Introducing The New!
Surepassexam Collection
Get Unlimited Access to all
Surepassexam's PREMIUM files
P.S. 100% Correct 200-125 testing material are available on Google Drive, GET MORE: https://www.slideshare.net/reinigerodp/certleader-200-125examquestionsmaterials
Question No: 3
What parameter can be different on ports within an EtherChannel?
A. speed
B. DTP negotiation settings
C. trunk encapsulation
D. duplex
Answer: B
Explanation:
For an etherchannel to come up, the speed, duplex and the trunk encapsulation must be the same on each end.
Question No: 4
CORRECT TEXTA corporation wants to add security to its network. The requirements are:
u2711 Host B should be able to use a web browser (HTTP) to access the Finance Web Server.
u2711 Other types of access from host B to the Finance Web Server should be blocked.
u2711 All access from hosts in the Core or local LAN to the Finance Web Server should be blocked.
u2711 All hosts in the Core and on local LAN should be able to access the Public Web Server.
You have been tasked to create and apply anumbered access listto a single outbound interface. This access list can contain no more thanthreestatements that meet these requirements.
Access to the router CLI can be gained by clicking on the appropriate host.
u2711 All passwords have been temporarily set to u201cciscou201d.
u2711 The Core connection uses an IP address of 198.18.132.65.
u2711 The computers in the Hosts LAN have been assigned addresses of 192.168.201.1
u2013 192.168.201.254.
u2711 host A 192.168.201.1
u2711 host B 192.168.201.2
u2711 host C 192.168.201.3
u2711 host D 192.168.201.4
u2711 The Finance Web Server has been assigned an address of 172.22.237.17.
u2711 The Public Web Server in the Server LAN has been assigned an address of 172.22.237.18.
Answer:
Please check the below explanation for all details.
Explanation:
We should create an access-list and apply it to the interface that is connected to the Server LAN because it can filter out traffic from both S2 and Core networks. To see which interface this is, use the u201cshow ip interface briefu201d command:
From this, we know that the servers are located on the fa0/1 interface, so we will place our numbered access list here in the outbound direction.
Corp1#configure terminal
Our access-list needs to allow host B u2013 192.168125.2 to the Finance Web Server 172.22.109.17 via HTTP (port 80), so our first line is this:
Corp1(config)#access-list 100 permit tcp host 192.168.125.2 host 172.22.109.17 eq 80
Then, our next two instructions are these:
u2711 Other types of access from host B to the Finance Web Server should be blocked.
u2711 All access from hosts in the Core or local LAN to the Finance Web Server should be blocked.
This can be accomplished with one command (which we need to do as our ACL needs to
be no more than 3 lines long), blocking all other access to the finance web server:
Corp1(config)#access-list 100 deny ip any host 172.22.109.17
Our last instruction is to allow all hosts in the Core and on the local LAN access to the Public Web Server (172.22.109.18)
Corp1(config)#access-list 100 permit ip host 172.22.109.18 any Finally, apply this access-list to Fa0/1 interface (outbound direction) Corp1(config)#interface fa0/1
Corp1(config-if)#ip access-group 100 out
Notice: We have to apply the access-list to Fa0/1 interface (not Fa0/0 interface) so that the access-list can filter traffic coming from both the LAN and the Core networks.
To verify, just click on host B to open its web browser. In the address box type http://172.22.109.17 to check if you are allowed to access Finance Web Server or not. If your configuration is correct then you can access it.
Click on other hosts (A, C and D) and check to make sure you canu2021t access Finance Web Server from these hosts. Then, repeat to make sure they can reach the public server at 172.22.109.18. Finally, save the configuration
Corp1(config-if)#end
Corp1#copy running-config startup-config
Question No: 5
Which two of these statements regarding RSTP are correct? (Choose two.)
A. RSTP cannot operate with PVST+.
B. RSTP defines new port roles.
C. RSTP defines no new port states.
D. RSTP is a proprietary implementation of IEEE 802.1D STP.
E. RSTP is compatible with the original IEEE 802.1D STP.
Answer: B,E
Explanation:
When network topology changes, rapid spanning tree protocol (IEEE802.1W, referred to as RSTP) will speed up significantly the speed to re-calculate spanning tree. RSTP not only defines the role of other ports: alternative port and backup port, but also defines status of 3 ports: discarding status, learning status, forwarding status.
RSTP is 802.1D standard evolution, not revolution. It retains most of the parameters, and makes no changes.
Question No: 6
Refer to Exhibit:
How many broadcast domains are shown in the graphic assuming only the default VLAN is configured on the switches?
A. one
B. two
C. six
D. twelve
Answer: A
Explanation:
Only router can break up broadcast domains but in this exhibit no router is used so there is only 1 broadcast domain.
For your information, there are 7 collision domains in this exhibit (6 collision domains between hubs & switches + 1 collision between the two switches).
Question No: 7
Assuming the default switch configuration, which VLAN range can be added, modified, and removed on a Cisco switch?
A. 1 through 1001
B. 2 through 1001
C. 1 through 1002
D. 2 through 1005
Answer: B
Explanation: Explanation
VLAN 1 is the default VLAN on Cisco switch. It always exists and cannot be added, modified or removed.
VLANs 1002-1005 are default VLANs for FDDI & Token Ring and they canu2021t be deleted or used for Ethernet.
Question No: 8
Refer to the exhibit.
All of the routers in the network are configured with the ip subnet-zero command. Which network addresses should be used for Link A and Network A? (Choose two.)
A. Network A - 172.16.3.48/26
B. Network A - 172.16.3.128/25
C. Network A - 172.16.3.192/26
D. Link A - 172.16.3.0/30
E. Link A - 172.16.3.40/30
F. Link A - 172.16.3.112/30
Answer: B,D
Explanation:
Only a /30 is needed for the point to point link and sine the use of the ip subnet-zero was used, 172.16.3.0/30 is valid. Also, a /25 is required for 120 hosts and again
172.16.3.128/25 is the best, valid option.
Question No: 9
Which command enables RSTP on a switch?
A. spanning-tree uplinkfast
B. spanning-tree mode rapid-pvst
C. spanning-tree backbonefast
D. spanning-tree mode mst
Answer: B
Explanation:
Rapid Spanning Tree Protocol (RSTP) is an enhancement of the original STP 802.1D protocol. The RSTP 802.1w protocol is an IEEE open implementation. Cisco has its own proprietary implementation of RSTP, that includes the benefits of its Per-VLAN spanning tree protocols, called Rapid-PVST+.
To activate the Rapid-PVST+ protocol: switch(config)#spanning-tree mode rapid-pvst
Question No: 10
Which three elements must be used when you configure a router interface for VLAN trunking? (Choose three.)
A. one physical interface for each subinterface
B. one IP network or subnetwork for each subinterface
C. a management domain for each subinterface
D. subinterface encapsulation identifiers that match VLAN tags
E. one subinterface per VLAN
F. subinterface numbering that matches VLAN tags
Answer: B,D,E
Explanation:
This scenario is commonly called a router on a stick. A short, well written article on this operation can be found here: http://www.thebryantadvantage.com/RouterOnAStickCCNACertificationExamTutorial.htm
Question No: 11
Refer to the exhibit.
Switch port FastEthernet 0/24 on ALSwitch1 will be used to create an IEEE 802.1Q- compliant trunk to another switch. Based on the output shown, what is the reason the trunk does not form, even though the proper cabling has been attached?
A. VLANs have not been created yet.
B. An IP address must be configured for the port.
C. The port is currently configured for access mode.
D. The correct encapsulation type has not been configured.
E. The u201cno shutdownu201d command has not been entered for the port.
Answer: C
Explanation:
According to the output shown the switchport (layer 2 Switching) is enabled and the port is in access mode. To make a trunk link the port should configured as a trunk port, not an access port, by using the following command: (Config-if)#switchport mode trunk.
Question No: 12
What is a global command?
A. a command that is set once and affects the entire router
B. a command that is implemented in all foreign and domestic IOS versions
C. a command that is universal in application and supports all protocols
D. a command that is available in every release of IOS, regardless of the version or deployment status
E. a command that can be entered in any configuration mode
Answer: A
Explanation:
When you enter global configuration mode and enter a command, it is applied to the running configuration file that is currently running in ram. The configuration of a global command affects the entire router. An example of a global command is one used for the hostname of the router.
Recommend!! Get the 100% Correct 200-125 dumps in VCE and PDF From Allfreedumps, Welcome to download: https://www.allfreedumps.com/200-125-dumps.html (New 890 Q&As Version)