Ask Question
Cisco 350-401 Practice Test - Questions Answers, Page 20
List of questions
Question 191
Refer the exhibit.
Which router is the designated router on the segment 192.168.0.0/24?
This segment has no designated router because it is a nonbroadcast network type.
This segment has no designated router because it is a p2p network type.
Router Chicago because it has a lower router ID
Router NewYork because it has a higher router ID
Question 192
The login method is configured on the VTY lines of a router with these parameters.
The first method for authentication is TACACS
If TACACS is unavailable, login is allowed without any provided credentials Which configuration accomplishes this task?
R1#sh run | include aaa
aaa new-model
aaa authentication login VTY group tacacs+ none
aaa session-id common
R1#sh run | section vty
line vty 0 4
password 7 0202039485748
R1#sh run | include username
R1#
R1#sh run | include aaa
aaa new-model
aaa authentication login telnet group tacacs+ none
aaa session-id common
R1#sh run | section vty
line vty 0 4
R1#sh run | include username
R1#
R1#sh run | include aaa
aaa new-model
aaa authentication login default group tacacs+ none
aaa session-id common
R1#sh run | section vty
line vty 0 4
password 7 0202039485748
R1#sh run | include aaa
aaa new-model
aaa authentication login default group tacacs+
aaa session-id common
R1#sh run | section vty
line vty 0 4
transport input none
R1#
According to the requirements (first use TACACS+, then allow login with no authentication), we have to use "aaa authentication login … group tacacs+ none" for AAA command.
The next thing to check is the if the "aaa authentication login default" or "aaa authentication login list-name" is used. The 'default' keyword means we want to apply for all login connections (such as tty, vty, console and aux). If we use this keyword, we don't need to configure anything else under tty, vty and aux lines. If we don't use this keyword then we have to specify which line(s) we want to apply the authentication feature.
From above information, we can find out answer 'R1#sh run | include aaa aaa new-model aaa authentication login default group tacacs+ none aaa session-id common R1#sh run | section vty line vty 0 4 password 7 0202039485748 If you want to learn more about AAA configuration, please read our AAA TACACS+ and RADIUS Tutorial – Part 2.
For your information, answer 'R1#sh run | include aaa aaa new-model aaa authentication login telnet group tacacs+ none aaa session-id common R1#sh run | section vty line vty 0 4 R1#sh run | include username R1#' would be correct if we add the following command under vty line ("line vty 0 4"): "login authentication telnet" ("telnet" is the name of the AAA list above)
Question 193
Which technology is used as the basis for the cisco sd-access data plane?
IPsec
LISP
VXLAN
802.1Q
A virtual network identifier (VNI) is a value that identifies a specific virtual network in the data plane.
Question 194
What is YANG used for?
scraping data via CLI
processing SNMP read-only polls
describing data models
providing a transport for network configuration data between client and server
Question 195
Which method does Cisco DNA Center use to allow management of non-Cisco devices through southbound protocols?
It creates device packs through the use of an SDK
It uses an API call to interrogate the devices and register the returned data.
It obtains MIBs from each vendor that details the APIs available.
It imports available APIs for the non-Cisco device in a CSV format.
Cisco DNA Center allows customers to manage their non-Cisco devices through the use of a Software Development Kit (SDK) that can be used to create Device Packages for third-party devices.
Reference: https://developer.cisco.com/docs/dna-center/#!cisco-dna-center-platformoverview/multivendor-support-southbound
Question 196
A network is being migrated from IPV4 to IPV6 using a dual-stack approach. Network management is already 100% IPV6 enabled. In a dual-stack network with two dual-stack NetFlow collections, how many flow exporters are needed per network device in the flexible NetFlow configuration?
1
2
4
8
Question 197
What are two considerations when using SSO as a network redundancy feature? (Choose two)
both supervisors must be configured separately
the multicast state is preserved during switchover
must be combined with NSF to support uninterrupted Layer 2 operations
must be combined with NSF to support uninterrupted Layer 3 operations
requires synchronization between supervisors in order to guarantee continuous connectivity
Cisco IOS Nonstop Forwarding(NSF) always runs with stateful switchover (SSO) and provides redundancy for Layer 3 traffic.
Reference:
https://www.cisco.com/en/US/docs/switches/lan/catalyst3850/software/release/3se/consolidated_guide/b_consolidated_3850_3se_cg_chapter_01101110.pdf
Question 198
Refer to the exhibit. Which command is required to verify NETCONF capability reply messages?
show netconf | section rpc-reply
show netconf rpc-reply
show netconf xml rpc-reply
show netconf schema | section rpc-reply
Question 199
A network engineer must configure a router to send logging messages to a syslog server based on these requirements: uses syslog IP address: 10.10.10.1 uses a reliable protocol must not use any well-known TCP/UDP ports Which configuration must be used?
logging host 10.10.10.1 transport tcp port 1024
logging origin-id 10.10.10.1
logging host 10.10.10.1 transport udp port 1023
logging host 10.10.10.1 transport udp port 1024
Question 200
Refer to the exhibit. A network engineer must configure NETCONF. After creating the configuration, the engineer gets output from the command show line, but not from show running-config. Which command completes the configuration?
Option A
Option B
Option C
Option D
Related questions
Export
If you didn't receive an email within 5 minutes, you should submit a support request to [email protected].
|
BASIC - 1 Month
$
10
Full latest questions
No CAPTCHA
New Updates
Export to VPLUS
Export to PDF - All questions
Team support
|
PLUS - 2 Months
$
15
Full latest questions
No CAPTCHA
New Updates
Export to VPLUS
Export to PDF - All questions
Team support
|
PRO - 6 Months
$
40
Full latest questions
No CAPTCHA
New Updates
Export to VPLUS
Export to PDF - All questions
Team support
|
Full latest questions
No CAPTCHA
New Updates
Export to VPLUS
Export to PDF - All questions
Team support
Full latest questions
No CAPTCHA
New Updates
Export to VPLUS
Export to PDF - All questions
Team support
Full latest questions
No CAPTCHA
New Updates
Export to VPLUS
Export to PDF - All questions
Team support
Selling illegal goods, money scams etc.
Serious attack on a group.
Harassing an individual (including doxing)
Threatening or glorifying violence or serious harm, including self-harm
Nudity/Sexual content
Sexually explicit or suggestive imagery or writing involving minors
Sexually explicit or suggestive imagery or writing involving non-consenting adults or non-humans
Reusing content without attribution (link and blockquotes)
Not in English or has very bad formatting, grammar, and spelling
Author's credential is offensive, spam, or impersonation
Ex. Illegal content, incomplete question...
Question