ExamGecko
Search Search Login
Home Home / Cisco / 350-401

Cisco 350-401 Practice Test - Questions Answers, Page 21

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which option works with a DHCP server to return at least one WLAN management interface IP address during the discovery phase and is dependent upon the VCI of the AP?
What are two differences between the RIB and the FIB? (Choose two.)
An engineer must update the local web authentication details on a Cisco 5520 WLC. The engineer has one active SSID configured for web authentication and plans to update the virtual interface with a nonroutable IP address. Which command must the engineer apply?
An engineer is troubleshooting the Ap join process using DNS. Which FQDN must be resolvable on the network for the access points to successfully register to the WLC?
Which port is required to allow APs to join a WLC when directed broadcasts are used on a Cisco iOS switch?
An engineer must configure a multicast UDP jitter operation. Which configuration should be applied? A) B) C) D)
Reter to the exhibit. Refer to the exhibit. A network engineer must be notified when a user switches to configuration mode. Which script should be applied to receive an SNMP trap and a critical-level log message?
Refer to the exhibit. An engineer must allow R1 to advertise the 192 168.1 0/24 network to R2 R1 must perform this action without sending OSPF packets to SW1 Which command set should be applied?
Refer to the Exhibit. Refer to the exhibit. Which action must be performed to allow RESTCONF access to the device?
A company has an existing Cisco 5520 HA cluster using SSO. An engineer deploys a new single Cisco Catalyst 9800 WLC to test new features. The engineer successfully configures a mobility tunnel between the 5520 cluster and 9800 WLC. Client connected to the corporate WLAN roam seamlessly between access points on the 5520 and 9800 WLC. After a failure on the primary 5520 WLC, all WLAN services remain functional; however, Client roam between the 5520 and 9800 controllers without dropping their connection. Which feature must be configured to remedy the issue?

Question 201

Report
Export
Collapse

An engineer is configuring a new SSID to present users with a splash page for authentication. Which WLAN Layer 3 setting must be configured to provide this functionally?

A.

CCKM

A.

CCKM

Answers
B.

WPA2 Policy

B.

WPA2 Policy

Answers
C.

Local Policy

C.

Local Policy

Answers
D.

Web Policy

D.

Web Policy

Answers
Suggested answer: D

Question 202

Report
Export
Collapse

An engineer must create an EEM script to enable OSPF debugging in the event the OSPF neighborship goes down. Which script must the engineer apply?

A.

Option A

A.

Option A

Answers
B.

Option B

B.

Option B

Answers
C.

Option C

C.

Option C

Answers
D.

Option D

D.

Option D

Answers
Suggested answer: C

Question 203

Report
Export
Collapse


Refer to the exhibit. Router BRDR-1 is configured to receive the 0.0.0.0/0 and 172.17.1.0/24 network via BGP and advertise them into OSPF are 0. An engineer has noticed that the OSPF domain is receiving only the 172.17.1.0/24 route and default route 0.0.0.0/0 is still missing. Which configurating must engineer apply to resolve the problem?

A.

Option A

A.

Option A

Answers
B.

Option B

B.

Option B

Answers
C.

Option C

C.

Option C

Answers
D.

Option D

D.

Option D

Answers
Suggested answer: D

Question 204

Report
Export
Collapse

AN engineer is implementing a route map to support redistribution within BGP. The route map must configured to permit all unmatched routes. Which action must the engineer perform to complete this task?

A.

Include a permit statement as the first entry

A.

Include a permit statement as the first entry

Answers
B.

Include at least one explicit deny statement

B.

Include at least one explicit deny statement

Answers
C.

Remove the implicit deny entry

C.

Remove the implicit deny entry

Answers
D.

Include a permit statement as the last entry

D.

Include a permit statement as the last entry

Answers
Suggested answer: D

Question 205

Report
Export
Collapse

Refer to the exhibit. A network operator is attempting to configure an IS-IS adjacency between two routers, but the adjacency cannot be established. To troubleshoot the problem, the operator collects this debugging output. Which interfaces are misconfigured on these routers?

A.

The peer router interface is configured as Level 1 only, and the R2 interface is configured as Level 2 only

A.

The peer router interface is configured as Level 1 only, and the R2 interface is configured as Level 2 only

Answers
B.

The R2 interface is configured as Level 1 only, and the Peer router interface is configured as Level 2 only

B.

The R2 interface is configured as Level 1 only, and the Peer router interface is configured as Level 2 only

Answers
C.

The R2 interface is configured as point-to-point, and the peer router interface is configured as multipoint.

C.

The R2 interface is configured as point-to-point, and the peer router interface is configured as multipoint.

Answers
D.

The peer router interface is configured as point-as-point, and the R2 interface is configured as multipoint.

D.

The peer router interface is configured as point-as-point, and the R2 interface is configured as multipoint.

Answers
Suggested answer: C

Question 206

Report
Export
Collapse

AN engineer is implementing MPLS OAM to monitor traffic within the MPLS domain. Which action must the engineer perform to prevent from being forwarded beyond the service provider domain when the LSP is down?

A.

Disable IP redirects only on outbound interfaces

A.

Disable IP redirects only on outbound interfaces

Answers
B.

Implement the destination address for the LSP echo request packet in the 127.x.y.z/8 network

B.

Implement the destination address for the LSP echo request packet in the 127.x.y.z/8 network

Answers
C.

Disable IP redirects on all ingress interfaces

C.

Disable IP redirects on all ingress interfaces

Answers
D.

Configure a private IP address as the destination address of the headend router of Cisco MPLS TE.

D.

Configure a private IP address as the destination address of the headend router of Cisco MPLS TE.

Answers
Suggested answer: C

Question 207

Report
Export
Collapse

An engineer is implementing a Cisco MPLS TE tunnel to improve the streaming experience for the clients of a video-on-demand server. Which action must the engineer perform to configure extended discovery to support the MPLS LDP session between the headend and tailend routers?

A.

Configure the interface bandwidth to handle TCP and UDP traffic between the LDP peers

A.

Configure the interface bandwidth to handle TCP and UDP traffic between the LDP peers

Answers
B.

Configure a Cisco MPLS TE tunnel on both ends of the session

B.

Configure a Cisco MPLS TE tunnel on both ends of the session

Answers
C.

Configure an access list on the interface to permit TCP and UDP traffic

C.

Configure an access list on the interface to permit TCP and UDP traffic

Answers
D.

Configure a targeted neighbor session.

D.

Configure a targeted neighbor session.

Answers
Suggested answer: B

Question 208

Report
Export
Collapse

What occurs when a high bandwidth multicast stream is sent over an MVPN using Cisco hardware?

A.

The traffic uses the default MDT to transmit the data only if it isa (S,G) multicast route entry

A.

The traffic uses the default MDT to transmit the data only if it isa (S,G) multicast route entry

Answers
B.

A data MDT is created to if it is a (*, G) multicast route entries

B.

A data MDT is created to if it is a (*, G) multicast route entries

Answers
C.

A data and default MDT are created to flood the multicast stream out of all PIM-SM neighbors.

C.

A data and default MDT are created to flood the multicast stream out of all PIM-SM neighbors.

Answers
D.

A data MDT is created to allow for the best transmission through the core for (S, G) multicast route entries.

D.

A data MDT is created to allow for the best transmission through the core for (S, G) multicast route entries.

Answers
Suggested answer: D

Question 209

Report
Export
Collapse

Which protocol is used to encrypt control plane traffic between SD-WAN controllers and SD-WAN endpoints?

A.

DTLS

A.

DTLS

Answers
B.

IPsec

B.

IPsec

Answers
C.

PGP

C.

PGP

Answers
D.

HTTPS

D.

HTTPS

Answers
Suggested answer: A

Explanation:

DTLS protocol is used to encrypt control plane traffic between vSmart (controllers) and other SDWAN endpoints.

Question 210

Report
Export
Collapse

An engineer must configure the strongest password authentication to locally authenticate on a router. Which configuration must be used?

A.

Option A

A.

Option A

Answers
B.

Option B

B.

Option B

Answers
C.

Option C

C.

Option C

Answers
D.

Option D

D.

Option D

Answers
Suggested answer: D

Explanation:

Scrypt is safer than MD5, so answer A is wrong and answer D is correct R1(config)#username user secret ?

0 Specifies an UNENCRYPTED secret will follow

5 Specifies a MD5 HASHED secret will follow

8 Specifies a PBKDF2 HASHED secret will follow

9 Specifies a SCRYPT HASHED secret will follow

<0-9> Encryption types not explicitly specified

LINE The UNENCRYPTED (cleartext) user secret

LINE The UNENCRYPTED (cleartext) user secret

+ The enable password command should no longer be used. Use enable secret instead. username joeblow password mypass command should no longer be used. Use username joeblow secret mypass instead.

+ Type 4 Passwords should never be used!

+ Use Type 6, Type 8 and Type 9 wherever possible.

+ Type 0, Type 5 and Type 7 should be migrated to other stronger methods.

Reference: https://community.cisco.com/t5/networking-documents/understanding-the-differencesbetween-the-cisco-password-secret/ta-p/3163238

Total 983 questions
Go to page: of 99
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms