200-125 Cisco Certified Network Associate (CCNA) Exam Set 5

You are planning the configuration of an IPsec-protected connection between two routers. You are concerned only with the integrity of the data that passes between the routers. You are less concerned with the confidentiality of the data, and you would like to minimize the effect of IPsec on the data throughput. Which protocol option should you choose?


Options are :

  • Authentication Header (AH) in transport mode
  • Authentication Header (AH) in tunnel mode (Correct)
  • Encapsulating Security Payload (ESP) in transport mode
  • Encapsulating Security Payload (ESP) in tunnel mode

Answer : Authentication Header (AH) in tunnel mode

Which of the following statements is NOT true regarding flow control?


Options are :

  • It uses a cyclic redundancy check (CRC) to identify and remove corrupted data (Correct)
  • It can help avoid network congestion.
  • It determines the rate at which the data is transmitted between the sender and receiver.
  • It manages the data transmission between devices

Answer : It uses a cyclic redundancy check (CRC) to identify and remove corrupted data

You are the network administrator for your company and have configured Cisco Discovery Protocol (CDP) in your network. You recently noticed that when devices send large numbers of CDP neighbor announcements, some devices are crashing. You decide to disable CDP on the router. Which command should you use to achieve the objective?


Options are :

  • no cdp enable
  • no cdp run (Correct)
  • set cdp disable
  • no cdp advertise-v2

Answer : no cdp run

Which command is used to disable Cisco Discovery Protocol (CDP) on a Cisco router?


Options are :

  • no cdp run (Correct)
  • no cdp enable
  • disable cdp
  • no cdp advertise-v2

Answer : no cdp run

Which prompt indicates the configuration mode at which Cisco IOS debug commands can be issued?


Options are :

  • router(config)#
  • router# (Correct)
  • router>
  • router(config-if)#

Answer : router#

You are the network administrator for your company. You recently configured Cisco Discovery Protocol (CDP) in the network. You want to view output regarding all of the neighboring devices discovered by CDP. This information should include network address, enabled protocols, and hold time. Which Cisco Internetwork Operating System (IOS) command would allow you to accomplish this task?


Options are :

  • show cdp neighbors detail (Correct)
  • show cdp entry
  • show cdp neighbor entries
  • show cdp

Answer : show cdp neighbors detail

You are purchasing a device to upgrade your network. You need to determine the type of device required, as well as the number and type of required interfaces. The device will host three LAN subnets and a T1 Internet connection. Which of the following device and interface combinations will support this requirement without providing any unnecessary interfaces or using sub interfaces?


Options are :

  • a router with one serial interface and three Ethernet interfaces (Correct)
  • a switch with one modem and three serial interfaces
  • a switch with one Ethernet interface and three serial interfaces
  • a router with one serial interface and one Ethernet interface

Answer : a router with one serial interface and three Ethernet interfaces

You execute the ping command from a host, but the router does not have a path to its destination. Which of the following ICMP message types will a client receive from the router?


Options are :

  • ICMP destination unreachable (Correct)
  • ICMP redirect
  • ICMP time exceeded
  • ICMP echo-reply

Answer : ICMP destination unreachable

Which of the following is a Point-to-Point Protocol (PPP) authentication protocol that supports sending of hashed values instead of sending passwords in clear text?


Options are :

  • PAP
  • LCP
  • CHAP (Correct)
  • NCP

Answer : CHAP

Which of the following are characteristics of Enhanced Interior Gateway Routing Protocol (EIGRP)? (Choose all that apply.)


Options are :

  • Uses Diffusing Update Algorithm (DUAL) to provide loop prevention (Correct)
  • Can differentiate between internal and external routes (Correct)
  • Supports Message-Digest Algorithm 5 (MD5) authentication (Correct)
  • Uses a 32-bit metric (Correct)
  • Requires a hierarchical physical topology
  • Does not require a hierarchical physical topology

Answer : Uses Diffusing Update Algorithm (DUAL) to provide loop prevention Can differentiate between internal and external routes Supports Message-Digest Algorithm 5 (MD5) authentication Uses a 32-bit metric

Which Cisco Internetwork Operating System (IOS) command can be used to configure the location of the configuration file?


Options are :

  • configure
  • service config
  • boot buffersize
  • boot config (Correct)

Answer : boot config

Which Cisco IOS command is used on a Catalyst 2950 series switch to verify the port security configuration of a switch port?


Options are :

  • show ip interface
  • show port-security interface (Correct)
  • show interfaces port-security
  • show interfaces switchport

Answer : show port-security interface

Which command is NOT mandatory for inclusion in a plan to implement IP Service Level Agreements (SLAs) to monitor IP connections and traffic?


Options are :

  • ip sla schedule
  • ip sla reset (Correct)
  • icmp-echo
  • ip sla

Answer : ip sla reset

You wish to configure Secure Shell (SSH) support on your router so that incoming VTY connections are secure. Which of the following commands must be configured? (Choose all that apply.)


Options are :

  • .transport input ssh (Correct)
  • ip domain-name (Correct)
  • ip access-group
  • crypto key generate rsa (Correct)

Answer : .transport input ssh ip domain-name crypto key generate rsa

You are configuring an authenticated connection between two routers named Tacoma and Lansing. The connection on the Lansing end is correctly set up with a password of keypass. You are directing an assistant to configure the name and password on Tacoma. Which of the following commands would be correct to complete this authenticated connection?


Options are :

  • username Tacoma password keypass
  • username Tacoma keypass password
  • username Lansing password keypass (Correct)
  • username Lansing keypass password

Answer : username Lansing password keypass

If a routing table contains multiple routes for the same destination, which were inserted by the following methods, which route will the router use to reach the destination network?


Options are :

  • The route inserted by RIP
  • The route configured as a static route (Correct)
  • The route inserted by BGP
  • The route inserted by OSPF

Answer : The route configured as a static route

Which Cisco IOS command allows you to change the setting of the configuration register?


Options are :

  • config-register (Correct)
  • configuration-register edit
  • edit configuration-register
  • boot config

Answer : config-register

You instructed your assistant to add a new router to the network. The routers in your network run OSPF. The existing router, OldRouter, is configured as follows: router ospf 1 network 192.168.5.0 0.0.0.255 area 0 network 192.168.10.0 0.0.0.255 area 0 The OldRouter interface that connects to NewRouter is 192.168.5.3/24. Your assistant shows you the configuration that will be implemented: newrouter(config)# router ospf 1 newrouter(config-router)# network 192.168.5.0 255.255.255.0 area 0 What is wrong with this configuration?


Options are :

  • The process ID number is incorrectly configured.
  • The area ID is incorrectly configured.
  • The wildcard mask is incorrectly configured (Correct)
  • The network statement is incorrectly configured.

Answer : The wildcard mask is incorrectly configured

You have a router that is not syncing with its configured time source. Which of the following is NOT a potential reason for this problem?


Options are :

  • The IP address configured for the time source is incorrect
  • There is an access list that blocks port 123
  • NTP authentication is failing
  • The reported stratum of the time source is 12 (Correct)

Answer : The reported stratum of the time source is 12

What Cisco Catalyst switch feature can be used to define ports as trusted for DHCP server connections?


Options are :

  • port security
  • 802.1x
  • private VLANs
  • DHCP snooping (Correct)

Answer : DHCP snooping

Which Cisco Internetwork Operating System (IOS) command is used to assign a router a name for identification?


Options are :

  • banner motd
  • hostname (Correct)
  • banner exec
  • description

Answer : hostname

You want to encrypt and transmit data between peer routers with high confidentiality. Which protocol option should you choose?


Options are :

  • Encapsulating Security Payload (ESP) in tunnel mode (Correct)
  • Encapsulating Security Payload (ESP) in transport mode
  • Authentication Header (AH) in tunnel mode
  • Authentication Header (AH) in transport mode

Answer : Encapsulating Security Payload (ESP) in tunnel mode

Which of the following is NOT a mode of Dynamic Trunking Protocol (DTP)?


Options are :

  • nonegotiate
  • dynamic auto
  • dynamic trunk (Correct)
  • dynamic desirable

Answer : dynamic trunk

Which Cisco IOS command is used to view the information about the interfaces on which Cisco Discovery Protocol (CDP) is enabled?


Options are :

  • show cdp
  • show cdp interfaces
  • show cdp interface (Correct)
  • show interfaces

Answer : show cdp interface

Which of the following is NOT a characteristic of Open Shortest Path First (OSPF)?


Options are :

  • Supports authentication
  • Is a Cisco-proprietary routing protocol (Correct)
  • Uses cost as the default metric
  • Has a default administrative distance of 110

Answer : Is a Cisco-proprietary routing protocol

Which command would be used to establish static translation between an inside local address and an inside global address?


Options are :

  • Router(config)# ip source nat inside static local-ip global-ip
  • Router(config)# ip nat inside static source local-ip global-ip
  • Router(config)# ip nat static inside source local-ip global-ip
  • Router(config)# ip nat inside source static local-ip global-ip (Correct)

Answer : Router(config)# ip nat inside source static local-ip global-ip

Which Wide Area Network (WAN) switching technology is used by Asynchronous Transfer Mode (ATM)?


Options are :

  • cell switching (Correct)
  • packet switching
  • circuit switching
  • virtual switching

Answer : cell switching

You receive the following error message after addressing and enabling an interface: %192.168.16.0 overlaps with FastEthernet0/0 Which two are NOT the causes of the error message? (Choose two.)


Options are :

  • incorrect encapsulation configured (Correct)
  • incorrect subnet mask in the new interface
  • failure to issue the no shutdown command (Correct)
  • incorrect IP address on the new interface

Answer : incorrect encapsulation configured failure to issue the no shutdown command

With which type of service is bandwidth and latency the biggest consideration?


Options are :

  • telnet sessions
  • authentication traffic
  • FTP transfers
  • streaming video (Correct)

Answer : streaming video

Refer to the following configuration on a Cisco router to allow Telnet access to remote users: Router(config)#line vty 0 2 Router(config-line)#login Router(config-line)#password guest How many users can Telnet into this router at the same time?


Options are :

  • 5
  • 3 (Correct)
  • 0
  • 2
  • 1

Answer : 3

Comment / Suggestion Section
Point our Mistakes and Post Your Suggestions