401、What is the function of vBond in a Cisco SDWAN deployment?
A. initiating connections with SD-WAN routers automatically
B. pushing of configuration toward SD-WAN routers
C. onboarding of SDWAN routers into the SD-WAN overlay
D. gathering telemetry data from SD-WAN routers
402、Which three resources must the hypervisor make available to the virtual machines? (Choose three)
A. memory
B. bandwidth
C. IP address
D. processor
E. storage
F. secure access
403、How does Protocol Independent Multicast function?
A. In sparse mode it establishes neighbor adjacencies and sends hello messages at 5-second intervals.
B. It uses the multicast routing table to perform the multicast forwarding function.
C. It uses unicast routing information to perform the multicast forwarding function.
D. It uses broadcast routing information to perform the multicast forwarding function.
404、What are two methods of ensuring that the multicast RPF check passes without changing the unicast routing table? (Choose two.)
A. implementing static mroutes
B. disabling BGP routing protocol
C. implementing MBGP
D. disabling the interface of the router back to the multicast source
E. implementing OSPF routing protocol
405、After a redundant route processor failure occurs on a Layer 3 device, which mechanism allows for packets to be forwarded from a neighboring router based on the most recent tables?
A. RPVST+
B. RP failover
C. BFD
D. NSF
406、Which two southbound interfaces originate from Cisco DNA Center and terminate at fabric underlay switches? (Choose two)
A. UDP 67: DHCP
B. ICMP: Discovery
C. TCP 23: Telnet
D. UDP 162: SNMP
E. UDP 6007: NetFlow
407、What is the function of a control-plane node in a Cisco SD-Access solution?
A. to run a mapping system that manages endpoint to network device relationships
B. to implement policies and communicate with networks outside the fabric
C. to connect external Layer 3 networks to the SD Access fabric.
D. to connect APs and wireless endpoints to the SD-Access fabric
408、Refer to the exhibit. What is the result when a switch that is running PVST+ is added to this network?
A. DSW2 operates in Rapid PVST+ and the new switch operates in PVST+
B. Both switches operate in the PVST+ mode
C. Spanning tree is disabled automatically on the network
D. Both switches operate in the Rapid PVST+ mode.
409、What is a characteristic of a next-generation firewall?
A. only required at the network perimeter
B. required in each layer of the network
C. filters traffic using Layer 3 and Layer 4 information only
D. provides intrusion prevention
410、Which measure is used by an NTP server to indicate its closeness to the authoritative time source?
A. stratum
B. hop count
C. time zone
D. latency
411、Which two results occur if Cisco DNA Center loses connectivity to devices in the SD-Access fabric?(Choose two )
A. All devices reload after detecting loss of connection to Cisco DNA Center
B. Already connected users are unaffected, but new users cannot connect
C. User connectivity is unaffected.
D. Cisco DNA Center is unable to collect monitoring data in Assurance.
E. Users lose connectivity
412、Which two components are supported by LISP? (choose two )
A. proxy ETR
B. egress tunnel router
C. route reflector
D. HMAC algorithm
E. spoke
413、Refer to the exhibit.
What does the output confirm about the switch’s spanning tree configuration?
A. The spanning-tree mode stp ieee command was entered on this switch
B. The spanning-tree operation mode for this switch is PVST
C. The spanning-tree operation mode for this switch is IEEE
D. The spanning-tree operation mode for this switch is PVST+
414、 A customer has recently implemented a new wireless infrastructure using WLC-5520S at a site directly next to a large commercial airport Users report that they intermittently lose Wi-Fi connectivity, and troubleshooting reveals it is due to frequent channel changes Which two actions fix this issue? (Choose two)
A. Remove UNII-2 and Extended UNII-2 channels from the 5 Ghz channel list
B. Restore the OCA default settings because this automatically avoids channel interference
C. Disable DFS channels to prevent interference writ) Doppler radar
D. Enable DFS channels because they are immune to radar interference
E. Configure channels on the UNII-2 and the Extended UNII-2 sub-bands of the 5 Ghz band only
415、What is a characteristic of para-virtualization?
A. Para-virtualization guest servers are unaware of one another
B. Para-virtualization allows direct access between the guest OS and the hypervisor
C. Para-virtualization allows the host hardware to be directly accessed
D. Para-virtualization lacks support for containers
416、A customer requests a network design that supports these requirements:
* FHRP redundancy
* multivendor router environment
* IPv4 and IPv6 hosts
Which protocol does the design include?
A. GLBP
B. VRRP version 2
C. VRRP version 3
D. HSRP version 2
417、Refer to the exhibit. What happens to access interfaces where VLAN 222 is assigned?
A. STP BPDU guard is enabled
B. A description “RSPAN” is added
C. They are placed into an inactive state
D. They cannot provide PoE
418、 Which solution do IaaS service providers use to extend a Layer 2 segment across a Layer 3 network?
A. VXLAN
B. VTEP
C. VLAN
D. VRF
419、What is a characteristic of a next-generation firewall?
A. only required at the network perimeter
B. required in each layer of the network
C. filters traffic using Layer 3 and Layer 4 information only
D. provides intrusion prevention
420、Which unit measures the power of a radio signal with reference to 1 milliwatt?
A. dBw
B. dBi
C. mW
D. dBm
421、Refer to the exhibit. An engineer must deny HTTP traffic from host A to host V while allowing all other communication between the hosts, drag and drop the commands into the configuration to achieve these results.
422、What are two benefits of YANG?(choose two)
A. it collects statistical constraint analysis information
B. In enforces the use of specific encoding format for NETCONF
C. in enforces configuration semantics
D. it enables multiple leaf statements to exist within a leaf list
E. it enforces configuration constraints
423、
Which configuration change will force BR2 to reach 209.165.201.0/27 via BR1?
A. Set the origin to igp on BR2 toward PE2 inbound
B. Set the local preference to 150 on PE1 toward BR1 outbound
C. Set the weight attribute to 65,535 on BR1 toward PE1
D. Set the MED to 1 on PE2 toward BR2 outbound
424、An engineer must export the contents of the devices object in JSON format. Which statement must be use?
A. json.print(Devices)
B. json.loads(Devices)
C. json.dumps(Devices)
D. json.repr(Devices)
425、 what is the function of Cisco DNA Center in a cisco SD-Access deployment?
A. It is responsible for routing decisions inside the fabric
B. It is responsible for the design,management,deployment,provisioning,and assurance of the fabric network devices
C. It possesses information about all endponints,nodes,and extemal network related to the fabric
D. It provides integration and automation for all noonfabric nodes and their fabric counterparts.
426、
A network engineer must configure a password expiry mechanism on the gateway router for all local passwords to expire after 60 days. What is required to complete this task?
A. Add the username admin privilege 15 common-criteria-policy Administrators password 0 Cisco013579! command
B. No further action is required. The configuration is complete
C. Add the aaa authentication enable default Administrators command
D. The password expiry mechanism is on the AAA server and must be configured there
427、
An engineer troubleshoots connectivity issues with an application. Testing is performed from the server gateway, and traffic with the DF bit set is dropped along the path after increasing packet size. Removing the DF bit setting at the gateway prevents the packets from being dropped. What is the cause of this issue?
A. PMTUD does not work due to ICMP Packet Too Big messages being dropped by an ACL
B. The remote router drops the traffic due to high CPU load
C. The server should not set the DF bit in any type of traffic that is sent toward the network
D. There is a CoPP policy in place protecting the WAN router CPU from this type of traffic
428、What are two benefits of virtual switching when compared to hardware switching? (Choose two)
A. increased MTU size
B. hardware independence
C. VM-level isolation
D. increased flexibility
E. extended 802.1Q VLAN range
429、
Refer to the exhibit.An engineer configures VRRP and issues the show commands to verify
operation,What does the engineer confirm about VRRP group 1 from the output ?
A. communcation between VRRP members is encrypted using MD5
B. If R1 reboots,R2 becomes the master virtual router until R2 reboots
C. There is no route to 10.10.1.1/32 in R2's routing table
D. R1 is master if 10.10.1.1/32 is in its routing table
430、 Refer to the exhibit.Which single security feature is recommended to provide Network Access Control in the enterprise ?
A. MAB
B. 802.1X
C. WebAuth
D. Port Security sticky MAC
431、Refer to the exhbit.An engineer must add the SNMP interface table to the NetFlow protocol flow records.where should the SNMP table option be added ?
A. under the interface
B. under the flow record
C. under the flow monitor
D. under the flow exporter
432、Which two operational models enable an AP to scan one or more wireless channels for rouge access points and at the same time provide wireless services to clients? (Choose two)
A. Sniffer
B. Rouge detector
C. Local
D. FlexConnect
E. Monitor
433、How does a router behave when configured with the default DNS lookup settings, and a URL is entered onthe CLI?
A. prompts the user to specify the desired IP address.
B. initiates a pinfsfg request to the URL.
C. continuously attxempts tos resolve the URL until the command is cancelled.
D. attempts to query a DNS server on the network
434、What does a router do when configured with the default DNS lookup settings, and a URL is entered on the CLI?
A. initiates a ping request to the URL
B. prompts the user to specify the desired IP address
C. continuously attempts to resolve the URL until the command is cancelled
D. sends a broadcast message in an attempt to resolve the URL
435、An engineer must provide wirelss coverage in a square office.The engineer has only one AP and belives that it should be placed it in the middle of the room.which antenna type should the engineer use ?
A. directional
B. polarized
C. Yagi
D. omnidirectional
436、
Refer to the exhibit.POSTMAN is showing an attempt to retrieve network device information from Cisco DNA Center API. what is the issue?
A. The URI string is incorrect
B. The token has expired
C. Authentication has failed
D. The JSON payload contains the incorrect UUID
437、
Refer to the exhibit.An engineer configures a new HSRP group.while reviewing the HSRP status,the
engineer sees the logging message generated on R2.What is the cause of he message ?
A. The HSRP configuration has caused a routing loop
B. The HSRP configuration has caused a spanning-tree loop
C. A PC is on the network using the IP address 10.10.1.1
D. The same virtual IP address has been configured for two HSRP groups
438、
Which HTTP code must be retumed to prevent the script from exiting ?
A. 200
B. 201
C. 300
D. 301
439、what is a consideration when designing a Cisco SD-Access underlay network ?
A. The underlay switches provide endpoint physical connectivity for users
B. End user subnets and ednpoints are part of the underlay network
C. It must support IPv4 and IPv6 underlay networks
D. static routing is a requirement
440、
Refer to the exhibit.Running the script causes the output in the exhibit.what should be the first line of the script?
A. from ncclient import manager
B. import manager
C. from ncclient import *
D. ncclient manager import
441、What happens to the signal strength of an RF signal due to wave spreading?
A. The signal strength of the RF signal will fall off equally near the transmitter and also farther away
B. The signal strength of the RF signal will fall off quickly near the transmitter but more slowly farther away
C. The signal strength of the RF signal will fall off slowly near the receiver and more quickly farther away
D. The signal strength of the RF signal will fall off slowly near the transmitter but more quickly farther away
442、Which two statements about AAA authentication are true? (Choose two)
A. RADIUS authentication queries the router’s local username database
B. TACACS+ authentication uses an RSA server to authenticate users
C. Local user names are case-insensitive
D. Local authentication is maintained on the router
E. KRB5 authentication disables user access when an incorrect password is entered
443、what is the output of this code ?
A. cisco
B. get_credentials
C. username
D. username:cisco
444、
Refer to the exhibit.An engineer is troubleshooting a connectivity issue and ececutes a tracerout.what does the result confirm?
A. The probe times out
B. The destination server reported it is too busy
C. The protocol is unreachable
D. The destination port is unreachable
445、where is radie resource management performed in a Cisco SD-Access wireless solution ?
A. DNA Center
B. control plane node
C. wireless controller
D. Cisco CMX
446、
Refer to the exhibit.Router1 is currently operating as the HSRP primary with a priority of 110. Router1 fails and Router2 takes over the forwarding role.which command on Router1 causes it to take over the forwarding role when it returns to service ?
A. standby 2 priority
B. standby 2 preempt
C. standby 2 track
D. standby 2 timers
447、
Refer to the exhibit.The Etherchannel between SW2 and SW3 is not operational. which action resolves this issue ?
A. configure the mode on sw2 Gi0/0 to trunk
B. configure the mode on sw2 Gi0/1 to access
C. configure the channel-group mode on SW2 Gi0/0 and Gi0/1 to on
D. configure the channel-group mode on SW2 Gi0/0 and Gi0/1 to active
448、''HTTP/1.1 204 No Content'' is returned when the curl -i -x DELETE command is issued.which situation has occurred ?
A. The object could not be located at the URL path
B. The command succeeded in deleting the object
C. The object was located at he URL,but it could not be deleted
D. The URL was invalid
449、what is one benefit of implementang a VSS archtecture?
A. It uses a single database to manage configuration for multiple switches
B. It provides a single point of management for improved efficiency
C. It provides multiple points of management for redundancy and improved support
D. It uses GLBP to balance traffic between gateways
450、How is MSDP used to interconnect multiple PIM-SM domains?
A. MSDP depends on BGP or multiprotocol BGP for interdomain operation
B. MSDP messages are used to advertise active sources in a domain
C. MSDP SA request messages are used to request a list of active sources for a specific group
D. MSDP allows a rendezvous point to dynamically discover active sources outside of its domain
