ExamGecko
Search Search Login
Home Home / Cisco / 350-601
Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Refer to the exhibit. An engineer configures FCoE in a newly installed data center. Which configuration must be applied to activate VSAN 100 on VFC100?
Refer to the exhibit. A source is sending a multicast traffic stream to the receiver. How is the multicast traffic expected to flow through the network when it reaches a vPC peer?
Refer to the exhibit. An engineer must access a Cisco UCS C-Series server KVM from a remote location. The engineer must use the out-of-band interface to access the KYM. Which configuration set meets these requirements?
Refer to the exhibit. Refer to the exhibit. An engineer must monitor ingress traffic from SW1 and SW2 port-channel interfaces from SW3. Which configuration must be implemented to accomplish this goal? A) B) C) D)
DRAG DROP Refer to the exhibit. During a recent outage, a network engineer discovered that host A started to experience intermittent connectivity, when Leaf102 was down. Drag and drop the code snippets from the bottom onto the boxes in the code to resolve the problem. Not all code snippets are used.
Refer to the exhibit. Refer to the exhibit. What is the result of executing this python code?
What are two types of FC/FCoE oversubscription ratios? (Choose two.)
Refer to the exhibit. A network engineer must configure the physical domain and attach a VLAN pool to it. Which two commands accomplish this goal? (Choose two.)
Refer to the exhibit. A network engineer configures the VXLAN between the routers in a data center. The VLAN 10 must be extended between routers A and B. The initial VXLAN configuration is completed on RouterA. Which configuration finishes the VXLAN configuration on Router A? A. B. C. D.
DRAG DROP An engineer deploys a custom guest shell rootfs onto multiple switches. Drag and drop the steps from the left into the correct order on the right. Export the Guest Shell rootfs.

Question 359 - 350-601 discussion

Report
Export

An engineer must implement protection against ICMP DoS attacks on a Cisco Nexus 9000 Series Switch. The requirement is to rate-limit ICMP without denying all other ICMP traffic. The ICMP trafic currently passing through the Cisco Nexus 9000 device must not be affected. Which configuration accomplishes these goals?

A.

Configure SNMP traps to send the ICMP notification if the CPU utilization is more than 90%.

Answers
A.

Configure SNMP traps to send the ICMP notification if the CPU utilization is more than 90%.

B.

Reconfigure the Layer 3 interfaces to be in the non-default VRF and ICMP broadcast storm control

Answers
B.

Reconfigure the Layer 3 interfaces to be in the non-default VRF and ICMP broadcast storm control

C.

Create an access list to deny ICMP traffic and apply it to all interlaces in the inside direction.

Answers
C.

Create an access list to deny ICMP traffic and apply it to all interlaces in the inside direction.

D.

Apply a control plane service policy that matches all ICMP traffic to drop the traffic fiat exceeds the threshold.

Answers
D.

Apply a control plane service policy that matches all ICMP traffic to drop the traffic fiat exceeds the threshold.

Suggested answer: D

Explanation:

Applying a control plane service policy with a rate-limiting feature allows the engineer to match all ICMP traffic and set a threshold for it. Traffic that exceeds this threshold can be dropped, thus mitigating the risk of ICMP-based DoS attacks while allowing legitimate ICMP traffic to pass through.This method ensures that the current ICMP traffic is not affected as long as it does not exceed the configured rate limit12.

Show Answer
asked 10/10/2024
Neville Raposo
37 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms