300-320 Designing Cisco Network Service Architectures Exam Set 2

A Layer 2 switch in the network has recently started broadcasting traffic out of every port and is impacting network performance. The engineering department determines that a MAC overflow attack is the cause. Which two features can protect and mitigate the damage of the attacks? (Choose two.)


Options are :

  • A,B
  • SPAN
  • Port Security
  • Storm Control
  • IP Source Guard
  • VACLs
  • BPDU Filters

Answer : A,B

210-260 Implementing Cisco Network Security Practice Exam Set 5

A network engineer is designing a network that must incorporate active-active redundancy to eliminate disruption when a link failure occurs between the core and distribution layer. What two technologies will allow this? (Choose two.)


Options are :

  • Hot Standby Routing Protocol (HSRP)
  • Rapid Spanning Tree Protocol (RSTP)
  • Multichassis EtherChannel (MEC)
  • Equal Cost Multi-Path (ECMP)
  • C,E
  • Rapid Spanning Tree Protocol Plus (RSTP+)

Answer : C,E

What is the correct state between two BGP peers that are neighbors?


Options are :

  • established
  • up
  • active
  • operational

Answer : established

Which option is the Cisco recommendation for data oversubscription for access ports on the access-to-distribution uplink?


Options are :

  • 10 to 1
  • 4 to 1
  • 16 to 1
  • 20 to 1

Answer : 20 to 1

642-732 Conducting Cisco Unified Wireless Site Survey Exam Set 5

A customer with a single Cisco Adaptive Security Appliance wants to separate multiple segments of the e-commerce network to allow for different security policies. What firewall technology accommodates these design requirements?


Options are :

  • virtual private network
  • virtual contexts
  • admission control
  • private VLANs

Answer : virtual contexts

OSPF stub areas are an important tool for the Network designer; which of the following two should be considered when utilizing OSPF stub areas? (Choose two)


Options are :

  • OSPF not so stubby areas are particularly useful as a simpler form of summarization
  • OSPF totally stubby areas cannot distinguish among ABRs for the best route to destinations outside the area
  • OSPF stub areas are always insulated from external changes
  • C,D
  • OSPF stub areas increase the size of the LSDB with the addition of Type 3 and 5 LSAs
  • OSPF stub areas can distinguish among ASBRs for destinations that are external to the OSPF domain

Answer : C,D

Which two statements about both FCIP and iSCSI are correct? (Choose two.)


Options are :

  • B,D
  • Their purpose is to provide connectivity between separate wide-area SANs.
  • Their purpose is to provide connectivity between host and storage.
  • They support file-level storage for remote devices.
  • They support block-level storage for remote devices.
  • They require high throughput with low latency and low jitter.

Answer : B,D

Cisco Data Center Architecture Set 3

Which option is a benefit of the vPC+ feature?


Options are :

  • This feature provides fault domain separation.
  • Cisco FabricPath is not required in the network domain.
  • Nonfabric devices, such as a server or a classic Ethernet switch, can be connected to two fabric switches that are configured with vPC.
  • The control plane and management plane are combined into one logical plane.

Answer : Nonfabric devices, such as a server or a classic Ethernet switch, can be connected to two fabric switches that are configured with vPC.

Which Layer 2 messaging protocol maintains VLAN configuration consistency?


Options are :

  • VTP
  • CDP
  • LLDP
  • VSS

Answer : VTP

Which three options are basic design principles of the Cisco Nexus 7000 Series for data center virtualization? (Choose three.)


Options are :

  • cost minimization
  • easy management
  • transport flexibility
  • operational continuity
  • B,E,F
  • infrastructure scalability
  • upgrade of technology

Answer : B,E,F

200-105 Inter connecting Cisco Networking Devices Exam Set 2

Which option is an advantage of using PIM sparse mode instead of PIM dense mode?


Options are :

  • It floods all multicast traffic throughout the network.
  • No RP is required.
  • IGMP is not required.
  • There is reduced congestion in the network.

Answer : There is reduced congestion in the network.

Which unique characteristics of the Data Center Aggregation layer must be considered by an Enterprise Campus designer?


Options are :

  • "East-west" server-to-server traffic can travel between aggregation modules by way of the core, but backup and replication traffic typically remains within an aggregation module.
  • Layer 3 routing between the Access and Aggregation layers facilitates the ability to span VLANs across multiple access switches, which is a requirement for many server virtualization and clustering technologies.
  • Load balancing, firewall services, and other network services are commonly integrated by the use of service modules that are inserted in the aggregation switches.
  • Virtualization tools allow a cost effective approach for redundancy in the network design by using two or four VDCs from the same physical switch.

Answer : Load balancing, firewall services, and other network services are commonly integrated by the use of service modules that are inserted in the aggregation switches.

Which two key components are related to one firewall per ISP design option for e- commerce? (Choose two.)


Options are :

  • Any failure on an edge router results in a loss of session.
  • This approach is commonly used in large sites.
  • C,D
  • It is a common approach to single-homing.
  • It is difficult to set up and administer.
  • It has one NAT to two ISP-assigned blocks.

Answer : C,D

200-125 Cisco Certified Network Associate Practice Exam Set 8

Which two of these correctly describe asymmetric routing and firewalls? (Choose two.)


Options are :

  • C,D
  • operational in both failover and non-failover configurations
  • only eight interfaces can belong to an asymmetric routing group
  • only operational in transparent mode
  • only operational in routed mode
  • only operational when the firewall has been configured for failover

Answer : C,D

When considering the design of the E-Commerce topology which of the following are true?


Options are :

  • In all cases there will be configuration requirements for direct access to any servers or for nonload-balanced sessions initiated by the servers
  • One-armed SLB design with multiple security contexts removes the need for a separate firewall in the core layer
  • Two-firewall-layer SLB design considers the aggregation and access layers to be trusted zones, requiring no security between the web, application, and database zones
  • One-armed SLB design with two firewall layers ensures that non load-balanced traffic still traverses the ACE so that the health and performance of the servers is still being monitored

Answer : One-armed SLB design with multiple security contexts removes the need for a separate firewall in the core layer

Which protocol will not adhere to the design requirement of the control plane being either separated or combined within a virtualization technology?


Options are :

  • CEF
  • NSF with SSO
  • STP
  • FHRP

Answer : STP

200-310 Designing for Cisco Inter network Solutions Exam Set 3

There are 3 steps to confirm whether a range of IP addresses can be summarized. Which of the following is used in each of these 3 steps?


Options are :

  • The size of the contiguous block of addresses
  • The last number in the contiguous block of addresses
  • The subnet mask of the original network address
  • The first number in the contiguous block of addresses

Answer : The size of the contiguous block of addresses

Why is QoS important for in-band management?


Options are :

  • It supports proper routing.
  • It supports network redundancy.
  • It supports network security against DoS attacks and worm outbreaks.
  • It supports remote management when traffic volume is high.

Answer : It supports remote management when traffic volume is high.

Which multicast implementation strategy provides load sharing and redundancy by configuring intradomain RPs as MSDP peers?


Options are :

  • static RP
  • auto-RP
  • anycast RP
  • bootstrap router

Answer : anycast RP

200-125 Cisco Certified Network Associate Practice Exam Set 1

Two recently merged companies are using EIGRP and RIP. Which two strategies can facilitate a smooth migration? (Choose two.)


Options are :

  • Add EIGRP and then remove RIP on the acquired company network.
  • Use the EIGRP administrative distance to migrate one site at a time.
  • B,C
  • Redistribute routing information between the RIP and EIGRP protocols.
  • Create an OSPF instance between EIGRP and RIP routing domains.
  • Use static routes in place of dynamic routing between companies.

Answer : B,C

When designing a layer 2 STP-based LAN with Layer 3 FHRP, which design recommendation should be followed?


Options are :

  • Align the STP root with the active FHRP device.
  • Assign the native VLAN to the lowest number in use.
  • Avoid modifying default STP and FHRP timers.
  • Avoid configuring router preemption.

Answer : Align the STP root with the active FHRP device.

300-115 Implementing Cisco IP Switched Network Practice Exam Set 1

Summary address blocks can be used to support which network application?


Options are :

  • Cisco TrustSec
  • QoS
  • NAT
  • DiffServ
  • IPsec tunneling

Answer : NAT

From a design perspective which two of the following OSPF statements are most relevant? (Choose two)


Options are :

  • OSPF cannot filter intra-area routes
  • An ABR can only exist in two areas - the backbone and one adjacent area
  • Performance issues in the Backbone area can be offset by allowing some traffic to transit a non-backbone area
  • A,B
  • OSPF stub areas can be thought of as a simple form of summarization
  • The size of an area (the LSDB) will be constrained by the size of the IP MTU

Answer : A,B

Which two ways to manage scalability issues inside an IBGP domain with 20 or more routers are recommended? (Choose two.)


Options are :

  • Configure static routes between all routers.
  • Use OSPF instead of EIGRP as an underlying routing protocol.
  • A,D
  • Configure route reflectors.
  • Configure confederations.
  • Create a full mesh at Layer 1.

Answer : A,D

300-115 Implementing Cisco IP Switched Network Practice Exam Set 1

Support of vPC on the Cisco Nexus 5000 access switch enables various new design options for the data center Access layer, including which of the following?


Options are :

  • A single switch can associate per-interface with more than one vPC domain
  • vPC can be used on both sides of the MEC, allowing a unique 16-link EtherChannel to be built between the access and aggregation switches
  • The vPC peer link is not required for Access layer control traffic, and can instead be used to span VLANs across the vPC access switches
  • Allows an EtherChannel between a server and a access switch while still maintaining the level of availability that is associated with dual-homing a server to two different access switches

Answer : vPC can be used on both sides of the MEC, allowing a unique 16-link EtherChannel to be built between the access and aggregation switches

Which option is the preferred and most versatile model to deploy IPv6 in existing IPv4 environments?


Options are :

  • service block
  • hybrid
  • processes
  • dual stack

Answer : dual stack

An engineer is attempting to improve OSPF network performance and discovers that the entire SPT recomputes whenever a type 1 or type 2 LSA is received within an area. Which action can optimize SPT operations?


Options are :

  • Summarize networks on all ABRs.
  • Enable incremental SPF.
  • Configure totally stubby areas throughout the domain.
  • Tune LSA throttling thresholds.

Answer : Enable incremental SPF.

200-125 Cisco Certified Network Associate Practice Exam Set 1

EIGRP uses which algorithm to build a routing table?


Options are :

  • Dijkstra's algorithm
  • Diffusing Update Algorithm
  • Johnson's algorithm
  • Floyd-Warshall algorithm

Answer : Diffusing Update Algorithm

A network manager wants to securely connect a new remote site to the existing headquarters site using a VPN technology that meets security requirements. Which VPN technology should be used?


Options are :

  • remote-access VPN
  • GRE
  • L2TP VPN
  • IPsec

Answer : IPsec

Which IPv4 multicast technical component measure provides architectural security?


Options are :

  • IGMP max groups
  • scoped addresses
  • state limit
  • access lists

Answer : scoped addresses

210-260 Implementing Cisco Network Security Practice Exam Set 6

Comment / Suggestion Section
Point our Mistakes and Post Your Suggestions