ExamGecko
Search Search Login
Home Home / Cisco / 350-401

Cisco 350-401 Practice Test - Questions Answers, Page 29

Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

What are two differences between the RIB and the FIB? (Choose two.)
Which option works with a DHCP server to return at least one WLAN management interface IP address during the discovery phase and is dependent upon the VCI of the AP?
An engineer must update the local web authentication details on a Cisco 5520 WLC. The engineer has one active SSID configured for web authentication and plans to update the virtual interface with a nonroutable IP address. Which command must the engineer apply?
An engineer is troubleshooting the Ap join process using DNS. Which FQDN must be resolvable on the network for the access points to successfully register to the WLC?
Which port is required to allow APs to join a WLC when directed broadcasts are used on a Cisco iOS switch?
Refer to the exhibit. An engineer must allow R1 to advertise the 192 168.1 0/24 network to R2 R1 must perform this action without sending OSPF packets to SW1 Which command set should be applied?
Refer to the Exhibit. Refer to the exhibit. Which action must be performed to allow RESTCONF access to the device?
An engineer must configure a multicast UDP jitter operation. Which configuration should be applied? A) B) C) D)
Reter to the exhibit. Refer to the exhibit. A network engineer must be notified when a user switches to configuration mode. Which script should be applied to receive an SNMP trap and a critical-level log message?
A company has an existing Cisco 5520 HA cluster using SSO. An engineer deploys a new single Cisco Catalyst 9800 WLC to test new features. The engineer successfully configures a mobility tunnel between the 5520 cluster and 9800 WLC. Client connected to the corporate WLAN roam seamlessly between access points on the 5520 and 9800 WLC. After a failure on the primary 5520 WLC, all WLAN services remain functional; however, Client roam between the 5520 and 9800 controllers without dropping their connection. Which feature must be configured to remedy the issue?

Question 281

Report
Export
Collapse

Refer to the exhibit. Which configuration must be applied to R1 to enable R1 to reach the server at 172.16.0.1?

A.

Option A

A.

Option A

Answers
B.

Option B

B.

Option B

Answers
C.

Option C

C.

Option C

Answers
D.

Option D

D.

Option D

Answers
Suggested answer: D

Question 282

Report
Export
Collapse

An engineer must export the contents of the devices object in JSON format. Which statement must be used?

A.

json.repr(Devices)

A.

json.repr(Devices)

Answers
B.

json.dumps(Devices)

B.

json.dumps(Devices)

Answers
C.

json.prints(Devices)

C.

json.prints(Devices)

Answers
D.

json.loads(Devices)

D.

json.loads(Devices)

Answers
Suggested answer: B

Question 283

Report
Export
Collapse

Refer to the exhibit.

An engineer troubleshoots connectivity issues with an application. Testing is performed from the server gateway, and traffic with the DF bit set is dropped along the path after increasing packet size.

Removing the DF bit setting at the gateway prevents the packets from being dropped. What is the cause of this issue?

A.

PMTUD does not work due to ICMP Packet Too Big messages being dropped by an ACL

A.

PMTUD does not work due to ICMP Packet Too Big messages being dropped by an ACL

Answers
B.

The remote router drops the traffic due to high CPU load

B.

The remote router drops the traffic due to high CPU load

Answers
C.

The server should not set the DF bit in any type of traffic that is sent toward the network

C.

The server should not set the DF bit in any type of traffic that is sent toward the network

Answers
D.

There is a CoPP policy in place protecting the WAN router CPU from this type of traffic

D.

There is a CoPP policy in place protecting the WAN router CPU from this type of traffic

Answers
Suggested answer: C

Question 284

Report
Export
Collapse


Refer to the exhibit:

An engineer configures VRRP and issues the show commands to verify operation. What does the engineer confirm about VRRP group 1 from the output?

A.

There is no route to 10.10.1.1/32 in R2's routing table

A.

There is no route to 10.10.1.1/32 in R2's routing table

Answers
B.

If R1 reboots, R2 becomes the master virtual router until R2 reboots

B.

If R1 reboots, R2 becomes the master virtual router until R2 reboots

Answers
C.

Communication between VRRP members is encrypted using MD5

C.

Communication between VRRP members is encrypted using MD5

Answers
D.

R1 is master if 10.10.1.1/32 is in its routing table

D.

R1 is master if 10.10.1.1/32 is in its routing table

Answers
Suggested answer: D

Question 285

Report
Export
Collapse

Refer to the exhibit.

An engineer must add the SNMP interface table to the NetFlow protocol flow records. Where should the SNMP table option be added?

A.

under the interface

A.

under the interface

Answers
B.

under the flow record

B.

under the flow record

Answers
C.

under the flow monitor

C.

under the flow monitor

Answers
D.

under the flow exporter

D.

under the flow exporter

Answers
Suggested answer: D

Explanation:

option interface-table This command causes the periodic sending of an options table, which will allow the collector to map the interface SNMP indexes provided in the flow records to interface names. The optional timeout can alter the frequency at which the reports are sent.

Router(config)# flow exporter FLOW-EXPORTER-1

Router(config-flow-exporter)# option interface-table

https://www.cisco.com/c/en/us/td/docs/ios/fnetflow/command/reference/fnf_book/fnf_02.html

Question 286

Report
Export
Collapse

Which NGFW mode block flows crossing the firewall?

A.

Passive

A.

Passive

Answers
B.

Tap

B.

Tap

Answers
C.

Inline tap

C.

Inline tap

Answers
D.

Inline

D.

Inline

Answers
Suggested answer: D

Explanation:

Firepower Threat Defense (FTD) provides six interface modes which are: Routed, Switched, Inline Pair, Inline Pair with Tap, Passive, Passive (ERSPAN).

When Inline Pair Mode is in use, packets can be blocked since they are processed inline When you use Inline Pair mode, the packet goes mainly through the FTD Snort engine When Tap Mode is enabled, a copy of the packet is inspected and dropped internally while the actual traffic goes through FTD unmodified

Question 287

Report
Export
Collapse

Which deployment option of Cisco NGFW provides scalability?

A.

tap

A.

tap

Answers
B.

clustering

B.

clustering

Answers
C.

inline tap

C.

inline tap

Answers
D.

high availability

D.

high availability

Answers
Suggested answer: B

Explanation:

Clustering lets you group multiple Firepower Threat Defense (FTD) units together as a single logical device. Clustering is only supported for the FTD device on the Firepower 9300 and the Firepower 4100 series. A cluster provides all the convenience of a single device (management, integration into a network) while achieving the increased throughput and redundancy of multiple devices.}

Question 288

Report
Export
Collapse

Refer to the exhibit.

An engineer is designing a guest portal on Cisco ISE using the default configuration. During the testing phase, the engineer receives a warning when displaying the guest portal. Which issue is occurring?

A.

The server that is providing the portal has an expired certificate

A.

The server that is providing the portal has an expired certificate

Answers
B.

The server that is providing the portal has a self-signed certificate

B.

The server that is providing the portal has a self-signed certificate

Answers
C.

The connection is using an unsupported protocol

C.

The connection is using an unsupported protocol

Answers
D.

The connection is using an unsupported browser

D.

The connection is using an unsupported browser

Answers
Suggested answer: B

Question 289

Report
Export
Collapse

Refer to the exhibit.

How does the router handle traffic after the CoPP policy is configured on the router?

A.

Traffic coming to R1 that does not match access list SNMP is dropped.

A.

Traffic coming to R1 that does not match access list SNMP is dropped.

Answers
B.

Traffic coming to R1 that matches access list SNMP is policed.

B.

Traffic coming to R1 that matches access list SNMP is policed.

Answers
C.

Traffic passing through R1 that matches access list SNMP is policed.

C.

Traffic passing through R1 that matches access list SNMP is policed.

Answers
D.

Traffic generated by R1 that matches access list SNMP is policed.

D.

Traffic generated by R1 that matches access list SNMP is policed.

Answers
Suggested answer: C

Question 290

Report
Export
Collapse

Refer to the exhibit.

Which command set changes the neighbor state from Idle (Admin) to Active?

A.


A.


Answers
B.


B.


Answers
C.


C.


Answers
D.


D.


Answers
Suggested answer: C
Total 983 questions
Go to page: of 99
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms