Cisco Certified Network Associate Questions and Answers
How does MAC learning function?
Refer to the exhibit. What is the administrative distance for the advertised prefix that includes the host IP address 10.30.0.1?
Refer to the exhibit.
What is occurring on this switch?
What differentiates the TCP and UDP protocols?
How is Al used to identify issues within network traffic?
Which header must be included in a REST request from an application that requires JSON-formatted content?
Refer to the exhibit. During initial configuration testing, the Windows workstation PC1 cannot connect with the 172.16.2.0/24 network.
Which set of actions corrects the configuration?
Which action prevents debug messages from being sent via syslog while allowing other messages when an abnormally high number of syslog messages are generated by a device with the debug process turned on?
Which default condition must be considered when an encrypted mobility tunnel is used between two Cisco WLCs?
Refer to the exhibit. The static routes were implemented on the border router. What is the next hop IP address for a ping sent to 172.16.153.154 from the border router?
Refer to the exhibit. A network engineer is adding another physical interface as a new member to the existing Port-Channel1 bundle.
Which command set must be configured on the new interface to complete the process?
Three switches must be configured for Layer 2 connectivity. The company requires only the designated VLANs to be configured on their respective switches and permitted accross any links between switches for security purposes. Do not modify or delete VTP configurations.
The network needs two user-defined VLANs configured:
VLAN 110: MARKETING
VLAN 210: FINANCE
1. Configure the VLANs on the designated switches and assign them as access ports to the interfaces connected to the PCs.
2. Configure the e0/2 interfaces on Sw1 and Sw2 as 802.1q trunks with only the required VLANs permitted.
3. Configure the e0/3 interfaces on Sw2 and Sw3 as 802.1q trunks with only the required VLANs permitted.
Refer to the exhibit. What is the administrative distance for the advertised prefix that includes the host IP address 192.168.20.1?
Refer to the exhibit.
Users will be using a preconfigured secret key and SSID and must have a secured key hashing algorithm configured. The AAA server must not be used for the user authentication method. Which action completes the task?
Configure IPv4 and IPv6 connectivity between two routers. For IPv4, use a /28 network from the 192.168.1.0/24 private range. For IPv6, use the first /64 subnet from the 2001:0db8:aaaa::/48 subnet.
1. Using Ethernet0/1 on routers R1 and R2, configure the next usable/28 from the 192.168.1.0/24 range. The network 192.168.1.0/28 is unavailable.
2. For the IPv4 /28 subnet, router R1 must be configured with the first usable host address.
3. For the IPv4 /28 subnet, router R2 must be configured with the last usable host address.
4. For the IPv6 /64 subnet, configure the routers with the IP addressing provided from the topology.
5. A ping must work between the routers on the IPv4 and IPv6 address ranges.
An organization developed new security policies and decided to print the policies and distribute them to all personnel so that employees review and apply the policies. Which element of a security program is the organization implementing?
Refer to the exhibit.
The LACP EtherChannel is configured, and the last change is to modify the interfaces on SwitchA to respond to packets received, but not to initiate negotiation. The interface range gigabitethernet0/0-15 command is entered. What must be configured next?
How does automation leverage data models to reduce the operational complexity of a managed network?
Which AP mode wirelessly connects two separate network segments each set up within a different campus building?
What is the difference between the TCP and UDP protocols?
IP connectivity and OSPF are preconfigured on all devices where necessary. Do not make any changes to the IP addressing or OSPF. The company policy uses connected interfaces and next hops when configuring static routes except for load balancing or redundancy without floating static. Connectivity must be established between subnet 172.20.20.128/25 on the Internet and the LAN at 192.168.0.0/24 connected to SW1:
1. Configure reachability to the switch SW1 LAN subnet in router R2.
2. Configure default reachability to the Internet subnet in router R1.
3. Configure a single static route in router R2 to reach to the Internet subnet considering both redundant links between routers R1 and R2. A default route is NOT allowed in router R2.
4. Configure a static route in router R1 toward the switch SW1 LAN subnet where the primary link must be through Ethernet0/1. and the backup link must be through Ethernet0/2 using a floating route. Use the minimal administrative distance value when required.
How does a network administrator securely manage an AP in lightweight mode?
Refer to the exhibit. Configurations for the switch and PCs are complete.
Which configuration must be applied so that VLANs 2 and 3 communicate back and forth?
Physical connectivity is implemented between the two Layer 2 switches,
and the network connectivity between them must be configured.
I . Configure an LACP EtherChanneI and number it as 44; configure it
between switches SWI and SW2 using interfaces EthernetO/O and
Ethernet0/1 on both sides. The LACP mode must match on both ends.
2. Configure the EtherChanneI as a trunk link.
3. Configure the trunk link with 802. Iq tags.
4. Configure VLAN 'MONITORING' as the untagged VLAN of the
EtherChannel.
==================
Guidelines
This is a lab item in which tasks will be performed on virtual devices.
• Refer to the Tasks tab to view the tasks for this lab item.
• Refer to the Topology tab to access the device console(s) and perform the tasks.
• Console access is available for all required devices by clicking the device icon or using
the tab(s) above the console window.
• All necessary preconfigurations have been applied.
• Do not change the enable password or hostname for any device.
• Save your configurations to NVRAM before moving to the next item.
• Click Next at the bottom of the screen to submit this lab and move to the next question.
• When Next is clicked, the lab closes and cannot be reopened.
What is a similarity between global and unique local IPv6 addresses?
Refer to the exhibit.
How does router R1 forward packets destined to 10.0.4.10?
Refer to the exhibit. The routers R1-LAB and R2-LAB are configured with link-local addresses. What command must be applied to interface Gi0/0 on R1-LAB for an automated address self-assignment on the IPv6 network?
How does automation affect network management processes?
Refer to the exhibit. A guest WLAN must be created that prompts the client for a username and password on the local web page of the WLC. Which two actions must be performed on the Layer 2 tab before enabling the Authentication option on the Layer 3 tab? (Choose two.)
What is the function of generative AI in network operations?
What is the maximum length of characters used in an SSID?
IP connectivity between the three routers is configured. OSPF adjacencies must be established.
1. Configure R1 and R2 Router IDs using the interface IP addresses from the link that is shared between them.
2. Configure the R2 links with a max value facing R1 and R3. R2 must become the DR. R1 and R3 links facing R2 must remain with the default OSPF configuration for DR election. Verify the configuration after clearing the OSPF process.
3. Using a host wildcard mask, configure all three routers to advertise their respective Loopback1 networks.
4. Configure the link between R1 and R3 to disable their ability to add other OSPF routers.
Which two QoS tools provide congestion management? (Choose two.)
Connectivity between three routers has been established, and IP services must be configured jn the order presented to complete the implementation Tasks assigned include configuration of NAT, NTP, DHCP, and SSH services.
1. All traffic sent from R3 to the R1 Loopback address must be configured for NAT on R2. All source addresses must be translated from R3 to the IP address of Ethernet0/0 on R2, while using only a standard access list named NAT To verify, a ping must be successful to the R1 Loopback address sourced from R3. Do not use NVI NAT configuration.
2. Configure R1 as an NTP server and R2 as a client, not as a peer, using the IP address of the R1 Ethernet0/2 interface. Set the clock on the NTP server for midnight on January 1, 2019.
3. Configure R1 as a DHCP server for the network 10.1.3.0/24 in a pool named TEST. Using a single command, exclude addresses 1-10 from the range. Interface Ethernet0/2 on R3 must be issued the IP address of 10.1.3.11 via DHCP.
4. Configure SSH connectivity from R1 to R3, while excluding access via other remote connection protocols. Access for user root and password Cisco must be set on router R3 using RSA and 1024 bits. Verify connectivity using an SSH session from router R1 using a destination address of 10.1.3.11. Do NOT modify console access or line numbers to accomplish this task.
What is represented by the word "switch" within this JSON schema?
What is represented by the word "LB13" within this JSON schema?
What is the purpose of the service-set identifier?
Which two features are provided by Ansible in network automation? (Choose two.)
What is the total number of users permitted to simultaneously browse the controller management pages when using the AireOS GUI?
What is a characteristic of private IPv4 addressing?
How does MAC learning function?
An engineer requires a switch interface to actively attempt to establish a trunk link with a neighbor switch. What command must be configured?
Aswitch receives a frame with the destination MAC address 3C:5D: 7E:9F: 1A:2B.
Switch# show ethernet-frame-and-mac-address-table
How does the switch handle the frame?
Which feature, when used on a WLC, allows it to bundle its distribution system ports into one 802.3ad group?
What is a function of a northbound API in an SDN environment?
Which fact must the engineer consider when implementing syslog on a new network?
Refer to the exhibit. Which two commands, when configured on router R1. fulfill these requirements? (Choose two.) ' Packets toward the entire network 2001:db8:23: :/64 must be forwarded through router R2. ' Packets toward host 2001: db8:23::14 preferably must be forwarded through R3.
Refer to the exhibit.
Which configuration is needed to configure a WLAN with WPA2 only and with a password that is 63 characters long?
Which IP address is used when an administrator must open a web-based management session with a lightweight AP?
Drag and drop the characteristic from the left onto the IPv6 address type on the right.
Which statement describes virtualization on containers?
Why does an administrator choose to implement a remote access IPsec VPN?
A new DHCP server has been deployed in a corporate environment with lease time set to eight hours. Which CMD command on a Windows-based device allows the engineer to verify the DHCP lease expiration?
What is a characteristic of a Layer 2 switch?
Which interface condition is occurring in this output?
Refer to the exhibit. What is preventing host A from reaching the internet?
Drag and drop the characteristic from the left onto the cable type on the right.
Refer to the exhibit. An LACP EtherChannel between two directly connected switches is in the configuration process.
Which command must be configured on switch SW2’s Gi0/1-2 interfaces to establish the channel to SW1?
Refer to the exhibit. Which tasks must be performed on the Download File tab to install new software using TCP port 22?)
Which interface is used to send traffic to the destination network?
O 10.76.170 161/26 |110/102] via FO/17
O 10.76.170 161/26[110/27e31] via FO/20
R 10.76.170.161/261120/15] via FO/8
R 10.76.170.161/26 [120/10] via FO/12
Drag and drop the IPv6 address from the left onto the type on the right.
Why are API keys used to enforce rate limiting?
Refer to the exhibit. VLAN 23 is being implemented between SW1 and SW2. The command show interface ethernet0/0 switchport has been issued on SW1. Ethernet0/0 on SW1 is the uplink to SW2. Which command when entered on the uplink interface allows PC 1 and PC 2 to communicate without impact to the communication between PC 11 and PC 12?
An engineer must update the configuration on two PCs in two different subnets to communicate locally with each other. One PC is configured with IP address 192.168.25.128/25 and the other with 192.168.25.100/25. Which network mask must the engineer configure on both PCs to enable the communication?
Physical connectivity is implemented between the two Layer 2 switches, and the network connectivity between them must be configured
1. Configure an LACP EtherChannel and number it as 1; configure it between switches SW1 and SVV2 using interfaces Ethernet0/0 and Ethernet0/1 on both sides. The LACP mode must match on both ends
2 Configure the EtherChannel as a trunk link.
3. Configure the trunk link with 802.1 q tags.
4. Configure the native VLAN of the EtherChannel as VLAN 15.
Refer to the exhibit. A packet sourced from 10.10.10.1 is destined for 172.16.3.254. What is the subnet mask of the destination route?
Which interface on the WLC is used exclusively as a DHCP relay?
What are two benefits of private IPv4 addressing? (Choose two.)
Why would a network administrator implement the HSRP protocol?
Which condition must be met before an NMS handles an SNMP trap from an agent?
An engineer needs to configure LLDP to send the port description time length value (TLV). What command sequence must be implemented?
What are two benefits of FHRPs? (Choose two.)
Which statement correctly compares traditional networks and controller-based networks?
An engineer requires a scratch interface to actively attempt to establish a trunk link with a neighbor switch. What command must be configured?
A packet is destined for 10.10.1.22. Which static route does the router choose to forward the packet?
Refer to the exhibit.
Router R2 is configured with multiple routes to reach network 10 1.1 0/24 from router R1. What protocol is chosen by router R2 to reach the destination network 10.1 1 0/24?
Refer to Exhibit.
How does SW2 interact with other switches in this VTP domain?
Refer to the exhibit.
Router R1 is running three different routing protocols. Which route characteristic is used by the router to forward the packet that it receives for destination IP 172.16.32.1?
If a switch port receives a new frame while it is actively transmitting a previous frame, how does it process the frames?
Which type of traffic is sent with pure iPsec?
Refer to the exhibit.
Which IPv6 configuration is required for R17 to successfully ping the WAN interface on R18?
A)
B)
C)
D)
When a client and server are not on the same physical network, which device is used to forward requests and replies between client and server for DHCP?
What are two differences between optical-fiber cabling and copper cabling? (Choose two)
What is the same for both copper and fiber interfaces when using SFP modules?
What Is the path for traffic sent from one user workstation to another workstation on a separate switch In a Ihree-lter architecture model?
Refer to the exhibit.
Which two prefixes are included in this routing table entry? (Choose two.)
Refer to the exhibit.
An administrator must configure interfaces Gi1/1 and Gi1/3 on switch SW11 PC-1 and PC-2 must be placed in the Data VLAN and Phone-1 must be placed in the Voice VLAN Which configuration meets these requirements?
Refer to the exhibit.
If configuring a static default route on the router with the ip route 0.0.0.0 0.0.0.0 10.13.0.1 120 command how does the router respond?
What are two reasons for an engineer to configure a floating state route? (Choose two)
Drag and drop the AAA terms from the left onto the description on the right.
An organization secures its network with multi-factor authentication using an authenticator app on employee smartphone. How is the application secured in the case of a user’s smartphone being lost or stolen?
Refer to the exhibit.
An engineer booted a new switch and applied this configuration via the console port. Which additional configuration must be applied to allow administrators to authenticate directly to enable privilege mode via Telnet using a local username and password?
which IPv6 address block forwards packets to a multicast address rather than a unicast address?
Which two primary drivers support the need for network automation? (Choose two.)
Refer to the exhibit.
An administrator configures four switches for local authentication using passwords that are stored in a cryptographic hash. The four switches must also support SSH access for administrators to manage the network infrastructure. Which switch is configured correctly to meet these requirements?
What Is a syslog facility?
What are two characteristics of a controller-based network? (Choose two)
What prevents a workstation from receiving a DHCP address?
An administrator must secure the WLC from receiving spoofed association requests. Which steps must be taken to configure the WLC to restrict the requests and force the user to wait 10 ms to retry an association request?
Refer to the exhibit.
A network engineer must block access for all computers on VLAN 20 to the web server via HTTP All other computers must be able to access the web server Which configuration when applied to switch A accomplishes this task?
A user configured OSPF and advertised the Gigabit Ethernet interface in OSPF By default, which type of OSPF network does this interface belong to?
Refer to Exhibit.
Which configuration must be applied to the router that configures PAT to translate all addresses in VLAN 200 while allowing devices on VLAN 100 to use their own IP addresses?
Which goal is achieved by the implementation of private IPv4 addressing on a network?
An engineer is configuring NAT to translate the source subnet of 10.10.0.0/24 to any of three addresses 192.168.30.1, 192.168.3.2, 192.168.3.3 Which configuration should be used?
A router running EIGRP has learned the same route from two different paths. Which parameter does the router use to select the best path?
What are two benefits of network automation? (Choose two)
Refer to the exhibit.
With which metric was the route to host 172.16.0.202 learned?
What are two descriptions of three-tier network topologies? (Choose two)
Refer to the exhibit.
An access list is created to deny Telnet access from host PC-1 to RTR-1 and allow access from all other hosts A Telnet attempt from PC-2 gives this message:"% Connection refused by remote host" Without allowing Telnet access from PC-1, which action must be taken to permit the traffic?
Refer to the exhibit.
Shortly after SiteA was connected to SiteB over a new single-mode fiber path users at SiteA report intermittent connectivity issues with applications hosted at SiteB What is the cause of the intermittent connectivity issue?
Which command must be entered when a device is configured as an NTP server?
Refer to the exhibit.
For security reasons, automatic neighbor discovery must be disabled on the R5 Gi0/1 interface. These tasks must be completed:
• Disable all neighbor discovery methods on R5 interface GiO/1.
• Permit neighbor discovery on R5 interface GiO/2.
• Verify there are no dynamically learned neighbors on R5 interface Gi0/1.
• Display the IP address of R6*s interface Gi0/2.
Which configuration must be used?
When a WPA2-PSK WLAN is configured in the wireless LAN Controller, what is the minimum number of characters that in ASCll format?
Which configuration is needed to generate an RSA key for SSH on a router?
What is the primary function of a Layer 3 device?
Refer to the exhibit.
Drag and drop the networking parameters from the left onto the correct values on the right.
What is a function of TFTP in network operations?
What is a role of access points in an enterprise network?
A Cisco IP phone receive untagged data traffic from an attached PC. Which action is taken by the phone?
What is the effect when loopback interfaces and the configured router ID are absent during the OSPF Process configuration?
Which type of API allows SDN controllers to dynamically make changes to the network?
An engineer must configure a WLAN using the strongest encryption type for WPA2- PSK. Which cipher fulfills the configuration requirement?
A network engineer must create a diagram of a multivendor network. Which command must be configured on the Cisco devices so that the topology of the network can be mapped?
The SW1 interface g0/1 is in the down/down state. Which two configurations are valid reasons for the interface conditions?(choose two)
An engineer configured an OSPF neighbor as a designated router. Which state verifies the designated router is in the proper mode?
Refer to the exhibit.
A packet is being sent across router R1 to host 172.16.0.14. What is the destination route for the packet?
What does an SDN controller use as a communication protocol to relay forwarding changes to a southbound API?
Which plane is centralized by an SDN controller?
Which two must be met before SSH can operate normally on a Cisco IOS switch? (Choose two)
Which technology can prevent client devices from arbitrarily connecting to the network without state remediation?
Router A learns the same route from two different neighbors, one of the neighbor routers is an OSPF neighbor and the other is an EIGRP neighbor. What is the administrative distance of the route that will be installed in the routing table?
Refer to the exhibit.
An engineer is bringing up a new circuit to the MPLS provider on the Gi0/1 interface of Router1 The new circuit uses eBGP and teams the route to VLAN25 from the BGP path What s the expected behavior for the traffic flow for route 10.10.13.0/25?
Which statement about Link Aggregation when implemented on a Cisco Wireless LAN Controller is true?
What benefit does controller-based networking provide versus traditional networking?
Refer to the exhibit.
Which prefix does Router 1 use for traffic to Host A?
Drag and drop the lightweight access point operation modes from the left onto the descriptions on the right
Which port type supports the spanning-tree portfast command without additional configuration?
Which design element is a best practice when deploying an 802.11b wireless infrastructure?
Refer to the exhibit. A network engineer updates the existing configuration on interface fastethernet1/1 switch SW1. It must establish an EtherChannel by using the same group designation with another vendor switch. Which configuration must be performed to complete the process?
Drag and drop the configuration management terms from the left onto the descriptions on the right. Not all terms are used.
When a WPA2-PSK WLAN is configured in the Wireless LAN Controller, what is the minimum number of characters that is required in ASCII format?
Refer to the exhibit.
Traffic from R1 to the 10.10.2.0/24 subnet uses 192.168.1.2 as its next hop. An network engineer wants to update the R1 configuration so that traffic with destination 10.10.2.1 passes through router R3, and all other traffic to the 10.10.20/24 subnet passes through r2. Which command must be used?
Refer to the exhibit.
Which two values does router R1 use to determine the best path to reach destinations in network 1,0.0.0/8? (Choose two.)
What differentiates the Cisco OfficeExtend AP mode from FlexConnect AP mode?
Refer to the exhibit.
Which format matches the Modified EUI-64 IPv6 interface address for the network 2001:db8::/64?
What is the role of disaggregation in controller-based networking?
Drag and drop the TCP and UDP characteristics from the left onto the supporting protocols on the right. Not all options are used.
What must be considered before deploying virtual machines?
Drag and drop the AAA features from the left onto the corresponding AAA security services on the right. Not all options are used.
Refer to the exhibit.
Which configuration for RTR-1 deniess SSH access from PC-1 to any RTR-1 interface and allows all other traffic?
A)
B)
C)
D)
Which two practices are recommended for an acceptable security posture in a network? (Choose two)
What does a switch do when it receives a frame whose destination MAC address is missing from the MAC address table?
How does authentication differ from authorization?
Under which condition is TCP preferred over UDP?
PC1 tries to send traffic to newly installed PC2. The PC2 MAC address is not listed in the MAC address table of the switch, so the switch sends the packet to all ports in the same VLAN Which switching concept does this describe?
Which architecture is best for small offices with minimal wireless needs and no central management?
Which part of the HTTP request is used in REST API basic authentication to carry credentials?
How does machine learning improve the detection of unauthorized network access?
Which action must be taken when password protection is Implemented?
Refer to the exhibit. An engineer is using the Cisco WLC GUI to configure a WLAN for WPA2 encryption with AES and preshared key Cisc0123456. After the engineer selects the WPA + WPA2 option from the Layer 2 Security drop-down list, which two tasks must they perform to complete the process? (Choose two.)
Drag and drop the AAA features from the left onto the corresponding AAA security services on the right. Not all options are used.
NO: 346
What must a network administrator consider when deciding whether to configure a new wireless network with APs in autonomous mode or APs running in cloud-based mode?
Autonomous mode APs are less dependent on an underlay but more complex to maintain than APs in cloud-based mode.
Refer to the exhibit.
Which entry is the longest prefix match for host IP address 192.168.10.5?
Refer to the exhibit. Company A wants to use a RADIUS server to service all user and device authentication attempts with a more secure and granular authentication approach. Not all client devices support dot1x authentication. Which two configuration changes must be made to accomplish the task? (Choose two.)
Which cable type must be used when connecting a router and switch together using these criteria?
• Pins 1 and 2 are receivers and pins 3 and 6 are transmitters
• Auto detection MDi-X is unavailable
Refer to the exhibit.
Which configuration establishes a Layer 2 LACP EtherChannel when applied to both switches?
What is a characteristics of a collapsed-core network topology?
Refer to the exhibit.
What is the next step to complete the implementation for the partial NAT configuration shown?
A Cisco engineer at a new branch office is configuring a wireless network with access points that connect to a controller that is based at corporate headquarters Wireless client traffic must terminate at the branch office and access-point survivability is required in the event of a WAN outage Which access point mode must be selected?
Why choose Cisco DNA Center for automated lifecycle management?
What is the role of nonoverlapping channels in a wireless environment?
Drag and drop the statements about networking from me left onto the corresponding networking types on the right
Refer to the exhibit.
After configuring a new static route on the CPE. the engineer entered this series of commands to verify that the new configuration is operating normally When is the static default route installed into the routing table?
A network engineer is implementing a corporate SSID for WPA3-Personal security with a PSK. Which encryption cipher must be configured?
Refer to the exhibit.
Load-balanced traffic is coming in from the WAN destined to a host at 172.16.1.190. Which next-hop is used by the router to forward the request?
Which IPsec transport mode encrypts the IP header and the payload?
Refer to the exhibit.
A packet sourced from 10.10.10.1 is destined for 10.10.8.14. What is the subnet mask of the destination route?
Refer to the exhibit.
Which types of JSON data is shown
What is the function of "off-the-shell" switches in a controller-based network?
Refer to the exhibit.
The DHCP server is configured with a DHCP pool for each of the subnets represented. Which command must be configured on switch SW1 to allow DHCP clients on VLAN 10 to receive dynamic IP addresses from the DHCP server?
Refer to the exhibit.
In which structure does the word "warning" directly reside?
Refer to the exhibit.
Drag and drop the destination IPs from the left onto the paths to reach those destinations on the right.
What provides connection redundancy increased bandwidth and load sharing between a wireless LAN controller and a Layer 2 switch?
Exhibit.
The switches are connected via a Cat5 Ethernet cable that was successfully tested. The Interfaces are configured as access ports and are both in a 'down" status. What is the cause of this issue?
Drag and drop the Rapid PVST+ forwarding state actions from the left to the right. Not all actions are used.
Drag and chop the TCP/IP protocols from the left onto their primary transmission protocols on the right.
Refer to the exhibit.
Which route does R1 select for traffic that is destined to 192.168.16.2?
Drag and drop the statements about access-point modes from the left onto the corresponding modes on the right.
Which advantage does the network assurance capability of Cisco DNA Center provide over traditional campus management?
Which mechanism allows WPA3 to provide a higher degree of security than its predecessors?
Drag and drop the IPv6 addresses from the left onto the corresponding address types on the right.
Two switches have been implemented and all interfaces are at the default configuration level. A trunk link must be implemented between two switches with these requirements:
• using an industry-standard trunking protocol
• permitting VLANs 1 -10 and denying other VLANs
How must the interconnecting ports be configured?
A)
B)
C)
D)
Refer to the exhibit.
An architect is managing a wireless network with APs from several branch offices connecting to the WLC in the data center. There is a new requirement for a single WLAN to process the client data traffic without sending it to the WLC. Which action must be taken to complete the request?
A network engineer starts to implement a new wireless LAN by configuring the authentication server and creating the dynamic Interface. What must be performed next to complete the basic configuration?
Which set of methods is supported with the REST API?
Which is a fact related to FTP?
An engineer must configure a core router with a floating static default route to the backup router at 10.200.0.2.
Refer to the exhibit. IPv6 must be implemented on R1 to the ISP The uplink between R1 and the ISP must be configured with a manual assignment, and the LAN interface must be self-provisioned Both connections must use the applicable IPv6 networks Which two configurations must be applied to R1? (Choose two.)
Drag and drop the statements about AAA services firm the left onto the corresponding AAA services on the right Not all options are used.
What must be considered for a locally switched FlexConnect AP if the VLANs that are used by the AP and client access are different?
Which benefit does Cisco ONA Center provide over traditional campus management?
Drag and drop the WLAN components from the left onto the component details on the right.
What is a function of MAC address learning?
Refer to the exhibit.
A network administrator configures an interface control re switch so that it connects to interface Gi1/0/1 on switch Cat9300-1. Which configuration must be applied to the new interface?
A)
B)
C)
D)
Which QoS queuing method discards or marks packets that exceed the desired bit rate of traffic flow?
Which command configures the Cisco WLC to prevent a serial session with the WLC CLI from being automatical togged out?
How does Rapid PVST+ create a fast loop-free network topology?
Refer to the exhibit.
Which configuration enables DHCP addressing for hosts connected to interface FastEthernetO/1 on router R4?
Refer to the exhibit.
Which command configures OSPF on the point-to-point link between routers R1 and R2?
Refer to the exhibit.
Which two commands must be configured on router R1 to enable the router to accept secure remote-access connections? (Choose two)
Which protocol uses the SSL?
Refer to the exhibit.
Traffic sourced from the loopback0 Interface is trying to connect via ssh to the host at 10.0.1.15. What Is the next hop to the destination address?
Refer to the exhibit.
An engineer built a new L2 LACP EtherChannel between SW1 and SW2 and executed these show commands to verify the work. Which additional task allows the two switches to establish an LACP port channel?
Drag and drop the TCP or UDP details from the left onto their corresponding protocols on the right.
Refer to the exhibit.
The DHCP server and clients are connected to the same switch. What is the next step to complete the DHCP configuration to allow clients on VLAN 1 to receive addresses from the DHCP server?
Refer to the exhibit.
Which two commands when used together create port channel 10? (Choose two.)
Refer to the exhibit.
An engineer is configuring the HO router. Which IPv6 address configuration must be applied to the router fa0'1 interface for the router to assign a unique 64-brt IPv6 address to Itself?
Which Layer 2 switch function encapsulates packets for different VLANs so that the packets traverse the same port and maintain traffic separation between the VLANs?
Drag and drop the characteristics of networking from the left onto the networking types on the right.
Which QoS traffic handling technique retains excess packets in a queue and reschedules these packets for later transmission when the configured maximum bandwidth has been surpassed?
Refer to the exhibit.
Router R1 currently is configured to use R3 as the primary route to the Internet, and the route uses the default administrative distance settings. A network engineer must configure R1 so that it uses R2 as a backup, but only if R3 goes down. Which command must the engineer configure on R1 so that it correctly uses R2 as a backup route, without changing the administrative distance configuration on the link to R3?
Refer to the exhibit.
Host A sent a data frame destined for host D
What does the switch do when it receives the frame from host A?
OSPF must be configured between routers R1 and R2. Which OSPF configuration must be applied to router R1 to avoid a DR/BDR election?
Which type of network attack overwhelms the target server by sending multiple packets to a port until the half-open TCP resources of the target are exhausted?
Refer to the exhibit.
Users need to connect to the wireless network with IEEE 802. 11r-compatible devices. The connection must be maintained as users travel between floors or to other areas in the building What must be the configuration of the connection?
Refer to the exhibit.
An IP subnet must be configured on each router that provides enough addresses for the number of assigned hosts and anticipates no more than 10% growth for now hosts. Which configuration script must be used?
A)
B)
C)
D)
What is the function of the controller in a software-defined network?
Which QoS per-hop behavior changes the value of the ToS field in the IPv4 packet header?
An engineer is configuring remote access to a router from IP subnet 10.139.58.0/28. The domain name, crypto keys, and SSH have been configured. Which configuration enables the traffic on the destination router?
A)
B)
C)
D)
Refer to the exhibit.
Which command must be issued to enable a floating static default route on router A?
A Cisco engineer is configuring a factory-default router with these three passwords:
• The user EXEC password for console access is p4ssw0rd1
• The user EXEC password for Telnet access is s3cr3t2
• The password for privileged EXEC mode is pnv4t3p4ss Which command sequence must the engineer configured
A)
B)
C)
D)
Refer to the exhibit.
Traffic that is flowing over interface TenGigabitEthernet0/0 experiences slow transfer speeds. What is the reason for the issue?
Refer to the exhibit.
R1 learns all routes via OSPF Which command configures a backup static route on R1 to reach the 192 168.20.0/24 network via R3?
Refer to the exhibit.
Which route must be configured on R1 so that OSPF routing is used when OSPF is up. but the server is still reachable when OSPF goes down?
Which action implements physical access control as part of the security program of an organization?
Refer to the exhibit.
Which two commands must be added to update the configuration of router R1 so that it accepts only encrypted connections? (Choose two )
Which two components comprise part of a PKI? (Choose two.)
What is the purpose of the ip address dhcp command?
Refer to the exhibit.
The link between PC1 and the switch is up. but it is performing poorly. Which interface condition is causing the performance problem?
Which wireless security protocol relies on Perfect Forward Secrecy?
R1 as an NTP server must have:
• NTP authentication enabled
• NTP packets sourced from Interface loopback 0
• NTP stratum 2
• NTP packets only permitted to client IP 209.165 200 225
How should R1 be configured?
A)
B)
C)
D)
Refer to the exhibit.
An engineer assumes a configuration task from a peer Router A must establish an OSPF neighbor relationship with neighbor 172 1 1 1 The output displays the status of the adjacency after 2 hours. What is the next step in the configuration process for the routers to establish an adjacency?
A network engineer is installing an IPv6-only capable device. The client has requested that the device IP address be reachable only from the internal network. Which type of IPv6 address must the engineer assign?
What is a function of a Next-Generation IPS?
An engineer must configure R1 for a new user account. The account must meet these requirements:
* It must be configured in the local database.
* The username is engineer.
* It must use the strongest password configurable. Which command must the engineer configure on the router?
Refer to the exhibit.
An engineer is configuring a new router on the network and applied this configuration. Which additional configuration allows the PC to obtain its IP address from a DHCP server?
Refer to the exhibit.
Packets received by the router from BGP enter via a serial interface at 209.165.201.10. Each route is present within the routing table. Which interface is used to forward traffic with a destination IP of 10.10.10.24?
Refer to the exhibit.
Web traffic is coming in from the WAN interface. Which route takes precedence when the router is processing traffic destined for the LAN network at 10 0.10.0/24?
Which protocol is used for secure remote CLI access?
Refer to the exhibit.
How should the configuration be updated to allow PC1 and PC2 access to the Internet?
Refer to the exhibit.
Which configuration allows routers R14 and R86 to form an OSPFv2 adjacency while acting as a central point for exchanging OSPF information between routers?
A)
B)
C)
D)
Which field within the access-request packet is encrypted by RADIUS?
Refer to the exhibit.
Which next-hop IP address does Routed use for packets destined to host 10 10.13.158?
Drag and drop the threat-mitigation techniques from the left onto the types of threat or attack they mitigate on the right.
Refer to the exhibit.
A network engineer must update the configuration on Switch2 so that it sends LLDP packets every minute and the information sent via LLDP is refreshed every 3 minutes Which configuration must the engineer apply?
A)
B)
C)
D)
Refer to the exhibit.
The following must be considered:
• SW1 is fully configured for all traffic
• The SW4 and SW9 links to SW1 have been configured
• The SW4 interface Gi0/1 and Gi0/0 on SW9 have been configured
• The remaining switches have had all VLANs adde d to their VLAN database
Which configuration establishes a successful ping from PC2 to PC7 without interruption to traffic flow between other PCs?
A)
B)
C)
D)
Which action is taken by the data plane within a network device?
An engineer is tasked to configure a switch with port security to ensure devices that forward unicasts multicasts and broadcasts are unable to flood the port The port must be configured to permit only two random MAC addresses at a time Drag and drop the required configuration commands from the left onto the sequence on the right Not all commands are used.
Refer to the exhibit.
Which switch becomes the root of a spanning tree for VLAN 20 if all li links are of equal speed?
Refer to the exhibit.
Which network prefix was learned via EIGRP?
A Cisco engineer must configure a single switch interface to meet these requirements
• accept untagged frames and place them in VLAN 20
• accept tagged frames in VLAN 30 when CDP detects a Cisco IP phone
Which command set must the engineer apply?
A)
B)
C)
D)
Which PoE mode enables powered-device detection and guarantees power when the device is detected?
Drag and drop the statements about networking from the left onto the corresponding networking types on the right.
Refer to the exhibit.
Packets received by the router from BGP enter via a serial interface at 209 165 201 1 Each route is present within the routing table Which interface is used to forward traffic with a destination IP of 10.1.1.19?
Which two spanning-tree states are bypassed on an interface running PortFast? (Choose two.)
Refer to the exhibit.
Which two configurations must the engineer apply on this network so that R1 becomes the DR? (Choose two.)
A)
B)
C)
D)
E)
Drag and drop the descriptions of AAA services from the left onto the corresponding services on the right.
What is one reason to implement LAG on a Cisco WLC?
Refer to the exhibit.
Which minimum configuration items are needed to enable Secure Shell version 2 access to R15?
A)
B)
C)
D)
What is a requirement when configuring or removing LAG on a WLC?
What provides centralized control of authentication and roaming In an enterprise network?
Refer to the exhibit.
Routers R1 and R3 have the default configuration The router R2 priority is set to 99 Which commands on R3 configure it as the DR in the 10.0 4.0/24 network?
Refer to the exhibit.
Which plan must be Implemented to ensure optimal QoS marking practices on this network?
Refer to the exhibit.
A static route must be configured on R14 to forward traffic for the 172 21 34 0/25 network that resides on R86 Which command must be used to fulfill the request?
A network engineer must implement an IPv6 configuration on the vlan 2000 interface to create a routable locally-unique unicast address that is blocked from being advertised to the internet. Which configuration must the engineer apply?
Drag and drop the characteristics of network architectures from the left onto the type of architecture on the right.
What is a DNS lookup operation?
What is a network appliance that checks the state of a packet to determine whether the packet is legitimate?
What is a practice that protects a network from VLAN hopping attacks?
How does HSRP provide first hop redundancy?
What uses HTTP messages to transfer data to applications residing on different hosts?
How are the switches in a spine-and-leaf topology interconnected?
What is recommended for the wireless infrastructure design of an organization?
A network administrator is asked to configure VLANS 2, 3 and 4 for a new implementation. Some ports must be assigned to the new VLANS with unused remaining. Which action should be taken for the unused ports?
Which feature on the Cisco Wireless LAN Controller when enabled restricts management access from specific networks?
In QoS, which prioritization method is appropriate for interactive voice and video?
Which virtual MAC address is used by VRRP group 1?
An engineer must configure Interswitch VLAN communication between a Cisco switch and a third-party switch. Which action should be taken?
Which API is used in controller-based architectures to interact with edge devices?
Where does the configuration reside when a helper address Is configured lo support DHCP?
Refer to the exhibit.
If the network environment is operating normally, which type of device must be connected to interface FastEthernet 0/1?
Which two outcomes are predictable behaviors for HSRP? (Choose two.)
Which two WAN architecture options help a business scalability and reliability for the network? (Choose two)
Refer to the exhibit.
Router R4 is dynamically learning the path to the server. If R4 is connected to R1 via OSPF Area 20, to R2 v2ia R2 BGP, and to R3 via EIGRP 777, which path is installed in the routing table of R4?
What occurs when overlapping Wi-Fi channels are implemented?
What is the benefit of using FHRP?
Refer to the exhibit.
When PC-A sends traffic to PC-B, which network component is in charge of receiving the packet from PC-A verifying the IP addresses, and forwarding the packet to PC-B?
What is the function of a hub-and-spoke WAN topology?
What is the function of a controller in controller-based networking?
Which device tracks the state of active connections in order to make a decision to forward a packet through?
Refer to the exhibit.
A network administrator must permit SSH access to remotely manage routers in a network. The operations team resides on the 10.20.1.0/25 network. Which command will accomplish this task?
Which resource is able to be shared among virtual machines deployed on the same physical server?
When DHCP is configured on a router, which command must be entered so the default gateway is automatically distributed?
Which two functions are performed by the core layer in a three-tier architecture? (Choose two)
What is a characteristic of cloud-based network topology?
Which command enables a router to become a DHCP client?
What is an advantage of Cisco DNA Center versus traditional campus device management?
By default, how Does EIGRP determine the metric of a route for the routing table?
Router R1 must send all traffic without a matching routing-table entry to 192.168.1.1. Which configuration accomplishes this task?
When a site-to-site VPN is configured, which IPsec mode provides encapsulation and encryption of the entire original P packet?
A network engineer is configuring an OSPFv2 neighbor adjacency Drag and drop the parameters from the left onto their required categories on the right. Not all parameters are used
An engineer must configure the IPv6 address 2001:0db8:0000:0000:0700:0003:400F:572B on the serial0/0 interface of the HQ router and wants to compress it for easier configuration. Which command must be issued on the router interface?
Which two WAN architecture options help a business improve scalability and reliability for the network? (Choose two.)
An engineer is asked to protect unused ports that are configured in the default VLAN on a switch.
Which two steps will fulfill the request? (Choose two)
What protocol allows an engineer to back up 20 network router configurations globally while using the copy function?
Which type of information resides on a DHCP server?
On workstations running Microsoft Windows, which protocol provides the default gateway for the device?
What are two roles of the Dynamic Host Configuration Protocol (DHCP)? (Choose two)
What are two southbound APIs? (Choose two )
Which command is used to specify the delay time in seconds for LLDP to initialize on any interface?
What are two benefits of controller-based networking compared to traditional networking?
Refer to the exhibit Routers R1 and R2 have been configured with their respective LAN interfaces The two circuits are operational and reachable across WAN Which command set establishes failover redundancy if the primary circuit goes down?
Refer to the exhibit.
An access list is required to permit traffic from any host on interface G0/0 and deny traffic from interface G/0/1. Which access list must be applied?
When configuring IPv6 on an interface, which two IPv6 multicast groups are joined? (Choose two)
Which two actions are performed by the Weighted Random Early Detection mechanism? (Choose two)
Refer to the exhibit.
A network engineer must configured communication between PC A and the File Server. To prevent interruption for any other communications, which command must be configured?
Refer to the exhibit.
An engineer configured NAT translations and has verified that the configuration is correct.
Which IP address is the source IP?
What is a DHCP client?
Refer to the exhibit.
An administrator must turn off the Cisco Discovery Protocol on the port configured with address last usable address in the 10.0.0.0/30 subnet. Which command set meets the requirement?
What are two characteristics of the distribution layer in a three-tier network architecture? (Choose two.)
What does physical access control regulate?
Which type of address is the public IP address of a NAT device?
What does a router do when configured with the default DNS lookup settings, and a URL is entered on the CLI?
What causes a port to be placed in the err-disabled state?
An engineer needs to add an old switch back into a network. To prevent the switch from corrupting the VLAN database which action must be taken?
What is a benefit of using a Cisco Wireless LAN Controller?
How do servers connect to the network in a virtual environment?
Drag and drop the network protocols from the left onto the correct transport services on the right.
When using Rapid PVST+, which command guarantees the switch is always the root bridge for VLAN 200?
Which device controls the forwarding of authentication requests for users when connecting to the network using a lightweight access point?
Which command on a port enters the forwarding state immediately when a PC is connected to it?
Which WLC port connects to a switch to pass normal access-point traffic?
What are two improvements provided by automation for network management in an SDN environment? (Choose two)
Which CRUD operation modifies an existing table or view?
