Cisco 300-410 Practice Test - Questions Answers, Page 27
Question list
List of questions
Related questions
What is a function of IPv6 Source Guard?
It works with address glean or ND to find existing addresses.
It inspects ND and DHCP packets to build an address binding table.
It denies traffic from known sources and allocated addresses.
It notifies the ND protocol to inform hosts if the traffic is denied by it.
What is the purpose of the DHCPv6 Guard?
It messages between a DHCPv6 server and a DHCPv6 client ( or relay agent).
It shows that clients of a DHCPv5 server are affected.
It block DHCPv6 messages from relay agents to a DHCPv6 server.
It allows DHCPv6 replay and advertisements from (rouge) DHCPv6 servers.
Refer to the exhibit.
R5 should not receive any routes originated in the EIGRP domain. Which set of configuration changes removes the EIGRP routes from the R5 routing table to fix the issue?
R4
route-map O2R deny 10
match tag 111
route-map O2R permit 20
!
router rip
redistribute ospf 1 route-map O2R metric 1
R2
route-map E20 deny 20
R4
route-map O2R deny 10
match tag 111
!
router rip
redistribute ospf 1 route-map O2R metric 1
R4
route-map O2R permit 10
match tag 111
route-map O2R deny 20
!
router rip
redistribute ospf 1 route-map O2R metric 1
R4
route-map O2R deny 10
match tag 111
router rip
redistribute ospf 1 route-map O2R metric 1
Refer to the exhibit.
An engineer has configured R1 as EIGRP stub router. After the configuration, router R3 failed to reach to R2 loopback address.
Which action advertises R2 loopback back into the R3 routing table?
Add a static route for R2 loopback address in R1 and redistribute it to advertise to R3.
Use a leak map on R1 that matches the required prefix and apply it with the distribute list command toward R3.
Use a leak map on R3 that matches the required prefix and apply it with the EIGRP stub feature.
Add a static null route for R2 loopback address in R1 and redistribute it to advertise to R3.
Refer to the exhibit.
An engineer configures the router 10.1.100.10 for EIGRP autosummarization so that R1 should receive the summary route of 10.0.0.0/8. However, R1 receives more specific /24 routes.
Which action resolves this issue?
Router R1 should configure ip summary address eigrp (AS number) 10.0.0.0 255.0.0.0 for the R1 Fast Ethernet 0/0 connected interface.
Router R1 should configure ip route 10.0.0.0 255.0.0.0 null 0 for the routes that are received on R1.
Router 10.1.100.10 should configure ip route 10.0.0.0 255.0.0.0 null 0 for the routes that are summarized toward R1.
Router 10.1.100.10 should configure ip summary address eigrp (AS number) 10.0.0.0 255.0.0.0 for the R1 Fast Ethernet 0/0 connected interface.
Refer to the exhibit.
An engineer is troubleshooting a TACACS problem.
Which action resolves the issue?
Configure a matching TACACS server IP.
Configure a matching preshared key.
Generate authentication from a relative source interface.
Apply a configured AAA profile to the VTY.
The network administrator configured CoPP so that all HTTP and HTTPS traffic from the administrator device located at 172.16 1.99 toward the router CPU is limited to 500 kbps. Any traffic that exceeds this limit must be dropped.
access-list 100 permit ip host 172.16.1.99 any
! class-map CM-ADMIN match access-group 100
! policy-map PM-COPP class CM-ADMIN police 500000 conform-action transmit
!i nterface E0/0 service-policy input PM-COPP
CoPP failed to capture the desired traffic and the CPU load is getting higher.
Which two configurations resolve the issue? (Choose two.)
interface E0/0
no service-policy input PM-COPP
!
control-plane
service-policy input PM-COPP
policy-map PM-COPP
class CM-ADMIN
no police 500000 conform-action transmit
police 500 conform-action transmit
!
control-plane
service-policy input PM-COPP
no access-list 100
access-list 100 permit tcp host 172.16.1.99 any eq 80
no access-list 100
access-list 100 permit tcp host 172.16.1.99 any eq 80
access-list 100 permit tcp host 172.16.1.99 any eq 443
policy-map PM-COPP
class CM-ADMIN
no police 500000 conform-action transmit
police 500 conform-action transmit
Refer to the exhibit.
While monitoring VTY access to a router, an engineer notices that the router does not have any filter and anyone can access the router with username and password even though an ACL is configured.
Which command resolves this issue?
access-class INTERNET in
ip access-group INTERNET in
ipv6 traffic-filter INTERNET in
ipv6 access-class INTERNET in
Refer to the exhibit.
A network administrator is troubleshooting IPv6 address assignment for a DHCP client that is not getting an IPv6 address from the server.
Which configuration retrieves the client IPv6 address from the DHCP server?
ipv6 address autoconfig command on the interface
ipv6 dhcp server automatic command on DHCP server
ipv6 dhcp relay-agent command on the interface
service dhcp command on DHCP server
Refer to the exhibit.
A junior engineer configured SNMP to network devices. Malicious users have uploaded different configurations to the network devices using SNMP and TFTP servers.
Which configuration prevents changes from unauthorized NMS and TFTP servers?
access-list 20 permit 10.221.10.11
access-list 20 deny any log
!
snmp-server group NETVIEW v3 priv read NETVIEW access 20
snmp-server group NETADMIN v3 priv read NETVIEW write NETADMIN access 20
snmp-server community Cisc0Us3r RO 20
snmp-server community Cisc0wrus3r RW 20
snmp-server tftp-server-list 20
access-list 20 permit 10.221.10.11
access-list 20 deny any log
!
snmp-server group NETVIEW v3 priv read NETVIEW access 20
snmp-server group NETADMIN v3 priv read NETVIEW write NETADMIN access 20
snmp-server community Cisc0wrus3r RO 20
snmp-server community Cisc0Us3r RW 20
snmp-server tftp-server-list 20
access-list 20 permit 10.221.10.11
access-list 20 deny any log
access-list 20 permit 10.221.10.11
Question