Ask Question
Cisco 350-401 Practice Test - Questions Answers, Page 21
List of questions
Question 201
An engineer is configuring a new SSID to present users with a splash page for authentication. Which WLAN Layer 3 setting must be configured to provide this functionally?
CCKM
WPA2 Policy
Local Policy
Web Policy
Question 202
An engineer must create an EEM script to enable OSPF debugging in the event the OSPF neighborship goes down. Which script must the engineer apply?
Option A
Option B
Option C
Option D
Question 203
Refer to the exhibit. Router BRDR-1 is configured to receive the 0.0.0.0/0 and 172.17.1.0/24 network via BGP and advertise them into OSPF are 0. An engineer has noticed that the OSPF domain is receiving only the 172.17.1.0/24 route and default route 0.0.0.0/0 is still missing. Which configurating must engineer apply to resolve the problem?
Option A
Option B
Option C
Option D
Question 204
AN engineer is implementing a route map to support redistribution within BGP. The route map must configured to permit all unmatched routes. Which action must the engineer perform to complete this task?
Include a permit statement as the first entry
Include at least one explicit deny statement
Remove the implicit deny entry
Include a permit statement as the last entry
Question 205
Refer to the exhibit. A network operator is attempting to configure an IS-IS adjacency between two routers, but the adjacency cannot be established. To troubleshoot the problem, the operator collects this debugging output. Which interfaces are misconfigured on these routers?
The peer router interface is configured as Level 1 only, and the R2 interface is configured as Level 2 only
The R2 interface is configured as Level 1 only, and the Peer router interface is configured as Level 2 only
The R2 interface is configured as point-to-point, and the peer router interface is configured as multipoint.
The peer router interface is configured as point-as-point, and the R2 interface is configured as multipoint.
Question 206
AN engineer is implementing MPLS OAM to monitor traffic within the MPLS domain. Which action must the engineer perform to prevent from being forwarded beyond the service provider domain when the LSP is down?
Disable IP redirects only on outbound interfaces
Implement the destination address for the LSP echo request packet in the 127.x.y.z/8 network
Disable IP redirects on all ingress interfaces
Configure a private IP address as the destination address of the headend router of Cisco MPLS TE.
Question 207
An engineer is implementing a Cisco MPLS TE tunnel to improve the streaming experience for the clients of a video-on-demand server. Which action must the engineer perform to configure extended discovery to support the MPLS LDP session between the headend and tailend routers?
Configure the interface bandwidth to handle TCP and UDP traffic between the LDP peers
Configure a Cisco MPLS TE tunnel on both ends of the session
Configure an access list on the interface to permit TCP and UDP traffic
Configure a targeted neighbor session.
Question 208
What occurs when a high bandwidth multicast stream is sent over an MVPN using Cisco hardware?
The traffic uses the default MDT to transmit the data only if it isa (S,G) multicast route entry
A data MDT is created to if it is a (*, G) multicast route entries
A data and default MDT are created to flood the multicast stream out of all PIM-SM neighbors.
A data MDT is created to allow for the best transmission through the core for (S, G) multicast route entries.
Question 209
Which protocol is used to encrypt control plane traffic between SD-WAN controllers and SD-WAN endpoints?
DTLS
IPsec
PGP
HTTPS
DTLS protocol is used to encrypt control plane traffic between vSmart (controllers) and other SDWAN endpoints.
Question 210
An engineer must configure the strongest password authentication to locally authenticate on a router. Which configuration must be used?
Option A
Option B
Option C
Option D
Scrypt is safer than MD5, so answer A is wrong and answer D is correct R1(config)#username user secret ?
0 Specifies an UNENCRYPTED secret will follow
5 Specifies a MD5 HASHED secret will follow
8 Specifies a PBKDF2 HASHED secret will follow
9 Specifies a SCRYPT HASHED secret will follow
<0-9> Encryption types not explicitly specified
LINE The UNENCRYPTED (cleartext) user secret
LINE The UNENCRYPTED (cleartext) user secret
+ The enable password command should no longer be used. Use enable secret instead. username joeblow password mypass command should no longer be used. Use username joeblow secret mypass instead.
+ Type 4 Passwords should never be used!
+ Use Type 6, Type 8 and Type 9 wherever possible.
+ Type 0, Type 5 and Type 7 should be migrated to other stronger methods.
Reference: https://community.cisco.com/t5/networking-documents/understanding-the-differencesbetween-the-cisco-password-secret/ta-p/3163238
Related questions
Export
If you didn't receive an email within 5 minutes, you should submit a support request to [email protected].
|
BASIC - 1 Month
$
10
Full latest questions
No CAPTCHA
New Updates
Export to VPLUS
Export to PDF - All questions
Team support
|
PLUS - 2 Months
$
15
Full latest questions
No CAPTCHA
New Updates
Export to VPLUS
Export to PDF - All questions
Team support
|
PRO - 6 Months
$
40
Full latest questions
No CAPTCHA
New Updates
Export to VPLUS
Export to PDF - All questions
Team support
|
Full latest questions
No CAPTCHA
New Updates
Export to VPLUS
Export to PDF - All questions
Team support
Full latest questions
No CAPTCHA
New Updates
Export to VPLUS
Export to PDF - All questions
Team support
Full latest questions
No CAPTCHA
New Updates
Export to VPLUS
Export to PDF - All questions
Team support
Selling illegal goods, money scams etc.
Serious attack on a group.
Harassing an individual (including doxing)
Threatening or glorifying violence or serious harm, including self-harm
Nudity/Sexual content
Sexually explicit or suggestive imagery or writing involving minors
Sexually explicit or suggestive imagery or writing involving non-consenting adults or non-humans
Reusing content without attribution (link and blockquotes)
Not in English or has very bad formatting, grammar, and spelling
Author's credential is offensive, spam, or impersonation
Ex. Illegal content, incomplete question...
Question