Examen Final

June 5, 2018 | Author: Claudio Aliste Requena | Category: Ip Address, Routing, Router (Computing), I Pv6, Computer Network
Report this link


Description

Question 10 / 1 pts Which approach is being used when network maintenance is performed in order of urgency? structured Correct Answer interrupt-driven baseline You Answered regular maintenance cycle Refer to Chapter 3. Question 2 0 / 1 pts Which structured maintenance methodology should a network engineer use? the methodology that is approved by the ISO You Answered the methodology that is suggested by the ITU-T the methodology that is outlined by Cisco Correct Answer the methodology that is prescribed by the organization Refer to Chapter 2. Question 3 1 / 1 pts What is a characteristic of network maintenance? Network maintenance typically excludes consideration of network changes. Proper network maintenance will eliminate network downtime. Correct! Maintaining network documentation is an important element of network maintenance. The amount of resources expended on network maintenance is consistent across all companies. Refer to Chapter 3. Question 4 1 / 1 pts Which backup mechanism presents the highest security risk? FTP HTTPS SCP Correct! TFTP Refer to Chapter 3. Question 5 1 / 1 pts What are two limitations of using buffered logging? (Choose two.) Only high severity messages can be captured. Messages are lost when there is a connectivity issue. Correct! Log messages are removed when a device is powered down. Message services may have messages filtered through a firewall. Correct! Oldest messages are overwritten when allocated memory is exceeded. Refer to Chapter 3. Question 6 0 / 1 pts What is the highest logging severity level message that is displayed by default on the console line? You Answered error (3) warning (4) notification (5) informational (6) Correct Answer debugging (7) Refer to Chapter 3. Question 7 0 / 1 pts What best describes a stratum 3 time source? The clock is synchronized to a stratum 0 time server. The clock is synchronized to a stratum 1 time server. You Answered The clock acts as a time source for stratum 2 time servers. The clock acts as a time source for other stratum 3 time servers. Correct Answer The clock is synchronized to a time server that is in turn synchronized to a stratum 1 time server. Refer to Chapter 3. Question 8 1 / 1 pts Which two advantages does scheduled maintenance offer over interrupt-driven events? (Choose two.) Correct! reduced network downtime faster time to resolution of problems simplified troubleshooting processes Correct! predictable lead times for change requests Use the archive config privileged EXEC mode command to replace the running configuration file with the most recent archived file. it will also be automatically archived. Refer to Chapter 3. Based on the output that is generated. Correct! Every time the running configuration file is saved to NVRAM. Question 10 0 / 1 pts . Question 9 1 / 1 pts Refer to the exhibit. The $h and $t parameters will automatically add the device hostname and version number to the archive filename. which two statements are true? (Choose two.) Correct! The archive path is the only mandatory archive parameter that must be configured. The time-period parameter must be configured to enable the automatic archiving of the running-configuration file everytime it is saved to NVRAM.maintenance windows during regular business hours Refer to Chapter 3. The login credentials were sent to the FTP server in an encrypted format. Which two FTP-related statements are true? (Choose two. Correct Answer The ip ftp username and ip ftp password commands were issued on router R1.cfg configuration was successfully copied from the FTP server to the running configuration file of router R1.cfg configuration was successfully copied from the FTP server to the startup configuration file of router R1. Correct! The configuration was copied using a method that is less secure than HTTPS. Refer to Chapter 3.) You Answered The Configuration Rollback feature was preconfigured on router R1 via the archive command. . The R1-test. The R1-test. Question 11 1 / 1 pts What term refers to alleviating the symptoms of the problem without resolving the root cause? escalation hypothesis solution Correct! workaround Refer to Chapter 2.Refer to the exhibit. Question 13 1 / 1 pts RSPAN depends on which type of VLAN? native VLAN management VLAN default VLAN Correct! RSPAN VLAN black hole VLAN .Question 12 1 / 1 pts What is the final task in a structured troubleshooting process? gathering information testing the hypothesis Correct! documenting the changes eliminating possible causes Refer to Chapter 2. incompatible version of the Spanning Tree Protocol. The network administrator at the main site checks the log and sees a “%SPANTREE-2-CHNL_MISCFG” message. Question 14 1 / 1 pts Which command would a network administrator use to verify which VLANs are allowed on a trunk? show vlan Correct! show interfaces trunk show vlan interface show mac address-table Refer to Chapter 2. but the main site has not. What is a likely cause of this message? The branch site has been configured for the Spanning Tree Protocol. Correct! The main site has been configured to bundle links into an EtherChannel and the branch site has not. A port channel link between a branch site and the main site experiences an outage after a hardware upgrade at the branch site. Question 15 1 / 1 pts Refer to the exhibit. The branch site is running a newer. .private VLAN Refer to Chapter 5. Question 16 0 / 1 pts What happens to the route connected to a routed port on a multilayer switch when the port goes down? You Answered It remains in the routing table as unavailable. Refer to Chapter 4. Correct Answer It is immediately removed from the routing table. It is removed from the routing table at the next spanning-tree convergence. Question 17 1 / 1 pts .The main site has inconsistencies in the physical ports that are members of the channel. Refer to Chapter 3. It is tagged to be removed and the backup route is installed as the primary. Refer to the exhibit. what could be the reason for this problem? encapsulation mismatch switchport mode mismatch MTU mismatch VTP mismatch DTP mismatch Correct! . Based on the information in the exhibit. Switch1 and Switch2 are unable to establish a trunk link. native VLAN mismatch Refer to Chapter 3. how many blocked ports will there be in VLAN 1 for the pictured topology? 1 Correct! 2 3 4 Refer to Chapter 6. In a converged spanning tree. . Question 18 1 / 1 pts Refer to the exhibit. Which command should be used to verify which neighbors sent routes. The output displays the contents of the routing table instead of the FIB. Correct Answer The output displays which of the paths a particular packet would take. the state of those neighbors.Question 19 0 / 1 pts A network administrator is troubleshooting why hosts are taking a suboptimal path to another network and suspects that it is an EIGRP routing problem. Why would the show ip cef exact-route source destination command be useful in this scenario? You Answered The output displays all redundant paths in the FIB. and the distance vector metrics associated with those routes? debug eigrp packets debug ip routing show ip eigrp interfaces You Answered show ip eigrp neighbors Correct Answer show ip eigrp topology Refer to Chapter 7. . The output displays all prefixes in the routing table that fall within the prefix specified. Question 20 0 / 1 pts A network administrator is troubleshooting packet flow in a routed network where there are two or more equal routes for a particular prefix. Refer to Chapter 6. What type of issue is he likely troubleshooting? the contents of the FIB You Answered routing table entries redundant paths on multipoint interfaces Correct Answer IP address to Ethernet MAC address mappings Refer to Chapter 6.Question 21 0 / 1 pts A network administrator uses the clear ip arp * command on a router. Question 22 1 / 1 pts What are two problems that can occur when routes are redistributed in two directions? (Choose two.) Correct! suboptimal routing Correct! routing loops lost seed metrics route filtering lost external routes . Question 24 0 / 1 pts . Correct! Hello packets are not sent from either neighbor. Question 23 0 / 1 pts Which two conditions could cause two routers to have trouble establishing a neighbor relationship in an OSPF network? (Choose two. Refer to Chapter 7.) Correct Answer The interfaces have different network types. The network command has put the connected interfaces into the same OSPF area. You Answered Slow network connections cause OSPF advertisements to time out.Refer to Chapter 6. One of the routers is redistributing the OSPF routes into EIGRP. RTB has established an adjacency with RTA.Which statement is true based on the show ip ospf neighbor command output that is shown in the exhibit? You Answered RTB did not see its router ID in the hello packet that was received from RTA. Correct Answer RTB did not receive a hello packet from RTA. Question 25 0. Refer to Chapter 7. RTB is able to exchange routing updates with RTA.) Correct Answer interface table .33 / 1 pts What are the three main data structures used by EIGRP? (Choose three. Question 26 0 / 1 pts What type of BGP message precedes the successful formation of a BGP peering session? You Answered update keepalive established withdraw Correct Answer open .Forwarding Information Base (FIB) Correct! neighbor table You Answered Routing Information Base (RIB) Correct! topology table routing table Refer to Chapter 7. ) BGP updates route redistribution information Correct! BGP related events Correct! phases of BGP peering relationships internal metrics of IBGP routes Refer to Chapter 7. Question 27 1 / 1 pts Which two pieces of information are displayed by the debug ip bgp command? (Choose two. Question 28 1 / 1 pts .Refer to Chapter 7. Change the neighbor x. Enter the neighbor x. Remove the loopback interfaces on each router.x.x. A network administrator is unable to have two BGP peers exchange routing information.x update-source command on R1 and R2 to refer to the FastEthernet interfaces.x. Question 29 1 / 1 pts .x ebgp-multihop 1 command on R1 and R2. Refer to Chapter 7.x. Which solution would correct this problem? Correct! Change the neighbor peer IP addresses on R1 and R2 to the loopback interface IP address of the other router.Refer to the exhibit. x update-source loopback0 command on both routers.x.x ebgp-multihop 1 command on both routers.x update-source null command on both routers. A network administrator is unable to have two BGP peers exchange routing information. Refer to Chapter 7.x.Refer to the exhibit. which solution would correct this problem? Correct! Issue the neighbor x.x update-source fastethernet0/0 command on both routers. Question 30 0 / 1 pts .x.x. Issue the neighbor x. Based on the output generated.x. Issue the neighbor x. Issue the neighbor x.x.x.x. 10. The NAT address mapping statement is incorrect. What is the problem? The ip nat inside and ip nat outside commands are on the wrong interfaces. but communication still was not occurring. it was discovered that the workstations could ping the router but could not reach any outside destinations. During the testing of the network. Correct Answer The inbound access list is incorrect and should allow the 192.Refer to the exhibit and its partial output. You Answered The access list should be placed on fa0/1 instead of on fa0/0.1 address. .168. Troubleshooting revealed that proper translations were being set up in the router. 31. which two statements are true? (Choose two.31. DHCPOFFER.2. The IP address 172.) Packets were not translated for the return path from source 192.31.95 are translated into 172.168. Refer to Chapter 6.233. Question 32 1 / 1 pts What is the correct sequence for the DHCP negotiation process? DHCPACK.1. DHCPDISCOVER .209 is the configured IP address on the remote PC.209.233.168. Entries with NAT* have the ToS value 5.1.95. Question 31 1 / 1 pts Refer to the exhibit.Refer to Chapter 6. Based on the output of the debug ip nat command in the exhibit. Correct! Entries that are indicated with NAT* have been translated via the fast path. DHCPREQUEST. Correct! Packets that are destined for 172.132 from source 192. DHCPREQUEST. DHCPACK DHCPDISCOVER. DHCPACK. DHCPOFFER. DHCPOFFER. DHCPACK Refer to Chapter 6. Based on the information in the exhibit. A network administrator is troubleshooting a NAT translation issue on router R2. DHCPDISCOVER. DHCPOFFER DHCPREQUEST. DHCPREQUEST. The IP addresses of hosts on the R2 LAN are not being translated by R2. Question 33 1 / 1 pts Refer to the exhibit. what is the issue? .Correct! DHCPDISCOVER. The ACL is using a wrong pool reference.The NAT pool is exhausted. Correct! The R2 LAN is not configured as an inside interface. The static translation prevents any new dynamic translations. Refer to Chapter 6. Question 34 1 / 1 pts . 1 Correct! R1(config)# ip route 172.Refer to the exhibit.7.9 .0 172.0 255. Connectivity tests from R2 to the R1 and R3 LAN segments are successful.0.7.255.0 0.255.16.0 172. The administrator confirms that a routing issue exists. which configuration command would correct the problem? R1(config)# ip route 0.0.255.16.16. A network administrator is troubleshooting a connectivity issue between LAN clients on routers R1 and R3.0 172.0.0.7.255.10 R2(config)# ip route 172.6.16.6.0 255.16. Based on the information that is presented in the exhibit. 9 R3(config)# ip route 0.0 172.255.0.0 0.1? user EXEC privileged EXEC Correct! global configuration interface configuration DHCP pool configuration Refer to Chapter 6.0.7.R2(config)# ip route 0.10 Refer to Chapter 6.0.0 172.0 0.16.0.7.16.16.6. Question 35 1 / 1 pts Which Cisco IOS router configuration mode is used to enter the command ip dhcp excluded- address 10.7.0.0 255.0.1.0.0.1.255. Question 36 1 / 1 pts .0 172.9 R3(config)# ip route 172.16. Question 37 1 / 1 pts . A network engineer is investigating a reported issue of Computer1 not receiving its IP configuration from the DHCP server. The S0/0/0 interface of router East should be configured to provide DHCP relay. Correct! The DHCP server does not have a DHCP pool for 192.Refer to the exhibit.0 /24 network. Refer to Chapter 6. What is a plausible reason for this issue? An ACL is blocking broadcasts into the F0/0 interface of router North .168. The WAN segment between routers East and North should be replaced with a LAN. Computer2 is receiving its configuration from the DHCP server.0. 0. Decrease the DHCP lease time to make more addresses available at one time. Correct! Use the ip dhcp excluded-address command to exclude any statically assigned addresses from the DHCP pool. Question 38 1 / 1 pts .Refer to the exhibit. Users are complaining that they are receiving duplicate address error messages when they start their machines. Refer to Chapter 6.0 to agree with the class A network that is used in the DHCP pool. What should the administrator do to correct this problem? Change the address assigned to the default router and dns server. Change the netmask to 255.0. Disable CEF because it is sending packets to the CPU for processing.Refer to the exhibit. Change the FastEthernet 0/1 interface to an inside NAT interface. Disable static NAT because it is interfering with the dynamic translations. Refer to Chapter 6. Users are complaining that they are unable to connect to resources outside of their corporate network during peak hours. Correct! Increase the size of the NAT pool to provide more IP addresses for translation. . What action should the administrator take to correct this problem? Remove the ACL because it is blocking connections. You Answered Subject to the security policy to the CPU for forwarding. Correct Answer TCAM will punt any additional unicast frames for remote networks to the CPU for forwarding. what conclusion can be made? Subject to the QoS policy to the CPU for forwarding. On the basis of the output provided. To verify network performance a network administrator issued the show platform tcam utilization command on one of the distribution switches. Refer to Chapter 4. Question 40 1 / 1 pts . TCAM will punt any frames. TCAM will punt any frames.Question 39 0 / 1 pts Refer to the exhibit. TCAM will punt any unicast frames for directly connected routes to the CPU for forwarding. Refer to Chapter 4. Question 41 1 / 1 pts What are two reasons why a switch port would have a status of errdisable? (Choose two. ARP requests are indicating malicious network traffic. ARP has caused TCAM to punt packets to be process-switched.) Correct! duplex mismatch Correct! .Refer to the exhibit.10 switch? Correct! ARP is operating normally. ARP is using excessive CPU time. What is occurring with the ARP process on the South1-1. You have been asked to correct the configuration on R1 so that the Tunnel . Question 42 1 / 1 pts Refer to the exhibit.late collisions trunk mismatch incorrect VLAN misconfigured MLS Refer to Chapter 6. 255.255.255 Tunnel0 ip route 172.2 255.3.255.16.25.255.255.16.255.15.0 Serial0/0/0 ip route 172.0 interface does not flap and R3 can be consistently reached from R1.3 255.3 255.16.255.25.255. Question 43 1 / 1 pts .255 Tunnel0 Refer to Chapter 9.3.255.3 255. What command would you issue on R1 to accomplish this? ip route 10.255.3.255 Serial0/0/0 ip route 172.0 255.25.16.0 Serial0/0/0 ip route 172.255.255.255 Tunnel0 Correct! ip route 10.3.3 255. 0/24 network.1D Spanning Tree Protocol? loop guard root guard Correct! BPDU guard DHCP snooping Dynamic ARP Inspection . A static route should be added to R1 to point to the 192. From the partial output of the show running-config command on both routers. Question 44 1 / 1 pts Which feature serves to offset the lack of authentication available with IEEE 802. The tunnel source for Tunnel0 on R3 should be the IP address of Serial0/0/1 on R1. what configuration change is required? A static route should be added to R3 to point to the 192.Refer to the exhibit.168.0/24 network.1. You have been asked to troubleshoot a connectivity issue between R3 and R1. The tunnel destination for Tunnel0 on R1 should be the IP address of Serial0/0/1 on R3. Correct! The tunnel destination for Tunnel0 on R3 should be the IP address of Loopback0 on R1.168.1. Refer to Chapter 9. The tunnel source for Tunnel0 on R1 should be the IP address of Loopback0 on R3. What could be concluded about the TACACS+ failure based on the exhibited command output from debug tacacs and debug aaa authentication? The TACACS+ server is not operational. Refer to Chapter 9. The username and password that were supplied by the user were rejected by the TACACS+ server. The TACACS+ server IP address has been incorrectly configured on the router.Refer to Chapter 10. Question 45 1 / 1 pts Refer to the exhibit. Question 46 1 / 1 pts . Correct! The TACACS+ server key of the router does not match that of the TACACS+ server. Refer to Chapter 8. Correct! The transport input telnet command should be changed to transport input ssh. Question 47 1 / 1 pts Which IPv6 protocol provides Layer 2 address mapping. and stateless autoconfiguration? Address Resolution Protocol (ARP) . The commands listed under the VTY line should be listed under the Console line.Refer to the exhibit. Which changes should be made on the partial configuration as shown in the graphic? The enable password must be encrypted. The transport input telnet command should be changed to transport input none. A network administrator is trying to secure the remote administration of the router by enabling the use of the SSH protocol. Duplicate Address Detection (DAD). A junior network administrator tested a new switch in the lab and verified that the bridge ID is 32887. . What would happen when the administrator plugs this switch into port Fa0/20 on ASW_1 in an attempt to extend the LAN? Correct! Port Fa0/20 will be shut down. BPDU guard and PortFast have been configured on all edge ports on the access switches. Port Fa0/20 will become a root port. Question 48 1 / 1 pts Refer to the exhibit.classless interdomain routing (CIDR) link-state advertisement (LSA) Correct! Neighbor Discovery (ND) Refer to Chapter 6. the auditors indicated a security issue with the transactions between the network devices and the authentication server. network performance between domains quickly degraded and an investigation revealed routing loops. Change the authentication method to use UDP. Question 50 1 / 1 pts An administrator has just implemented two-way route redistribution between an OSPF and EIGRP domain. Port Fa0/20 will transition from blocking to forwarding state after the spanning tree convergence. The audit concluded that the content of the transactions is not being encrypted. . Correct! Filter the routes being redistributed between the protocols. Refer to Chapter 8.Port Fa0/20 will start forwarding traffic immediately. Correct Answer Change the authentication process and server to use TACACS. How can this security issue be corrected? You Answered Change the authentication protocol to CHAP. However. Change the authentication server location to the network DMZ. Refer to Chapter 6. What action could be used to solve this issue? Change the seed metric of the routes being redistributed. Question 49 0 / 1 pts During a network security audit. Refer to Chapter 9. BGP authentication is failing. BGP neighbors do not agree on session parameters. Question 51 1 / 1 pts How can you prevent the forming of an EIGRP adjacency on a specific segment while still including the interface’s address in the EIGRP routing updates? By issuing the proper no network network [mask] command.Redistribute all subnets in both EIGRP and OSPF domains. Correct! By issuing the passive-interface ethernet slot/number command. By issuing the no auto-summary command. Question 52 1 / 1 pts What can go wrong with BGP session on Layer 4? Correct! Access lists or firewalls are dropping relevant TCP packets. Configure an additional router to be a secondary point of route redistribution. . Clock is not synchronized between BGP routers. Refer to Chapter 6. By issuing the passive-interface default command. *~192.100.LOCL. Question 53 0 / 1 pts Where is the outbound distribute list applied in the configuration? On the outbound interface.INIT.000 15937.101 . Correct Answer Under BGP configuration with the neighbor command.000 0.016 192.Refer to Chapter 8.LOCL.165.100. 1 615 1024 377 0.000 0.100.1024 0 0.100.101 Correct! 192.165. None of the above. Refer to Chapter 8.000 2.100.165.000 0. You Answered In the global configuration. Question 54 1 / 1 pts Which NTP server is used for clock synchronization in the output below? Router# show ntp associations address ref clock st when poll reach delay offset disp ~192.102 .103 .165.165.036 +~192.000 2.102 . 1 509 1024 377 0. 16 . 103 127. vrf out name/id) . Question 55 0 / 1 pts A DNS query was sent by the 10.31 access-list 100 permit udp any 10.100.8 eq 53 10.33 host to a DNS server at 8.0. Tracing the route to 209.31 eq 53 access-list 100 permit udp any eq 53 10.3.201.0.0.32 0.0.0.45 Type escape sequence to abort.3.3.8.0.8.165.3. Which access list line will be matched when the response arrives? access-list 100 permit udp host 8.3.201.1 Refer to Chapter 8.165.45 VRF info: (vrf in name/id. Question 56 0 / 1 pts What does this output of the traceroute command mean? (Choose two.) RouterPC> traceroute 209. You Answered Line 2.0.0. Refer to Chapter 8.255 eq 53 access-list 100 permit udp any 10.8.33 0.33 0.0.31 Line 1. Correct Answer Line 4. Line 3.0.3 0.8.8.0.0.0.192.127.165.0. 253 !H !H * Correct! !H – Host is unreachable.0.0.Network unreachable. Correct Answer * .0.253 0 msec 0 msec 1 msec 2 192.168. Refer to Chapter 9.168. Question 58 0 / 1 pts . !H – Host interrupted test.1 192. Router with an IP address of 192.168. Question 57 1 / 1 pts Which show ip sla command displays number of succeed and failed tests? Correct! show ip sla statistics show ip sla application show ip sla configuration show ip sla results Refer to Chapter 9.253 has responded to the ICMP request. You Answered * .The probe timed out. It determines which IPv6 address to use as the source address. When you ping another link-local address. Refer to Chapter 9. Why? This is the default behavior for ping when IPv6 addresses are used. the router prompts you to provide the source interface. Correct Answer The router does not know which interface leads to the link-local address you want to ping. It uses interface information to permit the traffic returning from link-local address in the access list.A router is configured with a link-local address using ipv6 address fe80::123 link- local command. You Answered The configured link-local address belongs to the device and not particular interface. Question 60 0 / 1 pts Which best describes GRE protocol? . Question 59 1 / 1 pts Which protocol and port are used by TACACS+? TCP/47 Correct! TCP/49 UDP/1645 UDP/1812 Refer to Chapter 9. in case one is configured on the interface. therefore the source interface must be manually set. This is the only way for the router to determine which interface and link-local address to ping from. GRE adds new IP header. GRE uses original IP header and inserts GRE header between IP header and payload. Correct Answer GRE adds new IP header. Refer to Chapter 9. encapsulates original IP packet and adds GRE header at the end of the IP packet. . You Answered GRE uses original IP header and adds GRE header at the end of the packet. inserts GRE header and encapsulates original IP packet.


Comments

Copyright © 2024 UPDOCS Inc.