Practice Free 200-301 Implementing and Administering Cisco Solutions (200-301 CCNA) v1.1 Exam Questions Answers With Explanation

propagates VLAN information between switches

listens to multicast traffic for packet forwarding

provides DDoS mitigation

rate-limits certain traffic

Traffic to 10.10.13.0.25 is load balanced out of multiple interfaces

Route 10.10.13.0/25 is updated in the routing table as being learned from interface Gi0/1.

Traffic to 10.10.13.0/25 is asymmeteical

Route 10.10.13.0/25 learned via the GiO/0 interface remains in the routing table

Only traditional networks offer a centralized control plane

Only traditional networks natively support centralized management

Traditional and controller-based networks abstract policies from device configurations

Only controller-based networks decouple the control plane and the data plane

FIFO

WFQ

PQ

WRED

They enable automatic failover of the default gateway.

They allow multiple devices to serve as a single virtual gateway for clients in the network.

They are able to bundle multiple ports to increase bandwidth.

They prevent loops in the Layer 2 network.

They allow encrypted traffic.

to reduce interference

to allow for channel bonding

to stabilize the RF environment

to increase bandwidth

Option

Option

Option

Option

service port

virtual

AP-Manager

dynamic

/64

/96

/124

/128

SNMP traps are used for proactive monitoring, and SNMP polling is used for reactive monitoring.

SNMP traps send periodic updates via the MIB, and SNMP polling sends data on demand.

SNMP traps are initiated by the network management system, and network devices initiate SNMP polling.

SNMP traps are initiated using a push model at the network device, and SNMP polling is initiated at the server.

Option A

Option B

Option C

Option D

WPA3

WPA

WEP

WPA2

An ICMP connection has been built

A certificate has expired

An interface line has changed status

A TCP connection has been torn down

LC to SC

SC t ST

SC to SC

LC to LC

interface range gigabitethernet0/0/0-15 channel-group 1 mode on

interface range gigabitethernet0/0/0-15 channel-group 1 mode desirable

interface port-channel 1 channel-group 1 mode auto

interface port-channel 1 channel-group 1 mode passive

GigabitEthernet0/0

GigabltEthornet0/1

GigabitEthernet0/2

GigabitEthernet0/3

forwards traffic to the next hop

constructs a routing table based on a routing protocol

provides CLI access to the network device

looks up an egress interface in the forwarding information base

HTTP

SSH

HTTPS

Telnet

The interface is receiving excessive broadcast traffic.

The cable connection between the two devices is faulty.

The interface is operating at a different speed than the connected device.

The bandwidth setting of the interface is misconfigured

Configure the OSPF priority on router A with the lowest value between the three routers.

Configure router B and router C as OSPF neighbors of router A.

Configure the router A interfaces with the highest OSPF priority value within the area.

Configure router A with a fixed OSPF router ID

ip route 10.1.1.10 255.255.255.255 172.16.2.2 100

ip route 10.1.1.0 255.255.255.0 gi0/1 125

ip route 10.1.1.0 255.255.255.0 172.16.2.2 100

ip route 10.1.1.10 255.255.255.255 gi0/0 125

to provide end users with a virtual gateway in a multivendor network

to leverage a weighting scheme to provide uninterrupted service

to detect link failures without the overhead of Bidirectional Forwarding Detection

to hand over to end users the autodiscovery of virtual gateways

ESX host

resolver

web

file transfer

authentication

ipconfig /all

ifconfig -a

show interface

netstat -r

when the subnet must be available only within an organization

when the subnet does not need to be routable

when the addresses on the subnet must be equivalent to private IPv4 addresses

when the subnet must be routable over the internet

Option A

Option B

Option C

Option D

Cloud-based mode APs are easy to deploy but harder to automate than APs in autonomous mode.

Autonomous mode APs are easy to deploy and automate than APs in cloud-based mode.

key

array

value

object

They use HTTP messages to communicate.

They enable communication between the controller and the network device.

They convey information from the controller to the SDN applications.

They communicate with the management plane.

The APs must be connected to the switch with multiple links in LAG mode

The switch port mode must be set to trunk

The native VLAN must match the management VLAN of the AP

IEEE 802.10 trunking must be disabled on the switch port.

Enable LLDP globally.

Disable CDP on gi0/0.

Enable LLDP TLVs on the ISP router.

Disable auto-negotiation.

Option A

Option B

Option C

Option D

Option E

ipv6 route ::/0 Serial 0/0/0

ipv6 route 0.0.0.0 0.0.0.0 Serial 0/0/0

ipv6 route ::/0 2000::2

ipv6 route ::/0 Serial 0/0/1

10.10101

10.10.10.11

10.10.10.12

10.101014

flexibility of design

simplicity of configurator

low cost

full-mesh capability

DHCPREQUEST

DHCPDISCOVER

DHCPACK

DHCPOFFER

Option A

Option B

Option C

Option D

Assign traffic from the backup servers to a dedicated switch.

Configure a dedicated circuit for the backup traffic.

Place the backup servers in a dedicated VLAN.

Advertise a more specific route for the backup traffic via the secondary circuit.

If will choose the route with the longest match.O 100.100.100.100'32 (110/21) via 192.168.1.1. 00:05:57. EmernetO/1.

It will always prefer the static route over dynamic routes and choose the routeS 100.100.0.0/16(1/0] via 192.168.4.1.

It will choose the route with the highest metric.D 100.100.100.0/24 (90/435200) via 192.168.2.1. 00:00:13. EthernetO/2.

It will choose the route with the lowest metric,R 100.0.0.0/8 [120/2] via 192.168.3.1. 00:00:13. EthernetO/3.

array

object

Boolean

string

pipe

control

transport

tunnel

Generic Router Encapsulation (GRE)

Virtual Local Area Network (VLAN)

Virtual Extensible LAN (VXLAN)

Point-to-Point Protocol

northbound interface

software virtual interface

southbound interface

tunnel Interface

FlexConnect

SE-Connect

bridge

local

array

key

value

object

B.

C.

D.

GET, POST, MOD, ERASE

GET, POST, ERASE, CHANGE

GET, PUT, POST, DELETE

GET, PUT, ERASE, CHANGE

Option A

Option B

Option C

Option D

Select the WPA Policy option with the CCKM option.

Disable AES encryption.

Enable Fast Transition and select the FT 802.1x option.

Enable Fast Transition and select the FT PSK option.

Configure router A to use the same MTU size as router B.

Set the router B OSPF ID to a nonhost address.

Configure a point-to-point link between router A and router B.

Set the router B OSPF ID to the same value as its IP address

The Incoming and outgoing ports for traffic flow must be specified If LAG Is enabled.

The controller must be rebooted after enabling or reconfiguring LAG.

The management interface must be reassigned if LAG disabled.

Multiple untagged interfaces on the same port must be supported.

ISATAP

GRE over iPsec

iPsec over ISATAP

GRE

200

301

404

500

0050.0c05.ad81

0007.c061.bc01

0000.5E00.0101

0500.3976.6401

listening

blocking

forwarding

learning

speaking

There is a native VLAN mismatch

Access mode is configured on the switch ports.

The PCs are m the incorrect VLAN

All VLANs are not enabled on the trunk

Virtualized servers run most efficiently when they are physically connected to a switch that is separate from the hypervisor

The hypervisor can virtualize physical components including CPU. memory, and storage

Each hypervisor can support a single virtual machine and a single software switch

The hypervisor communicates on Layer 3 without the need for additional resources

Network devices use different services like SNMP, syslog, and streaming telemetry to send data to the controller

Devices establish an iPsec tunnel to exchange data with the controller

Devices use the call-home protocol to periodically send data to the controller.

The Cisco CU Analyzer tool gathers data from each licensed network device and streams it to the controller.

password-encrypt

enable password-encryption

enable secret

service password-encryption

broadband cable access

frame-relay packet switching

dedicated point-to-point leased line

Integrated Services Digital Network switching.

ipv6 address dhcp

ipv6 address 2001:DB8:5:112::/64 eui-64

ipv6 address autoconfig

ipv6 address 2001:DB8:5:112::2/64 link-local

interface gi0/1no cdp enable

interface gi0/1clear cdp table

interface gi0/0no cdp advertise-v2

interface gi0/0no cdp run

Configure the ports in an EtherChannel.

Administratively shut down the ports

Configure the port type as access and place in VLAN 99

Configure the ports as trunk ports

Enable the Cisco Discovery Protocol

TCP is reliable and is a connection-oriented protocol UDP is not reliable and is a connectionless protocol

TCP is not reliable and is a connection-oriented protocol; UDP is reliable and is a connectionless protocol

TCP is not reliable and is a connectionless protocol; UDP is reliable and is a connection-oriented protocol

TCP is reliable and is a connectionless protocol; UDP is not reliable and is a connection-oriented protocol

Each leaf switch is connected to one of the spine switches.

Each leaf switch is connected to two spine switches, making a loop.

Each leaf switch is connected to each spine switch.

Each leaf switch is connected to a central leaf switch, then uplinked to a core spine switch.

uses predefined tags or angle brackets () to delimit markup text

used to describe structured data that includes arrays

used for storing information

similar to HTML, it is more verbose than XML

The wireless network becomes vulnerable to unauthorized access.

Wireless devices are unable to distinguish between different SSIDs

Users experience poor wireless network performance.

Network communications are open to eavesdropping.

Data collection and analysis tools establish a baseline for the network

Artificial intelligence identifies and prevents potential design failures.

Machine learning minimizes the overall error rate when automating troubleshooting processes

New devices are onboarded with minimal effort

Proprietary Cisco APIs leverage multiple network management tools.

Ipv6 route 2001:db8:23::/128 fd00:12::2

Ipv6 route 2001:db8:23::14/128 fd00:13::3

Ipv6 route 2001:db8:23::14/64 fd00:12::2

Ipv6 route 2001:db8:23::/64 fd00:12::2

Ipv6 route 2001:db8:23::14/64 fd00:12::2 200

alert

critical

notice

debug

expedited forwarding

traffic policing

round-robin scheduling

low-latency queuing

Enable the allow AAA Override

Enable the Even: Driven RRM.

Disable the LAG Mode or Next Reboot.

Enable the Authorized MIC APs against auth-list or AAA.

One functional physical port is needed to pass client traffic.

The EthernetChannel must be configured in "mode active".

When enabled, the WLC bandwidth drops to 500 Mbps.

To pass client traffic, two or more ports must be configured.

CPU ACL

TACACS

Flex ACL

RADIUS

switch(config)#spanning-tree vlan 1 max-age 6

switch(config)#spanning-tree vlan 1 hello-time 10

switch(config)#spanning-tree vlan 1 priority 4096

switch(config)#spanning-tree vlan 1 forward-time 20

group access points together to increase throughput on a given channel

configure the first three access points are configured to use Channels 1, 6, and 11

include a least two access points on nonoverlapping channels to support load balancing

assign physically adjacent access points to the same Wi-Fi channel

communicates between the controller and the physical network hardware

reports device errors to a controller

generates statistics for network hardware and traffic

facilitates communication between the controller and the applications

centralize the management of access points in an enterprise network

support standalone or controller-based architectures

serve as the first line of defense in an enterprise network

provide secure user logins to devices on the network.

OSPF area

OSPF MD5 authentication key

iPv6 address

OSPf process ID

OSPf stub flag

Switch(config)#spanning-tree vlan 750 priority 38003685

Switch(config)#spanning-tree vlan 750 root primary

Switch(config)#spanning-tree vlan 750 priority 614440

Switch(config)#spanning-tree vlan 750 priority 0

initiates a ping request to the URL

prompts the user to specify the desired IP address

continuously attempts to resolve the URL until the command is cancelled

sends a broadcast message in an attempt to resolve the URL

The phone and a workstation that is connected to the phone do not have VLAN connectivity

The phone and a workstation that is connected to the phone send and receive data in VLAN 50.

The phone sends and receives data in VLAN 50, but a workstation connected to the phone has no VLAN connectivity

The phone sends and receives data in VLAN 50, but a workstation connected to the phone sends and receives data in VLAN 1

192.168.12.2

192.168.13.3

192.168.14.4

192.168.15.5

It allows the traffic to pass through unchanged

It drops the traffic

It tags the traffic with the default VLAN

It tags the traffic with the native VLAN

The application requires an administrator password to reactivate after a configured Interval.

The application requires the user to enter a PIN before it provides the second factor.

The application challenges a user by requiring an administrator password to reactivate when the smartphone is rebooted.

The application verifies that the user is in a specific location before it provides the second factor.

R1(config)# interface fa0/0R1(config-if)# ip helper-address 198.51.100.100

R2(config)# interface gi0/0R2(config-if)# ip helper-address 198.51.100.100

R1(config)# interface fa0/0R1(config-if)# ip address dhcpR1(config-if)# no shutdown

R2(config)# interface gi0/0R2(config-if)# ip address dhcp

R1(config)# interface fa0/0R1(config-if)# ip helper-address 192.0.2.2

It is owned and maintained by one party, but it is shared among multiple organizations.

It enables an organization to fully customize how It deploys network resources.

It provides services that are accessed over the Internet.

It Is a data center on the public Internet that maintains cloud services for only one company.

It supports network resources from a centralized third-party provider and privately-owned virtual resources

1

2

3

4

source MAC address and aging time

destination MAC address and flush time

source MAC address and source port

destination MAC address and destination port

Faster changes with more reliable results

Reduced operational costs

Fewer network failures

Reduced hardware footprint

Increased network security

the 10.0.0.0 network

a single destination address

the source 10.0.1.100

all hosts in the 10.0.1.0 subnet

forwarding mode and provides the lowest-cost path to the root bridge for each VLAN

learning mode and provides the shortest path toward the root bridge handling traffic away from the LAN

blocking mode and provides an alternate path toward the designated bridge

listening mode and provides an alternate path toward the root bridge

10.10.10.1

10.10.10.11

10.10.10.12

10.10.10.14

Alert

Error

Emergency

Critical

disabled

listening

forwarding

learning

blocking

username CNAC secret R!41!4319115@

ip ssh version 2

line vty 0 4

crypto key generate rsa 1024

transport input ssh

to configure an Interface as a DHCP server

to configure an interface as a DHCP helper

to configure an interface as a DHCP relay

to configure an interface as a DHCP client

F0/10

F0/11

F0/12

F0/13

Change the channel-group mode on SW2 to auto

Change the channel-group mode on SW1 to desirable.

Configure the interface port-channel 1 command on both switches.

Change the channel-group mode on SW1 to active or passive.

Option A

Option B

Option C

Option D

makes forwarding decisions based on learned MAC addresses

serves as a controller within a controller-based network

integrates with a RADIUS server to enforce Layer 2 device authentication rules

correlates user activity with network events

different security settings

discontinuous frequency ranges

different transmission speeds

unique SSIDs

Option A

Option B

Option C

Option D

straight-through

rollover

crossover

console

Faster changes with more reliable results

Reduced operational costs

Fewer network failures

Reduced hardware footprint

Increased network security

Traditional campus device management schemes typically deploy patches and updates quicker than Cisco DNA Center device management.

Cisco DNA Center device management is implemented at a lower cost than most traditional campus device management options.

Traditional campus device management allows a network to scale quicker than using Cisco DNA Center device management.

Cisco DNA Center device management deploys a network faster than traditional campus device management.

It uses preshared keys for encryption

It requires both sides to have identical keys

It is a private-key encryption algorithm

It is a public-key cryptosystem

Generic Router Encapsulation (GRE)

Virtual Local Area Network (VLAN)

Virtual Extensible LAN (VXLAN)

Point-to-Point Protocol

flexibility of design

simplicity of configurator

low cost

full-mesh capability

Enable local HTTP profiling.

Enable Disassociation Imminent.

Enable FlexConnect Local Switching.

Enable local DHCP Profiling.

Place the AP into manual containment.

Remove the AP from WLC management.

Manually remove the AP from Pending state.

Set the AP Class Type to Friendly.

to protect against default gateway failures

to prevent loops in a network

to enable multiple switches to operate as a single unit

to provide load-sharing for a multilink segment

It replaces the designated port when the designated port fails

It is the best path to the root from a nonroot switch.

It replaces the designated port when the root port fails.

It is administratively disabled until a failover occurs.

WPA3 um AES for stronger protection than WPA2 which uses SAE

WPA2 uses 1 M-bit key encryption and WPA3 requires 256-brt key encryption

WPA3 uses AES for stronger protection than WPA2 which uses TKIP WPA3 uses

SAE tor stronger protection than WPA2 which uses AES

WPA2 uses 12B-M key encryption and WPA3 supports 128 bit and 192 bit key encryption

It enables dynamic flow identification.

It enables policy-based routing.

It provides best-effort service.

It limits bandwidth usage.

A packet sent to an IPv6 multicast address is delivered to one or more destinations at once, but a packet sent to an IPv6 anycast address is routed to the closest interface with that address.

An IPv6 multicast address uses the prefix 2002::/15 and forwards to one destination, and an IPv6 anycast address uses the prefix ff00::/8 and forwards to any destination in a group.

IPv6 multicast addresses are used to transition from IPv4 to IPv6, and IPv6 anycast addresses are used for address aggregation in an IPv6-only environment.

An IPv6 multicast address is assigned to numerous interfaces within a subnet, but an IPv6 anycast address is used for a predefined group of nodes in an all-IPv6 routers group.

Option A

Option B

Option C

Option D

Get

GetNext

Set

GetBulk

Inform

The switch references the MAC address aging table for historical addresses on the port that received the frame.

The switch floods the frame to all ports in all VLANs except the port that received the frame

The switch drops the frame and learns the destination MAC address again from the port that received the frame

The switch floods the frame to all ports in the VLAN except the port that received the frame.

SSH connection to the management IP of the AP

EolP connection via the parent WLC

CAPWAP/LWAPP connection via the parent WLC

HTTPS connection directly to the out-of-band address of the AP

The link is in a down state.

The link is in an error disables state

The link is becomes an access port.

The link becomes a trunk port.

The switch rewrites the source and destination MAC addresses with its own.

The source MAC address is changed.

The source and destination MAC addresses remain the same.

The destination MAC address is replaced with ffff.ffff.ffff.

Ipv6 address 2001:dbB:d8d2:1008:4343:61:0010::/64

Ipv6 address autoconfig

Ipv6 address fe80::/10

Ipv6 address dhcp

Controller-based networks centralize all important data-plane functions, and traditional networks distribute data-plane functions.

Controller-based networks centralize all important control-plane functions, and traditional networks distribute control-plane functions.

Traditional networks centralize all important control-plane functions, and controller-based networks distribute control-plane functions.

Traditional networks centralize all important data-plane functions, and controller-based networks distribute data-plane functions.

Changes can be implemented in parallel across multiple devices at once, which increases the speed of the change rate.

By using automation platforms with intent-based configuration, all changes are checked for possible outages before being implemented.

Emails can be generated based on when a network admin performs a network change, which increases visibility.

Configuration templates and testing can be built into implementation, which increases the success rate of a network change.

conserve public IPv4 addressing

preserve public IPv6 address space

reduce instances of overlapping IP addresses

support the NAT protocol

virtual routing and forwarding

network port ID visualization

virtual device contexts

server visualization

SNMP

DNS lookup

syslog

NTP

a DHCP Relay Agent

DHCP Binding

a DHCP Pool

DHCP Snooping

read

update

create

delete

/29

/30

/27

/28

application-facing interface for SNMP GET requests

network-element-facing interface for GET POST PUT and DELETE methods

network-element-facing interface for the control and data planes

application-facing interface far GET, POST, PUT, and DELETE methods

on

active

auto

passive

interface GigabitEthernet0/0/1channel-group 10 mode on

interface GigabitEthernet0/0/1channel-group 10 mode active

interface GigabitEthernet0/0/1channel-group 10 mode auto

interface port-channel 10switchportswitchport mode trunk

interface port-channel 10no switchportip address 172.16.0.1.255.255.255.0

overlay

northbound

underlay

southbound

local port ID

lowest path cost to the root bridge

lowest neighbor's bridge ID

lowest neighbor's port ID

local port ID

lowest path cost to the root bridge

lowest neighbor's bridge ID

lowest neighbor's port ID

configure port in the native VLAN

configure ports in a black hole VLAN

configure in a nondefault native VLAN

configure ports as access ports

Switch trunk allowed vlan 12

Switchport trunk allowed vlan none

Switchport trunk allowed vlan add 13

Switchport trunk allowed vlan remove 10-11

Reassociation Request

Probe Request

Authentication Request

Association Request

Local AP mode creates two CAPWAP tunnels per AP to the WLC

FiexConnect AP mode fails to function if the AP loses connectivity with the WLC

FlexConnect AP mode bridges the traffic from the AP to the WLC when local switching is configured

Local AP mode causes the AP to behave as if it were an autonomous AP

It is compatible with 802 lib- and 802 11-compliant wireless devices

It is used in place of 802 11b/g when many nonoverlapping channels are required

It is susceptible to interference from 2 4 GHz devices such as microwave ovens.

It is chosen over 802 11b/g when a lower-cost solution is necessary

A TCP connection has been torn down

An ICMP connection has been built

An interface line has changed status

A certificate has expired.

on the router closest to the server

on the router closest to the client

on every router along the path

on the switch trunk interface

show ip route

show ip interface

show interface

show cdp neighbor

Both have a 50 micron core diameter

Both have a 9 micron core diameter

Both have a 62.5 micron core diameter

Both have a 100 micron core diameter

It is a broadcast IP address

The router does not support /28 mask.

It belongs to a private IP address range.

IT is a network IP address.

adapters that support all families of Cisco IOS software

SDKs that support interaction with third-party network equipment

customized versions for small, medium, and large enterprises

REST APIs that allow for external applications to interact natively with Cisco DNA Center

modular design that is upgradable as needed

The two routers synchronize configurations to provide consistent packet forwarding

The two routers negotiate one router as the active router and the other as the standby router

Each router has a different IP address, both routers act as the default gateway on the LAN, and traffic is load-balanced between them

The two routers share a virtual IP address that is used as the default gateway for devices on the LAN

The two routers share the same interface IP address and default gateway traffic is load-balanced between them

switchport access vlan 67

switchport trunk allowed vlan 67

switchport private-vlan association host 67

switchport trunk native vlan 67

Enable dynamic ARP inspection

Configure an ACL to prevent traffic from changing VLANs

Change native VLAN to an unused VLAN ID

Implement port security on internet-facing VLANs

ipv6 route 2000::1/128 2012::1

ipv6 route 2000::3/128 2023::3

ipv6 route 2000::3/128 s0/0/0

ipv6 route 2000::1/128 2012::2

ipv6 route 2000::1/128 s0/0/1

achieves redundancy by exclusively using virtual server clustering

runs applications that send and retrieve data for workstations that make requests

handles requests from multiple workstations at the same time

runs the same operating system in order to communicate with other servers

housed solely in a data center that is dedicated to a single client

2000::/3

FC00::/7

FE80::/10

FF00::/8

infrastructure-as-a-service

platform-as-a-service

business process as service to support different types of service

software-as-a-service

redundancy

console

distribution system

service

The floating static route must have a higher administrative distance than the primary route so it is used as a backup

The administrative distance must be higher on the primary route so that the backup route becomes secondary.

The floating static route must have a lower administrative distance than the primary route so it is used as a backup

The default-information originate command must be configured for the route to be installed into the routing table

adminadmin123

default

testing 1234

cisco123

Add the default-information originate command onR2

Configure the ip route 0.0.0.0 0.0.0.0 10.10.10.18 command on R1

Configure the ip route 0.0.0.0 0.0.0.0 10.10.10.2 command on R2

Add the always keyword to the default-information originate command on R1

Ansible

Python

Puppet

Chef

No router ID is set, and the OSPF protocol does not run.

The highest up/up physical interface IP address is selected as the router ID.

The lowest IP address is incremented by 1 and selected as the router ID.

The router ID 0.0.0.0 is selected and placed in the OSPF process.

it sends information about MIB variables in response to requests from the NMS

it requests information from remote network nodes about catastrophic system events.

it manages routing between Layer 3 devices in a network

it coordinates user authentication between a network device and a TACACS+ or RADIUS server

Option A

Option B

Option C

Option D

Option A

Option B

Option C

Option D

Accept-Encoding: gzip. deflate

Accept-Patch: text/example; charset=utf-8

Content-Type: application/json; charset=utf-8

Accept: application/json

access-list 101 permit tcp 10.1.10 0.0.0.255 172.16.10 0.0.0.255 eq ssh

access-list 101 permit tcp 10.11.0 0.0.0.255 172.16.10 0.0.0.255 eq scp

access-list 101 permit tcp 10.11.0 0.0.0.255 172.16.10 0.0.0.255 eq telnet

access-list 101 permit tcp 10.1.10 0.0.0.255 172.16.10 0.0.0.255 eq https

between zones 1 and 2

between zones 2 and 5

between zones 3 and 4

between zones 3 and 6

cost

adminstrative distance

metric

as-path

traverse the Internet when an outbound ACL is applied

issued by IANA in conjunction with an autonomous system number

composed of up to 65.536 available addresses

used without tracking or registration

The two routers share a virtual IP address that is used as the default gateway for devices on the LAN.

The two routers negotiate one router as the active router and the other as the standby router

Each router has a different IP address both routers act as the default gateway on the LAN, and traffic is load balanced between them.D The two routers synchronize configurations to provide consistent packet forwarding

The two routed share the same IP address, and default gateway traffic is load-balanced between them

20

90

110

115

transfers a backup configuration file from a server to a switch using a username and password

transfers files between file systems on a router

transfers a configuration files from a server to a router on a congested link

transfers IOS images from a server to a router for firmware upgrades

enable dynamic MAC address learning

implement static MAC addressing.

enable sticky MAC addressing

implement auto MAC address learning

Option A

Option B

Option C

Option D

longest prefix

metric

cost

administrative distance

Authorization provides access control and authentication tracks user services

Authentication identifies users and accounting tracks user services

Accounting tracks user services, and authentication provides access control

Authorization identifies users and authentication provides access control

global unicast

link-local

unique local

multicast

0

2

4

6

Enable Security Association Teardown Protection and set the SA Query timeout to 10

Enable MAC filtering and set the SA Query timeout to 10

Enable 802.1x Layer 2 security and set me Comeback timer to 10

Enable the Protected Management Frame service and set the Comeback timer to 10

The NMS software must be loaded with the MIB associated with the trap.

The NMS must be configured on the same router as the SNMP agent

The NMS must receive a trap and an inform message from the SNMP agent within a configured interval

The NMS must receive the same trap from two different SNMP agents to verify that it is reliable.

The seventh bit of the original MAC address of the interface is inverted

The interface ID is configured as a random 64-bit value

The characters FE80 are inserted at the beginning of the MAC address of the interface

The MAC address of the interface is used as the interface ID without modification

It provides network security

It differentiates traffic entering access posits

It identities an individual access point on a WLAN

It identifies a WLAN

reduced operational costs

reduced hardware footprint

faster changes with more reliable results

fewer network failures

increased network security

The frame is processed in VLAN 5.

The frame is processed in VLAN 11

The frame is processed in VLAN 1

The frame is dropped

host route

default route

floating static route

network route

Light is transmitted through the core of the fiber

A BNC connector is used for fiber connections

The glass core component is encased in a cladding

Fiber connects to physical interfaces using Rj-45 connections

The data can pass through the cladding

802.1x

IP Source Guard

MAC Authentication Bypass

802.11n

modify hello interval

modify process ID

modify priority

modify network type

6

8

12

18

It ignores the new static route until the existing OSPF default route is removed

It immediately replaces the existing OSPF route in the routing table with the newly configured static route

It starts load-balancing traffic between the two default routes

It starts sending traffic without a specific matching entry in the routing table to GigabitEthernet0/1

configure a stateful DHCPv6 server on the network

enable SLAAC on an interface

disable the EUI-64 bit process

explicitly assign a link-local address

CAR

CBWFQ

PQ

PBR

FRTS

Cisco DNA Center device management can deploy a network more quickly than traditional campus device management

Traditional campus device management allows a network to scale more quickly than with Cisco DNA Center device management

Cisco DNA Center device management can be implemented at a lower cost than most traditional campus device management options

Traditional campus device management schemes can typically deploy patches and updates more quickly than Cisco DNA Center device management

IKEv2

IKEv1

IPsec

MD5

The switch must be running a k9 (crypto) IOS image

The Ip domain-name command must be configured on the switch

IP routing must be enabled on the switch

A console password must be configured on the switch

Telnet must be disabled on the switch

The frame has zero destination MAC addresses.

The source MAC address of the frame is unknown

The source and destination MAC addresses of the frame are the same

The destination MAC address of the frame is unknown.

switchport mode trunk

switchport mode dot1-tunnel

switchport mode dynamic auto

switchport mode dynamic desirable

SSID

radio

band

Layer 2

Option A

Option B

Option C

Option D

Option A

Option B

Option C

Option D

encrypts data before sending between data resources

devices are directly connected and use UDP to pass file information

uses separate control and data connections to move files between server and client

offers proprietary support at the session layer when transferring data

Each device is separated by the same number of hops

It provides variable latency

It provides greater predictability on STP blocked ports.

Each link between leaf switches allows for higher bandwidth.

Change the protocol to EtherChannel mode on.

Change the LACP mode to active

Change the LACP mode to desirable

Change the protocol to PAqP and use auto mode

management interface settings

QoS settings

Ip address of one or more access points

SSID

Profile name

It uses a single router to route traffic between sites.

It leverages a dedicated connection.

It connects remote networks through a single line.

t delivers redundancy between the central office and branch offices.

It provides direct connections between each router in the topology.

mesh

local

bridge

point-to-point

172.16.1.4

172.16.1.1

172.16.1.2

172.16.1.3

duplex mismatch

queueing

bad NIC

broadcast storm

array

value

key

object

G0/23

G0/3

G0/16

G0/6

Use an access list to filter out the syslog messages.

Turn off the logging monitor in global configuration mode.

Disable logging to the console.

Set the logging trap severity level to informational.

inserts MAC addresses dynamically into the CAM table

restricts ports to a maximum of 10 dynamically-learned addresses

protects against denial of service attacks

rewrites the source and destination MAC address

Option

Option

Option

Option

It disables unused services.

It deploys network firmware updates.

It creates synthetic network configurations.

It computes optimal data storage solutions.

The domain name server is unreachable.

LAN and WAN network segments are different.

IP address assignment is incorrect.

The default gateway should be the first usable IP address.

provides external internet network connectivity

provides unlimited address ranges

propagates routing information to WAN links

reuses addresses at multiple sites

conserves globally unique address space

It supports distributed processing for configuration.

It relies on global provisioning and configuration.

It upgrades software and restores files.

It provides orchestration and network automation services.

Enable the Aironet IE option.

Enable the Coverage Hole Detection option.

Set the MFP Client Protection option to Required

Enable the client band select option.

Enable the allow AAA Override option

Enable AutoConfig iPSK.

SetCCMP128(AES).

Configure PSK Format HEX with key string.

Configure PSK-SHA2.

Router(config)#interface GigabitEthernet 0/0Router(config-if)#ip ospf network point-to-point

Router(config)#interface GigabitEthernet 0/0Router(config-if)#ip ospf cost 5

Router(config)#interface GigabitEthernet 0/0Router(config-if)#ip ospf 1 area 2

Router(config)#interface GigabitEthernet 0/0Router(config-if)#ip ospf priority 1

Whole Home

Hotspot

One-Click

Enhanced Bluetooth

They are allocated by the same organization.

They are routable on the global internet.

They use the same process for subnetting.

They are part of the multicast IPv6 group type.

to uniquely identify clients to monitor their usage patterns

to encrypt data to prevent excessive usage

to contain embedded permissions that automatically expire

to track the geographical location of each request

16

32

48

64

traverses the Internet when an outbound ACL Is applied

used without allocation from a regional Internet authority

shared address space between an ISP and subscriber

reduces the need for isolated networks

Run the ipconfig command on client A and ensure that the IP address is within the host range of 10.0.0.1 - 10.0.255.254.

Run the ifconfig command on client A to confirm that its IP and subnet mask fall within 255.254.0.0.

Run the ipconfig command on client A to confirm that the correct 10.0.0.1 default gateway is used.

Run the ifconfig command on client A to confirm that the subnet mask is set to 255.255.128.0.

Set the File Type to Code, set the Transfer Mode to SFTP, and specify the IP address of the WLC.

Set the File Type to Configuration, set the Transfer Mode to FTP, and specify the IP address of the file server.

Set the File Type to Code, set the Transfer Mode to SFTP, and specify the IP address of the file server.

Set the File Type to Configuration, set the Transfer Mode to SFTP, and specify the IP address of the WLC.

to establish an encrypted tunnel between a remote user and a private network over the internet

to allow access to an enterprise network using any internet-enabled location via a web browser using SSL

to provide a secure link between an HTTPS server, authentication subsystem, and an end-user

to use cryptography for authentication between a device and user over a negotiated VPN gateway

ipv6 address 2001:db8:1:0FFA:0::/64

ipv6 address 2001:db8:0:0FFA::1/64

ipv6 address 2001:db8:0:0FFA::/64 eui-64

ipv6 address 2001:db8:0:0FFA::/64 anycast

Identifying permissions for end users using three authentication factors

Authenticating and authorizing end users using two authentication factors

Confirming end-user identity using two or more authentication factors

Verifying end-user access permissions using two authentication factors

F0/7

F0/5

F0/4

F0/6

Disable WPA Policy and WPA Encryption and then enable PSK using ASCII.

Enable PSK and FT PSK and then disable WPA Policy.

Disable WPA Encryption and then enable FT PSK.

Enable PSK using Hex format and then disable WPA Policy.

via 10.0.4.2

via 10.0.0.2

via FastEthernet0/1

via FastEthernet1/1

distribution

service

AP-manager

virtual

G0/12

G0/20

G0/21

G0/16

It identifies the wired network to which a network device is connected.

It identifies a wireless network for a mobile device to connect.

It identifies the wireless network to which an application must connect.

It identifies the wired network to which a user device is connected.

Local

EIGRP

OSPF

RIP

using the CLI via an out-of-band connection

using the WLC GUI via HTTPS

using the AP GUI via an in-band SSH connection

using the CLI via a virtual interface with SSH

channel-group 1 mode desirable

channel-group 1 mode on

channel-group 1 mode auto

channel-group 1 mode active

Centralized cloud management platform

Central WLC

Individual AP

Client device

It ages out the frame until the MAC address becomes known.

It drops the frame to avoid unnecessary network congestion.

It switches the frame to a predetermined port based on settings.

It floods the frame to all ports except the incoming port.

There is a strong mutual authentication used between NAC and the network devices using x.509 standard.

There is an extra layer of security that ensures only authorized devices with known MAC addresses connect to the network.

There is a robust security mechanism configured to protect against various Layer 2 and Layer 3 attacks.

There is Galois cache algorithm configured that provides strong encryption and authentication.

0.0.0.0

255.255.254.0

255.255.255.0

255.255.255.255

alleviates the shortage of IPv4 addresses

reduces the forwarding table on network routers

enables secure connectivity over the internet

used as the NAT outside global IP address

ipv6 route 2001:db8:23: :/128 fd00:12::2

Ipv6 route 2001:db8:23::14/128 fd00:13::3

ipv6 route 2001:db8:23::14/64 fd00:12::2 200

ipv6 route 2001:db8:23: l4/64 fd00:12::2

ipv6 route 2001:db8:23: :/64 fd00:12::2

2

5

8

9

ip route 10.0.2.0 255.255.255.240 10.0.0.7 92

ip route 10.0.2.0 255.255.255.248 10.0.0.6 91

ip route 10.0.2.0 256.255.255.240 10.0.0.6 91

ip route 10.0.2.0 255.255.255.248 null0 93

router D

router B

router C

router A

ipconfig /renew

ipconfig

ipconfig /all

ipconfig /displaydns

Sends frames with unknown destinations to a multicast group.

Increases security on the management VLAN.

Rewrites the source and destination MAC address.

Associates the MAC address with the port on which it is received.

To provide network redundancy in the case of a router failure

To use an open standard protocol that is configured on Cisco and third-party routers

To allow hosts in a network to use the same default gateway virtual IP when load-balancing traffic

To allow clients to be configured with multiple default gateway IPs

OpenFlow

REST

OpFlex

SOAP

NETCONF

It is a type of operating system virtualization that allows the host operating system to control the different CPU memory processes.

It emulates a physical computer and enables multiple machines to run with many operating systems on a physical machine.

It separates virtual machines from each other and allocates memory, processors, and storage to compute.

It contains a guest operating system and virtual partition of hardware for OS and requires application libraries.

10.0.0.2

110

30

2

QinQ

ISL

PAgP

LAG

tracks the number of active TCP connections

transmits exclusively at half duplex

offers link bundling to servers

uses routers to create collision domains

Content-Type: application/json

Accept-Encoding: application/json

Accept: application/json

Accept-Language: application/json

Change the IP address to 172.16.1.6 and change the subnet mask to 255.255.255.248.

Change the IP address to 172.16.1.6 and change the DNS servers to 172.16.1.12 and 172.16.1.13.

Change the IP address to 172.16.1.9 and change the default gateway to 172.16.1.7.

Change the IP address to 172.16.1.9 and change the DNS server to 172.16.1.12 only.

It interoperates with ISE to define and manage patch and update schedules.

It performs configuration updates based on user profiles.

It improves the efficiency of system lifecycle management.

It provides a reactive support model.

password of 8 to 15 characters and personal 12-diglt PIN

authorized USB dongle and mobile phone

fingerprint scanning and facial recognition

complex password and time-based one-time password

Physical access control

Software firewall enabled on all PCs

Email system patches

User awareness training

Making routing decisions

Originating packets

Forwarding traffic to the next hop

Exchanging routing table data

Reduces the response time for specific requests to devices with many interfaces

Categorizes traffic and provides insights

Allows the controller to be vendor-agnostic

Streamlines monitoring using SNMP and other polling tools

Option A

Option B

Option C

Option D

GigabitEthernet1/0

GigabitEthernet0/0

GigabitEthernet2/0

Null0

They anticipate future traffic spikes.

They assign IP addresses to devices.

They select correct cabling types for deployment.

They solely monitor historical traffic volumes.

Informational

debugging

alerts

notifications

10.10.1.2

10.10.2.2

10.10.3.2

10.10.4.2

to automatically route traffic on a secondary path when the primary path goes down

to route traffic differently based on the source IP of the packet

to enable fallback static routing when the dynamic routing protocol fails

to support load balancing via static routing

to control the return path of traffic that is sent from the router