ExamGecko
Login
Home / Cisco / 300-430 / List of questions
Ask Question

Cisco 300-430 Practice Test - Questions Answers, Page 9

List of questions

Question 81

Report Export Collapse

A wireless engineer must implement a corporate wireless network for a large company in the most efficient way possible. The wireless network must support 32 VLANs for 300 employees in different departments. Which solution must the engineer choose?

Configure a second WLC to support half of the APs in the deployment.

Configure a second WLC to support half of the APs in the deployment.

Configure one single SSID and implement Cisco ISE for VLAN assignment according to different user roles.

Configure one single SSID and implement Cisco ISE for VLAN assignment according to different user roles.

Configure different AP groups to support different VLANs, so that all of the WLANs can be broadcast on both radios.

Configure different AP groups to support different VLANs, so that all of the WLANs can be broadcast on both radios.

Configure 16 WLANs to be broadcast on the 2.4-GHz band and 16 WLANs to be broadcast on the 5.0-GHz band.

Configure 16 WLANs to be broadcast on the 2.4-GHz band and 16 WLANs to be broadcast on the 5.0-GHz band.

Suggested answer: B
asked 07/10/2024
Nicolas GARCIA
38 questions

Question 82

Report Export Collapse

Which feature on the Cisco Wireless LAN Controller must be present to support dynamic VLAN mapping?

FlexConnect ACL

FlexConnect ACL

VLAN name override

VLAN name override

CCKM/OKC

CCKM/OKC

AAA override

AAA override

Suggested answer: D
asked 07/10/2024
Osman Taskiran
35 questions

Question 83

Report Export Collapse

Which three properties are used for client profiling of wireless clients? (Choose three.)

HTTP user agent

HTTP user agent

DHCP

DHCP

MAC OUI

MAC OUI

hostname

hostname

OS version

OS version

IP address

IP address

Suggested answer: A, B, C
asked 07/10/2024
Bradley Flay
43 questions

Question 84

Report Export Collapse

Which command set configures a Cisco Catalyst 9800 Series Wireless Controller so that the client traffic enters the network at the AP switch port?

Cisco 300-430 image Question 84 112417 10072024005858000000

Option A

Option A

Option B

Option B

Option C

Option C

Option D

Option D

Suggested answer: D
asked 07/10/2024
P. Kriek
47 questions

Question 85

Report Export Collapse

What is the default IEEE 802.1x AP authentication configuration on a Cisco Catalyst 9800 Series Wireless Controller?

EAP-PEAP with 802.1x port authentication

EAP-PEAP with 802.1x port authentication

EAP-TLS with 802.1x port authentication

EAP-TLS with 802.1x port authentication

EAP-FAST with CAPWAP DTLS + port authentication

EAP-FAST with CAPWAP DTLS + port authentication

EAP-FAST with CAPWAP DTLS

EAP-FAST with CAPWAP DTLS

Suggested answer: C
asked 07/10/2024
Anand R
42 questions

Question 86

Report Export Collapse

An engineer must implement rogue containment for an SSID. What is the maximum number of APs that should be used for containment?

1

1

2

2

3

3

4

4

Suggested answer: D
Explanation:

Reference:

https://www.cisco.com/c/en/us/td/docs/wireless/technology/roguedetection_deploy/Rogue_Detection.html

asked 07/10/2024
Igor Komino
48 questions

Question 87

Report Export Collapse

An engineer is following the proper upgrade path to upgrade a Cisco AireOS WLC from version 7.3 to 8.9. Which two ACLs for Cisco CWA must be configured when upgrading from the specified codes?

(Choose two.)

Permit 0.0.0.0 0.0.0.0 any DNS any

Permit 0.0.0.0 0.0.0.0 any DNS any

Permit 0.0.0.0 0.0.0.0 UDP DNS any

Permit 0.0.0.0 0.0.0.0 UDP DNS any

Permit 0.0.0.0 0.0.0.0 UDP any DNS

Permit 0.0.0.0 0.0.0.0 UDP any DNS

Permit any any any

Permit any any any

Permit 0.0.0.0 0.0.0.0 UDP any any

Permit 0.0.0.0 0.0.0.0 UDP any any

Suggested answer: B, C
Explanation:

Reference: https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/115732-central-web-auth-00.html

asked 07/10/2024
John Tourloukis
35 questions

Question 88

Report Export Collapse

CMX Facebook Wi-Fi allows access to the network before authentication. Which two elements are available? (Choose two.)

Allow HTTP traffic only before authentication and block all the traffic.

Allow HTTP traffic only before authentication and block all the traffic.

Allow all the traffic before authentication and intercept HTTPS only.

Allow all the traffic before authentication and intercept HTTPS only.

Allow HTTPs traffic only before authentication and block all other traffic.

Allow HTTPs traffic only before authentication and block all other traffic.

Allow all the traffic before authentication and intercept HTTP only.

Allow all the traffic before authentication and intercept HTTP only.

Allow SNMP traffic only before authentication and block all the traffic.

Allow SNMP traffic only before authentication and block all the traffic.

Suggested answer: C, D
Explanation:

Reference: https://www.cisco.com/c/en/us/td/docs/wireless/mse/8-0/CMX_Connect_Engage_Visitor_Connect/Guide/Cisco_CMX_Connect_Engage_Config_Guide_VC/CMX_Facebook_Wi-Fi.html

asked 07/10/2024
Máté Montvai
41 questions

Question 89

Report Export Collapse

An engineer is implementing Cisco Identity-Based Networking on a Cisco AireOS controller. The engineer has two ACLs on the controller. The first ACL, named BASE_ACL, is applied to the corporate_clients interface on the WLC, which is used for all corporate clients. The second ACL, named HR_ACL, is referenced by ISE in the Human Resources group policy. What is the resulting ACL when a Human Resources user connects?

HR_ACL appended with BASE_ACL

HR_ACL appended with BASE_ACL

HR_ACL only

HR_ACL only

BASE_ACL appended with HR_ACL

BASE_ACL appended with HR_ACL

BASE_ACL only

BASE_ACL only

Suggested answer: B
asked 07/10/2024
Bas Vogel
43 questions

Question 90

Report Export Collapse

Branch wireless users report that they can no longer access services from head office but can access services locally at the site. New wireless users can associate to the wireless while the WAN is down.

Which three elements (Cisco FlexConnect state, operation mode, and authentication method) are seen in this scenario? (Choose three.)

authentication-local/switch-local

authentication-local/switch-local

WPA2 personal

WPA2 personal

authentication-central/switch-central

authentication-central/switch-central

lightweight mode

lightweight mode

standalone mode

standalone mode

WEB authentication

WEB authentication

Suggested answer: A, B, E
asked 07/10/2024
Sharanjit Kareer
45 questions
Total 216 questions
Go to page: of 22
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

An engineer must implement rogue containment for an SSID. What is the maximum number of APs that should be used for containment?
A wireless engineer must implement a corporate wireless network for a large company in the most efficient way possible. The wireless network must support 32 VLANs for 300 employees in different departments. Which solution must the engineer choose?
A Cisco CMX 3375 appliance on the 10.6.1 version code counts duplicate client entries, which creates wrong location analytics. The issue is primarily from iOS clients with the private MAC address feature enabled. Enabling this feature requires an upgrade of the Cisco CMX 3375 appliance in a high availability pair to version 10.6.3. SCP transfers the Cisco CMX image, but the upgrade script run fails. Which configuration change resolves this issue?
After receiving an alert about a rogue AP, a network engineer logs into Cisco Prime Infrastructure and looks at the floor map where the AP that detected the rogue is located. The map is synchronized with a mobility services engine that determines that the rogue device is actually inside the campus. The engineer determines that the rogue is a security threat and decides to stop if from broadcasting inside the enterprise wireless network. What is the fastest way to disable the rogue?
An engineer must implement a BYOD policy with these requirements: Onboarding unknown machines Easily scalable Low overhead on the wireless network Which method satisfies these requirements?
An engineer has configured passive fallback mode for RADIUS with default timer settings. What will occur when the primary RADIUS fails then recovers?
Refer to the exhibit. An engineer implemented the CPU ACL on your Cisco 5520 Series Wireless LAN Controller, and the controller is no longer manageable via the network. What must be changes on this CPU ACL to enable it to manage the controller again?
Refer to the exhibit. A network architect configured the Cisco Catalyst 9800 Series Controller to find out information on client types in the wireless network. RADIUS profiling is enabled so that the controller forwards the information about clients to a Cisco ISE server through vendor-specific RADIUS attributes. The ISE server is not profiling any data from the controller. Which configuration must be added in the blank in the code to accomplish the profiling on the Cisco 9800 Series controller?
An engineer is troubleshooting a Cisco CMX high-availability deployment and notices that the primary and backup Cisco CMX servers are both considered primary. Which command must the engineer run on the backup server?
A network engineer needs to configure multicast in the network. The implementation will use multiple multicast groups and PIM routers. Which address provides automatic discovery of the best RP for each multicast group?