Introducing The New!
Surepassexam Collection
Get Unlimited Access to all
Surepassexam's PREMIUM files
Q1. Refer to the exhibit.
Which two route types are advertised by a router with this configuration? (Choose two.)
A. connected
B. external
C. summary
D. static
E. redistributed
Answer: A,C
Q2. Which three roles does a key server perform when used with GETVPN? (Choose three.)
A. It authenticates group members.
B. It manages security policies.
C. It creates group keys.
D. It distributes multicast replication policies.
E. It distributes multicast replication keys.
F. It configures and routes the GDOI protocol.
Answer: A,B,C
Explanation:
Key server is responsible for maintaining security policies, authenticating the Group Members and providing the session key for encrypting traffic. KS authenticates the individual GMs at the time of registration. Only after successful registration the GMs can participate in group SA.
Reference: http://www.cisco.com/c/en/us/products/collateral/security/group-encrypted-transport-vpn/deployment_guide_c07_554713.html
Q3. Which mechanism can be used on Layer 2 switches so that only multicast packets with downstream receivers are sent on the multicast router-connected ports?
A. IGMP snooping
B. Router Guard
C. PIM snooping
D. multicast filtering
Answer: C
Explanation:
Ideally, the Layer 2 device should forward the multicast transmission only out ports to which receivers are connected and also out any ports that are connected to downstream multicast routers. This configuration requires a Layer 2 device to be able to determine the ports on which multicast routers and receivers for each separate (S,G) or (*,G) multicast group are located. To facilitate intelligent forwarding of multicast traffic on the LAN, Cisco Catalyst switches support two mechanisms:
. IGMP snooping — The switch listens in or "snoops" IGMP communications between receivers and multicast routers. This snooping enables the switch to determine which ports are connected to receivers for each multicast group and which ports are connected to multicast routers.
. Cisco Group Management Protocol (CGMP) — The switch communicates with multicasts routers, with multicast routers relaying group membership information to switches.
Reference: https://www.informit.com/library/content.aspx?b=CCNP_Studies_Switching&seqNum=59
Q4. Which two statements about the MAC address table space are true? (Choose two.)
A. You can disable learning on a VLAN to reduce table-space requirements.
B. When you disable learning on a VLAN with an SVI, IP packet flooding in the Layer 2 domain is also disabled.
C. Unicast, multicast, and broadcast MAC address filtering is configured globally and disabled by default.
D. The default setting for static MAC addresses to age out of the MAC address table is 300 seconds.
E. Turning off MAC learning on VLANs 900 through 1005 disables learning on VLANs 900 through 1001.
Answer: A,E
Q5. DRAG DROP
Drag each GETVPN component on the left to its function on the right.
Answer:
Q6. Which CoS value is mapped to DSCP 48 by default?
A. 6
B. 7
C. AF21
D. AF44
E. AF41
F. 46
Answer: A
Q7. Which three statements about EVCs are true? (Choose three.)
A. Spanning Tree must use MST mode on EVC ports.
B. PAGP is supported on EVC ports.
C. Spanning Tree must use RSTP mode on EVC ports.
D. LACP is supported on EVC ports.
E. Layer 2 multicast framing is supported.
F. Bridge domain routing is required.
Answer: A,B,D
Explanation:
EVC support requires the following:
–The spanning tree mode must be MST.
–The dot1ad global configuration mode command must be configured.
These Layer 2 port-based features can run with EVC configured on a port:
–PAGP
–LACP
–UDLD
–LLDP
–CDP
–MSTP
Reference: http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst6500/ios/12-2SY/configuration/guide/sy_swcg/ethernet_virtual_connection.html
Q8. Refer to the exhibit.
Which two options are effects of the given configuration? (Choose two.)
A. It sets the data export destination to 209.165.200.227 on UDP port 49152.
B. It enables Cisco Express Forwarding on interface FastEthernet0/0.
C. It configures the export process to include the BGP peer AS of the router gathering the data.
D. It enables NetFlow switching on interface FastEthernet0/0.
E. It sets the data export destination to 209.165.200.227 on TCP port 49152.
Answer: A,D
Explanation:
The “ip flow-export destination 209.165.200.227 49152” command specifies that the data export destination server is 209.165.200.227 using UDP port 49152.
The “ip route-cache flow” command under the fastethernet 0/0 interface enable netflow switching on that interface.
Q9. Refer to the exhibit.
Which prefixes will appear in the EIGRP topology table?
A. 10.0.0.0/8, 172.16.1.0/24, 192.168.0.0/16
B. 10.1.1.0/24, 10.1.2.0/24, 172.16.1.0/26, 192.168.1.0/26, 192.168.2.0/26
C. 10.1.1.0/24, 10.1.2.0/24, 172.16.1.0/26, 172.16.2.0/26, 192.168.1.0/26, 192.168.2.0/26
D. 10.1.1.1/24, 10.1.2.1/24, 172.16.1.1/26, 172, 192.168.1.1/26, 192.168.2.1/26
Answer: B
Q10. DRAG DROP
Drag and drop the IGMPv2 timer on the left to its default value on the right.
Answer:
Q11. Which statement about BGP and diverse path advertisement is true?
A. The BGP best-path selection must be disabled.
B. The BGP best-path selection algorithm has been changed to always ignore the IGP metric.
C. The BGP best-path selection algorithm has been changed so that two BGP paths can be flagged as best in the BGP table.
D. The BGP best-path selection algorithm has not been changed.
E. The BGP best-path selection is disabled for BGP routes for which the feature is enabled.
Answer: D
Explanation:
The BGP Diverse Path Using a Diverse-Path Route Reflector feature allows BGP to distribute an alternative path other than the best path between BGP speakers when route reflectors are deployed. This additional path is added to the best-path, and the best path algorithm still remains unchanged.
Q12. On a network using RIPng, the prefix field of a routing table entry has a value of 0:0:0:0:0:0:0:0. What does this value signify?
A. The next hop address is unknown.
B. The next hop address is a site-local address.
C. The neighboring router has IPv6 ND disabled.
D. The next hop address must be the originator of the route advertisement.
E. The associated route follows a default route out of the network.
Answer: E
Q13. Which two statements about BPDU guard are true? (Choose two.)
A. The global configuration command spanning-tree portfast bpduguard default shuts down interfaces that are in the PortFast-operational state when a BPDU is received on that port.
B. The interface configuration command spanning-tree portfast bpduguard enable shuts down only interfaces with PortFast enabled when a BPDU is received.
C. BPDU guard can be used to prevent an access port from participating in the spanning tree in the service provider environment.
D. BPDU guard can be used to protect the root port.
E. BPDU guard can be used to prevent an invalid BPDU from propagating throughout the network.
Answer: A,C
Q14. Which statement describes the native VLAN concept in an ISL trunk?
A. It is the VLAN ID that is assigned to untagged packets.
B. It is the VLAN with highest priority.
C. It is the default VLAN for a trunk.
D. There is no native VLAN concept in an ISL trunk.
Answer: D
Explanation:
ISL has no native VLAN concept because it places the entire Ethernet frame in the payload of an ISL frame. Native VLANs is an 802.1Q specific concept
Q15. DRAG DROP
Drag and drop each description of IPv6 transition technology on the left to the matching IPv6 transition technology category on the right.
Answer: