users on the network.

It summarizes the operational status of each wireless devise on the network.

It summarizes daily and weekly CPU usage for servers and workstations in the network.

firewall

switch

access point

wireless controller

DNS server pings the destination to verify that it is available

serves requests over destination port 53

DNS server forwards the client to an alternate IP address when the primary IP is down

responds to a request for IP address to domain name resolution to the DNS server

0050.0c05.ad81

0007.c061.bc01

0000.5E00.0101

0500.3976.6401

enable dynamic ARP inspection

manually implement trunk ports and disable DTP

activate all ports and place in the default VLAN

configure extended VLANs

listening

blocking

forwarding

learning

speaking

Network devices use different services like SNMP, syslog, and streaming telemetry to send data to the controller

Devices establish an iPsec tunnel to exchange data with the controller

Devices use the call-home protocol to periodically send data to the controller.

The Cisco CU Analyzer tool gathers data from each licensed network device and streams it to the controller.

Option A

Option B

Option C

Option D

wireless connections provide the sole access method to services

onsite network services are provided with physical Layer 2 and Layer 3 components

services are provided by a public, private, or hybrid deployment

physical workstations are configured to share resources

Switch 1

Switch 2

Switch 3

Switch 4

2000::/3

FC00::/7

FE80::/10

FF00::/8

read

update

create

delete

wireless access point

firewall

wireless LAN controller

router

ARP

DHCP

CDP

DNS

It load-balances traffic out of Fa0/1 and Fa0/2.

It is unreachable and discards the traffic.

It sends packets out of interface FaO/2.

It sends packets out of interface Fa0/1.

SMTP

SNMP

TCP

FTP

Use the Ixml library to parse the data returned by the NETCONF server for the interface's configuration.

Create an XML filter as a string and pass it to get_config() method as an argument.

Create a JSON filter as a string and pass it to the get_config() method as an argument.

Use the JSON library to parse the data returned by the NETCONF server for the interface's configuration.

The Layer 2 switch drops the received frame

The Layer 2 switch floods packets to all ports except the receiving port in the given VLAN.

The Layer 2 switch sends a copy of a packet to CPU for destination MAC address learning.

The Layer 2 switch forwards the packet and adds the destination MAC address to its MAC address table

R1(config)#interface ethernet0/0R1(config)#encapsulation dot1q 20R1(config)#ip address 10.20.20.1 255.255.255.0

R1(config)#interface ethernet0/0.20R1(config)#encapsulation dot1q 20R1(config)#ip address 10.20.20.1 255.255.255.0

R1(config)#interface ethernet0/0.20R1(config)#ip address 10.20.20.1 255.255.255.0

R1(config)#interface ethernet0/0R1(config)#ip address 10.20.20.1 255.255.255.0

configure port in the native VLAN

configure ports in a black hole VLAN

configure in a nondefault native VLAN

configure ports as access ports

A TCP connection has been torn down

An ICMP connection has been built

An interface line has changed status

A certificate has expired.

lldp timer

lldp holdtimt

lldp reinit

lldp tlv-select

access-list 100 deny tcp host 172.16.1.33 any eq 22 access-list 100 permit ip any anyinterface GigabitEthernet0/0 ip access-group 100 in

access-list 100 deny tcp host 172.16.1.33 any eq 22 access-list 100 permit ip any anyline vty 0 15 ip access-group 100 in

access-list 100 deny tcp host 172.16.1.33 any eq 23 access-list 100 permit ip any anyinterface GigabitEthernet0/0 ip access-group 100 in

access-list 100 deny tcp host 172.16.1.33 any eq 23 access-list 100 permit ip any anyline vty 0 15 ip access-group 100 in

Provide uninterrupted forwarding service.

Police traffic that is sent to the edge of the network.

Provide direct connectivity for end user devices.

Ensure timely data transfer between layers.

Inspect packets for malicious activity.

switch(config)#spanning-tree portfast default

switch(config)#spanning-tree portfast bpduguard default

switch(config-if)#spanning-tree portfast trunk

switch(config-if)#no spanning-tree portfast

access to spec fie networks based on business function

access to servers to prevent malicious activity

access to computer networks and file systems

access to networking equipment and facilities

default-router

default-gateway

ip helper-address

dns-server

ipv6 route 2000::1/128 2012::1

ipv6 route 2000::3/128 2023::3

ipv6 route 2000::3/128 s0/0/0

ipv6 route 2000::1/128 2012::2

ipv6 route 2000::1/128 s0/0/1

latency

port security violation

shutdown command issued on the port

nothing plugged into the port

broadband cable access

frame-relay packet switching

dedicated point-to-point leased line

Integrated Services Digital Network switching.

RIP route 10.0.0.0/30

iBGP route 10.0.0.0/30

OSPF route 10.0.0.0/30

EIGRP route 10.0.0.1/32

OSPF route 10.0.0.0/16

TCP is a connectionless protocol that does not provide reliable delivery of data, UDP is a connection-oriented protocol that uses sequencing to provide reliable delivery.

TCP does not guarantee delivery or error checking to ensure that there is no corruption of data UDP provides message acknowledgement and retransmits data if lost.

TCP provides flow control to avoid overwhelming a receiver by sending too many packets at once, UDP sends packets to the receiver in a continuous stream without checking for sequencing

TCP uses windowing to deliver packets reliably; UDP provides reliable message transfer between hosts by establishing a three-way handshake

The link is in a down state.

The link is in an error disables state

The link is becomes an access port.

The link becomes a trunk port.

floating static route

host route

default route

network route

It supports numerous extensibility options including cross-domain adapters and third-party SDKs.

It supports high availability for management functions when operating in cluster mode.

It enables easy autodiscovery of network elements m a brownfield deployment.

It is designed primarily to provide network assurance.

209.165.200.0/27

10.10.10.0/28

0.0.0.0/0

10.10.13.0/24

interface GigabitEthernet0/0/1channel-group 10 mode on

interface GigabitEthernet0/0/1channel-group 10 mode active

interface GigabitEthernet0/0/1channel-group 10 mode auto

interface port-channel 10switchportswitchport mode trunk

interface port-channel 10no switchportip address 172.16.0.1.255.255.255.0

Enable the allow AAA Override

Enable the Even: Driven RRM.

Disable the LAG Mode or Next Reboot.

Enable the Authorized MIC APs against auth-list or AAA.

There is limited unique address space, and traffic on the new subnet will stay local within the organization.

The network has multiple endpoint listeners, and it is desired to limit the number of broadcasts.

Traffic on the subnet must traverse a site-to-site VPN to an outside organization.

The ISP requires the new subnet to be advertised to the internet for web services.

There is a native VLAN mismatch

Access mode is configured on the switch ports.

The PCs are m the incorrect VLAN

All VLANs are not enabled on the trunk

compare the destination IP address to the IP routing table.

run routing protocols (OSPF, EIGRP, RIP, BGP)

make a configuration change from an incoming NETCONF RPC

reply to an incoming ICMP echo request

IPsec tunnel mode with AH

IPsec transport mode with AH

IPsec tunnel mode with ESP

IPsec transport mode with ESP

TKIP with RC4

RC4

AES-128

AES-256

sent to the port identified for the known MAC address

broadcast to all ports

forwarded to the first available port

flooded to all ports except the one from which it originated

controller-based increases network bandwidth usage, while traditional lightens the load on the network.

controller-based inflates software costs, while traditional decreases individual licensing costs

Controller-based reduces network configuration complexity, while traditional increases the potential for errors

Controller-based provides centralization of key IT functions. While traditional requires distributes management function

controller-based allows for fewer network failure, while traditional increases failure rates.

wireless to an access point that is physically connected to the network

a cable connected to a physical switch on the network

a virtual switch that links to an access point that is physically connected to the network

a software switch on a hypervisor that is physically connected to the network

Option A

Option B

Option C

Option D

Forwards packets based on stateless packet inspection

Processes unauthorized packets and allows passage to less secure segments of the network

determines which packets are allowed to cross from unsecured to secured networks

explicitly denies all packets from entering an administrative domain

initiates a ping request to the URL

prompts the user to specify the desired IP address

continuously attempts to resolve the URL until the command is cancelled

sends a broadcast message in an attempt to resolve the URL

Virtualized servers run most efficiently when they are physically connected to a switch that is separate from the hypervisor

The hypervisor can virtualize physical components including CPU. memory, and storage

Each hypervisor can support a single virtual machine and a single software switch

The hypervisor communicates on Layer 3 without the need for additional resources

It uses block numbers to identify and mitigate data-transfer errors

It always operates without user authentication

It relies on the well-known UDP port 69.

It uses two separate connections for control and data traffic

Traditional campus device management schemes typically deploy patches and updates quicker than Cisco DNA Center device management.

Cisco DNA Center device management is implemented at a lower cost than most traditional campus device management options.

Traditional campus device management allows a network to scale quicker than using Cisco DNA Center device management.

Cisco DNA Center device management deploys a network faster than traditional campus device management.

config network secureweb enable

config certificate generate web admin

config network webmode enable

config network telnet enable

OS

hypervisor

CPU

physical enclosure

Option A

Option B

Option C

Option D

Option A

Option B

Option C

Option D

They alleviate the shortage of public IPv4 addresses.

They supply redundancy in the case of failure.

They offer Internet connectivity to endpoints on private networks.

They allow for Internet access from IoT devices.

They provide a layer of security from Internet threats.

Header Checksum

Type of service

DSCP

ECN

switch(config)#spanning-tree vlan 1 max-age 6

switch(config)#spanning-tree vlan 1 hello-time 10

switch(config)#spanning-tree vlan 1 priority 4096

switch(config)#spanning-tree vlan 1 forward-time 20

one

four

seven

nine

ip route 10.10.2.0 255.255.255.0 192.168.1.4 100

ip route 10.10.2.0 255.255.255.0 192.168.1.4 115

ip route 10.10.2.1 255.255.255.255 192.168.1.4 100

ip route 10.10.2.1 255.255.255.255 192.168.1.4 115

Configure the no cdp enable command on gO/2.

Configure the no cdp run command globally.

Configure the no lldp run command globally.

Configure the no lldp receive command on gQV1.

Faster changes with more reliable results

Reduced operational costs

Fewer network failures

Reduced hardware footprint

Increased network security

delete

create

update

read

The default gateway for site B is configured incorrectly

The lack of a default route prevents delivery of the traffic

The traffic is blocked by an implicit deny in an ACL on router2

The traffic to 192 168 010 requires a static route to be configured in router 1.

Cisco DNA Center leverages SNMPv3 tor encrypted management, and traditional campus management uses SNMPv2.

Cisco DNA Center automates HTTPS for secure web access, and traditional campus management uses HTTP.

Cisco DNA Center leverages APIs, and traditional campus management requires manual data gathering.

Cisco DNA Center automates SSH access for encrypted entry, and SSH Is absent from traditional campus management.

to enable the number of MAC addresses learned on the port to l

to protect the operation of the port from topology change processes

to enable the pod to enter the forwarding state immediately when the host boots up

to prevent the port from participating in Spanning Tree Protocol operations

to block another switch or host from communicating through the port

ip route 10.10.0.0 255.255.252.0 g0/0

ip route 10.0.0.0 255.0.0.0 g0/0

ip route 10.10.10.1 255.255.255.255 g0/0

ip route 10.10.10.0 255.255.255.240 g0/0

SNMP traps are used for proactive monitoring, and SNMP polling is used for reactive monitoring.

SNMP traps send periodic updates via the MIB, and SNMP polling sends data on demand.

SNMP traps are initiated by the network management system, and network devices initiate SNMP polling.

SNMP traps are initiated using a push model at the network device, and SNMP polling is initiated at the server.

Option A

Option B

Option C

Option D

ff02:0:0:0:0:0:0:1

2004:31c:73d9:683e:255::

fffe:034:0dd:45d6:789e::

fe80:4433:034:0dd::2

10.8.0.0/16

10.8.64.0/18

10.8.128.0/19

10.8.138.0/24

REST APIs that allow for external applications to interact natively

adapters that support all families of Cisco IOS software

SDKs that support interaction with third-party network equipment

customized versions for small, medium, and large enterprises

modular design that is upgradable as needed

VLAN trunking

tunneling

first hop redundancy

link aggregation

crypto key Import rsa pem

crypto key pubkey-chain rsa

crypto key generate rsa

crypto key zeroize rsa

to provide end users with a virtual gateway in a multivendor network

to leverage a weighting scheme to provide uninterrupted service

to detect link failures without the overhead of Bidirectional Forwarding Detection

to hand over to end users the autodiscovery of virtual gateways

Configure the router A interfaces with the highest OSPF priority value within the area.

Configure router B and router C as OSPF neighbors of router A.

Configure the OSPF priority on router A with the lowest value between the three routers.

Configure router A with a fixed OSPF router ID.

broadcasts frames to all ports without queueing

adds unknown source MAC addresses to the address table

sends a retransmission request when a new frame is received

sends frames with unknown destinations to a multicast group

for small networks with minimal need for growth

the access and distribution layers must be on the same device

for large networks that are connected to multiple remote sites

only when using VSS technology

STP cables are cheaper to procure and easier to install and UTP cables are more expensive and harder to install.

UTP cables are less prone to crosstalk and interference and STP cables are more prone to crosstalk and interference.

UTP cables provide taster and more reliable data transfer rates and STP cables are slower and less reliable.

STP cables are shielded and protect against electromagnetic interference and UTP lacks the same protection against electromagnetic interference.

ARP

CDP

flooding

multicast

ntp master 172.24.54.8

ntp client 172.24.54.8

ntp peer 172.24.54.8

ntp server 172.24.54.8

sequence

string

object

Boolean

BPDU guard

loop guard

portfast

uplinkfast

ip route 172.25.25 0 255 255 255.0 192.168.2.1

ip route 172.25.25 1 255 255 255 255 g0/1

ip route 172.25.25.0.255.255.255.0.192.168.2.2

They alleviate the shortage of public IPv4 addresses.

They supply redundancy in the case of failure.

They offer Internet connectivity to endpoints on private networks.

They allow for Internet access from IoT devices.

They provide a layer of security from Internet threats.

file that defines the target devices upon which commands and tasks are executed

unit of Python code to be executed within Ansible

collection of actions to perform on target devices, expressed in YAML format

device with Ansible installed that manages target devices

Option

Option

Option

Option

It is a read-only operation.

It is a nonldempotent operation.

It replaces data at the destination.

It displays a web site.

UDP operates without acknowledgments, and TCP sends an acknowledgment for every packet received.

UDP reliably guarantees delivery of all packets, and TCP drops packets under heavy load.

UDP uses flow control mechanisms for the delivery of packets, and TCP uses congestion control for efficient packet delivery.

UDP uses sequencing data tor packets to arrive in order, and TCP offers trie capability to receive packets in random order.

Option A

Option B

Option C

Option D

ARP

Multicast

CDP

Flooding

to rate-limit messages for different seventy levels from each device

to set the severity of syslog messages from each device

to identify the source from which each syslog message originated

to control the number of syslog messages from different devices that are stored locally

ipv6 route ::/0 2001:db8:1234:2::1 3

ipv6 route ::/128 2001 :db8:1234:2::1 3

ipv6 route ::/0 2001:db8:1234:2::1 1

ipv6 route ::/0 2001:db8:1234:2::1 2

Infrastructure-as-a-service

software-as-a-service

business process as a service

platform-as-a-service

queuing

marking

shaping

policing

The QoS policy is dropping traffic.

There is a duplex mismatch.

The link is over utilized.

The MTU is not set to the default value.

interface range gigabitethernet0/0/0-15 channel-group 1 mode on

interface range gigabitethernet0/0/0-15 channel-group 1 mode desirable

interface port-channel 1 channel-group 1 mode auto

interface port-channel 1 channel-group 1 mode passive

ipv6 route ::/0 2001:db8:1234:2::1 3

ipv6 route ::/128 2001 :db8:1234:2::1 3

ipv6 route ::/0 2001:db8:1234:2::1 1

ipv6 route ::/0 2001:db8:1234:2::1 2

AES256

AES

RC4

SHA

The next hop is 10.0.2.1 because it uses distance vector routing

The next hop is 10.0.2.1 because it is a link-state routing protocol

The next hop is 10.0.0.1 because it has a better administrative distance

The next hop is 10.0.0.1 because it has a higher metric.

broadcasts frames to all ports without queueing

adds unknown source MAC addresses to the address table

sends a retransmission request when a new frame is received

sends frames with unknown destinations to a multicast group

REST APIs that allow for external applications to interact natively

adapters that support all families of Cisco IOS software

SDKs that support interaction with third-party network equipment

customized versions for small, medium, and large enterprises

modular design that is upgradable as needed

multicast

private

loopback

public

R1(config)#ip nat inside source static 10.1.1.1 209.165.200.225

R1(config)#ip nat inside source static 209.165.200.225 10.1.1.1

R1(config)#ip nat outside source static 10.1.1.1 209.165.200.225

R1(config)#ip nat outside source static 209.165.200.225 10.1.1.1

Option A

Option B

Option C

Option D

Enable AutoConfig IPSK under the Layer 2 tab.

Select Authentication server under the AAA servers tab.

Configure Enterprise Security type under the Layer 2 tab.

Set Authentication under the Layer 3 tab.

Enable WPA2 Policy under the Layer 2 tab.

FlexConnect

SE-Connect

bridge

local

firewall

access point

intrusion protection system

wireless controller

1000BASE-ZX is supported on links up to 1000km, and 1000BASE-LX/LH operates over links up to 70 km.

1000BASE-LX/LH interoperates with multimode and single-mode fiber, and 10008ASE-ZX needs a conditioning patch cable with a multimode.

1000BASE-LX/LH is supported on links up to 10km, and 1000BASE-ZX operates over links up to 70 km

1000BASE-ZX interoperates with dual-rate 100M/1G 10Km SFP over multimode fiber, and 1000BASE-LX/LH supports only single-rate.

255.255.224.0

255.255.255.0

255.255.255.192

255.255.255.252

configure a stateful DHCPv6 server on the network

enable SLAAC on an interface

disable the EUI-64 bit process

explicitly assign a link-local address

to automatically route traffic on a secondary path when the primary path goes down

to route traffic differently based on the source IP of the packet

to enable fallback static routing when the dynamic routing protocol fails

to support load balancing via static routing

to control the return path of traffic that is sent from the router

Router2(config)#ntp passive

Router2(config)#ntp server 172.17.0.1

Router2(config)#ntp master 4

Router2(config)#ntp server 192.168.0.2

Add PC A to VLAN 10 and the File Server to VLAN 11 fa VLAN segmentation

Add VLAN 13 to the trunk links on Switch A and Switch B for VLAN propagation

Add a router on a stick between Switch A and Switch B allowing for Inter-VLAN routing.

Add PC A to the same subnet as the Fie Server allowing for intra-VLAN communication.

provides an added level of protection against Internet exposure

provides a reduction in size of the forwarding table on network routers

allows communication across the Internet to other private networks

allows servers and workstations to communicate across public network boundaries

Change the protocol to EtherChannel mode on.

Change the LACP mode to active

Change the LACP mode to desirable

Change the protocol to PAqP and use auto mode

host route

default route

floating static route

network route

Option A

Option B

Option C

Option D

IP SLA

syslog

NetFlow

SNMPv3

traverse the Internet when an outbound ACL is applied

issued by IANA in conjunction with an autonomous system number

composed of up to 65.536 available addresses

used without tracking or registration

DTP

FTP

SMTP

TFTP

HTTPS

RADIUS

TACACS+

HTTP

The OSPF router IDs are mismatched.

Router2 is using the default hello timer.

The network statement on Router1 is misconfigured.

The OSPF process IDs are mismatched.

access - core - distribution - access

access - distribution - distribution - access

access - core - access

access -distribution - core - distribution - access

It is owned and maintained by one party, but it is shared among multiple organizations.

It enables an organization to fully customize how It deploys network resources.

It provides services that are accessed over the Internet.

It Is a data center on the public Internet that maintains cloud services for only one company.

It supports network resources from a centralized third-party provider and privately-owned virtual resources

Option A

Option B

Option C

Option D

Device(Config)#lldp run

Device(Config)#cdp run

Device(Config-if)#cdp enable

Device(Config)#flow-sampler-map topology

Only traditional networks offer a centralized control plane

Only traditional networks natively support centralized management

Traditional and controller-based networks abstract policies from device configurations

Only controller-based networks decouple the control plane and the data plane

encrypts data before sending between data resources

devices are directly connected and use UDP to pass file information

uses separate control and data connections to move files between server and client

offers proprietary support at the session layer when transferring data

Traffic to 10.10.13.0.25 is load balanced out of multiple interfaces

Route 10.10.13.0/25 is updated in the routing table as being learned from interface Gi0/1.

Traffic to 10.10.13.0/25 is asymmeteical

Route 10.10.13.0/25 learned via the GiO/0 interface remains in the routing table

management-plane

control-plane

data-plane

services-plane

It alternates automatically between 2.4 GHz and 5 GHz on adjacent access points

It allows the administrator to assign channels on a per-device or per-interface basis.

It segregates devices from different manufacturers onto different channels.

It analyzes client load and background noise and dynamically assigns a channel.

Telnet

SSH

HTTP

HTTPS

TFTP

SW1

SW2

SW3

SW4

route with the lowest cost

route with the next hop that has the highest IP

route with the shortest prefix length

route with the lowest administrative distance

The seventh bit of the original MAC address of the interface is inverted

The interface ID is configured as a random 64-bit value

The characters FE80 are inserted at the beginning of the MAC address of the interface

The MAC address of the interface is used as the interface ID without modification

The frame has zero destination MAC addresses.

The source MAC address of the frame is unknown

The source and destination MAC addresses of the frame are the same

The destination MAC address of the frame is unknown.

FIFO

WFQ

PQ

WRED

It can be hidden or broadcast in a WLAN

It uniquely identifies an access point in a WLAN

It uniquely identifies a client in a WLAN

It is at most 32 characters long.

IT provides secured access to a WLAN

The trunk does not form and the ports go into an err-disabled status.

The trunk forms but the mismatched native VLANs are merged into a single broadcast domain.

The trunk does not form, but VLAN 99 and VLAN 999 are allowed to traverse the link.

The trunk forms but VLAN 99 and VLAN 999 are in a shutdown state.

WEP

RC4

AES

TKIP

The access point must directly connect to the WLC using a copper cable

The access point must not be connected to the wired network, as it would create a loop

The access point must be connected to the same switch as the WLC

The access point has the ability to link to any switch in the network, assuming connectivity to the WLC

eBGP

static

OSPF

EIGRP

Option A

Option B

Option C

Option D

207.165.200.246 via Serial0/1/0

207.165.200.254 via Serial0/0/1

207.165.200.254 via Serial0/0/0

207.165.200.250 via Serial/0/0/0

Re- Anchor Roamed Clients

11ac MU-MIMO

OEAP Split Tunnel

Client Band Select

moves from a two-tier to a three-tier network architecture to provide maximum redundancy

provides an added layer of security to protect from DDoS attacks

allows configuration and monitoring of the network from one centralized port

combines control and data plane functionality on a single device to minimize latency

The NMS software must be loaded with the MIB associated with the trap.

The NMS must be configured on the same router as the SNMP agent

The NMS must receive a trap and an inform message from the SNMP agent within a configured interval

The NMS must receive the same trap from two different SNMP agents to verify that it is reliable.

global unicast

unique local

link-local

multicast

DHCP relay agent

DHCP server

DHCPDISCOVER

DHCPOFFER

The packets fail to match any permit statement

A matching permit statement is too high in the access test

A matching permit statement is too broadly defined

The ACL is empty

A matching deny statement is too high in the access list

transfers a backup configuration file from a server to a switch using a username and password

transfers files between file systems on a router

transfers a configuration files from a server to a router on a congested link

transfers IOS images from a server to a router for firmware upgrades

Option A

Option B

Option C

Option D

No router ID is set, and the OSPF protocol does not run.

The highest up/up physical interface IP address is selected as the router ID.

The lowest IP address is incremented by 1 and selected as the router ID.

The router ID 0.0.0.0 is selected and placed in the OSPF process.

It allows the traffic to pass through unchanged

It drops the traffic

It tags the traffic with the default VLAN

It tags the traffic with the native VLAN

CAR

CBWFQ

PQ

PBR

FRTS

10.10.225.48 255.255.255.240

10.10.225.32 255.255.255.240

10.10.225.48 255.255.255.224

10.10.225.32 255.255.255.224

access ports

Layer 3 main Interfaces

Layer 3 suninterfaces

trunk ports

It provides network security

It differentiates traffic entering access posits

It identities an individual access point on a WLAN

It identifies a WLAN

Option A

Option B

Option C

Option D

configure switchport nonegotiate

configure switchport mode dynamic desirable

configure switchport mode dynamic auto

configure switchport trunk dynamic desirable

cost

adminstrative distance

metric

as-path

sniffer

mesh

flexconnect

local

ipv6 address 2001:0db8::5: a: 4F 583B

ipv6 address 2001:db8::500:a:400F:583B

ipv6 address 2001 db8:0::500:a:4F:583B

ipv6 address 2001::db8:0000::500:a:400F:583B

Router2

Router3

Router4

Router5

10.10.10.0/28

10.10.13.0/25

10.10.13.144/28

10.10.13.208/29

Add the default-information originate command onR2

Configure the ip route 0.0.0.0 0.0.0.0 10.10.10.18 command on R1

Configure the ip route 0.0.0.0 0.0.0.0 10.10.10.2 command on R2

Add the always keyword to the default-information originate command on R1

northbound API

REST API

SOAP API

southbound API

switchport mode trunk

switchport mode dot1-tunnel

switchport mode dynamic auto

switchport mode dynamic desirable

The new frame is delivered first, the previous frame is dropped, and a retransmission request is sent.

The previous frame is delivered, the new frame is dropped, and a retransmission request is sent.

The new frame is placed in a queue for transmission after the previous frame.

The two frames are processed and delivered at the same time.

between zones 1 and 2

between zones 2 and 5

between zones 3 and 4

between zones 3 and 6

it sends information about MIB variables in response to requests from the NMS

it requests information from remote network nodes about catastrophic system events.

it manages routing between Layer 3 devices in a network

it coordinates user authentication between a network device and a TACACS+ or RADIUS server

After the cable is connected, the interface uses the fastest speed setting available for that cable type

After the cable is connected, the interface is available faster to send and receive user data

The frames entering the interface are marked with higher priority and then processed faster by a switch.

Real-time voice and video frames entering the interface are processed faster

Ansible

Python

Puppet

Chef

internal BGP route

/24 route of a locally configured IP

statically assigned route

route learned through EIGRP

The user swipes a key fob, then clicks through an email link

The user enters a user name and password, and then clicks a notification in an authentication app on a mobile device

The user enters a PIN into an RSA token, and then enters the displayed RSA key on a login screen

The user enters a user name and password and then re-enters the credentials on a second screen

IS-IS

RIP

Internal EIGRP

OSPF

OpenFlow

Java

REST

XML

HTTP

SSH

HTTPS

Telnet

Configure the OSPF priority on router A with the lowest value between the three routers.

Configure router B and router C as OSPF neighbors of router A.

Configure the router A interfaces with the highest OSPF priority value within the area.

Configure router A with a fixed OSPF router ID

Option A

Option B

Option C

Option D

Option E

SSH

HTTPS

Telnet

console

The interface is receiving excessive broadcast traffic.

The cable connection between the two devices is faulty.

The interface is operating at a different speed than the connected device.

The bandwidth setting of the interface is misconfigured

R1(config)#ip route 192.168.20.0 255.255.0.0 192.168.30.2

R1(config)#ip route 192.168.20.0 255.255.255.0 192.168.30.2 90

R1(config)#ip route 192.168.20.0 255.255.255.0 192.168.30.2 111

R1(config)#ip route 192.168.20.0 255.255.255.0 192.168.30.2

10.10.10.5

10.10.11.2

10.10.12.2

10.10.10.9

Configure the ip dhcp snooping trust command on the interlace that is connected to the DHCP client.

Configure the ip dhcp relay information option command on the interface that is connected to the DHCP client.

Configure the ip dhcp snooping trust command on the interface that is connected to the DHCP server.

Configure the Ip dhcp relay information option command on the interface that is connected to the DHCP server.

heavy traffic congestion

a duplex incompatibility

a speed conflict

queuing drops

shaping

classification

policing

marking

a lightweight access point

a firewall

a wireless LAN controller

a LAN switch

Option A

Option B

Option C

Option D

They enable automatic failover of the default gateway.

They allow multiple devices to serve as a single virtual gateway for clients in the network.

They are able to bundle multiple ports to increase bandwidth.

They prevent loops in the Layer 2 network.

They allow encrypted traffic.

disabled

listening

forwarding

learning

blocking

configuring a password for the console port

backing up syslogs at a remote location

configuring enable passwords on network devices

setting up IP cameras to monitor key infrastructure

R1(config)#lp route 172.16.2.2 255.255.255.248 gi0/1

R1(config)#jp route 172.16.2.2 255.255.255.255 gi0/0

R1(config>#ip route 172.16.2.0 255.255.255.0 192.168.1.15

R1(conflg)#ip route 172.16.2.0 255.255.255.0 192.168.1.5

ip route 172.21.34.0 255.255.255.192 10.73.65.65

ip route 172.21.34.0 255.255.255.0 10.73.65.65

ip route 172.21.34.0 255.255.128.0 10.73.65.64

ip route 172.21.34.0 255.255.255.128 10.73.65.66

SYIM flood

reflection

teardrop

amplification

F0/10

F0/11

F0/12

F0/13

switchport trunk allowed vlan 100-104

switchport trunk allowed vlan add 104

switchport trunk allowed vlan all

switchport trunk allowed vlan 104

preshared key that authenticates connections

RSA token

CA that grants certificates

clear-text password that authenticates connections

one or more CRLs

The Incoming and outgoing ports for traffic flow must be specified If LAG Is enabled.

The controller must be rebooted after enabling or reconfiguring LAG.

The management interface must be reassigned if LAG disabled.

Multiple untagged interfaces on the same port must be supported.

Option A

Option B

Option C

Option D

Option A

Option B

Option C

Option D

WLAN dynamic

management

trunk

access

Option A

Option B

Option C

Option D

Define a NAT pool on the router.

Configure static NAT translations for VLAN 200.

Configure the ip nat outside command on another interface for VLAN 200.

Update the NAT INSIDF RANGFS ACL

router ospf 1network 192.168.1.1 0.0.0.0 area 0interface e1/1ip address 192.168.1.1 255.255.255.252ip ospf network broadcast

router ospf 1network 192.168.1.1 0.0.0.0 area 0interface e1/1ip address 192.168.1.1 255.255.255.252ip ospf network point-to-point

router ospf 1network 192.168.1.1 0.0.0.0 area 0interface e1/1ip address 192.168.1.1 255.255.255.252ip ospf cost 0

router ospf 1network 192.168.1.1 0.0.0.0 area 0hello interval 15interface e1/1Ip address 192.168.1.1 255.255.255.252

Option A

Option B

Option C

Option D

authorized services

authenticator

username

password

Modify the configured number of the second access list.

Add either the ip nat {inside|outside} command under both interfaces.

Remove the overload keyword from the ip nat inside source command.

Change the ip nat inside source command to use interface GigabitEthernet0/0.

to configure an Interface as a DHCP server

to configure an interface as a DHCP helper

to configure an interface as a DHCP relay

to configure an interface as a DHCP client

172.16.0.0/16

192.168.2.0/24

207.165.200.0/24

192.168.1.0/24

Configure router A to use the same MTU size as router B.

Set the router B OSPF ID to a nonhost address.

Configure a point-to-point link between router A and router B.

Set the router B OSPF ID to the same value as its IP address

A distributed management plane must be used.

Software upgrades are performed from a central controller

Complexity increases when new device configurations are added

Custom applications are needed to configure network devices

Select the WPA Policy option with the CCKM option.

Disable AES encryption.

Enable Fast Transition and select the FT 802.1x option.

Enable Fast Transition and select the FT PSK option.

forwards traffic to the next hop

constructs a routing table based on a routing protocol

provides CLI access to the network device

looks up an egress interface in the forwarding information base

Option A

Option B

Option C

Option D

Switch 1 (config-if)#channel-group 1 mode onSwrtch2(config-if)#channel-group 1 mode passive

Switch1(config-if)#channel-group 1 mode passiveSwitch2(config-if)#channel-group 1 mode active

Switch1{config-if)£channel-group 1 mode activeSwitch2(config-if)#channel-group 1 mode passive

Switch1(config-if)#channel-group 1 mode onSwitch2(config-if)#channel-group 1 mode active

ipv6 address 21:EB8:C1:2200:1::331/64

ipv6 address 2001:EB8:C1:22:1::331/64

ipv6 address 2001 :EB8:C 1:2200.1 ::331-64

ipv6 address 2001:EB8:C1:2200:1:0000:331/64

There is a duplex mismatch on the interface

There is an issue with the fiber on the switch interface.

There is a speed mismatch on the interface.

There is an interface type mismatch

forwards traffic between VLANs on a network

connects server and client devices to a network

allows users to record data and transmit to a tile server

provides wireless services to users in a building

password password

crypto key generate rsa modulus 1024

ip domain-name domain

ip ssh authentication-retries 2

Option A

Option B

Option C

Option D

HTTPS

HTTP

Telnet

SSH

int range g0/0-1channel-group 10 mode active

int range g0/0-1 chanm.l-group 10 mode desirable

int range g0/0-1channel-group 10 mode passive

int range g0/0-1 channel-group 10 mode auto

int range g0/0-1 channel-group 10 mode on

ip route 0.0.0.0 0.0.0.0 g0/1 1

ip route 0.0.0.0 0.0.0.0 209.165.201.5 10

ip route 0.0.0.0 0.0.0.0 209.165.200.226 1

ip route 0,0.0.0 0.0.0.0 g0/1 6

router-id 10.0.0.15

neighbor 10.1.2.0 cost 180

ipospf priority 100

network 10.0.0.0 0.0.0.255 area 0

user-activity logging

service limitations

consumption-based billing

identity verification

Option A

Option B

Option C

Option D

lp route 0.0.0.0 0.0.0.0 192.168.1.2

ip default-gateway 192.168.2.1

ip route 0.0.0.0 0.0.0.0 192.168.2.1 10

ip route 0.0.0.0 0.0.0.0 192.168.1.2 10

nothing plugged into the port

link flapping

shutdown command issued on the port

latency

WPA3

WPA

WEP

WPA2

ip route 10.1.1.10 255.255.255.255 172.16.2.2 100

ip route 10.1.1.0 255.255.255.0 gi0/1 125

ip route 10.1.1.0 255.255.255.0 172.16.2.2 100

ip route 10.1.1.10 255.255.255.255 gi0/0 125

via next-hop 10.0.1.5

via next-hop 10 0 1.4

via next-hop 10.0 1.50

via next-hop 10.0 1 100

weighted random early detection

traffic policing

traffic shaping

traffic prioritization

192.168.1.0/24 via 192.168.12.2

192.168.1.128/25 via 192.168.13.3

192.168.1.192/26 via 192.168.14.4

192.168.1.224/27 via 192.168.15.5

makes forwarding decisions based on learned MAC addresses

serves as a controller within a controller-based network

integrates with a RADIUS server to enforce Layer 2 device authentication rules

correlates user activity with network events

VLANID

SSID

RFID

WLANID

offer compression

increase security by using a WEP connection

provide authentication

protect traffic on open networks

different security settings

discontinuous frequency ranges

different transmission speeds

unique SSIDs

R1 (config)# username engineer2 algorithm-type scrypt secret test2021

R1(config)# username engineer2 secret 5 password S1$b1Ju$kZbBS1Pyh4QzwXyZ

R1(config)# username engineer2 privilege 1 password 7 test2021

R1(config)# username englneer2 secret 4 S1Sb1Ju$kZbBS1Pyh4QzwXyZ

Interface FastEthernet0/1 switchport trunk native vlan 10 switchport trunk allowed vlan 10,15

Interface FastEthernet0/1 switchport mode trunk switchport trunk allowed vlan 10,15

interface FastEthernet0/1 switchport mode access switchport voice vlan 10

Interface FastEthernet0/1 switchport trunk allowed vlan add 10 vlan 10 private-vlan isolated

Option A

Option B

Option C

Option D

R3(config)#interface Gig0/1 R3(config-if)#ip ospf priority 100

R3(config)#interface Gig0/0 R3(config-if)#ip ospf priority 100

R3(config)#interface Gig0/0 R3(config-if)i=ip ospf priority 1

R3(config)#interface Gig0/1 R3(config-if)#ip ospf priority 0

global unicast address

anycast address

multicast address

link-local address

Whole Home

Hotspot

One-Click

Enhanced Bluetooth

They are allocated by the same organization.

They are routable on the global internet.

They use the same process for subnetting.

They are part of the multicast IPv6 group type.

QinQ

ISL

PAgP

LAG

They include a guest OS and the service.

They enable the network to become agile and hardware-centric.

They use a supervisor to provide management for services.

They facilitate local management of infrastructure devices.

channel-group 1 mode desirable

channel-group 1 mode on

channel-group 1 mode auto

channel-group 1 mode active

ipconfig /renew

ipconfig

ipconfig /all

ipconfig /displaydns

10

0

1

110

to uniquely identify clients to monitor their usage patterns

to encrypt data to prevent excessive usage

to contain embedded permissions that automatically expire

to track the geographical location of each request

duplex mismatch

queueing

bad NIC

broadcast storm

switchport trunk allowed vlan 2-1001

switchport trunk allowed vlan add 23

switchport trunk allowed vlan 23

switchport trunk allowed vlan 22-23

to establish an encrypted tunnel between a remote user and a private network over the internet

to allow access to an enterprise network using any internet-enabled location via a web browser using SSL

to provide a secure link between an HTTPS server, authentication subsystem, and an end-user

to use cryptography for authentication between a device and user over a negotiated VPN gateway

inserts MAC addresses dynamically into the CAM table

restricts ports to a maximum of 10 dynamically-learned addresses

protects against denial of service attacks

rewrites the source and destination MAC address

There is a strong mutual authentication used between NAC and the network devices using x.509 standard.

There is an extra layer of security that ensures only authorized devices with known MAC addresses connect to the network.

There is a robust security mechanism configured to protect against various Layer 2 and Layer 3 attacks.

There is Galois cache algorithm configured that provides strong encryption and authentication.