300-320 Designing Cisco Network Service Architectures Exam Set 4

An engineer is designing a new data center network so that the topology maintains fewer uplinks to the aggregation layer to reduce STP processing requirements. What data center topology meets the RFP requirements?


Options are :

  • top of rack
  • star
  • end of row
  • mesh

Answer : end of row

What is the next action taken by the Cisco NAC Appliance after it identifies a vulnerability on a client device?


Options are :

  • denies the client network resource access
  • permits the client but limits to guest access
  • generates a Syslog message
  • repairs the effected devices

Answer : repairs the effected devices

What are two characteristics of Cisco Global Site Selector? (Choose two.)


Options are :

  • It helps verify end-to-end path availability.
  • B,E
  • It provides traffic rerouting in case of disaster.
  • DNS responsiveness is improved by providing centralized domain management.
  • HSRP, GLBP, and VRRP can be clients of GSS.
  • BGP must be the routing protocol between the distributed data centers.

Answer : B,E

200-125 Cisco Certified Network Associate Practice Exam Set 5

Which statement about Fibre Channel communications is correct?


Options are :

  • It must be implemented in an arbitrated loop.
  • Communication methods are similar to those of an Ethernet bus.
  • Flow control is only provided by QoS.
  • N_Port to N_Port connections use logical node connection points.

Answer : N_Port to N_Port connections use logical node connection points.

Which two of these are correct regarding the recommended practice for distribution layer design? (Choose two.)


Options are :

  • use a redundant link to the core
  • use a Layer 3 link between distribution switches with route summarization
  • never use a redundant link to the core because of convergence issues
  • use a Layer 2 link between distribution switches
  • use a Layer 3 link between distribution switches without route summarization
  • A,D

Answer : A,D

Which option maximizes EIGRP scalability?


Options are :

  • route redundancy
  • route summarization
  • route filtering
  • route redistribution

Answer : route summarization

Cisco 210-060 Implement Collaboration Device Practice Exam Set 1

Which first-hop redundancy protocol that was designed by Cisco allows packet load sharing among groups of redundant routers?


Options are :

  • VSS
  • VRRP
  • HSRP
  • GLBP

Answer : GLBP

Which statement is the most accurate regarding IPsec VPN design for an Enterprise Campus environment?


Options are :

  • VPN device IP addressing must align with the existing Campus addressing scheme.
  • The choice of a hub-and-spoke or meshed topology ultimately depends on the number of remotes.
  • Scaling considerations such as headend configuration, routing protocol choice, and topology have the broadest impact on the design.
  • Sizing and selection of the IPsec VPN headend devices is most affected by the throughput bandwidth requirements for the remote offices and home worker

Answer : Scaling considerations such as headend configuration, routing protocol choice, and topology have the broadest impact on the design.

Which of the following is most accurate with respect to designing high availability within the Enterprise Campus network?


Options are :

  • High availability at and between the Distribution and Access layers is as simple as redundant switches and redundant Layer 3 connections
  • Default gateway redundancy allows for the failure of a redundant Distribution switch without affecting endpoint connectivity
  • Non-deterministic traffic patterns require a highly available modular topology design
  • Distribution layer high availability design includes redundant switches and Layer 3 equal-cost load sharing connections to the switched Access and routed Core layers, with a Layer 3 link between the Distribution switches to support summarization of routing information from the Distribution to the Core

Answer : Default gateway redundancy allows for the failure of a redundant Distribution switch without affecting endpoint connectivity

210-065 Implementing Cisco Video Network Devices Exam Set 1

Which statement best describes Cisco OTV internal interfaces?


Options are :

  • They are Layer 2 interfaces that are configured as either access or trunk interfaces on the switch.
  • They are the interfaces that connect to the ISP.
  • They are interfaces that perform Layer 3 forwarding with aggregation switches.
  • They are tunnel interfaces that are configured with GRE encapsulation.

Answer : They are Layer 2 interfaces that are configured as either access or trunk interfaces on the switch.

Which four options are network virtualization technologies that are employed in the data center? (Choose four.)


Options are :

  • A,B,C,F
  • VRF
  • VRP
  • VLC
  • VLAN
  • VPC
  • VSAN

Answer : A,B,C,F

ICND2 200-105 Certification Practice Tests Set 2

Which three statements about firewall modes are correct? (Choose three.)


Options are :

  • A firewall in transparent mode has one IP address.
  • In transparent mode, the firewall is considered to be a Layer 2 device.
  • B,D,E
  • In transparent mode, the firewall is considered to be a Layer 3 device.
  • In routed mode, the firewall is considered to be a Layer 3 device.
  • A firewall in routed mode has one IP address.
  • In routed mode, the firewall is considered to be a Layer 2 device.

Answer : B,D,E

Click the Exhibit button.
Refer to the exhibit. Which Layer 2 feature detects a link failure between the switch and
router B that decreases OSPF reconvergence to approximately 50 milliseconds?


Options are :

  • RSTP
  • PVST+
  • UDLD
  • BFD

Answer : BFD

Which protocol is used in an in-band network and why?


Options are :

  • SSH, because the username and password are encrypted
  • MSDP, because it uses TCP as its transport protocol
  • Telnet, because the username and password are sent in clear
  • UDP, because it is connectionless

Answer : SSH, because the username and password are encrypted

210-065 Implementing Cisco Video Network Devices Exam Set 3

The Cisco Nexus 1000V is intended to address which disadvantage of the VMware vSphere solution?


Options are :

  • To increase the number of physical infrastructure and the virtual machines that can be managed
  • Inability to deploy new functional servers without requiring physical changes on the network
  • Network administrators lack control of the access layer of the network
  • Complexity added by the requirement for an ESX host for each virtual machine

Answer : Network administrators lack control of the access layer of the network

Which technology should a network designer combine with VSS to ensure a loop free topology with optimal convergence time?


Options are :

  • RPVST+
  • Portfast
  • Multichassis EtherChannel
  • UplinkFast

Answer : Multichassis EtherChannel

What two sensor types exist in an IDS/IPS solution? (Choose two.)


Options are :

  • network based
  • policy based
  • signature
  • anomaly based
  • A,D
  • host

Answer : A,D

300-320 Designing Cisco Network Service Architectures Exam Set 3

Which STP feature allows an access port to bypass the learning and listening states?


Options are :

  • BPDU Guard
  • PortFast
  • Loop Guard
  • Root Guard

Answer : PortFast

An HSRP design requirement states that preemption must be enabled for the active switch, which is a Cisco 4507R. Assume a boot time of 300 seconds. Which setting of the preemption delay timer minimizes the loss of traffic?


Options are :

  • 200 seconds
  • 50 seconds
  • 100 seconds
  • 150 seconds

Answer : 150 seconds

Which two ways to support secure transport of multicast traffic are true? (Choose two.)


Options are :

  • Use IPsec over GRE tunnel.
  • Use NBMA instead of broadcast.
  • Use spoke-to-spoke design.
  • B,C
  • Use GET VPN.
  • Disable encryption for multicast traffic.

Answer : B,C

Cisco 300-209 Implementing Secure Mobility Solutions Exam Set 6

A network engineer is designing an address plan based on network applications. Which application presents the greatest need for its own address block?


Options are :

  • multicast
  • management
  • IP telephony
  • physical security

Answer : IP telephony

Which STP feature can prevent other switches on the network from becoming the root switch, but still allow that interface to participate in STP otherwise?


Options are :

  • Bridge Assurance
  • UDLD
  • BPDU Guard
  • Root Guard

Answer : Root Guard

A network engineer must perform posture assessments on Cisco ASA remote access VPN clients and control their network access based on the results. What mode is the Cisco best practice NAC deployment design for this situation?


Options are :

  • Layer 3 in-band virtual gateway mode
  • Layer 2 in-band real IP gateway mode
  • Layer 3 out-of-band virtual gateway mode
  • Layer 2 out-of-band real IP gateway mode

Answer : Layer 3 in-band virtual gateway mode

Cisco 300-209 Implementing Secure Mobility Solutions Exam Set 3

A network engineer is implementing virtualization into the enterprise network. Which system should be used to address policy enforcement at the distribution layer?


Options are :

  • integrated firewall services
  • identity services engine
  • Cisco IOS based firewall
  • multilayer switches
  • intrusion protection systems

Answer : integrated firewall services

Which option is a method of restricting access for users based on user roles and locales?


Options are :

  • LDAP
  • RADIUS
  • ACE
  • RBAC

Answer : RBAC

A BGP network is having difficulty scaling with the full mesh peer requirement. What two iBGP alternates can scale BGP appropriately? (Choose two.)


Options are :

  • confederations
  • peer templates
  • route reflectors
  • communities
  • B,C
  • peer groups

Answer : B,C

Cisco 100-101 Interconnecting Cisco Networking Devices Exam Set 2

Source traffic is sent to a VIP on an SLB device, which in turn is routed to the destination server. Return traffic is policy-based routed back to the SLB. Which SLB design has been implemented?


Options are :

  • inline bridge mode
  • router mode
  • one-armed mode
  • two-armed mode

Answer : two-armed mode

Which IPv6 transition model should be utilized when two or more independent transition mechanisms are required?


Options are :

  • dual stack
  • tunneling
  • manual
  • hybrid
  • service block

Answer : hybrid

When designing the routing for an Enterprise Campus network it is important to keep which of the following route filtering aspects in mind?


Options are :

  • It is best to filter (allow) the default and summary prefixes only in the Enterprise Edge to remote sites or site-to-site IPsec VPN networks
  • IGPs (for example EIGRP or OSPF) are superior to route filtering in avoiding inappropriate transit traffic through remote nodes or inaccurate or inappropriate routing updates
  • The primary limitation of router filtering is that it can only be applied on outbound updates
  • Filtering is only useful when combined with route summarization

Answer : It is best to filter (allow) the default and summary prefixes only in the Enterprise Edge to remote sites or site-to-site IPsec VPN networks

400-101 CCIE Routing and Switching Written Practice Exam Set 6

Which practice is recommended when designing scalable OSPF networks?


Options are :

  • Maximize the number of routers in an area.
  • Minimize the number of areas supported by an ABR.
  • Minimize the number of ABRs.
  • Maximize the number of router adjacencies.

Answer : Minimize the number of areas supported by an ABR.

Comment / Suggestion Section
Point our Mistakes and Post Your Suggestions