Free and Premium Cisco 200-301 Dumps Questions Answers

Change the channel-group mode on SW2 to auto

Change the channel-group mode on SW1 to desirable.

Configure the interface port-channel 1 command on both switches.

Change the channel-group mode on SW1 to active or passive.

heavy traffic congestion

a duplex incompatibility

a speed conflict

queuing drops

offer compression

increase security by using a WEP connection

provide authentication

protect traffic on open networks

A distributed management plane must be used.

Software upgrades are performed from a central controller

Complexity increases when new device configurations are added

Custom applications are needed to configure network devices

nothing plugged into the port

link flapping

shutdown command issued on the port

latency

unique local address

link-local address

aggregatable global address

IPv4-compatible IPv6 address

SSH

HTTPS

Telnet

console

Configure the ip dhcp relay information command under interface Gi0/1.

Configure the ip dhcp smart-relay command globally on the router

Configure the ip helper-address 172.16.2.2 command under interface Gi0/0

Configure the ip address dhcp command under interface Gi0/0

WLAN dynamic

management

trunk

access

192.168.0.7

192.168.0.4

192.168.0.40

192.168.3.5

shaping

classification

policing

marking

Option A

Option B

Option C

Option D

Option E

172.16.0.0/16

192.168.2.0/24

207.165.200.0/24

192.168.1.0/24

Option A

Option B

Option C

Option D

Option A

Option B

Option C

Option D

Option A

Option B

Option C

Option D

10.10.10.5

10.10.11.2

10.10.12.2

10.10.10.9

Option A

Option B

Option C

Option D

SYIM flood

reflection

teardrop

amplification

They enable automatic failover of the default gateway.

They allow multiple devices to serve as a single virtual gateway for clients in the network.

They are able to bundle multiple ports to increase bandwidth.

They prevent loops in the Layer 2 network.

They allow encrypted traffic.

Option A

Option B

Option C

Option D

Configure the OSPF priority on router A with the lowest value between the three routers.

Configure router B and router C as OSPF neighbors of router A.

Configure the router A interfaces with the highest OSPF priority value within the area.

Configure router A with a fixed OSPF router ID

R1(config)#lp route 172.16.2.2 255.255.255.248 gi0/1

R1(config)#jp route 172.16.2.2 255.255.255.255 gi0/0

R1(config>#ip route 172.16.2.0 255.255.255.0 192.168.1.15

R1(conflg)#ip route 172.16.2.0 255.255.255.0 192.168.1.5

interface vlan 2000ipv6 address ffc0:0000:aaaa::1234:2343/64

interface vlan 2000Ipv6 address fc00:0000:aaaa:a15d:1234:2343:8aca/64

interface vlan 2000ipv6 address fe80;0000:aaaa::1234:2343/64

interface vlan 2000ipv6 address fd00::1234:2343/64

lt requires multiple links between core switches

It generates one spanning-tree instance for each VLAN

It maps multiple VLANs into the same spanning-tree instance

It uses multiple active paths between end stations.

F0/4

F0/0

F0/1

F0/3

There is a duplex mismatch on the interface

There is an issue with the fiber on the switch interface.

There is a speed mismatch on the interface.

There is an interface type mismatch

int range g0/0-1channel-group 10 mode active

int range g0/0-1 chanm.l-group 10 mode desirable

int range g0/0-1channel-group 10 mode passive

int range g0/0-1 channel-group 10 mode auto

int range g0/0-1 channel-group 10 mode on

Modify the configured number of the second access list.

Add either the ip nat {inside|outside} command under both interfaces.

Remove the overload keyword from the ip nat inside source command.

Change the ip nat inside source command to use interface GigabitEthernet0/0.

multicast replication at the hardware level

fragmenting and reassembling packets

making routing decisions

forwarding packets

global unicast address

anycast address

multicast address

link-local address

via next-hop 10.0.1.5

via next-hop 10 0 1.4

via next-hop 10.0 1.50

via next-hop 10.0 1 100

ip route 0.0.0.0 0.0.0.0 g0/1 1

ip route 0.0.0.0 0.0.0.0 209.165.201.5 10

ip route 0.0.0.0 0.0.0.0 209.165.200.226 1

ip route 0,0.0.0 0.0.0.0 g0/1 6

a lightweight access point

a firewall

a wireless LAN controller

a LAN switch

Option A

Option B

Option C

Option D

forwards traffic to the next hop

constructs a routing table based on a routing protocol

provides CLI access to the network device

looks up an egress interface in the forwarding information base

R1(config)#ip route 192.168.20.0 255.255.0.0 192.168.30.2

R1(config)#ip route 192.168.20.0 255.255.255.0 192.168.30.2 90

R1(config)#ip route 192.168.20.0 255.255.255.0 192.168.30.2 111

R1(config)#ip route 192.168.20.0 255.255.255.0 192.168.30.2

to configure an Interface as a DHCP server

to configure an interface as a DHCP helper

to configure an interface as a DHCP relay

to configure an interface as a DHCP client

HTTPS

HTTP

Telnet

SSH

It drops the frame from the switch CAM table.

It floods the frame out of all ports except port Fa0/1.

It shuts down the port Fa0/1 and places it in err-disable mode.

It experiences a broadcast storm.

weighted random early detection

traffic policing

traffic shaping

traffic prioritization

router ospf 1network 192.168.1.1 0.0.0.0 area 0interface e1/1ip address 192.168.1.1 255.255.255.252ip ospf network broadcast

router ospf 1network 192.168.1.1 0.0.0.0 area 0interface e1/1ip address 192.168.1.1 255.255.255.252ip ospf network point-to-point

router ospf 1network 192.168.1.1 0.0.0.0 area 0interface e1/1ip address 192.168.1.1 255.255.255.252ip ospf cost 0

router ospf 1network 192.168.1.1 0.0.0.0 area 0hello interval 15interface e1/1Ip address 192.168.1.1 255.255.255.252

F0/10

F0/11

F0/12

F0/13

ip route 172.21.34.0 255.255.255.192 10.73.65.65

ip route 172.21.34.0 255.255.255.0 10.73.65.65

ip route 172.21.34.0 255.255.128.0 10.73.65.64

ip route 172.21.34.0 255.255.255.128 10.73.65.66

configuring a password for the console port

backing up syslogs at a remote location

configuring enable passwords on network devices

setting up IP cameras to monitor key infrastructure

Interface FastEthernet0/1 switchport trunk native vlan 10 switchport trunk allowed vlan 10,15

Interface FastEthernet0/1 switchport mode trunk switchport trunk allowed vlan 10,15

interface FastEthernet0/1 switchport mode access switchport voice vlan 10

Interface FastEthernet0/1 switchport trunk allowed vlan add 10 vlan 10 private-vlan isolated

Option A

Option B

Option C

Option D

ipv6 address 21:EB8:C1:2200:1::331/64

ipv6 address 2001:EB8:C1:22:1::331/64

ipv6 address 2001 :EB8:C 1:2200.1 ::331-64

ipv6 address 2001:EB8:C1:2200:1:0000:331/64

forwards traffic between VLANs on a network

connects server and client devices to a network

allows users to record data and transmit to a tile server

provides wireless services to users in a building

switchport trunk allowed vlan 100-104

switchport trunk allowed vlan add 104

switchport trunk allowed vlan all

switchport trunk allowed vlan 104

Option A

Option B

Option C

Option D

Option A

Option B

Option C

Option D

interface vlan 1234ip address 10.70.159.1 255.255.254.0

interface vlan 1148ip address 10.70.148.1 255.255.254.0

interface vlan 4722ip address 10.70.133.17 255.255.255.192

interface vlan 3002ip address 10.70.147.17 255.255.255.224

interface vlan 155ip address 10.70.155.65 255.255.255.224

As traffic traverses MLS1 remark the traffic, but trust all markings at the access layer.

Trust the IP phone markings on SW1 and mark traffic entering SW2 at SW2.

Remark traffic as it traverses R1 and trust all markings at the access layer.

As traffic enters from the access layer on SW1 and SW2. trust all traffic markings.

ipv6 address 2001:DB8:0:1:C601:42FF:FE0F:7/64

ipv6 address 2001:DB8:0:1:C601:42FE:800F:7/64

ipv6 address 2001 :DB8:0:1:FFFF:C601:420F:7/64

iov6 address 2001 :DB8:0:1:FE80:C601:420F:7/64

R3(config)#interface Gig0/1 R3(config-if)#ip ospf priority 100

R3(config)#interface Gig0/0 R3(config-if)#ip ospf priority 100

R3(config)#interface Gig0/0 R3(config-if)i=ip ospf priority 1

R3(config)#interface Gig0/1 R3(config-if)#ip ospf priority 0

Option A

Option B

Option C

Option D

Option A

Option B

Option C

Option D

to increase security and encrypt management frames

to provide link redundancy and load balancing

to allow for stateful and link-state failover

to enable connected switch ports to failover and use different VLANs

router-id 10.0.0.15

neighbor 10.1.2.0 cost 180

ipospf priority 100

network 10.0.0.0 0.0.0.255 area 0

lp route 0.0.0.0 0.0.0.0 192.168.1.2

ip default-gateway 192.168.2.1

ip route 0.0.0.0 0.0.0.0 192.168.2.1 10

ip route 0.0.0.0 0.0.0.0 192.168.1.2 10

Switch 1 (config-if)#channel-group 1 mode onSwrtch2(config-if)#channel-group 1 mode passive

Switch1(config-if)#channel-group 1 mode passiveSwitch2(config-if)#channel-group 1 mode active

Switch1{config-if)£channel-group 1 mode activeSwitch2(config-if)#channel-group 1 mode passive

Switch1(config-if)#channel-group 1 mode onSwitch2(config-if)#channel-group 1 mode active

preshared key that authenticates connections

RSA token

CA that grants certificates

clear-text password that authenticates connections

one or more CRLs

ip route 10.1.1.10 255.255.255.255 172.16.2.2 100

ip route 10.1.1.0 255.255.255.0 gi0/1 125

ip route 10.1.1.0 255.255.255.0 172.16.2.2 100

ip route 10.1.1.10 255.255.255.255 gi0/0 125

provides an added level of protection against Internet exposure

provides a reduction in size of the forwarding table on network routers

allows communication across the Internet to other private networks

allows servers and workstations to communicate across public network boundaries

infrastructure-as-a-service.

Software-as-a-service

control and distribution of physical resources

services as a hardware controller.

Option A

Option B

Option C

Option D

backup

standby

listening

forwarding

192.168.0.0/26 as summary and 192.168.0.0/29 for each floor

192.168.0.0.24 as summary and 192.168.0.0/28 for each floor

192.168.0.0/23 as summary and 192.168.0.0/25 for each floor

l92.168.0.0/25 as summary and 192.168.0.0/27 for each floor

WEP

RC4

AES

TKIP

Eliminating training needs

Increasing reliance on self-diagnostic and self-healing

Policy-derived provisioning of resources

Providing a ship entry point for resource provisioning

Reducing hardware footprint

All ARP packets are dropped by the switch

Egress traffic is passed only if the destination is a DHCP server.

All ingress and egress traffic is dropped because the interface is untrusted

The switch discard all ingress ARP traffic with invalid MAC-to-IP address bindings.

192.168.12.2

192.168.13.3

192.168.14.4

192.168.15.5

Option A

Option B

Option C

Option D

When a powered device begins drawing power from a PoE switch port a syslog message is generated

As power usage on a PoE switch port is checked data flow to the connected device is temporarily paused

If a switch determines that a device is using less than the minimum configured power it assumes the device has failed and disconnects

Should a monitored port exceeds the maximum administrative value for power, the port is shutdown and err-disabled

between the SDN controller and PCs on the network

between the SON controller and switches and routers on the network

between the SON controller and services and applications on the network

between network applications and switches and routers on the network

The router calculates the reported distance by multiplying the delay on the exiting Interface by 256.

The router calculates the best backup path to the destination route and assigns it as the feasible successor.

The router calculates the feasible distance of all paths to the destination route

The advertised distance is calculated by a downstream neighbor to inform the local router of the bandwidth on the link

The router must use the advertised distance as the metric for any given route

DTP

FTP

SMTP

TFTP

Both use the same data-link header and trailer formats

Both cable types support LP connectors

Both cable types support Rj-45 connectors

Both support up to 550 meters between nodes

Option A

Option B

Option C

Option D

Option A

Option B

Option C

Option D

action

management

control

data

They prevent (oops in the Layer 2 network.

They allow encrypted traffic.

They are able to bundle muftlple ports to increase bandwidth

They enable automatic failover of the default gateway.

They allow multiple devices lo serve as a single virtual gateway for clients in the network

Option A

Option B

Option C

Option D

There is a duplex mismatch

There is a speed mismatch

There is a protocol mismatch

The interface is shut down

The interface is error-disabled

R1(config)# interface fa0/0R1(config-if)# ip helper-address 198.51.100.100

R2(config)# interface gi0/0R2(config-if)# ip helper-address 198.51.100.100

R1(config)# interface fa0/0R1(config-if)# ip address dhcpR1(config-if)# no shutdown

R2(config)# interface gi0/0R2(config-if)# ip address dhcp

R1(config)# interface fa0/0R1(config-if)# ip helper-address 192.0.2.2

Unicode

base64

decimal

ASCII

encrypts data before sending between data resources

devices are directly connected and use UDP to pass file information

uses separate control and data connections to move files between server and client

offers proprietary support at the session layer when transferring data

0

110

38443

3184439

Telnet

SSH

HTTP

HTTPS

TFTP

Only traditional networks offer a centralized control plane

Only traditional networks natively support centralized management

Traditional and controller-based networks abstract policies from device configurations

Only controller-based networks decouple the control plane and the data plane

global unicast

unique local

link-local

multicast

209.165.200.254 via Serial0/0/1

209.165.200.254 via Serial0/0/0

209.165.200.246 via Serial0/1/0

209.165.200.250 via Serial0/0/0

switchport mode trunk

switchport mode dynamic desirable

switchport mode dynamic auto

switchport nonegotiate

in the MAC address table

in the CAM table

in the binding database

in the frame forwarding database

10.10.10.0/28

10.10.13.0/25

10.10.13.144/28

10.10.13.208/29

ipv6 router 2000::1/128 2012::1

ipv6 router 2000::1/128 2012::1 5

ipv6 router 2000::1/128 2012::2

ipv6 router 2000::1/128 2023::2 5

ipv6 router 2000::1/128 2023::3 5

Option A

Option B

Option C

Option D

Ansible

Python

Puppet

Chef

switch(config-line)#IIdp port-description

switch(config)#IIdp port-description

switch(config-if)#IIdp port-description

switch#IIdp port-description

Perform a lookup in the MAC address table and discard the frame due to a missing entry.

Insert the source MAC address and port into the forwarding table and forward the frame to Sales-1.

Map the Layer 2 MAC address to the Layer 3 IP address and forward the frame.

Flood the frame out of all ports except on the port where Sales-1 is connected.

CAR

CBWFQ

PQ

PBR

FRTS

FIFO

WFQ

PQ

WRED

The packets fail to match any permit statement

A matching permit statement is too high in the access test

A matching permit statement is too broadly defined

The ACL is empty

A matching deny statement is too high in the access list

internal BGP route

/24 route of a locally configured IP

statically assigned route

route learned through EIGRP

0

2

4

6

1,6,11

1,5,10

1,2,3

5,6,7

Add the access-list 10 permit any command to the configuration

Remove the access-class 10 in command from line vty 0.4.

Add the ip access-group 10 out command to interface g0/0.

Remove the password command from line vty 0 4.

management-plane

control-plane

data-plane

services-plane

After the cable is connected, the interface uses the fastest speed setting available for that cable type

After the cable is connected, the interface is available faster to send and receive user data

The frames entering the interface are marked with higher priority and then processed faster by a switch.

Real-time voice and video frames entering the interface are processed faster

Host that is configured for the system to send log messages

password that authenticates a Network Management System to receive log messages

group of log messages associated with the configured severity level

set of values that represent the processes that can generate a log message

route with the lowest cost

route with the next hop that has the highest IP

route with the shortest prefix length

route with the lowest administrative distance

to analyze traffic and drop unauthorized traffic from the Internet

to transmit wireless traffic between hosts

to pass traffic between different networks

forward traffic within the same broadcast domain

broadcast packets from a switch that is attempting to locate a MAC address at one of several remote sites

multicast traffic from a server at one site to hosts at another location

spanning-tree updates between switches that are at two different sites

unicast messages from a host at a remote site to a server at headquarters

moves from a two-tier to a three-tier network architecture to provide maximum redundancy

provides an added layer of security to protect from DDoS attacks

allows configuration and monitoring of the network from one centralized port

combines control and data plane functionality on a single device to minimize latency

disabling TPC so that access points can negotiate signal levels with their attached wireless devices.

setting the maximum data rate to 54 Mbps on the Cisco Wireless LAN Controller

allocating nonoverlapping channels to access points that are in close physical proximity to one another

configuring access points to provide clients with a maximum of 5 Mbps

propagates VLAN information between switches

listens to multicast traffic for packet forwarding

provides DDoS mitigation

rate-limits certain traffic

Device(Config)#lldp run

Device(Config)#cdp run

Device(Config-if)#cdp enable

Device(Config)#flow-sampler-map topology

IS-IS

RIP

Internal EIGRP

OSPF

Cisco DNA Center device management can deploy a network more quickly than traditional campus device management

Traditional campus device management allows a network to scale more quickly than with Cisco DNA Center device management

Cisco DNA Center device management can be implemented at a lower cost than most traditional campus device management options

Traditional campus device management schemes can typically deploy patches and updates more quickly than Cisco DNA Center device management

It ignores the new static route until the existing OSPF default route is removed

It immediately replaces the existing OSPF route in the routing table with the newly configured static route

It starts load-balancing traffic between the two default routes

It starts sending traffic without a specific matching entry in the routing table to GigabitEthernet0/1

to automatically route traffic on a secondary path when the primary path goes down

to route traffic differently based on the source IP of the packet

to enable fallback static routing when the dynamic routing protocol fails

to support load balancing via static routing

to control the return path of traffic that is sent from the router

It transmits packets between hosts in the same broadcast domain.

It provides shared applications to end users.

It routes traffic between Layer 3 devices.

It Creates security zones between trusted and untrusted networks

IP SLA

syslog

NetFlow

SNMPv3

Re- Anchor Roamed Clients

11ac MU-MIMO

OEAP Split Tunnel

Client Band Select

Light is transmitted through the core of the fiber

A BNC connector is used for fiber connections

The glass core component is encased in a cladding

Fiber connects to physical interfaces using Rj-45 connections

The data can pass through the cladding

ipv6 address 2001:0db8::5: a: 4F 583B

ipv6 address 2001:db8::500:a:400F:583B

ipv6 address 2001 db8:0::500:a:4F:583B

ipv6 address 2001::db8:0000::500:a:400F:583B

The core and distribution layers perform the same functions

The access layer manages routing between devices in different domains

The network core is designed to maintain continuous connectivity when devices fail.

The core layer maintains wired connections for each host

The distribution layer runs Layer 2 and Layer 3 technologies

large and requires a flexible, scalable network design

large and must minimize downtime when hardware fails

small and needs to reduce networking costs currently

small but is expected to grow dramatically in the near future

The trunk does not form and the ports go into an err-disabled status.

The trunk forms but the mismatched native VLANs are merged into a single broadcast domain.

The trunk does not form, but VLAN 99 and VLAN 999 are allowed to traverse the link.

The trunk forms but VLAN 99 and VLAN 999 are in a shutdown state.

between zones 1 and 2

between zones 2 and 5

between zones 3 and 4

between zones 3 and 6

A TCP connection has been torn down

An ICMP connection has been built

An interface line has changed status

A certificate has expired.

OSPF area

OSPF MD5 authentication key

iPv6 address

OSPf process ID

OSPf stub flag

The link is in a down state.

The link is in an error disables state

The link is becomes an access port.

The link becomes a trunk port.

S1

S2

S3

S4

allows access restrictions to be implemented between subscriber sites.

provides direct connections between subscribers

supports Layer 2 VPNs

supports application optimization

ipv6 address 2001:db8::700:3:400F:572B

ipv6 address 2001:db8:0::700:3:4F:572B

ipv6 address 2001:Odb8::7:3:4F:572B

ipv6 address 2001::db8:0000::700:3:400F:572B

The Layer 2 switch drops the received frame

The Layer 2 switch floods packets to all ports except the receiving port in the given VLAN.

The Layer 2 switch sends a copy of a packet to CPU for destination MAC address learning.

The Layer 2 switch forwards the packet and adds the destination MAC address to its MAC address table

Switch trunk allowed vlan 12

Switchport trunk allowed vlan none

Switchport trunk allowed vlan add 13

Switchport trunk allowed vlan remove 10-11

CDP

SNMP

SMTP

ARP

R1(config)#interface ethernet0/0R1(config)#encapsulation dot1q 20R1(config)#ip address 10.20.20.1 255.255.255.0

R1(config)#interface ethernet0/0.20R1(config)#encapsulation dot1q 20R1(config)#ip address 10.20.20.1 255.255.255.0

R1(config)#interface ethernet0/0.20R1(config)#ip address 10.20.20.1 255.255.255.0

R1(config)#interface ethernet0/0R1(config)#ip address 10.20.20.1 255.255.255.0

runts

giants

frame

CRC

input errors

firewall

switch

access point

wireless controller

2000::/3

FC00::/7

FE80::/10

FF00::/8

adminadmin123

default

testing 1234

cisco123

It forwards it out G0/3 only

It is flooded out every port except G0/0.

It drops the frame.

It forwards it out interface G0/2 only.

DHCP

STP

SNMP

DNS

switch(config)#spanning-tree vlan 1 max-age 6

switch(config)#spanning-tree vlan 1 hello-time 10

switch(config)#spanning-tree vlan 1 priority 4096

switch(config)#spanning-tree vlan 1 forward-time 20

The port transitions to STP blocking

The port transitions to the root port

The port immediately transitions to STP forwarding.

The port goes into error-disable state

SNMP

DNS lookup

syslog

NTP

SW1

SW2

SW3

SW4

Enable the allow AAA Override

Enable the Even: Driven RRM.

Disable the LAG Mode or Next Reboot.

Enable the Authorized MIC APs against auth-list or AAA.

It provides traffic load balancing to destinations that are more than two hops from the source.

It provides the default gateway redundancy on a LAN using two or more routers.

It allows neighbors to share routing table information between each other.

It prevents loops in a Layer 2 LAN by forwarding all traffic to a root bridge, which then makes the final forwarding decision.

enable dynamic ARP inspection

manually implement trunk ports and disable DTP

activate all ports and place in the default VLAN

configure extended VLANs

listening

blocking

forwarding

learning

speaking

Option A

Option B

Option C

Option D

act as routers to connect a user to the service prowler network

a threat to the network if they are compromised

support inter-VLAN connectivity

enforce policies for campus-wide traffic going to the internet

It drops lower-priority packets before it drops higher-priority packets

It can identify different flows with a high level of granularity

It guarantees the delivery of high-priority packets

It can mitigate congestion by preventing the queue from filling up

it supports protocol discovery

TCP uses synchronization packets, and UDP uses acknowledgment packets.

UDP uses SYN, SYN ACK and FIN bits in the frame header while TCP uses SYN, SYN ACK and ACK bits

UDP provides reliable message transfer and TCP is a connectionless protocol

TCP uses the three-way handshake and UDP does not guarantee message delivery

The DHCP server offers the ability to exclude specific IP addresses from a pool of IP addresses

The DHCP client can request up to four DNS server addresses

The DHCP server assigns IP addresses without requiring the client to renew them

The DHCP server leases client IP addresses dynamically.

The DHCP client maintains a pool of IP addresses it can assign.

broadband cable access

frame-relay packet switching

dedicated point-to-point leased line

Integrated Services Digital Network switching.

overlay

northbound

underlay

southbound

switchport access vlan 67

switchport trunk allowed vlan 67

switchport private-vlan association host 67

switchport trunk native vlan 67

different nonoverlapping channels

different overlapping channels

one overlapping channel

one nonoverlapping channel

Layer 2 switch

Router

Load balancer

firewall

reducing bandwidth usage

by reducing packet loss

by differentiating voice and video traffic

by increasing jitter

communicates between the controller and the physical network hardware

reports device errors to a controller

generates statistics for network hardware and traffic

facilitates communication between the controller and the applications

switch(config)#spanning-tree portfast default

switch(config)#spanning-tree portfast bpduguard default

switch(config-if)#spanning-tree portfast trunk

switch(config-if)#no spanning-tree portfast

The environment must be configured with one hypervisor that serves solely as a network manager to monitor SNMP traffic

It allows logical network devices to move traffic between virtual machines and the rest of the physical network

It allows multiple operating systems and applications to run independently on one physical server.

It allows a physical router to directly connect NICs from each virtual machine into the network

It requires that some servers, virtual machines and network gear reside on the Internet

One functional physical port is needed to pass client traffic.

The EthernetChannel must be configured in "mode active".

When enabled, the WLC bandwidth drops to 500 Mbps.

To pass client traffic, two or more ports must be configured.

on

auto

active

desirable

It supports numerous extensibility options including cross-domain adapters and third-party SDKs.

It supports high availability for management functions when operating in cluster mode.

It enables easy autodiscovery of network elements m a brownfield deployment.

It is designed primarily to provide network assurance.

set the default network as 20.20.20.0/24

set the default gateway as 20.20.20.2

configure a static route with Fa0/1 as the egress interface to reach the 20.20.20.0/24 network

configure a static route with 10.10.10.2 as the next hop to reach the 20.20.20.0/24 network

on the public-facing interface of a firewall

to allow hosts inside to communicate in both directions with hosts outside the organization

on internal hosts that stream data solely to external resources

on hosts that communicates only with other internal hosts

disk

applications

VM configuration file

operating system

enable secret

service password-encryption

username Cisco password encrypt

enable password

Control

Management

Data

application

dual algorithm

metric

administrative distance

hop count

ipv6 route 2000::1/128 2012::1

ipv6 route 2000::3/128 2023::3

ipv6 route 2000::3/128 s0/0/0

ipv6 route 2000::1/128 2012::2

ipv6 route 2000::1/128 s0/0/1

allows multiple companies to each use the same addresses without conflicts

provides a direct connection for hosts from outside of the enterprise network

ensures that NAT is not required to reach the internet with private range addressing

enables secure communications to the internet for all external hosts

TCP is a connectionless protocol that does not provide reliable delivery of data, UDP is a connection-oriented protocol that uses sequencing to provide reliable delivery.

TCP does not guarantee delivery or error checking to ensure that there is no corruption of data UDP provides message acknowledgement and retransmits data if lost.

TCP provides flow control to avoid overwhelming a receiver by sending too many packets at once, UDP sends packets to the receiver in a continuous stream without checking for sequencing

TCP uses windowing to deliver packets reliably; UDP provides reliable message transfer between hosts by establishing a three-way handshake

Both have a 50 micron core diameter

Both have a 9 micron core diameter

Both have a 62.5 micron core diameter

Both have a 100 micron core diameter

Option A

Option B

Option C

Option D

read

create

replace

update

5GHz provides increased network capacity with up to 23 nonoveriapping channels.

For maximum throughput, the WLC is configured to dynamically set adjacent access points to the same channel.

5GHz channel selection requires an autonomous access point.

Adjacent cells with overlapping channels use a repeater access point.

Cells that overlap one another are configured to use nonoveriapping channels.

DNS server pings the destination to verify that it is available

serves requests over destination port 53

DNS server forwards the client to an alternate IP address when the primary IP is down

responds to a request for IP address to domain name resolution to the DNS server

register with a single access point that controls traffic between wired and wireless endpoints.

use SSIDs to distinguish between wireless clients.

send LWAPP packets to access points.

monitor activity on wireless and wired LANs

It provides a summary of the top 10 global issues.

It provides detailed activity logging for the 10 devices and users on the network.

It summarizes the operational status of each wireless devise on the network.

It summarizes daily and weekly CPU usage for servers and workstations in the network.

partial mesh

full mesh

point-to-point

hub-and-spoke

virtual routing and forwarding

network port ID visualization

virtual device contexts

server visualization

relay agent information

database agent

address pool

smart-relay

manual bindings

It load-balances traffic by assigning the same metric value to more than one route to the same destination m the IP routing table.

It load-balances Layer 2 traffic along the path by flooding traffic out all interfaces configured with the same VLAN.

It forwards multiple packets to the same destination over different routed links n the data path

It uses a shared virtual MAC and a virtual IP address to a group of routers that serve as the default gateway for hosts on a LAN

To perform upgrades without service interruption

To provide fast and accurate deployment of patches and updates

To allow SSH access to all nodes in the network.

To provide software redundancy in the network.

Interface range G1/1 – 1/3 switchport mode trunk channel-group 1 mode active no shutdown

Interface range G1/1 – 1/3 switchport mode access channel-group 1 mode passive no shutdown

Interface range G1/1 – 1/3 switchport mode trunkchannel-group 1 mode desirableno shutdown

Interface range G1/1 – 1/3 switchport mode access channel-group 1 mode on no shutdown

Configure the no cdp enable command on gO/2.

Configure the no cdp run command globally.

Configure the no lldp run command globally.

Configure the no lldp receive command on gQV1.

email system patches

physical access control

software firewall enabled on all PCs

user awareness training

ip route 10.80.65.0.255.255.248.0.10.73.65.66.1

ip route 10.80.65.0.255.255.255..240 fa0/1 89

ip route 10.80.65.0.255.255.248.0.10.73.65.66.171

ip route 10.80.65.0.0.0.224.10.80.65.0. 255

It uses block numbers to identify and mitigate data-transfer errors

It always operates without user authentication

It relies on the well-known UDP port 69.

It uses two separate connections for control and data traffic

dynamic

service port

virtual

management

It uses Telnet to report system issues

It uses northbound and southbound APIs to communicate between architectural layers

It decentralizes the control plane, which allows each device to make its own forwarding decisions

It moves the control plane to a central point

The administrator can make configuration updates from the CLI

channels 1, 5, and 10

channels 1,6, and 11

channels 1,5, and 11

channels 1,6, and 10

WPA2

WPA3

Wi-Fi 6

WEP

WPA

2001:db8:1a44:41a4:C801:BEFF:FE4A:1

2001:db8:1a44:41a4:C081:BFFF:FE4A:1

2001:db8:1a44:41a4:4562:098F:FE36:1

2001:db8:1a44:41a4:C800:BAFE:FF00:1

10.129.9.0/2310.139.2.0/3010.2.191.0/3010.129.9.0/25

10.129.9.0/2310.40.1.0/3010.2.191.0/3010.129.9.0/25

10.40.1.0/3010.139.2.0/3010.2.191.0/3010.129.9.0/25

10.129.9.0/2310.139.2.0/3010.129.9.0/2510.22.1.0/24

To simplify the process of maintaining a consistent configuration state across all devices

To centralize device information storage

To implement centralized user account management

To deploy the management plane separately from the rest of the network Answer: A

Port security

High throughput

Cable disconnect

duplex mismatch

the 10.0.0.0 network

a single destination address

the source 10.0.1.100

all hosts in the 10.0.1.0 subnet

B.

C.

D.

Option A

Option B

Option C

Option D

Eliminate redundancy with a link failure in the data path.

Allow multiple VLAN to be used in the data path.

Provide redundancy if there is a link failure for out-of-band management.

Permit multiple VLANs to provide out-of-band management.

ARP

CDP

flooding

multicast

Traditional campus device management schemes typically deploy patches and updates quicker than Cisco DNA Center device management.

Cisco DNA Center device management is implemented at a lower cost than most traditional campus device management options.

Traditional campus device management allows a network to scale quicker than using Cisco DNA Center device management.

Cisco DNA Center device management deploys a network faster than traditional campus device management.

ntp master 172.24.54.8

ntp client 172.24.54.8

ntp peer 172.24.54.8

ntp server 172.24.54.8

router C > D > A > B > F

router C > D > A > F

router E > F

router E > B > F

crypto key Import rsa pem

crypto key pubkey-chain rsa

crypto key generate rsa

crypto key zeroize rsa

It upgrades software and restores files.

It relies on global provisioning and configuration.

It supports distributed processing for configuration.

It provides a path between an SDN controller and network applications.

It exchanges topology information with other routers.

It forwards traffic to the next hop.

It looks up an egress interface in the forwarding information base.

It provides CLI access to the network device.

clock summer-time recurring

clock timezone

clock summer-time date

clock set

ip route 10.80.65.10 255.255.255.254 10.80.65.1

ip route 10.8065.10 255.255.255.255 10.73.65.66

ip route 1073.65.65 255.0.0.0 10.80.65.10

ip route 10.73.65.66 0.0.0.255 10.80.65.10

Channel-group mode passive.

Channel-group mode on.

Channel-group mode desirable.

Channel-group mode active.

Enable AutoConfig IPSK under the Layer 2 tab.

Select Authentication server under the AAA servers tab.

Configure Enterprise Security type under the Layer 2 tab.

Set Authentication under the Layer 3 tab.

Enable WPA2 Policy under the Layer 2 tab.

S 192.168.0.0/20 [1/0] via 10.1.1.1

S 192.168.2.0/29 [1/0] via 10.1.1.1

S 192.168.2.0/28 [1/0] via 10.1.1.1

S 192.168.1.0/30 [1/0] via 10.1.1.1

Configure the cdp timer 10 command on switch Cat9300.

Enable portfast on the ports that connect to neighboring devices.

Configure the cdp holdtime 10 command on switch Cat9300.

Configure the cdp timer 10 command on the neighbors of switch Cat9300.

It allows for seamless connectivity to virtual machines.

It supports complex and high-scale IP addressing schemes.

It enables configuration task automation.

It provides increased scalability and management options.

It increases security against denial-of-service attacks.

one

four

seven

nine

Reduced ARP traffic on the network

Balancing traffic across multiple gateways in proportion to their loads

Reduced management overhead on network routers

Higher degree of availability

Server 1 - 10.12.14.14

Server 2 - 192.168.4.4

Server 3 - 209.165.200.5

Server 4 - 209.165.201.26

ipv6 route 2000::1/128 2012::2

ipv6 route 2000::1/128 2012::1

ipv6 route 2000:3 123 s0/0/0

ipv6 route 2000::3/128 2023::3

ipv6 route 2000::1/128 s0/0/1

10.8.0.0/16

10.8.64.0/18

10.8.128.0/19

10.8.138.0/24

ip ospf network broadcast

ip ospf dead-interval 40

ip ospf network point-to-point

ip ospf priority 0

802.1x authentication and AES-128 encryption

TKIP encryption improving WEP and per-packet keying

AES-64 m personal mode and AES-128 in enterprise mode

forward secrecy and SAE in personal mode for secure initial key exchange

/25

/27

/28

/29

UDP operates without acknowledgments, and TCP sends an acknowledgment for every packet received.

UDP reliably guarantees delivery of all packets, and TCP drops packets under heavy load.

UDP uses flow control mechanisms for the delivery of packets, and TCP uses congestion control for efficient packet delivery.

UDP uses sequencing data tor packets to arrive in order, and TCP offers trie capability to receive packets in random order.

SW(ccnfig-if)=switchport port-security mac-address sticky

SW(confKj-if)=switchport port-security violation restrict

SW(config.if)sswitchport port-security mac-address 0010.7B84.45E6

SW(config-if)aswitchport port-security maximum 2

SW(ccnfig-if)=switchport port-security violation shutdown

array

object

Boolean

string

Router

Wireless controller

Anti software

Cisco DNA Center

to monitor network devices and functions using a TCP underlay that operates on the presentation layer

to collect data directly from network devices using an SSL underlay that operates on the transport layer

to monitor and manage network devices using a UDP underlay that operates on the application layer

to collect telemetry and critical information from network devices using an SSH underlay that operates on the network layer

An ICMP connection has been built

A certificate has expired

An interface line has changed status

A TCP connection has been torn down

They alleviate the shortage of public IPv4 addresses.

They supply redundancy in the case of failure.

They offer Internet connectivity to endpoints on private networks.

They allow for Internet access from IoT devices.

They provide a layer of security from Internet threats.

a server that dynamically assigns IP addresses to hosts

a router that statically assigns IP addresses to hosts

a host that is configured to request an IP address automatically

a workstation that requests a domain name associated with its IP address

Enable LLDP globally.

Disable CDP on gi0/0.

Enable LLDP TLVs on the ISP router.

Disable auto-negotiation.

Changes can be implemented in parallel across multiple devices at once, which increases the speed of the change rate.

By using automation platforms with intent-based configuration, all changes are checked for possible outages before being implemented.

Emails can be generated based on when a network admin performs a network change, which increases visibility.

Configuration templates and testing can be built into implementation, which increases the success rate of a network change.

Option A

Option B

Option C

Option D

Option A

Option B

Option C

Option D

Enable the Enable Session Timeout option and set the value to 3600.

Set the Maximum Allowed Clients value to 10.

Enable the Client Exclusion option and set the value to 3600.

Enable the Wi-Fi Direct Clients Policy option.

Set the Maximum Allowed Clients Per AP Radio value to 10.

VLAN trunking

tunneling

first hop redundancy

link aggregation

for small networks with minimal need for growth

the access and distribution layers must be on the same device

for large networks that are connected to multiple remote sites

only when using VSS technology

A defective patch cable is connected to the switch port

Topology changes are occurring within spanning-tree

An aged MAC (able entry is causing excessive updates

Port-security is configured globally

The forwarding table has overflowed

services traffic according to its class

identifies the type of traffic that will receive a particular treatment

writes the class identifier of a packet to a dedicated field in the packet header

configures traffic-matching rules on network devices

FF00:1/12

2001:db8:0234:ca3e::1/128

2002:db84:3f37:ca98:be05:8/64

FE80::1/10

255.255.254.0

255.255.255.240

255.255.255.248

255.255.255.252

northbound interface

software virtual interface

southbound interface

tunnel Interface

Use an access list to filter out the syslog messages.

Turn off the logging monitor in global configuration mode.

Disable logging to the console.

Set the logging trap severity level to informational.

ip route 10.0.2.0 255.255.255.240 10.0.0.7 92

ip route 10.0.2.0 255.255.255.248 10.0.0.6 91

ip route 10.0.2.0 256.255.255.240 10.0.0.6 91

ip route 10.0.2.0 255.255.255.248 null0 93

switchport trunk allowed vlan 2-1001

switchport trunk allowed vlan add 23

switchport trunk allowed vlan 23

switchport trunk allowed vlan 22-23

Virtual Route Forwarding

Virtual Switch System

IPsec Transport Mode

Time Division Multiplexer

mesh

local

bridge

point-to-point

to uniquely identify clients to monitor their usage patterns

to encrypt data to prevent excessive usage

to contain embedded permissions that automatically expire

to track the geographical location of each request

TCP port 443 and UDP 21 are used.

Control and data traffic encryption are enabled.

The tunnel uses the IPsec protocol for encapsulation.

The tunnel uses the EolP protocol to transmit data traffic.

duplex mismatch

queueing

bad NIC

broadcast storm

Change the IP address to 172.16.1.6 and change the subnet mask to 255.255.255.248.

Change the IP address to 172.16.1.6 and change the DNS servers to 172.16.1.12 and 172.16.1.13.

Change the IP address to 172.16.1.9 and change the default gateway to 172.16.1.7.

Change the IP address to 172.16.1.9 and change the DNS server to 172.16.1.12 only.

10.0.0.2

110

30

2

0

192.168.10.2

24

1

Making routing decisions

Originating packets

Forwarding traffic to the next hop

Exchanging routing table data

It ages out the frame until the MAC address becomes known.

It drops the frame to avoid unnecessary network congestion.

It switches the frame to a predetermined port based on settings.

It floods the frame to all ports except the incoming port.

Syslog defines the software or hardware component that triggered the message.

There are 16 different logging levels (0-15).

By default, all message levels are sent to the syslog server.

The logging level defines the severity of a particular message.

Disable WPA Policy and WPA Encryption and then enable PSK using ASCII.

Enable PSK and FT PSK and then disable WPA Policy.

Disable WPA Encryption and then enable FT PSK.

Enable PSK using Hex format and then disable WPA Policy.

alleviates the shortage of IPv4 addresses

reduces the forwarding table on network routers

enables secure connectivity over the internet

used as the NAT outside global IP address

PBR

FRTS

PQ

CBWFQ

CAR

255.255.255.224

255.255.255.248

255.255.255.0

255.255.255.252

supplying network credentials

role-based access control

agentless deployment

manual playbook runs

launching job templates using version control

F0/8

FO/20

FO/12

FO/17

Policing is not supported on subinterfaces.

Shaping and rate limiting have the same effect.

Shaping drops excessive traffic without adding traffic delay.

Shaping levels out traffic bursts by delaying excess traffic.

Policing is performed in the inbound and outbound directions.

It supports distributed processing for configuration.

It relies on global provisioning and configuration.

It upgrades software and restores files.

It provides orchestration and network automation services.

It uses a single router to route traffic between sites.

It leverages a dedicated connection.

It connects remote networks through a single line.

t delivers redundancy between the central office and branch offices.

It provides direct connections between each router in the topology.

II exclusively predicts device malfunctions.

It enhances data packet delivery speeds.

It simplifies traffic route mapping.

It analyzes patterns for anomaly detection.

interface GigabitEthernet0/0 ip address 10.10.2.10 255.255.252.0

interface GigabitEthernet0/0.3 encapsulation dot1Q 3 native ip address 10.10.2.10 255.255.252.0

interface GigabitEthernet0/0.10 encapsulation dot1Q 3

interface GigabitEthernet0/0.3 encapsulation dot1Q 10 ip address 10.10.2.10 255.255.252.0

provides external internet network connectivity

provides unlimited address ranges

propagates routing information to WAN links

reuses addresses at multiple sites

conserves globally unique address space