반응형
QUESTION 517
A network engineer must configure a router to send logging messages to a syslog server based on these requirements:
uses syslog IP address: 10.10.10.1
uses a reliable protocol
must not use any well-known TCP/UDP ports
Which configuration must be used?
A.logging host 10.10.10.1 transport tcp port 1024
B.logging origin-id 10.10.10.1
C.logging host 10.10.10.1 transport udp port 1023
D.logging host 10.10.10.1 transport udp port 1024
Answer: A
QUESTION 518
Refer to the exhibit. A network engineer must configure NETCONF. After creating the configuration, the engineer gets output from the command show line, but not from show running-config. Which command completes the configuration?
A.Device(config)# netconf max-sessions 100
B.Device(config)# no netconf ssh acl 1
C.Device(config)# netconf lock-time 500
D.Device(config)# netconf max-message 1000
Answer: D
QUESTION 519
An engineer is configuring a new SSID to present users with a splash page for authentication.
Which WLAN Layer 3 setting must be configured to provide this functionally?
A.CCKM
B.WPA2 Policy
C.Local Policy
D.Web Policy
Answer: D
QUESTION 520
An engineer must create an EEM script to enable OSPF debugging in the event the OSPF neighborship goes down.
Which script must the engineer apply?
A.Option A
B.Option B
C.Option C
D.Option D
Answer: C
QUESTION 521
Refer to the exhibit. Router BRDR-1 is configured to receive the 0.0.0.0/0 and 172.17.1.0/24 networks via BGP and advertise them into OSPF area 0. An engineer has noticed that the OSPF domain is receiving only the 172.17.1.0/24 route and default route 0.0.0.0/0 is still missing. Which configuration must an engineer apply to resolve the problem?
A.router ospf 1 redistribute bgp 65001 metric 100 route-policy BGP-TO-OSPF end
B.router ospf 1 default-information originate end
C.router ospf 1 default-metric 100 end
D.router ospf 1 default-information originate always end
Answer: D
QUESTION 522
AN engineer is implementing a route map to support redistribution within BGP. The route map must configured to permit all unmatched routes. Which action must the engineer perform to complete this task?
A.Include a permit statement as the first entry
B.Include at least one explicit deny statement
C.Remove the implicit deny entry
D.Include a permit statement as the last entry
Answer: D
QUESTION 523
Refer to the exhibit. A network operator is attempting to configure an IS-IS adjacency between two routers, but the adjacency cannot be established. To troubleshoot the problem, the operator collects this debugging output. Which interfaces are misconfigured on these routers?
A.The peer router interface is configured as Level 1 only, and the R2 interface is configured as Level 2 only
B.The R2 interface is configured as Level 1 only, and the Peer router interface is configured as Level 2 only
C.The R2 interface is configured as point-to-point, and the peer router interface is configured as multipoint.
D.The peer router interface is configured as point-as-point, and the R2 interface is configured as multipoint.
Answer: B
QUESTION 524
AN engineer is implementing MPLS OAM to monitor traffic within the MPLS domain. Which action must the engineer perform to prevent from being forwarded beyond the service provider domain when the LSP is down?
A.Disable IP redirects only on outbound interfaces
B.Implement the destination address for the LSP echo request packet in the 127.x.y.z/8 network
C.Disable IP redirects on all ingress interfaces
D.Configure a private IP address as the destination address of the headend router of Cisco MPLS TE.
Answer: B
QUESTION 525
An engineer is implementing a Cisco MPLS TE tunnel to improve the streaming experience for the clients of a video-on-demand server.
Which action must the engineer perform to configure extended discovery to support the MPLS LDP session between the headend and tailend routers?
A.Configure the interface bandwidth to handle TCP and UDP traffic between the LDP peers
B.Configure a Cisco MPLS TE tunnel on both ends of the session
C.Configure an access list on the interface to permit TCP and UDP traffic
D.Configure a targeted neighbor session.
Answer: B
QUESTION 526
What occurs when a high bandwidth multicast stream is sent over an MVPN using Cisco hardware?
A.The traffic uses the default MDT to transmit the data only if it isa (S,G) multicast route entry
B.A data MDT is created to if it is a (*, G) multicast route entries
C.A data and default MDT are created to flood the multicast stream out of all PIM-SM neighbors.
D.A data MDT is created to allow for the best transmission through the core for (S, G) multicast route entries.
Answer: D
QUESTION 527
Drag and Drop Question
An engineer is working with the Cisco DNA Center API Drag and drop the methods from the left onto the actions that they are used for on the right.
Answer:
QUESTION 529
Which protocol is used to encrypt control plane traffic between SD-WAN controllers and SD-WAN endpoints?
A.DTLS
B.IPsec
C.PGP
D.HTTPS
Answer: A
QUESTION 530
An engineer must configure the strongest password authentication to locally authenticate on a router. Which configuration must be used?
A.username netadmin secret 5 $1$b1JUSkZbBS1Pyh4OzwXyZ1kSZ2
B.username netadmin secret $15b1JuSk404850110QzwXyZ1k SZ2
C.line Console 0
password $15b1Ju$
D.username netadmin secret 9 $9$vFpMfBelbRVV8SseX/bDAxtuV
Answer: D
QUESTION 531
Which network devices secure API platform?
A.next-generation intrusion detection systems
B.Layer 3 transit network devices
C.content switches
D.web application firewalls
Answer: A
QUESTION 532
Which threat defence mechanism, when deployed at the network perimeter, protects against zero-day attacks?
A.intrusion prevention
B.stateful inspection
C.sandbox
D.SSL decryption
Answer: A
QUESTION 533
Refer to the exhibit. A company requires that all wireless users authenticate using dynamic key generation.
Which configuration must be applied?
A.AP(config-if-ssid)# authentication open wep wep_methods
B.AP(config-if-ssid)# authentication dynamic wep wep_methods
C.AP(config-if-ssid)# authentication dynamic open wep_dynamic
D.AP(config-if-ssid)# authentication open eap eap_methods
Answer: D
QUESTION 534
An engineer is configuring a GRE tunnel interface in the default mode. The engineer has assigned an IPv4 address on the tunnel and sourced the tunnel from an Ethernet interface.
Which option also is required on the tunnel interface before it is operational?
A.(config-if)#tunnel destination <ip address>
B.(config-if)#keepalive <seconds retries>
C.(config-if)#ip mtu <value>
D.(config-if)#ip tcp adjust-mss <value>
Answer: A
QUESTION 535
What Is a Type 2 hypervisor?
A.installed as an application on an already installed operating system
B.runs directly on a physical server and includes its own operating system
C.supports over-allocation of physical resources
D.also referred to as a "bare metal hypervisor" because it sits directly on the physical server
Answer: A
QUESTION 536
Which two statements about static route configuration are true? (Choose two)
A.They add to the number of routes in the routing table.
B.The distance command modifies the administrative distance
C.The redistribute static command will redistribute classful networks into OSPF.
D.They add significant overhead to the router CPU.
E.The ip route static bfd command is used for BFD peer discovery.
F.The permanent key word allows the route to remain in the route table if the interface goes down.
Answer: CF
QUESTION 537
What is a characteristic of Cisco DNA Northbound APIs?
A.They simplify the management of network infrastructure devices.
B.They enable automation of network infrastructure based on intent.
C.They utilize RESTCONF.
D.They utilize multivendor support APIs.
Answer: B
반응형
'보안 > 이론' 카테고리의 다른 글
| 2023 Latest Braindump2go 350-401 PDF Dumps(Q517-Q550) Part2 (0) | 2023.04.24 |
|---|---|
| 2) GRE Tunnel (Dynamic route) (0) | 2021.11.23 |
| 1) 네트워크 보안 (0) | 2021.11.23 |
| TCP 계층별 주소 체계 (0) | 2021.11.23 |
| [CCNP] New ENCOR Questions Part 4 (0) | 2021.11.12 |
