ExamGecko
Search Search Login
Home Home / Cisco / 300-410

Cisco 300-410 Practice Test - Questions Answers, Page 6

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Refer to the exhibit. Refer to the exhibit. R1 uses SP1 as the primary path. A network engineer must force all SSH traffic generated from R1 toward SP2. Which configuration accomplishes the task?
LAB SIMULATION WAN CORE MGMT
Refer to the exhibit. An engineer is trying to block the route to 192.168.2.2 from the routing table by using the configuration that is shown. The route is still present in the routing table as an OSPF route. Which action blocks the route?
Refer to the exhibit. Refer to the exhibit After an engineer modified the configuration for area 7 to permit type 1 2 and 7 LSAs only users connected to router R9 reported that they could no longer access the internet. Which configuration restores internet access to users on R9 and permits only LSA type 1,2, and 7? A) B) C) D)
Refer to the exhibit. Refer to the exhibit. Which configuration resolves the issue? A) B) C) D)
An engineer configured a router with this configuration ip access-hst DENY TELNET 10 deny tcp any any eq 23 log-input The router console starts receiving log message :%SEC-6-IPACCESSLOGP: list DENY_TELNET denied tcp 192.168.1.10(1022)(FastEthernet1/0 D508.89gb.003f) ->192.168.2.20(23), 1 packet" Which action stops messages on the console while still denying Telnet?
Refer to the exhibit. R2 is a route reflector, and R1 and R3 are route reflector clients. The route reflector learns the route to 172.16.25.0/24 from R1, but it does not advertise to R3. What is the reason the route is not advertised?
Refer to the exhibit. An engineer configures a static route on a router, but when the engineer checks the route to the destination, a different next hop is chosen. What is the reason for this?
Refer to the exhibit. Users in the branch network of 2001:db8:0:4::/64 report that they cannot access the Internet. Which command is issued in IPv6 router EIGRP 100 configuration mode to solve this issue?
Refer to the exhibit. Refer to the exhibit. The R1 routing table has the prefixes for the FTP1 and FTP2 file servers. A network engineer must configure the R1 with these requirements: Host1 must use the FTP1 fileserver. Host2 must use the FTP2 fileserver. Which configuration meets the requirement on R1?

Question 51

Report
Export
Collapse

Refer to the exhibit.

Network operations cannot read or write any configuration on the device with this configuration from the operations subnet. Which two configurations fix the issue? (Choose two.)

A.

Configure SNMP rw permission in addition to community ciscotest.

A.

Configure SNMP rw permission in addition to community ciscotest.

Answers
B.

Modify access list 1 and allow operations subnet in the access list.

B.

Modify access list 1 and allow operations subnet in the access list.

Answers
C.

Modify access list 1 and allow SNMP in the access list.

C.

Modify access list 1 and allow SNMP in the access list.

Answers
D.

Configure SNMP rw permission in addition to version 1.

D.

Configure SNMP rw permission in addition to version 1.

Answers
E.

Configure SNMP rw permission in addition to community ciscotest 1.

E.

Configure SNMP rw permission in addition to community ciscotest 1.

Answers
Suggested answer: B, E

Question 52

Report
Export
Collapse

Refer to the exhibit.

Why is the remote NetFlow server failing to receive the NetFlow data?

A.

The flow exporter is configured but is not used.

A.

The flow exporter is configured but is not used.

Answers
B.

The flow monitor is applied in the wrong direction.

B.

The flow monitor is applied in the wrong direction.

Answers
C.

The flow monitor is applied to the wrong interface.

C.

The flow monitor is applied to the wrong interface.

Answers
D.

The destination of the flow exporter is not reachable.

D.

The destination of the flow exporter is not reachable.

Answers
Suggested answer: A

Question 53

Report
Export
Collapse

Refer to the exhibit.

A router receiving BGP routing updates from multiple neighbors for routers in AS 690. What is the reason that the router still sends traffic that is destined to AS 690 to a neighbor other than 10.222.1.1?

A.

The local preference value in another neighbor statement is higher than 250.

A.

The local preference value in another neighbor statement is higher than 250.

Answers
B.

The local preference value should be set to the same value as the weight in the route map.

B.

The local preference value should be set to the same value as the weight in the route map.

Answers
C.

The route map is applied in the wrong direction.

C.

The route map is applied in the wrong direction.

Answers
D.

The weight value in another neighbor statement is higher than 200.

D.

The weight value in another neighbor statement is higher than 200.

Answers
Suggested answer: C

Question 54

Report
Export
Collapse

Refer to the exhibit. an engineer is trying to get 192.168.32.100 forwarded through 10.1.1.1, but it was forwarded through 10.1.1.2. What action forwards the packets through 10.1.1.1?

A.

Configure EIGRP to receive 192.168.32.0 route with lower admin distance.

A.

Configure EIGRP to receive 192.168.32.0 route with lower admin distance.

Answers
B.

A. Configure EIGRP to receive 192.168.32.0 route with longer prefix than /19.

B.

A. Configure EIGRP to receive 192.168.32.0 route with longer prefix than /19.

Answers
C.

A. Configure EIGRP to receive 192.168.32.0 route with lower metric.

C.

A. Configure EIGRP to receive 192.168.32.0 route with lower metric.

Answers
D.

A. Configure EIGRP to receive 192.168.32.0 route with equal or longer prefix than /24.

D.

A. Configure EIGRP to receive 192.168.32.0 route with equal or longer prefix than /24.

Answers
Suggested answer: D

Question 55

Report
Export
Collapse

What is a limitation of IPv6 RA Guard?

A.

It is not supported in hardware when TCAM is programmed

A.

It is not supported in hardware when TCAM is programmed

Answers
B.

It does not offer protection in environments where IPv6 traffic is tunneled.

B.

It does not offer protection in environments where IPv6 traffic is tunneled.

Answers
C.

It cannot be configured on a switch port interface in the ingress direction

C.

It cannot be configured on a switch port interface in the ingress direction

Answers
D.

Packets that are dropped by IPv6 RA Guard cannot be spanned

D.

Packets that are dropped by IPv6 RA Guard cannot be spanned

Answers
Suggested answer: B

Explanation:

Restrictions for IPv6 RA Guard

The IPv6 RA Guard feature does not offer protection in environments where IPv6 traffic is tunneled.

This feature is supported only in hardware when the ternary content addressable memory (TCAM) is programmed.

This feature can be configured on a switch port interface in the ingress direction.

This feature supports host mode and router mode.

This feature is supported only in the ingress direction; it is not supported in the egress direction.

This feature is not supported on EtherChannel and EtherChannel port members.

This feature is not supported on trunk ports with merge mode.

This feature is supported on auxiliary VLANs and private VLANs (PVLANs). In the case of PVLANs, primary VLAN features are inherited and merged with port features.

Packets dropped by the IPv6 RA Guard feature can be spanned.

Reference:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/ipv6_fhsec/configuration/xe-16-10/ip6f-xe-16-10-book/ip6-ra-guard.html#GUID-589AF00C-7499-439F-AD23-51005D61CAB7

Question 56

Report
Export
Collapse

Refer to the exhibit.

An IP SLA is configured to use the backup default route when the primary is down, but it is not working as desired. Which command fixes the issue?

A.

R1(config)# ip route 0.0.0.0.0.0.0.0.2.2.2.2 10 track 1

A.

R1(config)# ip route 0.0.0.0.0.0.0.0.2.2.2.2 10 track 1

Answers
B.

R1(config)# ip route 0.0.0.0.0.0.0.0.2.2.2.2

B.

R1(config)# ip route 0.0.0.0.0.0.0.0.2.2.2.2

Answers
C.

R1(config)#ip sla track 1

C.

R1(config)#ip sla track 1

Answers
D.

R1(config)# ip route 0.0.0.0.0.0.0.0.1.1.1.1 track 1

D.

R1(config)# ip route 0.0.0.0.0.0.0.0.1.1.1.1 track 1

Answers
Suggested answer: D

Explanation:

Reference:

Note: By default Static Router AD value-1 hence ip route 0.0.0.0. 0.0.0.0. 1.1.1.1 track 1 means AD-1 which must be less than of back up route AD.

Define the backup route to use when the tracked object is unavailable.

!--- The administrative distance of the backup route must be greater than !--- the administrative distance of the tracked route.

!--- If the primary gateway is unreachable, that route is removed

!--- and the backup route is installed in the routing table

!--- instead of the tracked route.

https://www.cisco.com/c/en/us/support/docs/ip/ip-routing/200785-ISP-Failover-with-defaultroutes-using-I.html

https://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generationfirewalls/118962-configure-asa-00.html

Question 57

Report
Export
Collapse

Which label operations are performed by a label edge router?

A.

SWAP and POP

A.

SWAP and POP

Answers
B.

SWAP and PUSH

B.

SWAP and PUSH

Answers
C.

PUSH and PHP

C.

PUSH and PHP

Answers
D.

PUSH and POP

D.

PUSH and POP

Answers
Suggested answer: D

Explanation:

A label edge router (LER, also known as edge LSR) is a router that operates at the edge of an MPLS network and acts as the entry and exit points for the network. LERs push an MPLS label onto an incoming packet and pop it off an outgoing packet.

Reference:

https://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/nxos/mpls/configuration/guide/mpls_cg/mp_mpls_overview.pdf

Question 58

Report
Export
Collapse

Refer to the exhibit.

A junior engineer updated a branch router configuration. Immediately after the change, the engineer receives calls from the help desk that branch personnel cannot reach any network destinations.

Which configuration restores service and continues to block 10.1.1.100/32?

A.

route-map FILTER-IN deny 5

A.

route-map FILTER-IN deny 5

Answers
B.

ip prefix-list 102 seq 15 permit 0.0.0.0/32 le 32

B.

ip prefix-list 102 seq 15 permit 0.0.0.0/32 le 32

Answers
C.

ip prefix-list 102 seq 5 permit 0.0.0.0/32 le 32

C.

ip prefix-list 102 seq 5 permit 0.0.0.0/32 le 32

Answers
D.

route-map FILTER-IN permit 20

D.

route-map FILTER-IN permit 20

Answers
Suggested answer: D

Explanation:

By using "deny" keyword in a route-map, we can filter out the prefix specified in the prefix-list.

But there is an implicit "deny all" statement in the prefix-list so we must permit other prefixes with "permit" keyword in the route-map.

Question 59

Report
Export
Collapse

An engineer configured a leak-map command to summarize EIGRP routes and advertise specifically loopback 0 with an IP of 10.1.1.1.255.255.255.252 along with the summary route. After finishing configuration, the customer complained not receiving summary route with specific loopback address.

Which two configurations will fix it? (Choose two.)

A.

Configure access-list 1 permit 10.1.1.0.0.0.0.3.

A.

Configure access-list 1 permit 10.1.1.0.0.0.0.3.

Answers
B.

Configure access-list 1 permit 10.1.1.1.0.0.0.252.

B.

Configure access-list 1 permit 10.1.1.1.0.0.0.252.

Answers
C.

Configure access-list 1 and match under route-map Leak-Route.

C.

Configure access-list 1 and match under route-map Leak-Route.

Answers
D.

Configure route-map Leak-Route permit 10 and match access-list 1.

D.

Configure route-map Leak-Route permit 10 and match access-list 1.

Answers
E.

Configure route-map Leak-Route permit 20.

E.

Configure route-map Leak-Route permit 20.

Answers
Suggested answer: A, D

Explanation:

When you configure an EIGRP summary route, all networks that fall within the range of your summary are suppressed and no longer advertised on the interface. Only the summary route is advertised. But if we want to advertise a network that has been suppressed along with the summary route then we can use leak-map feature. The below commands will fix the configuration in this question:

R1( config)#access-list 1 permit 10.1.1.0 0.0.0.3 R1(config)#route-map Leak-Route permit 10 // this command will also remove the "route_map Leak-Route deny 10" command.

R1(config-route-map)#match ip address 1

Question 60

Report
Export
Collapse

Refer to the exhibit.

An engineer is monitoring reachability of the configured default routes to ISP1 and ISP2. The default route from ISP1 is preferred if available. How is this issue resolved?

A.

Use the icmp-echo command to track both default routes

A.

Use the icmp-echo command to track both default routes

Answers
B.

Use the same AD for both default routes

B.

Use the same AD for both default routes

Answers
C.

Start IP SLA by matching numbers for track and ip sla commands

C.

Start IP SLA by matching numbers for track and ip sla commands

Answers
D.

Start IP SLA by defining frequency and scheduling it

D.

Start IP SLA by defining frequency and scheduling it

Answers
Suggested answer: D

Explanation:

Reference: https://www.cisco.com/c/en/us/support/docs/ip/ip-routing/200785-ISP-Failover-withdefault-routes-using-I.htmlIn the above configuration we have not had activated our IP SLA operation. We can start it withthis command:

R1(config)#ip sla schedule 100 life forever start-time now

Also we should specific the rate of ICMP echo:

R1(config-ip-sla-echo)#frequency 5 // Send ICMP echo every 5 seconds

Total 570 questions
Go to page: of 57
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms