200-301: Cisco Certified Network Associate (CCNA) Part 15
Question #: 861
Topic #: 1
Refer to the exhibit. VLAN 23 is being implemented between SW1 and SW2. The command show interface ethernet0/0 switchport has been issued on SW1. Ethernet0/0 on SW1 is the uplink to SW2. Which command when entered on the uplink interface allows PC 1 and PC 2 to communicate without impact to the communication between PC 11 and PC 12?
A. switchport trunk allowed vlan 2-1001
B. switchport trunk allowed vlan 23
C. switchport trunk allowed vian add 23
D. switchport trunk allowed vian 22-23
Selected Answer: C
Question #: 862
Topic #: 1
A network engineer starts to implement a new wireless LAN by configuring the authentication server and creating the dynamic interface. What must be performed next to complete the basic configuration?
A. Create the new WLAN and bind the dynamic interface to it.
B. Configure high availability and redundancy for the access points.
C. Enable Telnet and RADIUS access on the managoment interface.
D. Install the management interface and add the management IP.
Selected Answer: A
Question #: 863
Topic #: 1
Refer to the exhibit. An architect is managing a wireless network with APs from several branch offices connecting to the WLC in the data center. There is a new requirement for a single WLAN to process the client data traffic without sending it to the WLC. Which action must be taken to complete the request?
A. Enable local HTTP profiling.
B. Enable FlexConnect Local Switching.
C. Enable local DHCP Profiling.
D. Enable Disassociation Imminent.
Selected Answer: B
Question #: 864
Topic #: 1
What must be considered for a locally switched FlexConnect AP if the VLANs that are used by the AP and client access are different?
A. The APs must be connected to the switch with multiple links in LAG mode.
B. The native VLAN must match the management VLAN of the AP.
C. The switch port mode must be set to trunk.
D. IEEE 802.1Q trunking must be disabled on the switch port.
Selected Answer: C
Question #: 865
Topic #: 1
Which command configures the Cisco WLC to prevent a serial session with the WLC CLI from being automatically logged out?
A. config sessions maxsessions 0
B. config serial timeout 9600
C. config serial timeout 0
D. config sessions timeout 0
Selected Answer: C
Question #: 866
Topic #: 1
A Cisco engineer at a new branch office is configuring a wireless network with access points that connect to a controller that is based at corporate headquarters. Wireless client traffic must terminate at the branch office and access-point survivability is required in the event of a WAN outage. Which access point mode must be selected?
A. Lightweight with local switching disabled
B. FlexConnect with local switching enabled
C. OfficeExtend with high availability disabled
D. Local with AP fallback enabled
Selected Answer: B
Question #: 867
Topic #: 1
What is an advantage of using auto mode versus static mode for power allocation when an access point is connected to a PoE switch port?
A. Power policing is enabled at the same time.
B. The default level is used for the access point.
C. All four pairs of the cable are used.
D. It detects the device is a powered device.
Selected Answer: D
Question #: 868
Topic #: 1
Refer to the exhibit. Wireless LAN access must be set up to force all clients from the NA WLAN to authenticate against the local database. The WLAN is configured for local EAP authentication. The time that users access the network must not be limited. Which action completes this configuration?
A. Check the Guest User Role check box.
B. Uncheck the Guest User check box.
C. Set the Lifetime (seconds) value to 0.
D. Clear the Lifetime (seconds) value.
Selected Answer: B
Question #: 869
Topic #: 1
DRAG DROP
–
Drag and drop the wireless architecture benefits from the left onto the architecture types on the right.
Suggestion Answer:
Question #: 870
Topic #: 1
What is a specification for SSIDs?
A. They must include one number and one letter.
B. They are a Cisco proprietary security feature.
C. They are case sensitive.
D. They define the VLAN on a switch.
Selected Answer: C
Question #: 871
Topic #: 1
What is a reason to configure a trunk port that connects to a WLC distribution port?
A. Provide redundancy if there is a link failure for out-of-band management.
B. Allow multiple VLANs to be used in the data path.
C. Permit multiple VLANs to provide out-of-band management.
D. Eliminate redundancy with a link failure in the data path.
Selected Answer: B
Question #: 872
Topic #: 1
DRAG DROP
–
Drag and drop the WLAN components from the left onto the correct descriptions on the right.
Suggestion Answer:
Question #: 873
Topic #: 1
Refer to the exhibit. A Cisco WLC administrator is creating a new wireless network with enhanced SSID security. The new network must operate at 2.4 Ghz with 54 Mbps of throughput. Which set of tasks must the administrator perform to complete the configuration?
A. Uncheck the Broadcast SSID check box and set the Radio Policy to 802.11a/g only.
B. Check the Broadcast SSID check box and set the Radio Policy to 802.11g only.
C. Uncheck the Broadcast SSID check box and set the Radio Policy to 802.11g only.
D. Check the Broadcast SSID check box and set the Radio Policy to 802.11a only.
Selected Answer: C
Question #: 874
Topic #: 1
Which switching feature removes unused MAC addresses from the MAC address table, which allows new MAC addresses to be added?
A. MAC address aging
B. MAC move
C. MAC address auto purge
D. dynamic MAC address learning
Selected Answer: A
Question #: 875
Topic #: 1
Refer to the exhibit. A network engineer configures the CCNA WLAN so that clients must reauthenticate hourly and to limit the number of simultaneous connections to the WLAN to 10. Which two actions complete this configuration? (Choose two.)
A. Enable the Wi-Fi Direct Clients Policy option
B. Enable the Enable Session Timeout option and set the value to 3600.
C. Enable the Client Exclusion option and set the value to 3600.
D. Set the Maximum Allowed Clients value to 10.
E. Set the Maximum Allowed Clients Per AP Radio value to 10.
Selected Answer: BD
Question #: 876
Topic #: 1
Refer to the exhibit. The SW1 and SW2 Gi0/0 ports have been preconfigured. An engineer is given these requirements:
• Allow all PCs to communicate with each other at Layer 3.
• Configure untagged traffic to use VLAN 5.
• Disable VLAN 1 from being used.
Which configuration set meets these requirements?
A. SW1#
interface Gi0/1
switchport mode trunk
switchport trunk allowed vlan 5,7,9,108
switchport trunk native vlan 5
interface Gi0/2
switchport mode trunk
switchport trunk allowed vlan 5,7,9,108
SW2#
interface Gi0/1
switchport mode access
switchport access vlan 7
interface Gi0/7
switchport mode trunk
switchport trunk allowed vlan 7,9,108
B. SW1#
interface Gi0/1
switchport mode trunk
switchport trunk allowed vlan 5,7,9,108
switchport trunk native vlan 5
interface Gi0/2
switchport mode access
switchport trunk allowed vlan 7,9,108
SW2#
interface Gi0/1
switchport mode access
no switchport access vlan 1
switchport access vlan 7
interface Gi0/7
switchport mode trunk
switchport trunk allowed vlan 7,9,108
switchport trunk native vlan 5
C. SW#1 –
interface Gi0/1
switchport mode trunk
switchport trunk allowed vlan 5,7,9,108
switchport trunk native vlan 5
interface Gi0/2
switchport mode trunk
switchport trunk allowed vlan 5,7,9,108
SW2#
interface Gi0/1
switchport mode access
switchport access vlan 7
interface Gi0/7
switchport mode trunk
switchport trunk allowed vlan 5,7,9,108
switchport trunk native vlan 5
D. SW1#
interface Gi0/1
switchport mode trunk
switchport trunk allowed vian 5,7,9,108
interface Gi0/2
switchport mode trunk
switchport trunk allowed vlan 7,9,108
SW2#
interface Gi0/1
switchport mode trunk
switchport trunk allowed vlan 7
interface Gi0/7
switchport mode trunk
switchport trunk allowed vlan 5,7,9,108
Selected Answer: C
Question #: 877
Topic #: 1
Refer to the exhibit. How must router A be configured so that it only sends Cisco Discovery Protocol information to router C?
A. #config t
Router A (config)#no cdp run –
Router A (config)#interface gi0/0/1
Router A (config-if)#cdp enable –
B. #config t
Router A (config)#cdp run –
Router A (config)#interface gi0/0/0
Router A (config-if)#no cdp enable
C.#config t –
Router A (config)#cdp run –
Router A (config)#interface gi0/0/1
Router A (config-if)#cdp enable –
D. #config t
Router A (config)#cdp run –
Router A (config)#interface gi0/0/0
Router A (config-if)#cdp enable
Selected Answer: B
Question #: 878
Topic #: 1
Refer to the exhibit. An administrator must turn off the Cisco Discovery Protocol on the port configured with address last usable address in the 10.0.0.0/30 subnet. Which command set meets the requirement?
A. interface gi0/1
no cdp enable
B. interface gi0/0
no cdp run
C. interface gi0/0
no cdp advertise-v2
D. interface gi0/1
clear cdp table
Selected Answer: A
Question #: 879
Topic #: 1
Which WLC port connects to a switch to pass normal access-point traffic?
A. redundancy
B. service
C. console
D. distribution system
Selected Answer: D
Question #: 880
Topic #: 1
Which default condition must be considered when an encrypted mobility tunnel is used between two Cisco WLCs?
A. The tunnel uses the IPses protocol for encapsulation.
B. Control and data traffic encryption are enabled.
C. The tunnel uses the EoIP protocol to transmit data traffic.
D. TCP port 443 and UDP 21 are used.
Selected Answer: B
Question #: 881
Topic #: 1
Refer to the exhibit. After a recent internal security audit, the network administrator decided to block all P2P-capable devices from the selected SSID. Which configuration setting must the administrator apply?
A. Set the Wi-Fi Direct Client Policy to Not-Allow.
B. Select a correctly configured Layer 2 ACL.
C. Set the MFP Client Protection to Required.
D. Set the P2P Block Action to Drop.
Selected Answer: D
Question #: 882
Topic #: 1
What is the primary purpose of a console port on a Cisco WLC?
A. in-band management via an asynchronous transport
B. in-band management via an IP transport
C. out-of-band management via an asynchronous transport
D. out-of-band management via an IP transport
Selected Answer: C
Question #: 883
Topic #: 1
Which port type does a lightweight AP use to connect to the wired network when it is configured in local mode?
A. EtherChannel
B. access
C. LAG
D. trunk
Selected Answer: B
Question #: 884
Topic #: 1
Which step immediately follows receipt of the EAP success message when session resumption is disabled for an EAP-TLS connection?
A. PMKID caching
B. four-way handshake
C. 802.1X authentication
D. EAPOL-key frame
Selected Answer: B
Question #: 885
Topic #: 1
Refer to the exhibit. All interfaces are in the same VLAN. All switches are configured with the default STP priorities. During the STP elections, which switch becomes the root bridge?
A. MDF-DC-1: 08:E0:43:42:70:13
B. MDF-DC-2: 08:0E:18:22:05:97
C. MDF-DC-4: 08:E0:19:A1:B3:19
D. MDF-DC-3: 08:0E:18:1A:3C:9D
Selected Answer: D
Question #: 886
Topic #: 1
What are two port types used by a Cisco WLC for out-of-band management? (Choose two.)
A. service
B. console
C. management
D. distribution system
E. redundant
Selected Answer: AB
Question #: 887
Topic #: 1
What is a reason to implement LAG on a Cisco WLC?
A. Allow for stateful failover between WLCs.
B. Increase security by encrypting management frames.
C. Increase the available throughput on the link.
D. Enable the connected switch ports to use different Layer 2 configurations.
Selected Answer: C
Question #: 888
Topic #: 1
A wireless access point is needed and must meet these requirements:
• “zero-touch” deployed and managed by a WLC
• process only real-time MAC functionality
• used in a split-MAC architecture
Which access point type must be used?
A. mesh
B. autonomous
C. lightweight
D. cloud-based
Selected Answer: C
Question #: 889
Topic #: 1
Which interface is used for out-of-band management on a WLC?
A. management
B. virtual
C. dynamic
D. service port
Selected Answer: D
Question #: 890
Topic #: 1
Refer to the exhibit. How does SW2 interact with other switches in this VTP domain?
A. It transmits and processes VTP updates from any VTP clients on the network on its trunk ports.
B. It processes VTP updates from any VTP clients on the network on its access ports.
C. It receives updates from all VTP servers and forwards all locally configured VLANs out all trunk ports.
D. It forwards only the VTP advertisements that it receives on its trunk ports.
Selected Answer: D
Question #: 891
Topic #: 1
A network engineer is upgrading a small data center to host several new applications, including server backups that are expected to account for up to 90% of the bandwidth during peak times. The data center connects to the MPLS network provider via a primary circuit and a secondary circuit. How does the engineer inexpensively update the data center to avoid saturation of the primary circuit by traffic associated with the backups?
A. Assign traffic from the backup servers to a dedicated switch.
B. Place the backup servers in a dedicated VLAN.
C. Advertise a more specific route for the backup traffic via the secondary circuit.
D. Configure a dedicated circuit for the backup traffic.
Selected Answer: C
Question #: 892
Topic #: 1
Refer to the exhibit. A network engineer started to configure two directly-connected routers as shown. Which command sequence must the engineer configure on R2 so that the two routers become OSPF neighbors?
A. interface GigabitEthernet0/1
ip ospf 1 area 1
B. router ospf 1
network 192.168.12.1 0.0.0.0 area 1
C. interface GigabitEthernet0/1
ip ospf 1 area 0
D. router ospf 1
network 192.168.12.0 0.0.0.127 area 0
Selected Answer: B
Question #: 893
Topic #: 1
Refer to the exhibit. What does route 10.0.1.3/32 represent in the routing table?
A. all hosts in the 10.0.1.0 subnet
B. a single destination address
C. the source 10.0.1.100
D. the 10.0.0.0 network
Selected Answer: B
Question #: 894
Topic #: 1
Refer to the exhibit. Router R14 is in the process of being configured. Which configuration must be used to establish a host route to a PC 10?
A. ip route 10.80.65.10 255.255.255.254 10.80.65.1
B. ip route 10.80.65.10 255.255.255.255 10.73.65.66
C. ip route 10.73.65.66 0.0.0.255 10.80.65.10
D. ip route 10.73.65.66 255.0.0.0 10.80.65.10
Selected Answer: B
Question #: 895
Topic #: 1
Refer to the exhibit. Which next-hop IP address has the least desirable metric when sourced from R1?
A. 10.10.10.4
B. 10.10.10.5
C. 10.10.10.3
D. 10.10.10.2
Selected Answer: C
Question #: 896
Topic #: 1
Refer to the exhibit. The New York router must be configured so that traffic to 2000::1 is sent primarily via the Atlanta site, with a secondary path via Washington that has an administrative distance of 2. Which two commands must be configured on the New York router? (Choose two.)
A. ipv6 route 2000::1/128 2012::1
B. ipv6 route 2000::1/128 2012::1 5
C. ipv6 route 2000::1/128 2012::2
D. ipv6 route 2000::1/128 2023::2 5
E. ipv6 route 2000::1/128 2023::3 2
Selected Answer: AE
Question #: 897
Topic #: 1
Refer to the exhibit. The primary route across Gi0/0 is configured on both routers. A secondary route must be configured to establish connectivity between the workstation networks. Which command set must be configured to complete this task?
A. R1 –
ip route 172.16.2.0 255.255.255.248 172.16.0.5 110
R2 –
ip route 172.16.1.0 255.255.255.0 172.16.0.6 110
B. R1 –
ip route 172.16.2.0 255.255.255.240 172.16.0.2 113
R2 –
ip route 172.16.1.0 255.255.255.0 172.16.0.1 114
C. R1 –
ip route 172.16.2.0 255.255.255.224 172.16.0.6 111
R2 –
ip route 172.16.1.0 255.255.255.0 172.16.0.5 112
D. R1 –
ip route 172.16.2.0 255.255.255.240 172.16.0.5 89
R2 –
ip route 172.16.1.0 255.255.255.0 172.16.0.6 89
Selected Answer: C
Question #: 898
Topic #: 1
DRAG DROP
–
Refer to the exhibit. Drag and drop the destination IPs from the left pnto the paths to reach those destinations on the right.
Suggestion Answer:
Question #: 899
Topic #: 1
Refer to the exhibit. Which two values does router R1 use to determine the best path to reach destinations in network 1.0.0.0/8? (Choose two.)
A. lowest cost to reach the next hop
B. highest administrative distance
C. lowest metric
D. highest metric
E. longest prefix match
Selected Answer: CE
Question #: 900
Topic #: 1
Refer to the exhibit. A public IPv6 address must be configured for internet access. Which command must be configured on the R2 WAN interface to the service provider?
A. ipv6 address fe80::/10
B. ipv6 address 2001:db8:433:37:7710:ffff:ffff:ffff/64 anycast
C. ipv6 address 2001:db8:123:45::4/64
D. ipv6 address fe80::260:3EFF:FE11:6770 link-local
Selected Answer: C
Question #: 901
Topic #: 1
DRAG DROP
–
Refer to the exhibit. Drag and drop the subnet masks from the left onto the corresponding subnets on the right. Not all subnet masks are used.
Suggestion Answer:
Question #: 902
Topic #: 1
Refer to the exhibit. A network engineer must configure router R1 with a host route to the server. Which command must the engineer configure?
A. R1(config)#ip route 10.10.10.10 255.255.255.255 192.168.0.2
B. R1(config)#ip route 10.10.10.0 255.255.255.0 192.168.0.2
C. R1(config)#ip route 0.0.0.0 0.0.0.0 192.168.0.2
D. R1(config)#ip route 192.168.0.2 255.255.255.255 10.10.10.10
Selected Answer: A
Question #: 903
Topic #: 1
Refer to the exhibit. IPv6 is being implemented within the enterprise. The command ipv6 unicast-routing is configured. Interface Gig0/0 on R1 must be configured to provide a dynamic assignment using the assigned IPv6 block. Which command accomplishes this task?
A. ipv6 address 2001:DB8:FFFF:FCF3::64 link-local
B. ipv6 address 2001:DB8:FFFF:FCF3::1/64
C. ipv6 address 2001:DB8:FFFF:FCF3::64 eui-64
D. ipv6 address autoconfig 2001:DB8:FFFF:FCF2::/64
Selected Answer: C
Question #: 904
Topic #: 1
Refer to the exhibit. With which metric does router R1 learn the route to host 172.16.0.202?
A. 90
B. 110
C. 32445
D. 3184439
Selected Answer: C
Question #: 905
Topic #: 1
Refer to the exhibit. A network engineer must configure the link with these requirements:
• Consume as few IP addresses as possible.
• Leave at least two additional useable IP addresses for future growth.
Which set of configurations must be applied?
A. R1(config-if)#ip address 10.10.10.1 255.255.255.252
R2(config-if)#ip address 10.10.10.2 255.255.255.252
B. R1(config-if)#ip address 10.10.10.1 255.255.255.240
R2(config-if)#ip address 10.10.10.12 255.255.255.240
C. R1(config-if)#ip address 10.10.10.1 255.255.255.248
R2(config-if)#ip address 10.10.10.4 255.255.255.248
D. R1(config-if)#ip address 10.10.10.1 255.255.255.0
R2(config-if)#ip address 10.10.10.5 255.255.255.0
Selected Answer: C
Question #: 906
Topic #: 1
DRAG DROP
–
Drag and drop the device behaviors from the left onto the matching HSRP state on the right.
Suggestion Answer:
Question #: 907
Topic #: 1
Refer to the exhibit. A static route must be configured on R86 to forward traffic for the 172.16.34.0/29 network, which resides on R14. Which command must be used to fulfill the request?
A. ip route 10.73.65.65 255.255.255.248 172.16.34.0
B. ip route 172.16.34.0 255.255.255.248 10.73.65.65
C. ip route 172.16.34.0 0.0.0.7 10.73.65.64
D. ip route 172.16.34.0 255.255.224.0 10.73.65.66
Selected Answer: B
Question #: 908
Topic #: 1
Refer to the exhibit. An engineer must configure a floating static route on an external EIGRP network. The destination subnet is the /29 on the LAN interface of R86. Which command must be executed on R14?
A. ip route 10.80.65.0 255.255.248.0 10.73.65.66 1
B. ip route 10.80.65.0 255.255.255.240 fa0/1 89
C. ip route 10.80.65.0 255.255.255.248 10.73.65.66 171
D. ip route 10.73.65.66 0.0.0.224 10.80.65.0 255
Selected Answer: C
Question #: 909
Topic #: 1
Refer to the exhibit. What is the next-hop IP address for R2 so that PC2 reaches the application server via EIGRP?
A. 192.168.30.1
B. 10.10.10.6
C. 10.10.10.5
D. 192.168.20.1
Selected Answer: B
Question #: 910
Topic #: 1
DRAG DROP
–
Suggestion Answer:
Question #: 911
Topic #: 1
Refer to the exhibit. An IPv6 address must be obtained automatically on the LAN interface on R1. Which command must be implemented to accomplish the task?
A. ipv6 address autocontig
B. ipv6 address dhcp
C. ipv6 address fe80::/10
D. ipv6 address 2001:db8:d8d2:1008:4332:45:0570::/64
Selected Answer: A
Question #: 912
Topic #: 1
Refer to the exhibit. A network engineer is updating the configuration on router R1 to connect a new branch office to the company network. R2 has been configured correctly. Which command must the engineer configure so that devices at the new site communicate with the main office?
A. ip route 172.25.25.1 255.255.255.255 g0/2
B. ip route 172.25.25.0 255.255.255.0 192.168.2.2
C. ip route 172.25.25.0 255.255.255.0 192.168.2.1
D. ip route 172.25.25.1 255.255.255.255 g0/1
Selected Answer: B
Question #: 913
Topic #: 1
A network engineer must migrate a router loopback interface to the IPv6 address space. If the current IPv4 address of the interface is 10.54.73.1/32, and the engineer configures IPv6 address 0:0:0:0:0:ffff:a36:4901, which prefix length must be used?
A. /64
B. /96
C. /124
D. /128
Selected Answer: D
Question #: 914
Topic #: 1
A Cisco engineer notices that two OSPF neighbors are connected using a crossover Ethernet cable. The neighbors are taking too long to become fully adjacent. Which command must be issued under the interface configuration on each router to reduce the time required for the adjacency to reach the FULL state?
A. ip ospf dead-interval 40
B. ip ospf network broadcast
C. ip ospf priority 0
D. ip ospf network point-to-point
Selected Answer: D
Question #: 915
Topic #: 1
Refer to the exhibit. PC A is communicating with another device at IP address 10.227.225.255. Through which router does router Y route the traffic?
A. router A
B. router B
C. router C
D. router D
Selected Answer: D
Question #: 916
Topic #: 1
Refer to the exhibit. A packet sourced from 10.10.10.32 is destined for the Internet. What is the administrative distance for the destination route?
A. 0
B. 1
C. 2
D. 32
Selected Answer: B
Question #: 917
Topic #: 1
Refer to the exhibit. Which format matches the Modified EUI-64 IPv6 interface address for the network 2001:db8::/64?
A. 2001:db8::5000:00ff:fe04:0000/64
B. 2001:db8::4332:5800:41ff:fe06:/64
C. 2001:db8::5000:0004:5678:0090/64
D. 2001:db8::5200:00ff:fe04:0000/64
Selected Answer: D
Question #: 918
Topic #: 1
What is the benefit of using FHRP?
A. reduced ARP traffic on the network
B. balancing traffic across multiple gateways in proportion to their loads
C. higher degree of availability
D. reduced management overhead on network routers
Selected Answer: C
Question #: 919
Topic #: 1
Why is a first-hop redundancy protocol implemented?
A. to enable multiple switches to operate as a single unit
B. to provide load-sharing for a multilink segment
C. to prevent loops in a network
D. to protect against default gateway failures
Selected Answer: D
Question #: 920
Topic #: 1
Refer to the exhibit. A network engineer executes the show ip route command on router D. What is the next hop to network 192.168.1.0/24 and why?
A. The next hop is 10.0.2.1 because it uses distance vector routing.
B. The next hop is 10.0.0.1 because it has a higher metric.
C. The next hop is 10.0.2.1 because it is a link-state routing protocol.
D. The next hop is 10.0.0.1 because it has a better administrative distance.
Selected Answer: D
