cisco 352-001 exam questions & answers...... router p4s-ra is the hub router in a frame relay...

CISCO 352-001 EXAM QUESTIONS & ANSWERS

Number: 352-001Passing Score: 800Time Limit: 120 minFile Version: 66.5

http://www.gratisexam.com/

CISCO 352-001 EXAM QUESTIONS & ANSWERS

Exam Name: ADVDESIGN

Examsoon

QUESTION 1Lafeyette Productions is looking for a new ISP that has improved availability, load balancing, and catastropheprotection. Which type of ISP connectivity solution would be best?

A. single runB. multi-homedC. stub domain EBGPD. direct BGP peering

Correct Answer: BSection: (none)Explanation

Explanation/Reference:www.CareerCert.info

QUESTION 2NetFlow provides valuable information about network users and applications, peak usage times, and trafficrouting. Which function is of NetFlow?

A. monitor configuration changesB. monitor CPU utilizationC. monitor link utilizationD. generate traps for failure conditions

Correct Answer: CSection: (none)Explanation


QUESTION 3The P4S company is deploying OSPF on a point-to-multipoint Frame Relay network. The remote sites needn??t to communicate with each other and there are a relatively small number of sites (scaling is not a concern).How to configure OSPF for this topology in order to minimize the additional routing information injected into thenetwork and keepthe configuration size and complexity to a minimum?

A. Configure the link as OSPF nonbroadcast and manually configure each of the remote sites as a neighbor.B. Configure the link as OSPF broadcast and configure the hub router to always be the designated router.C. Configure the link as OSPF broadcast and configure a mesh group towards the remote routers.D. Configure the link at the hub router as OSPF point-to-multipoint and at the remote routers as OSPF point-to-

point.




QUESTION 4What is the way that an OSPF ABR uses to prevent summary route information from being readvertised froman area into thenetwork core (Area 0)?

A. It advertises only inter-area summaries to the backbone.B. It uses poison reverse and split horizon.C. It only sends locally originated summaries to the backbone.D. It compares the area number on the summary LSA to the local area.



QUESTION 5Connecting an IS-IS router to four links and redistributing 75 routes from RIP.How many LSPs will be originated by this router?

A. one LSP: containing the router information, internal routes, and external routesB. six LSPs: one for each link, one containing router information, and one containing external routing

informationC. two LSPs: one containing router information and internal routes and one containing external routesD. three LSPs: one containing all links, one containing router information, and one containing external routing

information

Correct Answer: ASection: (none)Explanation


QUESTION 6You are the Cisco Network Designer in P4S. Which twocharacteristics are most typical of a SAN? (Choose two.)

A. NICs are used for network connectivity.B. Servers request specific blocks of data.C. Storage devices are directly connected to servers.D. A fabric is used as the hardware for connecting servers to storage devices.

Correct Answer: BDSection: (none)Explanation


QUESTION 7The IGP next-hop reachability for a BGP route is lost but a default route is available.Assuming that BGP connectivity is maintained, what will happen to the BGP route?

A. It will be put in a hold-down state by BGP until the next hop has been updated.B. It will be removed from the BGP table.C. It will be considered a valid route.D. It will be considered invalid for traffic forwarding.



QUESTION 8How many broadcast segments are contained in this networkaccording to the exhibit?

A. 1B. 2C. 4D. 5



QUESTION 9Which VPN management feature would be considered to ensure that the network had the least disruption ofservice when making topology changes?

A. dynamic reconfigurationB. path MTU discoveryC. auto setupD. remote management



QUESTION 10What information can you get from TCP flags while assessing an attack?

A. source of the attackB. type of attackC. target of the attackD. priority of the attack traffic



QUESTION 11Which two steps can be taken by the sinkhole technique? (Choose two.)

A. reverse the direction of an attackB. redirect an attack away from its targetC. monitor attack noise, scans, and other activityD. delay an attack from reaching its target

Correct Answer: BCSection: (none)Explanation


QUESTION 12All routers in this network are running EIGRP according to the exhibit.Which step is the most important to make sure that this network core will converge quickly should a link failureoccur?

A. make certain the maximum number of paths on both of the routers is twoB. make certain EIGRP is not running across non-transit linksC. add another link between the two routers with no servers and set the metric on this new link equal to the

other four linksD. make certain EIGRP is running across all links



QUESTION 13When designing a converged network, which measures can be taken at the building access layer to helpeliminate latency and ensure end-to-end quality of service can be maintained? (Choose three.)

A. rate limit voice trafficB. onfigure spanning-tree for fast link convergenceC. isolate voice traffic on separate VLANsD. classify and mark traffic close to the source

Correct Answer: BCDSection: (none)Explanation


QUESTION 14The P4S company is planning to deploy a new multicast application in its network to do real-time trading. Thisapplication will be performed simultaneously by thousands of traders located throughout the network, each asource of several IP multicast streams, tocarry the "sell" and "buy" trading bids. All routers in its network have full hardware support for all PIM multicastmodes.Which mode can be used to minimize the impact of the new application on the routers in the P4S network?

A. PIM Source Specific MulticastB. PIM Any-Source MulticastC. PIM Dense ModeD. PIM Bidirectional

Correct Answer: DSection: (none)Explanation


QUESTION 15You work as a network technician for the P4S Ltd. Study the exhibit carefully, router P4S-RA is the hub router ina Frame Relay hub-and-spoke deployment. Configure router P4S-RA's serial interface as a point-to-multipointinterface, and it is servicing threespoke routers. The link between Router P4S-RC and the frame provider experiences a service disruption,which causes the interfaceon Router P4S-RC to go down.How does Router P4S-RA learn of this failure in the network and how does it react?

A. If OAM is configured between Router P4S-RA and Router P4S-RC, router P4S-RA will be notified of thefailure after threemissed OAM packets. After the third OAM packet is missed, the frame PVC becomes inactive, and thisevent terminates therouting process neighbor relationship established between Router P4S-RA and Router P4S-RC.

B. Router P4S-RA does not detect the failure in the network and its interface continues to remain in anoperational state. Ifrouting is configured over this link, Router P4S-RA must wait for the neighbor relationship to time-out beforeupdating itsrouting table to account for the lost router and its networks.

C. Router P4S-RA must wait for a full LMI status update from the provider frame switch before it is notifiedabout the PVC status.Once the full LMI status message is received, the routing process neighbor relationship between RouterP4S-RA and RouterP4S-RC is immediately terminated.

D. Router P4S-RA immediately detects the failure via LMI notification and its interface is placed in a non-operational state. Ifrouting is configured over this link, the neighbor relationship is terminated and the routing table is updated.The change isthen propagated as appropriate to the rest of the network.



QUESTION 16In this network presented in the following exhibit, all routers are configured to perform EIGRP on all interfaces.All interface bandwidths are set to 1000, and the delays are configured as displayed. In the topology table atrouter P4S-RC, only one path can beseen towards 10.1.1.0/24.Which description is correct?

A. Router P4S-RB is not advertising 10.1.1.0/24 to router P4S-RC due to a split horizonB. EIGRP should advertise all available paths to 10.1.1.0/24 in the local topology table to all neighbors so this

condition is a bugC. Router P4S-RD is not advertising 10.1.1.0/24 to Router P4S-RC due to a split horizonD. Router P4S-RC should have two paths to 10.1.1.0/24, while routers P4S-RB and P4S-RD should each have

only one path,indicating a route filter has been applied on Router P4S-RC



QUESTION 17Which three types of LSA could each trigger a partial SPF? (Choose three.)

A. type 2 LSA (Network Link Advertisements)B. type 3 LSA (ABR Summary Link Advertisements)C. type 4 LSA (ASBR Summary Link Advertisements)D. type 5 LSA (Autonomous System External Link Advertisements)


Explanation/Reference:

www.CareerCert.info

QUESTION 18You are a network technician for the P4S Ltd. Study the exhibit carefully. All links provided in the network areequal cost, and P4S-R1 is configured to use per packet load sharing. One-way latencies for each route aredisplayed on the diagram.Which option is true about packets sent from Network A to Network B?

A. Network B may receive out-of-order packets due to excessive latency on the P4S-R4- P4S-R3 link.B. P4S-R1 will not use P4S-R4 and P4S-R3, because it will detect delayed TCP ACK packets coming from

that path.C. Any out-of-order packets will be buffered and sent in order by CBWFQ, configured on Router P4S-R1.D. Any out-of-order packets will be buffered and sent in order by CBWFQ, configured on Router P4S-R3.



QUESTION 19Which two reasons are valid for aggregating routing information within a network? (Choose two.)

A. to improve optimal routing within the networkB. to reduce the impact of topology changesC. to reduce the amount of information any specific router within the network must store and processD. to isolate the impact of DDoS attacks



QUESTION 20Configure routers P4S-RE and P4S-RF as route reflectors of router P4S-RA in this network presented in thefollowing exhibit. When router P4S-RC transmits a route to router P4S-RA, which router or routers will routerP4S-RA send an update to?

A. only EBGP routers, except router P4S-RCB. all routers, except router P4S-CC. only iBGP routersD. only route reflector clients



QUESTION 21Which way can most effectively improve BGP convergence in the event that a point-to-point link, over which anEBGP session is running, fails?

A. use BGP multihopB. configure EBGP fast external falloverC. enable BGP graceful restartD. reduce the keepalive timer to the minimum value allowed



QUESTION 22You are the Cisco Network Designer in P4S. In your

company site, a NAS is both physically and logically in the traffic path. The NAS identifies clients solely basedon their MAC addresses. In which access mode has this NAS been configured to operate?

A. Layer 2 modeB. Layer 2 Edge modeC. Layer 3 modeD. Layer 3 In-Band mode



QUESTION 23According to the following exhibit, company 1 contains two autonomous systems (AS1 and AS2) connected viaISP A, which has an AS number of 100. Router P4S-RB and Router P4S-RC are advertising an aggregate ofX.X.X.0/23 so that AS1 is able to reach the twoserver farms. The two links from AS2 are not being used efficiently.How can AS2 use both of the links coming into it?

A. create another link between Router P4S-RA in AS1 and ISP AB. configure two static routes in Router P4S-RA for X.X.X.0/23 pointing to Router P4S-RB and Router P4S-RCC. advertise each X.X.X.0/24 independently from Router P4S-RB and Router P4S-RCD. configure iBGP between Router P4S-RB and Router P4S-RC to load-share traffic once it reaches AS2



QUESTION 24Study the exhibit carefully. In this network, configure P4S-R1, P4S-R2, and P4S-R3 in EIGRP AS 100, andconfigure P4S-R3 and P4S-R4 in EIGRP AS 200. P4S-R3 is configured to redistribute between the two EIGRPautonomous systems.Then, P4S-R1 loses its connection

to 192.168.1.0/24.Which source will P4S-R4 receive a query from, or if it will not receive a query, why not?

A. P4S-R4 will not receive any queries for 192.168.1.0/24, because it's not in the same autonomous system asP4S-R1 or192.168.1.0/24.

B. P4S-R4 will not receive any queries for 192.168.1.0/24. P4S-R1 will not generate any queries for thisdestination because thereare no other paths available in the network.

C. P4S-R4 will receive one query for 192.168.1.0/24 from P4S-R1 itself, since P4S-R1 has lost its connectionto the destination.

D. P4S-R4 will receive one query. Once AS100 has converged, P4S-R3 will have no route to 192.168.1.0/24,so it will initiate a queryinto AS 200.



QUESTION 25Which reason is correct about carrying routes that originate outside your network in an EGP, such as BGP,rather than in your IGP, such as OSPF, EIGRP, or IS-IS?

A. to provide faster convergence to destinations outside your networkB. to prevent failures outside your network from impacting your internal network operationC. to provide a growth path for the core of your networkD. to provide better control over the distribution of the default route inside your network



QUESTION 26The network administrator would like to generate synthetic traffic using the Service Assurance Agent containedin Cisco IOS. Which CiscoWorks network management application will be used to report the latency andavailability for configured traffic operations onan end-to-end and hop-by-hop (router-to-router) basis?

A. nGenius Real-Time MonitorB. CiscoView

C. Device Fault ManagerD. Internetwork Performance Monitor



QUESTION 27Scalability is provided in the server farm module by which of the following design strategies?

A. up to 10 Gbps of bandwidth at the access levelB. redundant servers at the access levelC. modular block design at the access levelD. high port densities at the access level



QUESTION 28Which is the reason that EIGRP uses queries?

A. to test known alternate paths and determine if they are loop-freeB. to find alternate loop-free paths that have been discarded due to split horizonsC. to test for neighbor state when the network topology is in fluxD. to withdraw routing information from the network



QUESTION 29In a single broadcast domain, connect three routers via a standard Ethernet switch. STP is the only Layer 2protocol running on this link. EIGRP is the only Layer 3 protocol running on this link, which uses a standardconfiguration. Then, one of the three routers ismanually shut down.How will the other two routers discover the loss of this neighbor?

A. The switch will send a reverse ARP when the router disconnects from the switch.B. The line protocol on the remaining two routers will be brought down as soon as the carrier is lost from the

switch.C. The EIGRP dead timers will expire due to the absence of EIGRP traffic.D. The switch will bring down the carrier on all ports momentarily to force all the routers connected to the link to

relearn theirneighbors.

Correct Answer: C

Section: (none)Explanation


QUESTION 30Which two network design principles does this network violate on the basis of the following exhibit? (Choosetwo.)

A. hierarchyB. predictabilityC. fault toleranceD. modularity

Correct Answer: ADSection: (none)Explanation


QUESTION 31A Fibre Channel fabric (or Fibre Channel switched fabric, FC-SW) is a switched fabric of Fibre Channel devices

enabled by a Fibre Channel switch. Fabrics are normally subdivided by Fibre Channel zoning. Each fabric has aname server and provides other services.Higher redundancy over FC-AL, P2P.Which path selection protocol is used by Fibre Channel fabrics?

A. OSPFB. RIPC. FSPFD. VSANs



QUESTION 32While deploying IGP non-stop forwarding (NSF), which practice is the best for tuning routing protocol hello anddead timers?

A. The hello and dead timers should be tuned to allow NSF to continue forwarding after an initial failuredetection.

B. The routing protocol hello and dead timers should be decreased to the minimum.C. NSF-independent timers should be used so that routing protocol timers have no effect.D. The hello and dead timers should be tuned so the link failure is detected before NSF has the chance to

react to the failure.



QUESTION 33Which is the reason that H-VPLS is considered more scalable than flat VPLS?

A. It minimizes signaling overhead by building two separate layers pseudowire meshes.B. It minimizes signaling overhead by only requiring a full pseudowire mesh among N-PEs.C. It eliminates signaling overhead between the N-PE and U-PE.D. It eliminates signaling overhead on core devices.

Correct Answer: ABSection: (none)Explanation


QUESTION 34In a DMVPN network with next-hop servers, which twoconfigurations provide redundancy? (Choose two.)

A. one tunnel interface configured to run over two DMVPN cloudsB. two DMVPN clouds configured with one tunnel interface each

C. two DMVPN clouds configured with two next-hop servers using anycast addressesD. two next-hop servers configured to use a single tunnel interface within one DMVPN cloud



QUESTION 35Which two benefits does VoFR provide? (Choose two.)

A. bandwidth efficiencyB. cell-switchingC. congestion notificationD. heterogeneous network

Correct Answer: ACSection: (none)Explanation


QUESTION 36A service provider would like to maximize forwarding memory, routing memory, and CPU resources on PEdevices for enterprise customers having very few sites (two to three) and a large number of prefixes (severalthousand). Which service should be offered by the service provider to these customers?

A. VPWSB. InterAS L3VPNC. VPLSD. L3VPNs (RFC 2547-based)



QUESTION 37In a network, all routers deploy FIFO queuing. The primary application running on the network is data backupby use of FTP. At certain times, users experience cyclical performance degradation. Which two items canmitigate this problem and help ensure bandwidth is used effectively in the network? (Choose two.)

A. traffic policingB. CB-WFQC. MDRRD. WRED



QUESTION 38Which function is performed by the Community String field defined in a trap PDU?

A. enable reliable delivery of messagesB. allow authentication by management stationC. isolate the PDU within a defined region of the networkD. enable the routing of messages



QUESTION 39Study the exhibit carefully. Routers P4S-RA, P4S-RB, P4S-RC, and P4S-RD are all performing OSPF within asingle area and have OSPF graceful restart configured and running. 10.1.2.0/24 is being advertised onlythrough BGP and the best path between routers P4S-RCand P4S-RD is through router P4S-RB. Configure BGP graceful restart on routers P4S-RB, P4S-RC, and P4S-RD, but not on routerP4S-RA.What will happen to traffic from 10.1.1.0/24 to 10.1.2.0/24 after router P4S-RB performs a graceful restart?

A. be tunneled from router P4S-RD to router P4S-RA through router P4S-RC.B. continue to flow normallyC. be dropped at router P4S-RB for a period of time after the graceful restartD. switch to the path through router P4S-RC without interruption



QUESTION 40Virtual Private LAN Services (VPLS) is a class of VPN that supports the connection of multiple sites in a singlebridged domain over a managed IP/MPLS network. VPLS presents an Ethernet interface to customers,simplifying the LAN/WAN boundary for ServiceProviders and customers, and enabling rapid and flexible service provisioning, because the service bandwidthis not tied to thephysical interface.Which of these statements best describes VPLS?

A. Neither broadcast nor multicast traffic is ever flooded in VPLS.B. Multicast traffic is flooded but broadcast traffic is not flooded in VPLS.

C. VPLS emulates an Ethernet switch, with each EMS being analogous to a VLAN.D. Because U-PE devices act as IEEE 802.1 devices, the VPLS core must use STP.



QUESTION 41Study the exhibit carefully. Configure P4S-R1, P4S-R2, and P4S-R3 to run EIGRP on all their connectedinterfaces. P4S-R2 is also configured as an EIGRP stub.Which EIGRP routes are in the local topology table at P4S-R3?

A. 172.30.2.0/24, 172.30.3.0/31 and 172.30.3.2/31B. 172.30.0.0/16C. There's not enough information provided to know what would be in the topology table at P4S-R3.D. 172.30.1.0/24, 172.30.2.0/24, 172.30.3.0/31 and 172.30.3.2/31



QUESTION 42Which two reasons are for instrumenting your network and network devices to collect performance data?(Choose two.)

A. to route traffic around constrained choke points in the networkB. to enable capacity planning decisionsC. to determine the impact of jitter and latency on application performanceD. to determine the locations at which QoS needs to be implemented



QUESTION 43In this network presented in the following exhibit, traffic destined for 10.1.3.1 arrives at P4S-R5. Which path willbe taken by the traffic from here and why?

A. It will take the path P4S-R3, P4S-R2, P4S-R1, because OSPF always prefers paths within an area.B. It will not take any path; the traffic will be dropped because P4S-R2 is in a different autonomous system

than P4S-R1 orP4S-R3.

C. It will take the path the path P4S-R4, P4S-R3, P4S-R2, P4S-R1, because this is the lowest cost path.D. It will not take any path; the traffic will be dropped because the summary (type 3) LSA advertised by P4S-R1

into area 1 willnot be readvertised back into area 0.



QUESTION 44When is the site-to-site remote access model appropriate?

A. for multiple ISDN connectionsB. for modem concentrated dial-up connectionsC. for a group of users in the same vicinity sharing a connection

D. for use by mobile users



QUESTION 45Which three statements are correct about OSPF route summarization? (Choose three.)

A. A flat addressing scheme is required in order to summarize OSPF routes.B. OSPF internal routes can be summarized only at the ABRs.C. OSPF type 5 external routes can be summarized only at the ASBRs.D. Route summarization can lead to a more stable network.



QUESTION 46Which option is true about routing control while using routing protocols in a DMVPN network (or any GRE-over-IPsec network)?

A. Routing of the data plane traffic should be carried out by means of the GRE tunnel and a separate routinginstance should beused to handle routing of the crypto endpoints.

B. The control plane traffic for the crypto endpoints should be routed through the GRE tunnel; the control planetraffic for thedata plane traffic should travel via the transport network.

C. If the network is a private MPLS network, the routing for the data plane traffic and the crypto endpointsshould be runoutside of the GRE tunnel.

D. The routing used to establish the crypto endpoints should include information for the data networks behindthe endpoints.



QUESTION 47Study the following exhibit carefully. A service provider with a multi-area OSPF environment would like to deployMPLS TE tunnels among PE routers across area boundaries. Configure the LSPs with bandwidth constraintsand explicit loose route hops as indicated bythe arrows in the following path:PE1 -> ABR1 -> ABR2 -> PE2Which two items identify devices that will execute constraint-based SPF in order to set up LSP from PE1 toPE2? (Choose two.)

A. PE1B. all routers in Area 1C. all ABRsD. all routers in Area 2



QUESTION 48VLAN Tagging, also known as Frame Tagging, is a method developed by Cisco to help identify packetstravelling through trunk links. When an Ethernet frame traverses a trunk link, a special VLAN tag is added tothe frame and sent across the trunk link .How doesERS use the VLAN tag?

A. provide service internetworkingB. support transparency for Layer 2 framesC. indicate destination as a connection identifierD. map to the DLCI in service internetworking



QUESTION 49RSVP is short for Resource Reservation Protocol. Which statement is true about the RSVP protocol?

A. It is reserved bi-directionally by each originating node.B. It is only for avoiding packet drop on collision-prone media (such as Ethernet).

C. It is initiated uni-directionally along the data path downstream from each requesting node.D. It is only shared by pairs of peers participating in delay-sensitive, real-time applications like VoIP.



QUESTION 50You are a network technician. After examining the following exhibit, can you tell me what the label at the top ofthe label stack for the IP Packet is when it leaves PE2 for the 10.1.1.0/24 network?

A. 20B. 30C. 40D. 90



QUESTION 51Which tunneling mechanism provides confidentiality and tunneling capabilities?

A. L2TPv3B. IPsec ESPC. IPsec AHD. MPLS L3VPN



QUESTION 52Which one of the following technologies could offer effective authentication and port-based access control in awireless network by use of static WEP keys?

A. 802.1XB. AES-CCMPC. RADIUSD. TKIP



QUESTION 53What is one of the reasons that custom QoS ACLs are recommended over automatic QoS when configuringports on a Catalyst 6500 for use with IP phones?

A. 79xx IP phones do not automatically mark voice packets with non-zero DSCP values.B. 79xx IP phones do not mark protocol packets such as DHCP, DNS, or TFTP with non-zero DSCP values.C. 79xx IP phones do not mark voice packets with optimal DSCP values.D. 79xx IP phones use a custom protocol to communicate CDP information to the switch.



QUESTION 54Which two benefits are of protecting the control plane of a network device? (Choose two.)

A. protects against DoS attacks targeted at the network infrastructureB. increases the reliability, security, and availability of the networkC. protects data flowing through devicesD. separates attack traffic from normal network traffic



QUESTION 55EIGRP supports internal and external routes. Which router should be configured as EIGRP stub routers whiledeploying EIGRP on a network?

A. routers on the border of the EIGRP stub area

B. routers never used to transit traffic between their neighboring upstream routersC. routers within the core of the networkD. routers that do not need to originate any type of route into the autonomous system



QUESTION 56At all sites provided in the following exhibit. OSPF is used as the PE-CE protocol Which path is preferred fromCE1 to CE3?

A. CE1-PE1-PE3-CE3B. CE1-PE1-CE2-PE2-PE3-CE3C. CE1-PE1-PE2-CE3D. CE1-PE1-PE2-PE3-CE3



QUESTION 57Fibre Channel, or FC, is a gigabit-speed network technology primarily used for storage networking. FibreChannel is standardized in the T11 Technical Committee of the InterNational Committee for InformationTechnology Standards (INCITS), an American NationalStandards Institute (ANSI) Caccredited standards committee. Which two of these correctly describe FibreChannel? (Choose two.)

A. supports multiple protocolsB. works only in a shared or loop environmentC. allows addressing for up to 4 million nodes

D. provides a high speed transport for SCSI payloads



QUESTION 58You work as a network administrator for the P4S company. Study the exhibit carefully, the network is runningEIGRP. You need traffic from P4S-R5 destined for 172.30.1.0/24 to be routed through P4S-R4. You shouldcomplete which two actions combined? (Choose two.)

A. change the bandwidth on the link between P4S-R4 and P4S-R5 to 110B. change the bandwidth on the link between P4S-R2 and P4S-R5 to 70C. change the bandwidth on the link between P4S-R1 and P4S-R3 to 80D. change the bandwidth on the link between P4S-R3 and P4S-R5 to 70



QUESTION 59Which item will be attacked by a DoS attack?

A. availabilityB. correlationC. integrityD. confidentiality

Correct Answer: ASection: (none)

Explanation


QUESTION 60Which is a requirement for performing attack detection by use of anomaly detection technologies?

A. syslog dataB. packet capturesC. baseline dataD. exploit signatures



QUESTION 61The P4S company connects a pair of sites with three GigE links between two routers with fairly high processorutilization. It has a great many pairs of hosts communicating between the sites, and some use applications thatmay be sensitive to packet re-ordering.How to maximize the utility of the links while adding minimal load to the routers?

A. use policy-based routing to force all delivery order applications onto a single link and configure per-packetload sharingacross the remaining two links

B. verify that the total delay of each link is within 100 milliseconds of the other two links and configure per-packet load sharingacross the three links

C. set the link metrics so all three paths are installed in the routing table and use the default per-flow loadsharing across thelinks

D. use multilink PPP to bundle the three links into a single logical link and adjust the routing metrics as needed



QUESTION 62Which two are characteristics of RSVP? (Choose two.)

A. RSVP itself provides bandwidth and delay guarantees.B. For RSVP to be end-to-end, all devices must support RSVP.C. RSVP reservations are maintained by a centralized reservations server.D. An RSVP compatible QoS mechanism must be used to implement guarantees according to RSVP

reservations.



QUESTION 63Which two potential effects are caused by increasing the percentage of priority traffic? (Choose two.)

A. can increase latency and jitter for priority trafficB. can increase latency and jitter for non-priority trafficC. must be avoided regardless of traffic patternsD. will not ever change the performance of non-priority traffic



QUESTION 64Which description is true about RSVP reservations?

A. static, and cannot be removed once they are first requested by a delay-sensitive, real-time applicationB. static, and must always be installed after power-upC. dynamic, and depend on the amount of delay-sensitive, real-time data passing throughD. dynamic, allocated when requested, and removed at the end of each session for which they were requested



QUESTION 65Which security benefit can be provided by IPv4 anycast for a service such as DNS?

A. robust detection capabilitiesB. multiple paths to the serviceC. improved availability of services during DoS attacksD. mitigation of attacks



QUESTION 66The Cisco MDS 9000 Series Multilayer SAN Switches can help lower the total cost of ownership of the mostdemanding storageenvironments. By combining a robust and flexible hardware architecture with multiple layers of network andstorage-managementintelligence, the Cisco MDS 9000 Series helps you build highly available, scalable storage networks withadvanced security and

unified management.What method does the Cisco MDS 9000 Series use to support trunking?

A. ISLB. VLAN TrunkC. VoQD. Enhanced ISL



QUESTION 67A service provider sets up LSP among all the edge routers in its network by using LDP. A user would like tomaintain its DSCP marking across the service provider backbone. Mark the MPLS packets with the appropriateEXP values according to QoS policies.Which step should be taken to classify and queue packets on egress nodes on the basis of EXP marking?


A. disable penultimate hop poppingB. use MPLS network-wide QoS propagationC. copy IP DSCP at the ingress into MPLS EXPD. copy MPLS EXP at penultimate hop into DSCP



QUESTION 68In the network presented below, configure routers P4S-RE and P4S-RF as route reflector clients of router P4S-RA. When router P4S-RE transmits a route to router P4S-RA, which router or routers will router P4S-RA sendan update to?

A. only iBGP routers, except router P4S-REB. only route reflector clients, except router P4S-REC. all routers, except router P4S-RED. only EBGP routers



QUESTION 69Which two statements correctly describe OSPF flooding? (Choose two.)

A. Type 11 Opaque LSAs have area-local flooding scope.B. Type 1 and Type 2 LSAs have an area scope and are flooded only within an area boundary.C. Type 5 LSAs are converted to Type 7 LSAs in an NSSA area.D. OSPF areas help in containing the flooding scope and hiding topology details of other parts of the network.



QUESTION 70Which QoS requirement applies to streaming video traffic?

A. one-way latency of 150 ms to 200 msB. jitter of 30 ms or lessC. packet loss of 2 percent or lessD. 150bps of overhead bandwidth

Correct Answer: C



QUESTION 71You are the Cisco Network Designer in P4S. What is theterm for a logical SAN which provides isolation among devices physically connected to the same fabric?

A. InterSwitch LinkB. Virtua LANC. Virtual Output QueuingD. virtual storage area network



QUESTION 72For the following options, which deployment can provide the least amount of downtime and also allow for dualactive-active hubs?

A. dynamic VPN tunnelsB. stateful IPsec failover tied to an HSRP address on dual hubsC. GRE tunnels from spokes to dual hubsD. stateful IPsec failover with dead peer detection across dual hubs



QUESTION 73According to the network provided in the following exhibit, all routers are performing OSPF on all links and alllinks have the same cost.OSPF timers have not been modified on any router.Which network will converge faster, and why, if the link between 10.1.1.0/24 and router P4S-RA fails?

A. Network 1 will converge faster, because there are fewer flooding hops through the network.B. They will converge at exactly the same time, because OSPF will flood before calculating the new path.C. They will converge at approximately the same time, because all routers have an equal cost alternate path.D. Network 2 will converge faster, because there are more alternate paths available.



QUESTION 74Tom is a network administrator for the P4S Ltd. Study the exhibit carefully, he uses four Ethernet links toconnect routers P4S-RA and P4S-RB for the purpose of load-sharing transit traffic. Tom also thinks about theimpact of this design on the convergence of thenetwork. The network currently runs IS-IS.What advice will you give to Tom?

A. Configure the four links as broadcast links within IS-IS, because Designated Intermediate Systems help withscaling.

B. Consider EIGRP for high density neighbor situations, since link state protocols do not scale well in highlyredundant topologies.

C. Configure the four links as point-to-point links within IS-IS, to reduce the complexity of the shortest path treeand improveconvergence.

D. Make two of the four interfaces passive, so IS-IS only runs on two of them.



QUESTION 75The Schuyler and Livingston Iron Works has been working on getting its network security under control.It has set up VPN with IPSec links to its suppliers. It has installed network vulnerability scanners to proactivelyidentify areas ofweakness, and it monitors and responds to security events as they occur. It also employs extensive accesscontrol lists, statefulfirewall implementations, and dedicated firewall appliances. The company has been growing very fast lately andwants to make sureit is up to date on security measures.Which two areas of security would you advise the company to strengthen? (Choose two.)

A. intrusion protectionB. identityC. secure connectivityD. security management



QUESTION 76Why build link state flooding domain boundaries in large-scale networks running OSPF or IS-IS? (Choose two.)

A. Flooding domain borders block the transmission of external routing information in the network, whichimproves scaling andconvergence times.

B. Network administrators can quickly find specific destinations when detailed link state information is sortedby floodingdomain in the link state database.

C. Doing so limits the extent of SPF and allows the use of PRC for some best path calculations.D. Doing so provides logical break points at which to troubleshoot individual parts of the network, rather than

trying totroubleshoot the whole network at once.

Correct Answer: CDSection: (none)Explanation


QUESTION 77Which attack type may be indicated by unsolicited ACKs directed toward an unused portion of a network's IPaddress space?

A. A smurf attack against a host located elsewhere, spoofing the unused IP spaceB. a SYN flood attack against that IP address spaceC. IP backscatter from an attack located elsewhere, spoofing your unused IP spaceD. an ICMP flood attack against that IP address space



QUESTION 78Which description is correct about SNMPv3?

A. It expands the SNMP Response protocol message so that the message must be used by managers inresponse to traps sent byagents.

B. It adds the GetNext protocol message.C. It provides authentication.D. It adds the Inform protocol message.



QUESTION 79

You are the network consultant from P4S. One of yourcustomer has six sites, three of which process a large amount of traffic among them. He plans to grow thenumber of sites in the future. Which is the most appropriate design topology?

A. full meshB. peer-to-peerC. partial meshD. hub and spoke



QUESTION 80A service provider is offering four classes of service, with each class mapped to a separate queue. Somecustomers complain aboutreceiving out-of-order packets, which cause application degradation. Which QoS policy activity most likelycauses these out-of-order packets?

A. remarkingB. traffic shapingC. policingD. WRED



QUESTION 81You are a network administrator for the P4S Ltd. You are tasked to add a new OSPF router to an existingnetwork. Later, youdiscover that two existing routers in the same area as the new router are using different MD5 keys toauthenticate their neighborrelationships.Which option is correct if the new router is connected by means of a separate interface?

A. The three routers need to be in three different areas.B. The MD5 keys on the two neighboring routers must be changed to the same key.C. Each router must have a unique MD5 key to sign packets with.D. Each interface may have a unique MD5 key to sign packets with.



QUESTION 82The P4S company's external routers BGP peer with multiple service providers and external organizations. In all

situations, the external routers are peered with their BGP neighbors through directly-connected interfaces. Howdoes GTSM provide additional security for your BGP speakers?

A. GTSM prevents the processing of BGP packets from devices that are not on the directly-connectedinterfaces.

B. GTSM replaces the TCP 3-way handshake between BGP speakers on directly connected interfaces.C. GTSM prevents random TCP resets from being injected into the BGP data stream.D. GTSM prevents the formation of BGP adjacencies from unauthorized devices.



QUESTION 83Which filter type will you use for all nontransit networks running BGP with multiple, peering, autonomoussystems?

A. an IGP filter to prevent internal routes from being transmitted to outside autonomous systemsB. a BGP route count filter to prevent the nontransit network routing tables from becoming overwhelmedC. a BGP filter to prevent locally originated routes from being transmitted to both peering autonomous systemsD. a BGP filter to prevent routes learned from one peer from being readvertised to the other peer



QUESTION 84Users at the Charleville Company began experiencing high network delays when Internet connectivity wasenabled for all users. After investigating the traffic flow, you determine that peer-to-peer traffic from a musicdownload site is consuming a large amountof bandwidth. Which QoS mechanism can you implement to improve the network response time?

A. Use CBWFQ to queue the peer-to-peer traffic into the default traffic class.B. Use class-based WRED to randomly drop the peer-to-peer traffic during network congestions.C. Use class-based policing to limit the peer-to-peer traffic rate.D. Use class-based shaping to delay any excessive peer-to-peer traffic.



QUESTION 85When designing, why would a network architect use activeperformance monitoring instead of passive performance monitoring?

A. for performance verification (independent of application servers and users)B. to collect history and event statistics (specific to network devices)

C. to decrease router CPU utilization on end systems (both user and server)D. to maintain accurate network statistics (independent of end systems)



QUESTION 86During periods of congestion, which two impacts are of traffic shaping on traffic flows? (Choose two.)

A. increased delayB. fewer packets droppedC. less bandwidth consumptionD. more packets dropped



QUESTION 87Which two options are true about the impact flooding domain boundaries have when built in OSPF? (Choosetwo.)

A. They increase convergence time by adding the time required to run two full Shortest Path Firstcomputations on the areaborder routers.

B. They decrease convergence time by automatically summarizing reachability information transmitted throughthe network,thereby decreasing the number of routes that must be installed in each router's routing table.

C. They decrease convergence time by reducing the complexity and size of the shortest path trees in theindividual areas.

D. They isolate network failures within a domain.



QUESTION 88Which statement about IDS/IPS design is correct?

A. An IPS should be deployed if the security policy does not support the denial of traffic.B. An IPS analyzes a copy of the monitored traffic and not the actual forwarded packet.C. An IDS analyzes a copy of the monitored traffic and not the actual forwarded packet.D. Bandwidth considerations must be taken into account since IDS is deployed inline to traffic flow.

Correct Answer: C



QUESTION 89You are a network engineer for the P4S Ltd. You are measuring one-way delay between two campus networksconnected through an MPLS network. One campus is in Chicago and the other is in Dallas. The company hasone appliance at each campus with which tomeasure the delay.Which of the following is a must for the two appliances in order for the engineer to measure one-way delay withthe best possibleaccuracy?

A. connections to the CE routersB. a common TOD reference sourceC. a local Stratum 1 clock sourceD. the same physical interface to the network



QUESTION 90Which control plane problem can be prevented by implementing QoS, and how to eliminate the problem?

A. BGP instability, by prioritizing Precedence 6 traffic (per RFC 791)B. OSPF instability, by using WRED to prioritize Precedence 6 routing updates (per RFC 791)C. OSPF instability, by remarking to Precedence 6 (per RFC 791)D. BGP instability, by means of traffic shaping updates (per RFC 791)



QUESTION 91Study the following exhibit carefully, in which area should you put the link between router P4S-RA and routerP4S-RB in order to avoid suboptimal routing?

A. area 1B. area 3C. area 4D. area 1, and create a virtual link between routers P4S-RA and P4S-RB



QUESTION 92What are disadvantages to storage directly attached to the application servers? (Choose three.)

A. reliabilityB. scalabilityC. redundancyD. manageability



QUESTION 93Which two practices need to be implemented to increase SNMPv1 security? (Choose two.)

A. Use SNMP encryption for transport confidentiality.B. Use ACLs to allow only specific IP addresses to poll SNMP.C. Use a combination of alphanumeric characters for the community strings.D. Restrict access to the specific SNMP engine IDs in use.



QUESTION 94For the following items, which one is the weakness of rate limiting as a response to a DoS attack?

A. Rate limiting does not detect attacks.B. Rate limiting is too processor-intensive.C. Rate limiting does not drop enough packets.D. Rate limiting only works on inbound traffic.



QUESTION 95Fair queuing is a scheduling algorithm used in computer and telecommunications networks to allow multiplepacket flows to fairly share the link capacity. How does Fair Queuing divide bandwidth?

A. equally between all flowsB. between all destinations relative to traffic loadC. equally between all classes of serviceD. between classes of service based on traffic load



QUESTION 96A certain service provider is supporting a customer who uses IPsec tunnels between dual-homed CE routers.The service provider carries infrastructure routes using OSPF and carries tunnel endpoints using BGP. Whichtwo steps will be taken by the service provider to provide fast convergence in case of node failure in itsnetwork? (Choosetwo.)

A. tune OSPF on all routersB. tune BGP on all routersC. carry IPsec tunnels in L2TPv3 among PE routersD. carry IPsec tunnels in VPLS among PE routers



QUESTION 97Sun Stable is a global insurance company with headquarters located in Houston, Texas. The campus there ismade up of a number of office buildings located within the same vicinity. In 2003, a new building, Building 331Bwas added. The additional building housesapproximately 1000 employees. Rather than deploy a private branch exchange (PBX) in the new building, SunStable has decided toimplement an IP telephony solution. External calls will be carried across a MAN link to another building, where agateway connectsinto the worldwide PBX network of Sun Stable. Voice mail and unified messaging components are required andall IP phones andworkstations should be on separate VLANs and IP subnets.Which IP telephony deployment best suits their need?

A. single-siteB. multisite with centralized call processingC. multisite with distributed call processingD. clustering over the WAN



QUESTION 98Which is the way that an OSPF ABR uses to prevent summary route information from being re-advertised froman area into the network core (Area 0)?

A. It advertises only inter-area summaries to the backbone.B. It advertises only intra-area summaries to the backbone.C. It sends only locally originated summaries to the backbone.D. It compares the area number on the summary LSA to the local area.



QUESTION 99You are a network technician for the P4S Ltd. You are redistributing between EIGRP autonomous systems 100and 200. Assume thatthere are no routing filters or aggregation applied anyplace in the network, which item is the result when a queryoriginating in AS100 reaches the router redistributing between the two autonomous systems?

A. The redistributing router will reply to the query in AS 100, and generate a new query in AS 200.B. The redistributing router will reply to the query in AS 100, and send an update indicating the new routing

information in AS200.

C. The redistributing router will forward the query from AS 100 into AS 200.D. The redistributing router will generate a new query into AS 200, and wait until it has received a reply before

responding in AS100.



QUESTION 100While adjusting the LSA generation time in OSPF, which two factors should be taken into consideration?(Choose two.)

A. number of locally generated LSAsB. interface stabilityC. target convergence timeD. size of the area



QUESTION 101Which roaming option will keep them on the same IP subnet when client traffic is being bridged through LANinterfaces on two WLCs?

A. Layer 1 intercontroller roamingB. Layer 2 intercontroller roamingC. Layer 3 intercontroller roamingD. Layer 4 intercontroller roaming



QUESTION 102Which two items are true concerning H-VPLS? (Choose two.)

A. Split horizon is enabled to avoid loops.B. There is a full mesh of pseudowires.C. There is a partial mesh of pseudowires.D. Split horizon is disabled to forward packets.

Correct Answer: CD



QUESTION 103Study the following exhibit carefully, assume that routers P4S-RJ, P4S-RK, P4S-RL, and P4S-RM are optimallyaggregating towards routers P4S-RA, P4S-RB, P4S-RC, and P4S-RD.Which illustrated network would most improve fault isolation?

A. AB. BC. CD. D



QUESTION 104Which two items are true about QoS in MPLS VPN (RFC 2547bis) networks? (Choose two.)

A. On egress from the Edge-LSR, the EXP field is used for PHB QoS towards the CE.B. MPLS can force packets into specific paths and bandwidths based on Edge-LSR mapping of DSCP to EXP.C. DiffServ information must be made known to the LSR in the MPLS header using the EXP field.D. MPLS QoS is a scalable and simple solution because it only requires application at the Edge-LSR.



QUESTION 105The network designer is interested in which NetFlow feature?

A. the location of the collector and the amount of flow information sent to it

B. the location of the OSS and the number of call detail records sent to itC. the NetFlow version number, sample rate, and type of collectorD. the amount of sample flow information sent to the correlation engine and the frequency with which it is sent



QUESTION 106Which advantage is of creating an in-band instead of an out-of-band management network?

A. separate transport equipmentB. lower equipment costsC. protection of production trafficD. protection of management traffic







QUESTION 108When a router running EIGRP takes alternate paths intoconsideration, which ones will it consider loop-free?

A. ones in which the feasible distance is the same as the best possible routeB. ones in which the reported distance is less than the feasible distanceC. ones in which the reported distance is the same as the metric of the best possible pathD. ones in which the reported distance is equal to the feasible distance



www.CareerCert.info

QUESTION 109All network devices provided in the following exhibit are running IPv6.When host P4S-A is attached to this link, how will it discover the presence of routers P4S-RB and P4S-RC?

A. Routers P4S-RB and P4S-RC send out periodic gratuitous ARPv6 messages to alert newly attached hoststo their presence.

B. Routers P4S-RB and P4S-RC will respond to an ICMP get route request sent by host P4S-A.C. Host P4S-A will discover routers P4S-RB and P4S-RC through the neighbor discovery process.D. Routers P4S-RB and P4S-RC will detect the addition of the new host the first time it transmits any packets,

and will send anICMP router discovery reply to host P4S-A.



QUESTION 110Which two items could be used to determine how much jitter is occurring across a customer's existing network?(Choose two.)

A. synthetic transactions in conjunction with Service Assurance Agent (IP SLA)B. SNMP GET requests and put commands between CallManager and VoIP phonesC. external test equipmentD. RMON probes



QUESTION 111You are the Cisco Network Designer in P4S. Which is notmajor scaling, sizing, and performance consideration for an IPsec design?

A. connection speedB. number of remote sitesC. features to be supportedD. types of devices at the remote site



QUESTION 112In secure IP multicast, which protocol handles group keymanagement?

A. GDOIB. MD5C. IPsecD. SHA-256



QUESTION 113Which two disadvantages are of using proxy servers as compared to stateful firewalls? (Choose two.)

A. Proxy servers must be explicitly set to support new applications and protocols.B. Proxy servers typically perform more slowly.C. Proxy servers expose the source addresses of traffic flows.D. Proxy servers use network address translation as their primary security mechanism.



QUESTION 114

The Domain Name System Security Extensions (DNSSEC) are a suite of IETF specifications for securingcertain kinds of information provided by the Domain Name System (DNS) as used on Internet Protocol (IP)networks. Which two security services are provided byDNSSEC? (Choose two.)

A. data validityB. data integrityC. data origin authenticationD. data confidentiality



QUESTION 115Which three components comprise the AVVID framework? (Choose three.)

A. common network infrastructureB. abstracted integrationC. network solutionsD. intelligent network services

Correct Answer: ACDSection: (none)Explanation


QUESTION 116To securely transport EIGRP traffic, a network administrator will build VPNs between sites. What is the bestmethod to accomplish the transport of EIGRP traffic?

A. IPSec in tunnel modeB. IPSec in transport modeC. GRE with IPSec in transport modeD. GRE with IPSec in tunnel mode



QUESTION 117Which action can identify and monitor denial of service attacks?

A. select attack counter-measuresB. establish normal network characteristicsC. deploy deep packet inspection appliancesD. deploy access control lists that match well-known attack vectors



QUESTION 118In order to improve scaling and convergence speed, what capability of EIGRP can be configured while runningEIGRP onpoint-to-multipoint multi-access networks?

A. route filters on the remotesB. spoke routers as EIGRP stubsC. floating static routes on the remotesD. fast hellos between the hub and spoke routers



QUESTION 119Study the following exhibit carefully. A customer is deploying three unicast applications (voice, video, and data)between these two PCs. OSPF is performing as a single area, Area 0, from P4S-R1 to P4S-R2. Three MPLSTE tunnels have been set up between P4S-R1 andP4S-R2. Each tunnel carries only one application's traffic. What is needed on P4S-R1 and P4S-R2 to separatethe three types of traffic into the appropriate tunnels?

A. VPLSB. multiple VRFsC. policy-based routingD. TE autoroute announce



www.CareerCert.info

QUESTION 120SCSI interfaces provide for faster data transmission rates (up to 80 megabytes per second) than standardserial and parallel ports. In addition, you can attach many devices to a single SCSI port, so that SCSI is reallyan I/O bus rather than simply an interface Whichtwo statements about SCSI are true?

A. The bus is limited to 64 devices.B. It is a full-duplex serial standard.C. It is a half-duplex serial standard.D. It allows up to 320 MB/s of shared channel bandwidth.



QUESTION 121MPLS VPN is a family of methods for harnessing the power of Multiprotocol Label Switching (MPLS) to createVirtual Private Networks (VPNs). When using MP-BGP peering to connect two MPLS-VPN service providers toone another between route reflectors.Which type of routes should be exchanged between the ASBRs?

A. infrastructure routesB. PE loopback addressesC. labeled routesD. VPN routes



QUESTION 122The Sender Policy Framework (SPF) is an open standard specifying a technical method to prevent senderaddress forgery. Whenconfiguring the SPF exponential backoff timer, which one of the following items is among the primary issues toconsider?

A. number of external routesB. area sizeC. average SPF run timeD. interface stability



QUESTION 123Which method can most efficiently implement IP multicast in a network without using RPs?

A. RPs can't be eliminated; they're mandatory in multicast networks.B. Implement PIM dense mode multicast to eliminate the need for RPs.C. Implement source-specific multicast and utilize the functionality of IGMPv3 to replace the RPs.D. Implement source-specific multicast and utilize the functionality of IGMPv2 to replace the RPs.







QUESTION 125A service provider would like to provide a service allowing customers to span VLANs across multiplecampuses. Which configuration will allow this service provider to achieve its desired result with a minimal effecton the scalability of PE routers?

A. RFC 2547-based service, with MPLS/LDP between PE and CE (in other words, CsC)B. VPWS service, with 802.1Q between PE and CEC. RFC 2547-based service, with L2TPv3 between PE and CED. VPWS service, with QinQ between PE and CE



QUESTION 126In this network presented in the following exhibit, configuring all routers to run OSPF on all interfaces. If youexamine the OSPF database on P4S-R4, in which LSA will you find 10.1.5.0/24?

A. 10.1.5.0/24 is in a router (type 1) LSA generated by P4S-R3.B. 10.1.5.0/24 is in a summary (type 3) LSA originated by P4S-R3.C. 10.1.5.0/24 is in a network (type 2) LSA originated by P4S-R3.D. 10.1.5.0/24 is not in any LSA in the OSPF database at P4S-R4, because P4S-R4 and P4S-R3 are in

different areas.



QUESTION 127LLQ is short for Low Latency Queue .VoIP traffic is mapped to (LLQ) over a slow speed link. Which kind ofdelay will seriously affect the quality of voice for this link?

A. encoding delayB. serialization delayC. propagation delayD. packetization delay



QUESTION 128According to the following exhibit, will traffic sourced from router P4S-RA and destined for a host on network10.1.1.0/24 always take the optimal path to that host?

A. No, if router P4S-RA chooses to forward traffic destined to a host on the 10.1.1.0/24 network to router P4S-RB, it will take a lessthan optimal path to reach its destination.

B. It doesn't matter which path to a host on 10.1.1.0/24 router P4S-RA chooses, through router P4S-RB orrouter P4S-RC, sincethey are equal in cost.

C. Yes, router P4S-RA has enough information to always direct traffic to router P4S-RC when forwarding trafficto a host on the10.1.1.0/24 network.

D. Yes, router P4S-RB will forward the traffic towards 10.1.1.0/24 correctly, if router P4S-RA chooses thatpath.



QUESTION 129You are the Cisco Network Designer in P4S. Your companyis using the G.711 codec with 802.11a access point radios. This can support a maximum of how many phonesper access point?

A. 5B. 10C. 14D. 20

Correct Answer: CSection: (none)

Explanation


QUESTION 130You work as a network administrator for the P4S company. You are responsible for a large-scale EIGRPnetwork and you havediscovered that one hub-and-spoke topology in the network is generating a lot of link flaps. You have tried manytimes to reduce thenumber of link flaps, but it seems that the stability of the hub-and-spoke topology can not be improved.The reason for this is thatmost failures seem to result from power outages in a number of locations.Which action should you take?

A. demand that uninterruptible power supplies be installed at every point in the network to prevent futureoutages

B. summarize the routes advertised into the core of the network to reduce the impact of these frequent failuresC. switch routing protocols to IS-IS, which handles large neighbor counts better and supports Partial SPF by

defaultD. switch routing protocols to OSPF, then create area boundaries to reduce the size of fault domains



QUESTION 131In the network presented in the following exhibit. Traffic destined for 10.1.3.1 arrives at P4S-R1. Which path willthe traffic take from here and why?

A. through P4S-R2, because P4S-R3 is in a different autonomous systemB. through P4S-R2, because it is an intra-area pathC. through P4S-R3, because P4S-R1 will only have a summary (type 3) LSA from P4S-R2D. through P4S-R3, because it is the lowest cost path



QUESTION 132In this BGP setup shown in the following exhibit, AS 400 advertises 10.1.1.0/24 to its peers. Border routers inAS 100 reset the next-hop router to themselves. P4S-R2, P4S-R3, and P4S-R4 are route reflector clients ofP4S-R1 and P4S-R5 is a non-client iBGP peer of P4S-R1.Which option is the BGP next hop on P4S-R5 for the address 10.1.1.0/24?

A. P4S-R6

B. P4S-R5C. P4S-R2D. P4S-R4



QUESTION 133A company is using a multi-site centralized call processing model. Which feature ensures that the remote siteIP phones will still have limited functionality given a WAN outage?

A. Call Admission ControlB. TAPIC. MGCPD. SRST



QUESTION 134Which option is true about how PIM sparse mode operates?

A. If an RP fails and there is no backup RP, multicast traffic will cease flowing in the network.B. RPs can become bottlenecks, since multicast traffic must always flow through the RP and down the shared

tree to get to thereceivers.

C. If an RP fails and there is no backup RP, new sources that begin sending will not be discovered by the otherPIM routers inthe network.

D. RPs switch each traffic flow to the shortest path tree when more than one receiver is present.



QUESTION 135What is the reason that you want to synchronize IGP and BGP convergence by advertising an infinite metric inOSPF or setting the overload bit in IS-IS?

A. to prevent traffic loss when the path from a router to a BGP next hop traverses another router that has notyet learned thepath via BGP

B. to prevent churning between multiple available routes reachable through IGP and BGPC. to prevent BGP from converging faster than IGP, which can cause temporary routing loops in the network

D. to prevent routes which are learned both from IGP and BGP from forming a routing loop



QUESTION 136There are two hub-and-spoke networks in the following exhibit. Each has about 60 branches spread over awide area. Connect routers P4S-RE and P4S-RF to two different frame providers. Problems with one providerhave impacted branches connected to the otherprovider and reaching the data center.Which is the best place to build flooding domain boundaries to isolate these WAN issues?

A. at routers P4S-RB and P4S-RC, because this will provide a good balance between separating the complextopologies behindrouters P4S-RD, P4S-RE, and P4S-RF from the core and good route aggregation

B. at routers P4S-RB and P4S-RF, because this will provide good route aggregation and prevent routing alongsuboptimal paths inthe case of link failure

C. at router P4S-RA, because this will provide optimal route aggregation and prevent suboptimal routing in thecase of linkfailure

D. at routers P4S-RD, P4S-RE, and P4S-RF, because this will provide good route aggregation and alsoseparate complextopologies within the network from one another

Correct Answer: D



QUESTION 137When you decide on Campus QoS Design elements, which twostatements correctly identify considerations to be taken into account?

A. Voice needs to be assigned to the hardware priority queue.B. Voice needs to be assigned to the software priority queue.C. Call signaling must have guaranteed bandwidth service.D. Strict-priority queuing should be limited to 50 percent of the capacity of the link.



QUESTION 138A lot of sites of the P4S company require any-to-any connectivity. Now, P4S is running EIGRP over a full meshof ATM VCs. It is concerned about the high number of EIGRP adjacencies that will emerge as the networkgrows.Which service can be used to replace the ATM mesh?

A. MPLS TEs from PE to PEB. pseudowires based on L2TPv3C. pseudowires based on LDPD. L3VPNs (RFC 2547-based) using MP-BGP



QUESTION 139Study the following exhibit carefully. Only the standard spanning tree is running on P4S-SWB, routers P4S-RAand P4S-RC are running EIGRP.By which mechanism could Router P4S-RC discover the failure when the link from P4S-RA to P4S-SWB fails?

A. by means of the expiration of the EIGRP dead timerB. by means of the clearing of the P4S-RA bit from P4S-SWBC. as a result of the loss of carrierD. by means of an EIGRP goodbye message from router P4S-RA



QUESTION 140Which description is correct about connecting an IP multicast domain that is operating in PIM dense mode to aPIM sparse mode domain?

A. The interconnection must be made at the rendezvous point of the PIM sparse mode domain.B. The connection can be made at any location in the network, but PIM sparse mode and PIM dense mode

cannot inter-operate;IGMP must be used to provide the interconnection.

C. The connection can be made at any location in the network, as PIM sparse mode will inter-operateseamlessly with PIMdense mode.

D. PIM dense mode and sparse mode domains are not inter-operable and cannot be connected.



QUESTION 141MPLS is a standards-approved technology for speeding up network traffic flow and making it easier to manage.Two MPLS service providers (SP1 and SP2) are offering inter-provider RFC 2547/4364-based IP-VPN serviceto an enterprise customer. IP traffic amongsome of the customer's sites has to traverse both of the service providers. The service providers and theenterprise do not knowwhat the minimum MTU is along the end-to-end path.How to guarantee that large packets are not dropped for MTU-related reasons?

A. configure the IP sender or senders to clear the DF flag in the IP headerB. enable Path MTU Discovery on all devices within the enterpriseC. enable Path MTU Discovery on all devices within SP1 and SP2D. configure the IP sender or senders to set the DF flag in the IP header



QUESTION 142Which two of the following Cisco router platforms support Multicast Distributed Fast Switching? (Choose two.)

A. 3600 seriesB. 7200 series with NSE-1C. 7500 seriesD. 12000 series



QUESTION 143The boss of the P4S company plans to dual-home two service providers for Internet connectivity. The fullInternet routing table will be accepted from each provider to provide optimal outbound routing. P4S hasobtained address space and an AS to use in connectingto the Internet.Which mechanism is the simplest one that P4S can use to prevent it from becoming a transit between the twoservice providers?

A. Build a route filter that only allows networks which are tagged with the LOCAL community to be advertisedto each of theservice providers.

B. Build a route filter that only allows the specific networks the enterprise owns to be advertised to each of theserviceproviders.

C. Build a route filter that only allows networks with an empty AS path to be advertised to each of the serviceproviders.

D. Build a traffic filter that only allows traffic originating from the specific networks the enterprise owns to beforwardedtowards the service providers.



QUESTION 144Which description is correct about how MTU mismatches areaddressed in the IS-IS neighbor-formation process?

A. IS-IS does not check for MTU mismatches when forming a neighbor relationship.B. IS-IS checks the locally configured MTU against the MTU advertised in neighbor hello packets.C. IS-IS checks the locally configured MTU against the MTU advertised in neighbor LSPs.D. IS-IS pads hellos, so neighbor relationships will not be formed on links with mismatched MTUs.



QUESTION 145Which three reasons are to summarize link state topologyinformation? (Choose three.)

A. to create boundaries for containing potential network changes and instabilitiesB. to permit traffic engineering between areas

C. to reduce the amount of routing information being advertisedD. to hide detailed topology information

Correct Answer: ACDSection: (none)Explanation


QUESTION 146With a multicast design, applications can send one copy of each packet and address it to the group ofcomputers that want to receive it. This technique addresses packets to a group of receivers rather than to asingle receiver, and it depends on the network toforward the packets to only the networks that need to receive them. Which two of these are characteristics ofmulticast routing?

A. multicast routing uses OSPF.B. multicast routing uses RPF.C. In multicast routing, the source of a packet is known.D. When network topologies change, multicast distribution trees are not rebuilt, but use the original path



QUESTION 147Observe the network presented in the following exhibit. Which routes will be installed in the routing table atrouter P4S-RE?

A. neither the OSPF nor the EIGRP routeB. the OSPF routeC. the OSPF and EIGRP routesD. the EIGRP route



QUESTION 148Which two descriptions are not correct about IS-IS? (Choose two.)

A. ISIS pads each hello to a full MTU and can detect MTU mismatches between neighbors.B. With the exception of point-to-point, IS-IS treats all networks and interfaces as broadcast.C. In IS-IS, setting an overload bit will cause traffic to be black-holed.D. IS-IS allows NSSA-like behavior via Level 2 to Level 1 route leaking.



www.CareerCert.info

QUESTION 149IS-IS supports which two network or interface types? (Choose two.)

A. point-to-pointB. Non-Broadcast Multiple AccessC. broadcast networkD. Broadcast Multiple Access



QUESTION 150Recently, the P4S company has deployed a security audit and determined that a configuration managementsystem is needed. Which two purposes can the system provide? (Choose two.)

A. an audit trail of users logging in to individual devicesB. an audit trail for changes conducted against multiple devicesC. secure storage and transmission of configurations to devicesD. compliance checking of configurations against approved templates



QUESTION 151A network vulnerability scanner is part of which critical element of network and system security?

A. host securityB. perimeter securityC. security monitoringD. policy management



QUESTION 152How to send community formats in SNMPv1 and SNMPv2c?

A. In SNMPv1 they are sent as clear text and in SNMPv2c they are encrypted.B. In both protocols they are sent as clear text.C. In SNMPv1 they are sent as clear text and in SNMPv2c they are sent as part of an encrypted session.D. In both protocols they are encrypted.



QUESTION 153You work as a network technician for an IT company, you are tasked to deploy BGP across a satellite linksystem to a small number of retail stores.What must be done in order to successfully deploy BGP in this situation?

A. manually configure static routes to back up BGP across the satellite linkB. configure all the BGP peering sessions across the satellite links as EBGPC. configure the initial window size, maximum MTU, and TCP keepalive parametersD. set the BGP hold timer to under one second



QUESTION 154Among the design criteria for a network is the requirement that bandwidth capacity be managed proactively.Which two techniques should be used to effectively support the proactive management of network bandwidthcapacity? (Choose two.)

A. analyze network bandwidth utilization to establish a baselineB. configure SNMP MIB collectors to trigger at utilization thresholdsC. implement utilization measurement and tracking measures in the networkD. implement QoS to increase available bandwidth and overall throughput



QUESTION 155You are the Cisco Network Designer in P4S. You aredesigning an e-Commerce module, which routing statement is correct?

A. Routing is mostly static.B. Hardcoded IP addresses are used to support failover.C. Inbound servers use the CSM or ACE as the default gateway.D. VLANs between the access layer switches are used for FHRP protocols.



www.CareerCert.info

QUESTION 156EIGRP performs route summarization at the interface level with the ip summary-address command. Whichthree statements correctly describe EIGRP route summarization? (Choose three.)

A. Summary routes are inserted in the routing table with a next hop of null 0 and a high administrativedistance, to preventblack holing of traffic.

B. By default, EIGRP automatically summarizes internal routes, but only each time a major network boundaryis crossed.

C. EIGRP route summarization can reduce the query diameter to help prevent SIA problems.D. The metric for each summarized route is inherited from the lowest metric of the component routes.



QUESTION 157For the following mechanisms, which two are preferred to detect Layer 2 link failures quickly? (Choose two.)

A. BFDB. LDP keepalivesC. fast RSVP hellosD. loss of signal



QUESTION 158During a DoS attack, which IPv4 addressing and routing scheme could increase the availability of a networkservice?

A. multicastB. unicastC. anycastD. broadcast



QUESTION 159In order to pinpoint the reason for a routing recursion error, which network management tool should a networkmanager consult?

A. debug (for BGP output)B. SNMP routing trapsC. syslog (for BGP errors)D. RMON events group



QUESTION 160The Cisco IOS SLB feature is a Cisco IOS-based solution that provides server load balancing. This featureallows you to define a virtual server that represents a cluster of real servers, known as a server farm. When aclient initiates a connection to the virtualserver, the IOS SLB load balances the connection to a chosen real server, depending on the configured loadbalance algorithm orpredictor.Which three implementation modes may be used to deploy SLB? (Choose three.)

A. Router modeB. One-arm modeC. Three-arm modeD. Bridge mode inline

Correct Answer: ABDSection: (none)Explanation


QUESTION 161Which resource will be targeted by a TCP SYN flood attack?

A. connection tables on the target hostB. SYN cookies on the target hostC. send buffers on transit routersD. shared memory on the routers closest to the target



QUESTION 162Which two benefits can be obtained by protecting the control plane of a network device? (Choose two.)

A. preserves the confidentiality of traffic encrypted by IPsecB. prevents the delivery of packets from spoof sourcesC. maintains routing protocol adjacencies with local neighborsD. maintains remote management access to the router



QUESTION 163There is a summary route on P4S-R2 for 192.168.1.0/24 with a next hop of P4S-R4 in the following the exhibit.Which change would make P4S-R2 to prefer a path through P4S-R1 to reach 192.168.1.0/24?

A. change the link between P4S-R1 and P4S-R2 to Area 0B. convert Area 1 to a stub area and decrease the cost between P4S-R1 and P4S-R3 to 1C. create a virtual link between P4S-R1 and P4S-R2 and decrease the cost between P4S-R1 and P4S-R3 to 1D. create a virtual link between P4S-R1 and P4S-R2



QUESTION 164What are two considerations to using IP Multicast delivery? (Choose two.)

A. no congestion avoidanceB. not for bandwidth intensive applicationsC. no guaranteed delivery mechanismD. source sends multiple data streams out each interface

Correct Answer: ACSection: (none)

Explanation


QUESTION 165While planning network availability, which two factors should be taken into consideration? (Choose two.)

A. mean time before failureB. mean time to discover the failureC. mean time to notificationD. mean time to repair



QUESTION 166Which two design criteria are for an out-of-band network? (Choose two.)

A. vendor diversityB. circuit diversityC. protocol diversityD. device diversity



QUESTION 167The headend router propagates which two resources for constrained based path computation with MPLSTraffic Engineering? (Choose two.)

A. link delayB. link jitterC. link bandwidth and link affinityD. average link utilization



QUESTION 168You have multiple MPLS LSP domains that you want tointernetwork. Your provider's backbone is IP.How to internetwork without disrupting the outlying MPLS domains or the provider?

A. have MP-BGP exchange labeled routes between the MPLS domains and the providerB. have MPLS LSPs utilize GRE tunnelsC. use MPLS Traffic Engineering across the multiple MPLS domains and the coreD. have each PE receive IP packets, add an MPLS header, and forward them to the next PE in the LSP



QUESTION 169Which two statements are true about MLP interleaving? (Choose two.)

A. It fragments and encapsulates all packets in a fragmentation header.B. Packets smaller than the fragmentation size are interleaved between the fragments of the larger packets.C. Packets larger than the fragmentation size are always fragmented, and cannot be interleaved, even if the

traffic is voicetraffic.

D. It fragments and encapsulates packets that are longer than a configured size, but does not encapsulatesmaller packets insidea fragmentation header.



QUESTION 170WRED is short for Weighted Random Early Detection. Which two descriptions are correct concerning WRED?(Choose two.)

A. WRED throttles TCP-based applications to avoid congestion within the queue servicing the traffic.B. WRED provides bandwidth guarantees for packets within a queue, and tells the scheduler the order in

which queues should beserved.

C. WRED allows thresholds to be applied to give higher priority applications access to limited buffer resources.D. WRED can inform remote devices that there is congestion on the network by setting the pause bit within the

ToS field,instructing end devices to throttle their transmissions.



QUESTION 171You work as a network engineer for the P4S company, study the exhibit carefully. For traffic from CE3 anddestined for 10.1.1.1, what is the label at the bottom of the stack as the packet goes between ASBR2 andASBR1?

A. 20B. 30C. 40D. 90



QUESTION 172Observe the following exhibit carefully. Router P4S-A receives a packet destined for loopback 10 on routerP4S-D. Which path should this packet take on its way to the destination interface?

A. P4S-A-> P4S-C-> P4S-F-> P4S-DB. P4S-A-> P4S-C-> P4S-E-> P4S-DC. P4S-A-> P4S-C-> P4S-DD. P4S-A-> P4S-C-> P4S-E-> P4S-F-> P4S-D



QUESTION 173You are the Cisco Network Designer in P4S. Which of thesepractices should you follow when designing a Layer 3 routing protocol?

A. Never peer on transit links.B. Build squares for deterministic convergence.C. Build inverted U designs for deterministic convergence.D. Summarize routes at the distribution to the core to limit EIGRP queries or OSPF LSA propagation.



QUESTION 174Observe the topology presented in the following exhibit, there is a full mesh in the core and the PE-CE protocolis EIGRP. Which path is preferred from CE1 to CE3?

A. CE1-PE1-PE3-CE3B. CE1-PE1-PE2-PE3-CE3C. CE1-PE1-CE2-PE2-PE3-CE3D. CE1-PE1-PE2-CE3



QUESTION 175The P4S company has just merged with the VR company. However, they keep IGP and BGP independent ofeach other. A common ISP provides them with services for their Internet connectivity. During the merge, theP4S company and the VR company will provision apoint-to-point link between the two networks.What is the simplest design option that will allow data to travel between A and B without passing through theISP?

A. configure iBGP between the two networks and block each others route's from the ISPB. configure OSPF and make OSPF routes more attractive than the same routes learned via EBGP from the

ISPC. configure EBGP between the two networks and block each other's routes from the ISPD. configure OSPF between the two networks and block each others route's from the ISP



QUESTION 176What can be prevented by configuring the password policy when using LDAP servers?

A. man-in-the-middle attacksB. dictionary attacks

C. DoS attacksD. flood attacks



QUESTION 177Which statement about CiscoWorks 2000 Inventory Manager is true?

A. It uses SNMP v1.B. It scans devices for hardware information.C. It scans and records the operational status of devices.D. When the configuration of a device changes, the inventory is automatically updated.



QUESTION 178Flex Links are a pair of a Layer 2 interfaces (switchports or port channels), where one interface is configured toact as a backup to the other. Which two statements are correct regarding Flex Links?

A. An interface can only belong to single Flex Links.B. An interface can belong to multiple Flex Links.C. Flex Links operate only over single pairs of links.D. Flex Links automatically disable STP so no BPDUs are propagated.



QUESTION 179Which item can reduce IP address spoofing effectively anddynamically?

A. unicast Reverse Path ForwardingB. route dampeningC. Egress Packet FilteringD. Ingress Packet Filtering



www.CareerCert.info

QUESTION 180A certain service provider network has IPsec tunnels between PE router loopbacks and dual-homed PE routers.The service provider carries infrastructure routes by use of OSPF and carries tunnel endpoints by using BGP.What should the service provider do to provide fast convergence in the event of a link failure in its network?

A. tune OSPF on all routersB. carry IPsec tunnels in GRE among PE routersC. carry IPsec tunnels in L2TPv3 among PE routersD. carry IPsec tunnels in VPLS among PE routers



QUESTION 181You are a network designer for the P4S company, study the exhibit carefully. You are asked to design a Layer 2VPN. Now, 90% of traffic from the remote branches of P4S comes to HQ. There are hubs and old switches atremotes not having dot1q capability. But atthe remote branches, P4S has not the budget to invest in new equipment. Other than converting the remotebranches to Layer 2 VPN, P4S would like to connect all the branches to the HQ site to make sure thatthe branches have access to dot1q capability.How to meet this requirement, if not, why?

A. They cannot be met, because EoMPLS in port mode requires VPLS.B. They can be met, but require Ethernet to dot1q interworking between the PEs.C. They can be met, but EoMPLS in port mode requires VPWS.D. They cannot be met, because an intelligent switch is required at the remote branches to enable EoMPLS

from site to site.



QUESTION 182

Which three things can be restricted by the Class of Service in a traditional PBX? (Choose three.)

A. dial plansB. dialed numbersC. voice mail promptsD. phone features

Correct Answer: ABDSection: (none)Explanation


QUESTION 183Which statement correctly describes OSPF incremental SPF?

A. iSPF is negotiated during the OSPF adjacency process.B. iSPF must be enabled on all routers in the domain.C. iSPF must be enabled on all routers in a particular area.D. iSPF is local to the router and does not require interoperability.



QUESTION 184Which two components are of effective change managementplanning? (Choose two.)

A. a change validation mechanismB. a what-if analysis for each proposed changeC. a multi-discipline change management teamD. an automated change management tracking system



QUESTION 185P4S-R2 and P4S-R3 are learning Network A and Network B through EBGP peering sessions as shown in thefigure. P4S-R2 and P4S-R3 are also configured to peer by use of IBGP, and they are both advertising defaultroutes through OSPF.Network A is not able to reachdestinations on Network A; which step should be takes to solve this problem?

A. Create a tunnel between P4S-R2 and P4S-R3.B. Create static default routes pointing from P4S-R1 and P4S-R4 to P4S-R2 and P4S-R3, respectively.C. Convert P4S-R3 and P4S-R2 to ABRs so that P4S-R1 and P4S-R4 can choose the closest ABR to exit the

network.D. Create a tunnel between P4S-R2 and P4S-R4.



QUESTION 186Distribution layer: This layer includes LAN-based routers and layer 3 switches . When is a first-hop redundancyprotocol needed in the distribution layer?

A. OSPF is not supported by the designB. HSRP is not supported by the designC. preempt tuning of the default gateway is neededD. the design implements Layer 3 between the access switch and the distribution switch



QUESTION 187Assume that Telnet users of your company are experiencing delays caused by cyclic congestion spikes. Trafficanalysis shows minimal use of UDP. Which technology can be used to solve this problem?

A. Deficit Round RobinB. Weighted RED

C. Class Based Weighted Fair QueuingD. Committed Access Rate



QUESTION 188You are a network administrator for the P4S company, study the exhibit carefully. You are responsible for thissmall EIGRP network and you want to change the primary path from P4S-R5 to 10.1.2.0/24 so it passesthrough P4S-R2. How to modify the EIGRP metrics to change the path in this way?

A. decrease the bandwidth on the link between P4S-R5 and P4S-R4 to 90; increase the delay on the same linkto 25

B. increase the delay on the link between P4S-R5 and P4S-R3 to 25C. increase the delay on the link between P4S-R5 and P4S-R4 to 30; increase the delay on the link between

P4S-R5 and P4S-R3 toD. increase the bandwidth on the link between P4S-R5 and P4S-R2 to 130; decrease the delay on the same

link to 5



QUESTION 189Which option is correct in terms of designing a policy in which more than one class share a queue?

A. It should be deployed throughout the network to simplify the design.B. It must be avoided under all circumstances.C. It requires consideration of the performance targets of classes sharing the queue.

D. It will result in a negative class.



QUESTION 190Which one of the following technologies allows a router to route traffic according to the size of the incomingpacket?

A. PBRB. OSPF version 3C. MTRD. NBAR



QUESTION 191When dealing with transparent caching, where should the Content Engines be placed?

A. close to the serversB. close to the end usersC. at the Internet edgeD. in front of web server farms



QUESTION 192Header compression is the most cost-effective way to increase link efficiency for VoIP traffic.

A. TrueB. False



QUESTION 193Internet Protocol version 6 (IPv6) is an Internet Layer protocol for packet- switched internetworks. Two islandsof IPv6 networks are running IS-IS (IPv6 IGP). The routing protocol needs to operate over the tunnel over an

IPv4 network.Which tunneling method canachieve this objective?

A. ISATAP tunnelsB. automatic IDC tunnelsC. 6to4 tunnelsD. GRE tunnels



QUESTION 194What is the reason that IGP advertisements should be disabled on an access link where a host is attached?

A. to reduce router overheadB. to prevent the injection of bad routesC. because edge hosts are statically routedD. because hosts do not run routing protocols



QUESTION 195The VPN termination function provides the ability to connect two networks together securely over the internet.Which of these is true of IP addressing with regard to VPN termination?

A. termination devices need routable addresses inside the VPNB. termination devices need not routable addresses inside the VPNC. IGP routing protocols will update their routing tables over an IPsec VPND. addressing designs need to allow for summarization



QUESTION 196In a PIM sparse mode network, how to restore the flow of multicast traffic when a link fails along a branch of amulticast distribution tree?

A. The traffic reverts to the shared tree while the downstream router recalculates the RPF interface and sendsa new PIM joinmessage to the RP.

B. The downstream receivers notice the loss of the multicast flow and resend PIM join messages toreestablish the tree.

C. The downstream receivers notice the loss of the multicast flow and resend IGMP Membership Reports toreestablish the tree.

D. The router downstream of the break recalculates the RPF interface when it notices a change in the unicastrouting table andimmediately sends a new PIM join message out from the new RPF.



QUESTION 197Acme Costume Company is connecting its manufacturing facilties to its stores with a small point-to-multipointFrame Relay IP WAN. Little growth is expected in the network infrastructure.Up to this point the company hasbeen using a dial-on-demand network.Dropping WAN costs, however, have led them to consider using a high-speed WAN solution to improveaccess.Which two routing protocols could you deploy to support the new larger network while keeping costs down?(Choose two.)

A. RIPB. RIPv2C. EIGRPD. OSPF



QUESTION 198The packets discovered are considered part of an attack. What benefit can be obtained by using a packetscrubbing device to redirect them?

A. Packet scrubbing forwards valid traffic.B. Packet scrubbing provides better logging of suspected attacks.C. Packet scrubbing is "line rate."D. Packet scrubbing filters all traffic.



QUESTION 199Which option about MPLS-based L3VPN service is correct?

A. It is independent of the routed protocol.B. It offloads routing between sites to the service provider.C. It improves routing protocols and network convergence.

D. It allows for transparent routing across the service provider.



QUESTION 200You are the Cisco Network Designer in P4S. Which of theseare important when determining how many users a NAS cansupport?

A. bandwidthB. number of plug-ins per scanC. total number of network devicesD. number of checks in each posture assessment



QUESTION 201What is the result when the RP fails in this bidir-PIM multicast network according to the exhibit?

A. Multicast traffic will cease flowing from the source to the receivers until the RP or a backup RP comesonline.

B. Multicast traffic will continue flowing from the source to the receivers as normal.

C. Multicast traffic from the source will continue to flow toward the LAN segment with the failed RP, but willcease flowing fromthere to the receivers.

D. Multicast traffic will cease flowing from the source to the RP.



QUESTION 202Study the subject carefully, then answer the following question. A service provider has an MPLS VPN networkin USA. It recently bought another provider in India and would like to quickly integratethe newly acquired provider's network into the existing MPLS VPN infrastructure via the Internet. Which twotechnologies will be used by the service provider to integrate its new network? (Choose two.)

A. MPLS over L2TPv3B. MPLS over GREC. MPLS over IPv6D. MPLS based VPWS




QUESTION 203You work as a network technician, study the exhibit carefully. In an MPLS-enabled network, a service providerhas three N-PEs and three U-PEs. The VPLS and H-VPLS services are MPLS-enabled. Two customers havesubscribed to this Layer 2 service.In order to provide full connectivity between the customer sites, how many LDP sessions must be createdbetween the PE devices?

A. 4B. 6C. 10D. 12



QUESTION 204You are the Cisco Network Designer in P4S. Which layerNAS operating mode are ACL filtering and bandwidth throttling only provided during posture assessment?

A. Layer 2B. Layer 3C. Layer 4D. out-of-band



www.CareerCert.info

QUESTION 205A security analysis at The Potomac Canal Company recommends installing an IDS appliance and a firewallappliance. These appliances should connect directly into a Layer 3 switch. A load balancer and SSL terminationhave also beenrecommended.Potomac's management have expressed concern over the cost. You suggest using integratedblades. What is oneadvantage and one disadvantage of your design proposal? (Choose two.)

A. The data center would need several devices to achieve its goal.B. Increased usage of standalone devices is cost-effective.C. Using integrated blades would only require two devices.D. Putting all security devices in a single chassis provides a single point of failure.



QUESTION 206Observe the following exhibit carefully. In this network, all routers are configured to put all interfaces in OSPFarea 5. P4S-R3 is the designated router on the 10.1.5.0/24 network. If you examine the OSPF database onP4S-R4, what will be contained in the network(type 2) LSA, generated by P4S-R3?

A. a connection to 10.1.5.0/24 and links to P4S-R3, P4S-R2, and P4S-R1B. no connections, P4S-R3 does not generate a network (type 2) LSA in this networkC. a connection to 10.1.5.0/24 and links to P4S-R2 and P4S-R1D. connections to 10.1.5.0/24 and 10.1.1.0/31



QUESTION 207Study the exhibit carefully. Configuring all routers in this network to run EIGRP in AS 100 and run EIGRP on allconnected links.If the link between P4S-R3 and P4S-R4 fails, how many queries will be received by P4S-R5 and P4S-R6 aboutthe LANs?

A. P4S-R5 will receive two queries: one for 192.168.1.0/24 and one for 192.168.2.0/24. P4S-R6 will receiveone query for192.168.1.0/24.

B. Neither P4S-R5 nor P4S-R6 will receive any queries for either 192.168.1.0/24 or 192.168.2.0/24.C. P4S-R5 will receive one query for 192.168.1.0/24 and P4S-R6 will receive no queries.D. Both P4S-R5 and P4S-R6 will receive two queries: one for 192.168.1.0/24 and one for 192.168.2.0/24.



QUESTION 208Study the exhibit carefully. All link costs are the same in this network. If running EIGRP on all routers, what willhappen if router P4S-RB's fail to connect to 10.1.0.0/24?

A. Router P4S-RA will redirect traffic destined for hosts attached to 10.1.0.0/24 towards router P4S-RC.B. Any traffic router P4S-RA sends to router P4S-RC that is destined for a host attached to 10.1.0.0/24 will be

dropped at routerP4S-RC.

C. Any traffic router P4S-RA sends to router P4S-RB that is destined for a host attached to 10.1.0.0/24 will bedropped at routerP4S-RB. Since router P4S-RA cannot determine if router P4S-RB's link to 10.1.0.0/24 has failed, there willbe a routing blackhole.

D. Nothing, the network will still work fine.



QUESTION 209Which content networking device allows bandwidth configuration settings so that streaming content will notinterfere with other network traffic?

A. IP/TV Control ServerB. Content Distribution ManagerC. Content EngineD. IP/TV Broadcast Server



QUESTION 210Tom is a network administrator for the P4S Ltd. He is having problems with redistribution routing loops betweentwo EIGRP processes. After studying the configurations, he determined there is no filtering configured on theroutes being redistributed. Inorder to avoid having a single point of failure, there are three routers configured to redistribute between the two

routing protocols.Which one of the following items is a solution to minimize management complexity?

A. replace one of the EIGRP processes with an alternate IGPB. reduce the number of routers redistributing between the two routing processesC. build and apply a route filter based on the networks being redistributed between the two processesD. use tags to control redistribution between the two processes




cisco 352-001 exam questions & answers...... router p4s-ra is the hub router in a frame relay...

Documents