Home / Cisco / 350-401

Cisco 350-401 Practice Test - Questions Answers, Page 65

Question list

List of questions

Question 641

(0)

Which DNS lookup does an AP perform when attempting CAPWAP discovery?

Question 642

(0)

Refer to the exhibit. Why does OSPF fail to establish an adjacency between R1 and R2?

Question 643

(0)

Which two features are available only in next-generation firewalls? (Choose two.)

Question 644

(0)

What is a benefit of using segmentation with TrustSec?

Question 645

(0)

Refer to the exhibit. Which configuration enables fallback to local authentication and authorization when no TACACS+ server is available?

Question 646

(0)

A customer has a pair of Cisco 5520 WLCs set up in an SSO cluster to manage all APs. Guest traffic is anchored to a Cisco 3504 WLC located in a DMZ. Which action is needed to ensure that the EolP tu

Question 647

(0)

Refer to the exhibit. Extended access-list 100 is configured on interface GigabitEthernet 0/0 in an inbound direction, but it does not have the expected behavior of allowing only packets to or fr

Question 648

(0)

Refer to the exhibit. What is achieved by this Python script?

Question 649

(0)

Which technology enables a redundant supervisor engine to take over when the primary supervisor engine fails?

Question 650

(0)

Which action limits the total amount of memory and CPU that is used by a collection of VMs?

Related questions

What are two differences between the RIB and the FIB? (Choose two.)

Which option works with a DHCP server to return at least one WLAN management interface IP address during the discovery phase and is dependent upon the VCI of the AP?

An engineer must update the local web authentication details on a Cisco 5520 WLC. The engineer has one active SSID configured for web authentication and plans to update the virtual interface with a nonroutable IP address. Which command must the engineer apply?

An engineer is troubleshooting the Ap join process using DNS. Which FQDN must be resolvable on the network for the access points to successfully register to the WLC?

Which port is required to allow APs to join a WLC when directed broadcasts are used on a Cisco iOS switch?

Refer to the exhibit. An engineer must allow R1 to advertise the 192 168.1 0/24 network to R2 R1 must perform this action without sending OSPF packets to SW1 Which command set should be applied?

Refer to the Exhibit. Refer to the exhibit. Which action must be performed to allow RESTCONF access to the device?

An engineer must configure a multicast UDP jitter operation. Which configuration should be applied? A) B) C) D)

Reter to the exhibit. Refer to the exhibit. A network engineer must be notified when a user switches to configuration mode. Which script should be applied to receive an SNMP trap and a critical-level log message?

A company has an existing Cisco 5520 HA cluster using SSO. An engineer deploys a new single Cisco Catalyst 9800 WLC to test new features. The engineer successfully configures a mobility tunnel between the 5520 cluster and 9800 WLC. Client connected to the corporate WLAN roam seamlessly between access points on the 5520 and 9800 WLC. After a failure on the primary 5520 WLC, all WLAN services remain functional; however, Client roam between the 5520 and 9800 controllers without dropping their connection. Which feature must be configured to remedy the issue?

Question 641

Which DNS lookup does an AP perform when attempting CAPWAP discovery?

CAPWAP-CONTROLLER.Iocal

CISCO-CAPWAP-CONTROLLER.Iocal

CISCO-DNA-CONTROLLER.Iocal

CISCO-CONTROLLER.Iocal

Show Answer Comment (0)

Question 642

Refer to the exhibit.

Why does OSPF fail to establish an adjacency between R1 and R2?

authentication mismatch

interface MTU mismatch

area mismatch

timers mismatch

Show Answer Comment (0)

Question 643

Which two features are available only in next-generation firewalls? (Choose two.)

virtual private network

deep packet inspection

stateful inspection

application awareness

packet filtering

Show Answer Comment (0)

Question 644

What is a benefit of using segmentation with TrustSec?

Packets sent between endpoints on a LAN are encrypted using symmetric key cryptography.

Firewall rules are streamlined by using business-level profiles.

Integrity checks prevent data from being modified in transit.

Security group tags enable network segmentation.

Show Answer Comment (0)

Question 645

Refer to the exhibit.

Which configuration enables fallback to local authentication and authorization when no TACACS+ server is available?

Router(config)# aaa authentication login default local Router(config)# aaa authorization exec default local

Router(config)# aaa authentication login default group tacacs+ local Router(config)# aaa authorization exec default group tacacs+ local

Router(config)# aaa fallback local

Router(config)# aaa authentication login FALLBACK local Router(config)# aaa authorization exec FALLBACK local

Show Answer Comment (0)

A customer has a pair of Cisco 5520 WLCs set up in an SSO cluster to manage all APs. Guest traffic is anchored to a Cisco 3504 WLC located in a DMZ. Which action is needed to ensure that the EolP tunnel remains in an UP state in the event of failover on the SSO cluster?

Configure back-to-back connectivity on the RP ports.

Enable default gateway reachability check.

Use the same mobility domain on all WLCs.

Use the mobility MAC when the mobility peer is configured.

Show Answer Comment (0)

Question 647

Refer to the exhibit.

Extended access-list 100 is configured on interface GigabitEthernet 0/0 in an inbound direction, but it does not have the expected behavior of allowing only packets to or from 192.168.0.0/16. Which command set properly configures the access list?

R1(config)#no access-list 100 seq 10

R1(config)#access-list 100 seq 40 deny ip any any