Cisco 300-410 Practice Test - Questions Answers, Page 24
Question list
List of questions
Related questions
Refer to the exhibit.
The Internet traffic should always prefer Site-A ISP-1 if the link and BGP connection are up; otherwise, all Internet traffic should go to ISP-2 Redistribution is configured between BGP and OSPF routing protocols and it is not working as expected. What action resolves the issue?
Set metric-type 2 at Site-A RTR1, and set metric-type 1 at Site-B RTR2
Set OSPF cost 100 at Site-A RTR1, and set OSPF Cost 200 at Site-B RTR2
Set OSPF cost 200 at Site: A RTR1 and set OSPF Cost 100 at Site-B RTR2
Set metric-type 1 at Site-A RTR1, and set metric-type 2 at Site-B RTR2
Refer to the exhibit.
The AP status from Cisco DNA Center Assurance Dashboard shows some physical connectivity issues from access switch interface G1/0/14. Which command generates the diagnostic data to resolve the physical connectivity issues?
test cable diagnostics tdr interface GigabitEthernet1/0/14
Check cable-diagnostics tdr interface GigabitEthernet1/0/14
show cable-diagnostics tdr interface GigabitEthernet1/0/14
Verify cable-diagnostics tdr interface GigabitEthernet1/0/14
An engineer creates a Cisco DNA Center cluster with three nodes, but all the services are running on one host node. Which action resolves this issue?
Restore the link on the switch interface that is connected to a cluster link on the Cisco DNA Center
Click the master host node with all the services and select services to be moved to other hosts
Enable service distribution from the Systems 360 page.
Click system updates, and upgrade to the latest version of Cisco DNA Center.
R1 and R2 are configured as eBGP neighbor , R1 is in AS100 and R2 is in AS200. R2 is advertising these networks to R1:
172.16.16.0/20
172.16.3.0/24
172.16.4.0/24
192.168.1.0/24
192.168.2.0/24
172.16.0.0/16
The network administrator on R1 must improve convergence by blocking all subnets of 172-16.0.0/16 major network with a mask lower than 23 from coming in, Which set of configurations accomplishes the task on R1?
ip prefix-list PL-1 deny 172.16.0.0/16 le 23
ip prefix-list PL-1 permit 0.0.0.0/0 le 32
!
router bgp 100
neighbor 192.168.100.2 remote-as 200
neighbor 192.168.100.2 prefix-list PL-1 in
ip prefix-list PL-1 deny 172.16.0.0/16 ge 23
ip prefix-list PL-1 permit 0.0.0.0/0 le 32
!
router bgp 100
neighbor 192.168.100.2 remote-as 200
neighbor 192.168.100.2 prefix-list PL-1 in
access-list 1 deny 172.16.0.0 0.0.254.255
access-list 1 permit any
!
router bgp 100
neighbor 192.168.100.2 remote-as 200
neighbor 192.168.100.2 distribute-list 1 in
ip prefix-list PL-1 deny 172.16.0.0/16
ip prefix-list PL-1 permit 0.0.0.0/0
!
router bgp 100
neighbor 192.168.100.2 remote-as 200
neighbor 192.168.100.2 prefix-list PL-1 in
Refer to the exhibit.
An engineer must block access to the console ports for all corporate remote Cisco devices based on the recent corporate security policy but the security team stilt can connect through the console port.
Which configuration on the console port resolves the issue?
transport input telnet
login and password
no exec
exec 0.0
The network administrator configured R1 to authenticate Telnet connections based on Cisco ISE using TACACS+. ISE has been configured with an IP address of 192.168.1.5 and with a network device pointing toward R1(192.168.1.1) with a shared secret password of Cisco123.
The administrator cannot authenticate to R1 based on ISE. Which configuration fixes the issue?
ip tacacs-server host 192.168.1.5 key Cisco123
line vty 0 4 login authentication TAC-SERV
line vty 0 4 login authentication telnet
tacacs-server host 192.168.1.5 key Cisco123
Refer to the exhibit.
A network administrator successfully logs in to a switch using SSH from a (RADIUS server When the network administrator uses a console port to access the switch the RADIUS server returns shell:privlvl= 15'' and the switch asks to enter the enable command \ the command is entered, it gets rejected.
Which command set is used to troubleshoot and reserve this issue?
line con 0
aaa authorization console
authorization exec
!l
ine vty 0 4
transport input ssh
line con 0
aaa authorization console
!l
ine vty 0 4
authorization exec
line con 0
aaa authorization console priv15
!
line vty 0 4
authorization exec
line con 0
aaa authorization console
authorization priv15
!
ine vty 0 4
transport input ssh
Refer to the exhibit.
The network administrator configured the network to connect two disjointed networks and ail the connectivity is up except the virtual link which causes area 250 to be unreachable. Which two configurations resolve this issue? (Choose two.)
R4
router ospf 1
no area 234 virtual-link 10.23.23.2
area 234 virtual-link 0.0.0.22
R4
router ospf 1
no area area 234 virtual-link 10.23.23.2
area 0 virtual-link 0.0.0.22
R2
router ospf 1
no area area 234 virtual-link 10.34.34.4
area 0 virtual-link 0.0.0.44
R2
router ospf 1
router-id 10.23.23.2
R2
router ospf 1
no area 234 virtual-ink 10.34.34.4
area 234 virtual-link 0.0.0.44
Refer to the exhibit.
R1 is configured with IP SLA to check the availability of the server behind R6 but it kept failing. Which configuration resolves the issue?
R6(config)# ip sla responder
R6(config)# ip sla responder udp-echo ip address 10.10.10.1 port 5000
R6(config)# ip access-list extended DDOS
R6(config ext-nac)# 5 permit icmp host 10.66 66.66 host 10.10.10.1
R6(config)# ip access-list extended DDOS
R6(confg ext-nac)# 5 permit icmp host 10.10.10.1 host 10.66.66.66
Which mechanism provides traffic segmentation within a DMVPN network?
RSVP
BGP
MPLS
iPsec
Question