cisco passguide 352-001 exam questions & answers

Cisco Passguide 352-001 Exam Questions & Answers

Number: 352-001Passing Score: 800Time Limit: 120 minFile Version: 27.4

http://www.gratisexam.com/

Cisco 352-001 Exam Questions & Answers

Exam Name : ADVDESIGN (CCDE)

For Full Set of Questions please visit: http://www.passguide.com/352-001.html

Passguide

QUESTION 1Lafeyette Productions is looking for a new ISP that has improved availability, load balancing, and catastropheprotection. Which type of ISP connectivity solution would be best?

A. Single runB. Multi-homedC. Stub domain EBGPD. Direct BGP peering

Correct Answer: BSection: (none)Explanation

Explanation/Reference:

QUESTION 2Which two items are true about QoS in MPLS VPN (RFC 2547bis) networks? (Choose two.)

A. On egress from the Edge-LSR, the EXP field is used for PHB QoS towards the CE.B. MPLS can force packets into specific paths and bandwidths based on Edge-LSR mapping of DSCP to EXP.C. DiffServ information must be made known to the LSR in the MPLS header using the EXP field.D. MPLS QoS is a scalable and simple solution because it only requires application at the Edge-LSR.

Correct Answer: BCSection: (none)Explanation


QUESTION 3EIGRP performs route summarization at the interface level with the ip summary-address command. Whichthree statements correctly describe EIGRP route summarization? (Choose three.)

A. Summary routes are inserted in the routing table with a next hop of null 0 and a high administrativedistance, to prevent black holing of traffic.

B. By default, EIGRP automatically summarizes internal routes, but only each time a major network boundaryis crossed.

C. EIGRP route summarization can reduce the query diameter to help prevent SIA problems.D. The metric for each summarized route is inherited from the lowest metric of the component routes.

Correct Answer: BCDSection: (none)Explanation


QUESTION 4Which option is correct in terms of designing a policy in which more than one class share a queue?

A. It should be deployed throughout the network to simplify the design.

B. It must be avoided under all circumstances.C. It requires consideration of the performance targets of classes sharing the queue.D. It will result in a negative class.

Correct Answer: CSection: (none)Explanation



QUESTION 5The packets discovered are considered part of an attack. What benefit can be obtained by using a packetscrubbing device to redirect them?

A. Packet scrubbing forwards valid traffic.B. Packet scrubbing provides better logging of suspected attacks.C. Packet scrubbing is "line rate."D. Packet scrubbing filters all traffic.

Correct Answer: ASection: (none)Explanation


QUESTION 6Which item is the primary requirement when deploying OSPF graceful restart on a router?

A. Some form of fast Layer 2 down detection must be enabled on the router.B. The adjacent router must support graceful restart helper mode.C. The adjacent routers must be enabled to forward traffic during the failure.D. Aggressive routing protocol hellos and keepalives must be running on the router.



QUESTION 7NetFlow provides valuable information about network users and applications, peak usage times, and trafficrouting. Which function is of NetFlow?

A. Monitor configuration changesB. Monitor CPU utilization

C. Monitor link utilizationD. Generate traps for failure conditions



QUESTION 8What information can you get from TCP flags while assessing an attack?

A. Source of the attackB. Type of attackC. Target of the attackD. Priority of the attack traffic



QUESTION 9You are a network technician for the PG company, study the exhibit carefully. PG-R1 is redistributing10.1.5.0/24 into Area 1 in this network. Which LSA containing 10.1.5.0/24 will PG-R6 have in its database?

A. PG-R6 will have a border router (type 4) LSA in its local database for 10.1.5.0/24.B. PG-R6 will have an NSSA external (type 7) LSA in its local database for 10.1.5.0/24.C. PG-R6 will have an external (type 5) LSA for 10.1.5.0/24 in its local database.D. PG-R6 will not have any LSAs containing 10.1.5.0/24.

Correct Answer: DSection: (none)Explanation


QUESTION 10Scalability is provided in the server farm module by which of the following design strategies?

A. Up to 10 Gbps of bandwidth at the access levelB. Redundant servers at the access levelC. Modular block design at the access levelD. High port densities at the access level



QUESTION 11RSVP is short for Resource Reservation Protocol. Which statement is true about the RSVP protocol?

A. It is reserved bi-directionally by each originating node.B. It is only for avoiding packet drop on collision-prone media (such as Ethernet).C. It is initiated uni-directionally along the data path downstream from each requesting node.D. It is only shared by pairs of peers participating in delay-sensitive, real-time applications like VoIP.



QUESTION 12Which is a requirement for performing attack detection by use of anomaly detection technologies?

A. Syslog dataB. Packet capturesC. Baseline dataD. Exploit signatures



QUESTION 13You are the Cisco Network Designer in Company.com. What is the term for a logical SAN which providesisolation among devices physically connected to the same fabric?

A. InterSwitch LinkB. Virtua LAN

C. Virtual Output QueuingD. virtual storage area network



QUESTION 14Which two practices need to be implemented to increase SNMPv1 security? (Choose two.)

A. Use SNMP encryption for transport confidentiality.B. Use ACLs to allow only specific IP addresses to poll SNMP.C. Use a combination of alphanumeric characters for the community strings.D. Restrict access to the specific SNMP engine IDs in use.



QUESTION 15To securely transport EIGRP traffic, a network administrator will build VPNs between sites. What is the bestmethod to accomplish the transport of EIGRP traffic?

A. IPSec in tunnel modeB. IPSec in transport modeC. GRE with IPSec in transport modeD. GRE with IPSec in tunnel mode



QUESTION 16LLQ is short for Low Latency Queue .VoIP traffic is mapped to (LLQ) over a slow speed link. Which kind ofdelay will seriously affect the quality of voice for this link?

A. Encoding delayB. Serialization delayC. Propagation delayD. Packetization delay



QUESTION 17IS-IS supports which two network or interface types? (Choose two.)

A. Point-to-pointB. Non-Broadcast Multiple AccessC. Broadcast networkD. Broadcast Multiple Access

Correct Answer: ACSection: (none)Explanation


QUESTION 18A network vulnerability scanner is part of which critical element of network and system security?

A. Host securityB. Perimeter securityC. Security monitoringD. Policy management



QUESTION 19You work as a network technician for an IT company, you are tasked to deploy BGP across a satellite linksystem to a small number of retail stores. What must be done in order to successfully deploy BGP in thissituation?

A. Manually configure static routes to back up BGP across the satellite linkB. Configure all the BGP peering sessions across the satellite links as EBGPC. Configure the initial window size, maximum MTU, and TCP keepalive parametersD. Set the BGP hold timer to under one second



QUESTION 20Among the design criteria for a network is the requirement that bandwidth capacity be managed proactively.Which two techniques should be used to effectively support the proactive management of network bandwidthcapacity? (Choose two.)

A. Analyze network bandwidth utilization to establish a baselineB. Configure SNMP MIB collectors to trigger at utilization thresholds

C. Implement utilization measurement and tracking measures in the networkD. Implement QoS to increase available bandwidth and overall throughput



QUESTION 21For the following mechanisms, which two are preferred to detect Layer 2 link failures quickly? (Choose two.)

A. BFDB. LDP keepalivesC. Fast RSVP hellosD. Loss of signal

Correct Answer: ADSection: (none)Explanation


QUESTION 22In order to pinpoint the reason for a routing recursion error, which network management tool should a networkmanager consult?

A. Debug (for BGP output)B. Snmp routing trapsC. Syslog (for BGP errors)D. Rmon events group



QUESTION 23The Cisco IOS SLB feature is a Cisco IOS-based solution that provides server load balancing. This featureallows you to define a virtual server that represents a cluster of real servers, known as a server farm. When aclient initiates a connection to the virtual server, the IOS SLB load balances the connection to a chosen realserver, depending on the configured load balance algorithm or predictor. Which three implementation modesmay be used to deploy SLB? (Choose three.)

A. Router modeB. One-arm modeC. Three-arm modeD. Bridge mode inline

Correct Answer: ABDSection: (none)

Explanation


QUESTION 24Which resource will be targeted by a TCP SYN flood attack?

A. Connection tables on the target hostB. Syn cookies on the target hostC. Send buffers on transit routersD. Shared memory on the routers closest to the target



QUESTION 25There is a summary route on PG-R2 for 192.168.1.0/24 with a next hop of PG-R4 in the following the exhibit.Which change would make PG-R2 to prefer a path through PG-R1 to reach 192.168.1.0/24?

A. Change the link between PG-R1 and PG-R2 to Area 0B. Convert Area 1 to a stub area and decrease the cost between PG-R1 and PG-R3 to 1C. Create a virtual link between PG-R1 and PG-R2 and decrease the cost between PG-R1 and PG-R3 to 1

D. Create a virtual link between PG-R1 and PG-R2



QUESTION 26What are two considerations to using IP Multicast delivery? (Choose two.)

A. No congestion avoidanceB. Not for bandwidth intensive applicationsC. No guaranteed delivery mechanismD. Source sends multiple data streams out each interface



QUESTION 27While planning network availability, which two factors should be taken into consideration? (Choose two.)

A. Mean time before failureB. Mean time to discover the failureC. Mean time to notificationD. Mean time to repair



QUESTION 28Which two design criteria are for an out-of-band network? (Choose two.)

A. Vendor diversityB. Circuit diversityC. Protocol diversityD. Device diversity

Correct Answer: BDSection: (none)Explanation


QUESTION 29Which two statements are true about MLP interleaving? (Choose two.)

A. It fragments and encapsulates all packets in a fragmentation header.B. Packets smaller than the fragmentation size are interleaved between the fragments of the larger packets.C. Packets larger than the fragmentation size are always fragmented, and cannot be interleaved, even if the

traffic is voice traffic.D. It fragments and encapsulates packets that are longer than a configured size, but does not encapsulate

smaller packets inside a fragmentation header.



QUESTION 30WRED is short for Weighted Random Early Detection. Which two descriptions are correct concerning WRED?(Choose two.)

A. WRED throttles TCP-based applications to avoid congestion within the queue servicing the traffic.B. WRED provides bandwidth guarantees for packets within a queue, and tells the scheduler the order in

which queues should be served.C. WRED allows thresholds to be applied to give higher priority applications access to limited buffer resources.D. WRED can inform remote devices that there is congestion on the network by setting the pause bit within the

ToS field, instructing end devices to throttle their transmissions.



QUESTION 31You work as a network engineer for the PG company, study the exhibit carefully. For traffic from CE3 anddestined for 10.1.1.1, what is the label at the bottom of the stack as the packet goes between ASBR2 andASBR1?

A. 20B. 30C. 40D. 90



QUESTION 32Observe the following exhibit carefully. Router PG-A receives a packet destined for loopback 10 on router PG-D. Which path should this packet take on its way to the destination interface?

A. PG-A-> PG-C-> PG-F-> PG-DB. PG-A-> PG-C-> PG-E-> PG-DC. PG-A-> PG-C-> PG-DD. PG-A-> PG-C-> PG-E-> PG-F-> PG-D



QUESTION 33You are the Cisco Network Designer in Company.com. Which of these practices should you follow whendesigning a Layer 3 routing protocol?

A. Never peer on transit links.B. Build squares for deterministic convergence.C. Build inverted U designs for deterministic convergence.

D. Summarize routes at the distribution to the core to limit EIGRP queries or OSPF LSA propagation.



QUESTION 34Observe the topology presented in the following exhibit, there is a full mesh in the core and the PE-CE protocolis EIGRP. Which path is preferred from CE1 to CE3?

A. CE1-PE1-PE3-CE3B. CE1-PE1-PE2-PE3-CE3C. CE1-PE1-CE2-PE2-PE3-CE3D. CE1-PE1-PE2-CE3



QUESTION 35The PG company has just merged with the VR company. However, they keep IGP and BGP independent ofeach other. A common ISP provides them with services for their Internet connectivity. During the merge, the PGcompany and the VR company will provision a point-to-point link between the two networks. What is thesimplest design option that will allow data to travel between A and B without passing through the ISP?

A. Configure iBGP between the two networks and block each others route's from the ISPB. Configure OSPF and make OSPF routes more attractive than the same routes learned via ebgp from the

ISPC. Configure EBGP between the two networks and block each other's routes from the ISPD. Configure OSPF between the two networks and block each others route's from the ISP

Correct Answer: CSection: (none)

Explanation


QUESTION 36Which statement about CiscoWorks 2000 Inventory Manager is true?

A. It uses SNMP v1.B. It scans devices for hardware information.C. It scans and records the operational status of devices.D. When the configuration of a device changes, the inventory is automatically updated.



QUESTION 37Which item can reduce IP address spoofing effectively and dynamically?

A. Unicast Reverse Path ForwardingB. Route dampeningC. Egress Packet FilteringD. Ingress Packet Filtering



QUESTION 38A certain service provider network has IPsec tunnels between PE router loopbacks and dual- homed PErouters. The service provider carries infrastructure routes by use of OSPF and carries tunnel endpoints by usingBGP. What should the service provider do to provide fast convergence in the event of a link failure in itsnetwork?

A. Tune OSPF on all routersB. Carry IPsec tunnels in GRE among PE routersC. Carry IPsec tunnels in L2TPv3 among PE routersD. Carry IPsec tunnels in VPLS among PE routers



QUESTION 39Which three things can be restricted by the Class of Service in a traditional PBX? (Choose three.)

A. Dial plansB. Dialed numbersC. Voice mail promptsD. Phone features

Correct Answer: ABDSection: (none)Explanation


QUESTION 40PG-R2 and PG-R3 are learning Network A and Network B through EBGP peering sessions as shown in thefigure. PG-R2 and PG-R3 are also configured to peer by use of IBGP, and they are both advertising defaultroutes through OSPF. Network A is not able to reach destinations on Network A; which step should be takes tosolve this problem?

A. Create a tunnel between PG-R2 and PG-R3.B. Create static default routes pointing from PG-R1 and PG-R4 to PG-R2 and PG-R3, respectively.C. Convert PG-R3 and PG-R2 to ABRs so that PG-R1 and PG-R4 can choose the closest ABR to exit the

network.D. Create a tunnel between PG-R2 and PG-R4.



QUESTION 41Distribution layer: This layer includes LAN-based routers and layer 3 switches . When is a first- hop redundancyprotocol needed in the distribution layer?

A. OSPF is not supported by the designB. HSRP is not supported by the designC. Preempt tuning of the default gateway is neededD. The design implements Layer 3 between the access switch and the distribution switch



QUESTION 42Assume that Telnet users of your company are experiencing delays caused by cyclic congestion spikes. Trafficanalysis shows minimal use of UDP. Which technology can be used to solve this problem?

A. Deficit Round RobinB. Weighted REDC. Class Based Weighted Fair QueuingD. Committed Access Rate



QUESTION 43You are a network administrator for the PG company, study the exhibit carefully. You are responsible for thissmall EIGRP network and you want to change the primary path from PG-R5 to 10.1.2.0/24 so it passes throughPG-R2. How to modify the EIGRP metrics to change the path in this way?

A. Decrease the bandwidth on the link between PG-R5 and PG-R4 to 90; increase the delay on the same linkto 25

B. Increase the delay on the link between PG-R5 and PG-R3 to 25C. Increase the delay on the link between PG-R5 and PG-R4 to 30; increase the delay on the link between PG-

R5 and PG-R3 to 25D. Increase the bandwidth on the link between PG-R5 and PG-R2 to 130; decrease the delay on the same link

to 5



QUESTION 44Which one of the following technologies allows a router to route traffic according to the size of the incomingpacket?

A. PBRB. OSPF version 3C. MTRD. NBAR



QUESTION 45When dealing with transparent caching, where should the Content Engines e placed?

A. Close to the serversB. Close to the end usersC. At the Internet edgeD. In front of web server farms



QUESTION 46Header compression is the most cost-effective way to increase link efficiency or VoIP traffic.

A. TrueB. False



QUESTION 47Internet Protocol version 6 (IPv6) is an Internet Layer protocol for packetswitched internetworks. Two islands ofIPv6 networks are running IS-IS (IPv6 IGP). The routing protocol needs to operate over the tunnel over an IPv4network. Which tunneling method can achieve this objective?

A. ISATAP tunnelsB. Automatic IDC tunnelsC. 6to4 tunnelsD. GRE tunnels



QUESTION 48What is the reason that IGP advertisements should be disabled on an access link where a host is attached?

A. To reduce router overheadB. To prevent the injection of bad routesC. Because edge hosts are statically routedD. Because hosts do not run routing protocols



QUESTION 49The VPN termination function provides the ability to connect two networks together securely over the internet.Which of these is true of IP addressing with regard to VPN termination?

A. Termination devices need routable addresses inside the VPNB. Termination devices need not routable addresses inside the VPNC. IGP routing protocols will update their routing tables over an IPsec VPND. Addressing designs need to allow for summarization PassGuide.com-Make



QUESTION 50In a PIM sparse mode network, how to restore the flow of multicast traffic when a link fails along a branch of amulticast distribution tree?

A. The traffic reverts to the shared tree while the downstream router recalculates the RPF interface and sendsa new PIM join message to the RP.

B. The downstream receivers notice the loss of the multicast flow and resend PIM join messages to

reestablish the tree.C. The downstream receivers notice the loss of the multicast flow and resend IGMP Membership Reports to

reestablish the tree.D. The router downstream of the break recalculates the RPF interface when it notices a change in the unicast

routing table and immediately sends a new PIM join message out from the new RPF.



QUESTION 51You are a network technician. A service provider is providing a QoS-based transport service. Three classeshave been defined in the core, including an Expedited Forwarding (EF) class for VoIP traffic. Which tool will youuse at the ingress for the EF class?

A. PolicingB. ShapingC. WREDD. CB-WFQ



QUESTION 52Which description is true about downstream suppression?

A. The ability of a fault management tool to generate alerts for only an upstream device failure and to suppressthe alarms related to all unreachable downstream sites

B. The ability of a router to suppress downstream route fluctuations to avoid introducing instability into thenetwork core

C. The ability of a network management station to perform root cause analysis on a network fault and removeduplicates of all other alarms resulting from fault symptoms

D. The ability of an element manager to restrict forwarding to critical performance alarms northbound to theManager of Managers and suppress other alarms



QUESTION 53Which option about MPLS-based L3VPN service is correct?

A. It is independent of the routed protocol.B. It offloads routing between sites to the service provider.C. It improves routing protocols and network convergence.

D. It allows for transparent routing across the service provider.



QUESTION 54You are a network technician for the PG company, study the following exhibits carefully. You have been taskedto review a proposal for adding redundancy to the non-redundant network in Exhibit 1. Exhibit 2 indicates theproposed redundant network. Which technology can provide faster convergence over the newly introducedlayer 2 domains?

A. Bi-directional Forwarding DetectionB. Hot Standby Router ProtocolC. Rapid Spanning TreeD. Unidirectional Link Detection



QUESTION 55You are the Cisco Network Designer in Company.com. Which of these are important when determining howmany users a NAS can support?

A. Bandwidth

B. Number of plug-ins per scanC. Total number of network devicesD. Number of checks in each posture assessment



QUESTION 56What is the result when the RP fails in this bidir-PIM multicast network according to the exhibit?

A. Multicast traffic will cease flowing from the source to the receivers until the RP or a backup RP comesonline.

B. Multicast traffic will continue flowing from the source to the receivers as normal.C. Multicast traffic from the source will continue to flow toward the LAN segment with the failed RP, but will

cease flowing from there to the receivers.D. Multicast traffic will cease flowing from the source to the RP.



QUESTION 57To ensure voice packets are kept within the Committed Information Rate (CIR) of a Frame Relay link, whatshould be used in the CPE?

A. PrioritizationB. ClassificationC. FragmentationD. Traffic shaping



QUESTION 58MPLS TE tunnel is created on a PE-router and terminates at another PE-router. Study the exhibit carefully. Aservice provider with a multi-area OSPF environment would like to set up Cisco MPLS TE tunnels amongprovider edge routers across area boundaries. The LSPs are configured with bandwidth constraints and explicitloose route hops as indicated by the arrows in the following path:PE1 -> ABR1 -> ABR2 -> PE2The network has enough resources to set up the Cisco MPLS TE tunnel from PE1 to PE2. For which deviceswill PE1 run CSPF?

A. All routers and links in Area 1 onlyB. All routers and links in Area 1 and Area 2 onlyC. All routers and links in Area 0, Area 1, and Area 2D. All routers and links in Area 1 and Area 0 only



QUESTION 59Senior management would like you to evaluate the risks to your network of offering VPWS, VPLS, GRE, orother tunneling services to your fiber-connected client base. Clients prefer to use Layer 2 switches as CEs.Which two tunneling services expose your network to minimal risk and satisfy the clients' requirements,including separation between providers and customer networks? (Choose two.)

A. VPWSB. 802.1QC. GRED. QinQ



QUESTION 60A certain service provider provides RFC 2547-based L3VPN service and uses OSPF to carry

infrastructure routes and MP-BGP to carry customer routes. It has also used a full mesh of Cisco MPLS TEtunnels with FRR for link and node protection. OSPF and BGP have not been tuned for faster convergence. Inthis service provider's network, which three failure types does Cisco MPLS TE FRR address? (Choose three.)

A. P (core) node failureB. PE-CE link failureC. PE-P link failureD. P-P link failure

Correct Answer: ACDSection: (none)Explanation


QUESTION 61Study the exhibit carefully. Configuring all routers in this network to run EIGRP in AS 100 and run EIGRP on allconnected links. If the link between PG-R3 and PG-R4 fails, how many queries will be received by PG-R5 andPG-R6 about the LANs?

A. PG-R5 will receive two queries: one for 192.168.1.0/24 and one for 192.168.2.0/24. PG-R6 will receive onequery for 192.168.1.0/24.

B. Neither PG-R5 nor PG-R6 will receive any queries for either 192.168.1.0/24 or PassGuide.com-Make C. PG-R5 will receive one query for 192.168.1.0/24 and PG-R6 will receive no queries.D. Both PG-R5 and PG-R6 will receive two queries: one for 192.168.1.0/24 and one for 192.168.2.0/24.



QUESTION 62You are the Cisco Network Designer in Company.com. Which two statements about Layer 3 access designsare correct? (Choose two.)

A. Convergence time is fractionally slower than STP.B. Broadcast and fault domains are increased.C. IP address space is difficult to manage.D. Fast uplink convergence is supported for failover and fallback.

Correct Answer: CDSection: (none)Explanation


QUESTION 63Study the exhibit carefully. All link costs are the same in this network. If running EIGRP on allrouters, what will happen if router PG-RB's fail to connect to 10.1.0.0/24?

A. Router PG-RA will redirect traffic destined for hosts attached to 10.1.0.0/24 towards router PG-RC.B. Any traffic router PG-RA sends to router PG-RC that is destined for a host attached to 10.1.0.0/24 will be

dropped at router PG-RC.C. Any traffic router PG-RA sends to router PG-RB that is destined for a host attached to 10.1.0.0/24 will be

dropped at router PG-RB. Since router PG-RA cannot determine if router PG-RB's link to 10.1.0.0/24 hasfailed, there will be a routing black hole.

D. Nothing, the network will still work fine.



QUESTION 64

For the following mechanisms, which two could provide fast Layer 2 down detection in Frame Relay networks?(Choose two.)

A. Asynchronous LMIB. Section 9 LMI convergenceC. A-bit signalingD. Millisecond LMI timers



QUESTION 65Which content networking device allows bandwidth configuration settings so that streaming content will not

interfere with other network traffic?

A. IP/TV Control ServerB. Content Distribution ManagerC. Content EngineD. IP/TV Broadcast Server



QUESTION 66Which tool enables a network designer to route traffic according to the source IP address?

A. Source routingB. MPLS Layer 3 VPNsC. Policy-based routingD. Unicast Reverse Path Forwarding



QUESTION 67Tom is a network administrator for the PG Ltd. He is having problems with redistribution routing loops betweentwo EIGRP processes. After studying the configurations, he determined there is no filtering configured on theroutes being redistributed. In order to avoid having a single point of failure, there are three routers configured toredistribute between the two routing protocols. Which one of the following items is a solution to minimizemanagement complexity?

A. Replace one of the EIGRP processes with an alternate IGPB. Reduce the number of routers redistributing between the two routing processesC. Build and apply a route filter based on the networks being redistributed between the two processesD. Use tags to control redistribution between the two processes PassGuide.com-Make



QUESTION 68The Internet Group Management Protocol (IGMP) is a communications protocol used to manage themembership of Internet Protocol multicast groups. IGMP is used by IP hosts and adjacent multicast routers toestablish multicast group memberships .What is the purpose of IGMP in a multicast implementation?

A. It is used in multicastB. It is not used in multicast

C. It dynamically registers individual hosts in a multicast group on a specific LAND. It is used on WAN connections to determine the maximum bandwidth of a connection



QUESTION 69The following exhibit shows us that all the routers in this network are running EIGRP on all links. In Network 1,all links are the same cost. In Network 2, router PG-RE prefers the path through PG-RC, and does not have afeasible successor. Which network converges faster in the event of the failure of the link between router PG-RAand 10.1.1.0/24?

A. Network 1, because there are fewer query hops through the networkB. Network 2, because there are more alternate paths availableC. Network 2, because routers PG-RC and PG-RD have feasible successorsD. Network 1, because all routers have feasible successors in this network



QUESTION 70The PG company is deploying OSPF on a point-to-multipoint Frame Relay network. The remote sites needn??tto communicate with each other and there are a relatively small number of sites (scaling is not a concern). Howto configure OSPF for this topology in order to minimize the additional routing information injected into thenetwork and keep the configuration size and complexity to a minimum?

A. Configure the link as OSPF nonbroadcast and manually configure each of the remote sites as a neighbor.B. Configure the link as OSPF broadcast and configure the hub router to always be the designated router.C. Configure the link as OSPF broadcast and configure a mesh group towards the remote routers.D. Configure the link at the hub router as OSPF point-to-multipoint and at the remote routers as OSPF point-to-

point.



QUESTION 71What is the way that an OSPF ABR uses to prevent summary route information from being readvertised froman area into the network core (Area 0)?

A. It advertises only inter-area summaries to the backbone.B. It uses poison reverse and split horizon.C. It only sends locally originated summaries to the backbone.D. It compares the area number on the summary LSA to the local area.



QUESTION 72According to the network in this exhibit, traffic directed towards 10.1.5.1 arrives at PG-R4.Which path will the traffic take from here?

A. It will take PG-R2.B. It will not take any path. PG-R4 will drop the traffic.C. It will take PG-R3.D. It will load share between PG-R2 and PG-R3.


Explanation/Reference:PassGuide.com-Make You Succeed To Pass IT ExamsPassGuide 352-001

QUESTION 73You are the Cisco Network Designer in Company.com. Which two characteristics are most typical of a SAN?(Choose two.)

A. NICs are used for network connectivity.B. Servers request specific blocks of data.C. Storage devices are directly connected to servers.D. A fabric is used as the hardware for connecting servers to storage devices.



QUESTION 74In the network presented in the following exhibit, all routers are configured to perform EIGRP on all interfaces.All interface bandwidths are set to 1000, and the delays are configured as displayed. In the topology table at

Router PG-RC, you see only one path towards 10.1.1.0/24. Why Router PG-RC only has one path in itstopology table?

A. Router PG-RB is not advertising 10.1.1.0/24 to Router PG-RC due to split horizon.B. Router PG-RD is not advertising 10.1.1.0/24 to Router PG-RC because Router PG-RC is its feasible

successor.C. Router PG-RD is not advertising 10.1.1.0/24 to Router PG-RC due to split horizon.D. Router PG-RB is not advertising 10.1.1.0/24 to Router PG-RC because Router PG-RC is its feasible

successor.



QUESTION 75Which VPN management feature would be considered to ensure that the network had the least disruption ofservice when making topology changes?

A. Dynamic reconfigurationB. Path MTU discoveryC. Auto setupD. Remote management



QUESTION 76In the network presented in the following exhibit, all routers are configured to run EIGRP on all links. All packetstransmitted during convergence are transmitted once (there are no dropped or retransmitted packets). What isthe maximum number of queries PG-R3 might receive for 192.168.1.0/24 if the link between PG-R1 and PG-R2fails?

A. Four queries, one each from PG-R2, PG-R4, PG-R5, and PG-R6B. No queries, because there aren't any alternate paths for 192.168.1.0/24C. Seven queries, one from PG-R2 and two each from PG-R4, PG-R5, and PG-R6D. One query, since the remote routers PG-R4, PG-R5, and PG-R6 are natural stubs in EIGRP



QUESTION 77When designing a converged network, which measures can be taken at the building access layer to helpeliminate latency and ensure end-to-end quality of service can be maintained? (Choose three.)

A. Rate limit voice trafficB. Onfigure spanning-tree for fast link convergenceC. Isolate voice traffic on separate VLANs

D. Classify and mark traffic close to the source



QUESTION 78Which two reasons are correct about building a flooding domain boundary in a link-state network? (Choosetwo.)

A. To increase the size of the Shortest Path First treeB. To aggregate reachability informationC. To provide an administrative boundary between portions of the networkD. To segregate complex and rapidly changing portions of the network from one another



QUESTION 79You work as a network technician for the PG Ltd. Study the exhibit carefully, router PG-RA is the hub router in aFrame Relay hub-and-spoke deployment. Configure router PG-RA's serial interface as a point-to-multipointinterface, and it is servicing three spoke routers. The link between Router PG-RC and the frame providerexperiences a service disruption, which causes the interface on Router PG-RC to go down. How does RouterPG-RA learn of this failure in the network and how does it react?

A. If OAM is configured between Router PG-RA and Router PG-RC, router PG-RA will be notified of the failureafter three missed OAM packets. After the third OAM packet is missed, the frame PVC becomes inactive,and this event terminates the routing process neighbor relationship established between Router PG-RA andRouter PG-RC.

B. Router PG-RA does not detect the failure in the network and its interface continues to remain in anoperational state. If routing is configured over this link, Router PG-RA must wait for the neighborrelationship to time-out before updating its routing table to account for the lost router and its networks.

C. Router PG-RA must wait for a full LMI status update from the provider frame switch before it is notifiedabout the PVC status. Once the full LMI status message is received, the routing process neighborrelationship between Router PG-RA and Router PG-RC is immediately terminated.

D. Router PG-RA immediately detects the failure via LMI notification and its interface is placed in a non-operational state. If routing is configured over this link, the neighbor relationship is terminated and therouting table is updated. The change is then propagated as appropriate to the rest of the network.



QUESTION 80In this network presented in the following exhibit, all routers are configured to perform EIGRP on all interfaces.All interface bandwidths are set to 1000, and the delays are configured as displayed. In the topology table atrouter PG-RC, only one path can be seen towards 10.1.1.0/24. Which description is correct?

A. Router PG-RB is not advertising 10.1.1.0/24 to router PG-RC due to a split horizon PassGuide.com-MakeB. EIGRP should advertise all available paths to 10.1.1.0/24 in the local topology table to all neighbors so this

condition is a bugC. Router PG-RD is not advertising 10.1.1.0/24 to Router PG-RC due to a split horizonD. Router PG-RC should have two paths to 10.1.1.0/24, while routers PG-RB and PG-RD should each have

only one path, indicating a route filter has been applied on Router PG-RC



QUESTION 81Which three types of LSA could each trigger a partial SPF? (Choose three.)

A. Type 2 LSA (Network Link Advertisements)B. Type 3 LSA (ABR Summary Link Advertisements)C. Type 4 LSA (ASBR Summary Link Advertisements)D. Type 5 LSA (Autonomous System External Link Advertisements)



QUESTION 82Which IP telephony deployment model uses an H.225 Gatekeeper-Controlled trunk for call admission controlwithin existing H.323 environments?

A. Single site with centralized call processingB. Single site with distributed call processingC. Multisite with centralized call processingD. Multisite with distributed call processing



QUESTION 83Which two reasons are valid for aggregating routing information within a network? (Choose two.)


A. To improve optimal routing within the networkB. To reduce the impact of topology changesC. To reduce the amount of information any specific router within the network must store and processD. To isolate the impact of DDoS attacks



QUESTION 84Which way can most effectively improve BGP convergence in the event that a point-to-point link, over which anEBGP session is running, fails?

A. Use BGP multihopB. Configure EBGP fast external falloverC. Enable BGP graceful restartD. Reduce the keepalive timer to the minimum value allowed



QUESTION 85According to the following exhibit, company 1 contains two autonomous systems (AS1 and AS2) connected viaISP A, which has an AS number of 100. Router PG-RB and Router PG-RC are advertising an aggregate ofX.X.X.0/23 so that AS1 is able to reach the two server farms. The two links from AS2 are not being usedefficiently. How can AS2 use both of the links coming into it?

A. Create another link between Router PG-RA in AS1 and ISP AB. Configure two static routes in Router PG-RA for X.X.X.0/23 pointing to Router PG-RB and Router PG-RCC. Advertise each X.X.X.0/24 independently from Router PG-RB and Router PG-RCD. Configure iBGP between Router PG-RB and Router PG-RC to load-share traffic once it reaches AS2



QUESTION 86Which is the reason that EIGRP uses queries?

A. To test known alternate paths and determine if they are loop-freeB. To find alternate loop-free paths that have been discarded due to split horizons

C. To test for neighbor state when the network topology is in fluxD. To withdraw routing information from the network



QUESTION 87Which two network design principles does this network violate on the basis of the following exhibit? (Choosetwo.)

A. HierarchyB. PredictabilityC. Fault toleranceD. Modularity



QUESTION 88While deploying IGP non-stop forwarding (NSF), which practice is the best for tuning routing protocol hello anddead timers?

A. The hello and dead timers should be tuned to allow NSF to continue forwarding after an initial failuredetection.

B. The routing protocol hello and dead timers should be decreased to the minimum.C. NSF-independent timers should be used so that routing protocol timers have no effect.D. The hello and dead timers should be tuned so the link failure is detected before NSF has the chance to

react to the failure.



QUESTION 89Which is the reason that H-VPLS is considered more scalable than flat VPLS?

A. It minimizes signaling overhead by building two separate layers pseudowire meshes.B. It minimizes signaling overhead by only requiring a full pseudowire mesh among N-PEs.C. It eliminates signaling overhead between the N-PE and U-PE.D. It eliminates signaling overhead on core devices.

Correct Answer: ABSection: (none)Explanation


QUESTION 90In a DMVPN network with next-hop servers, which two configurations provide redundancy? (Choose two.)

A. One tunnel interface configured to run over two DMVPN cloudsB. Two DMVPN clouds configured with one tunnel interface eachC. Two DMVPN clouds configured with two next-hop servers using anycast addressesD. Two next-hop servers configured to use a single tunnel interface within one DMVPN cloud



QUESTION 91A service provider would like to maximize forwarding memory, routing memory, and CPU resources on PEdevices for enterprise customers having very few sites (two to three) and a large number of prefixes (severalthousand). Which service should be offered by the service provider to these customers?

A. VPWS

B. InterAS L3VPNC. VPLSD. L3VPNs (RFC 2547-based)



QUESTION 92In a network, all routers deploy FIFO queuing. The primary application running on the network is data backupby use of FTP. At certain times, users experience cyclical performance degradation. Which two items canmitigate this problem and help ensure bandwidth is used effectively in the network? (Choose two.)

A. Traffic policingB. CB-WFQC. MDRRD. WRED



QUESTION 93Virtual Private LAN Services (VPLS) is a class of VPN that supports the connection of multiple sites in a singlebridged domain over a managed IP/MPLS network. VPLS presents an Ethernet interface to customers,simplifying the LAN/WAN boundary for Service Providers and customers, and enabling rapid and flexibleservice provisioning, because the service bandwidth is not tied to the physical interface. Which of thesestatements best describes VPLS?

A. Neither broadcast nor multicast traffic is ever flooded in VPLS.B. Multicast traffic is flooded but broadcast traffic is not flooded in VPLS.C. VPLS emulates an Ethernet switch, with each EMS being analogous to a VLAN.D. Because U-PE devices act as IEEE 802.1 devices, the VPLS core must use STP.



QUESTION 94Which two reasons are for instrumenting your network and network devices to collect performance data?(Choose two.)

A. To route traffic around constrained choke points in the networkB. To enable capacity planning decisionsC. To determine the impact of jitter and latency on application performanceD. To determine the locations at which QoS needs to be implemented



QUESTION 95In this network presented in the following exhibit, traffic destined for 10.1.3.1 arrives at PG-R5. Which path willbe taken by the traffic from here and why?

A. It will take the path PG-R3, PG-R2, PG-R1, because OSPF always prefers paths within an area.B. It will not take any path; the traffic will be dropped because PG-R2 is in a different autonomous system than

PG-R1 or PG-R3.C. It will take the path the path PG-R4, PG-R3, PG-R2, PG-R1, because this is the lowest cost path.D. It will not take any path; the traffic will be dropped because the summary (type 3) LSA advertised by PG-R1

into area 1 will not be readvertised back into area 0.



QUESTION 96Which three statements are correct about OSPF route summarization? (Choose three.)

A. A flat addressing scheme is required in order to summarize OSPF routes.B. OSPF internal routes can be summarized only at the ABRs.C. OSPF type 5 external routes can be summarized only at the ASBRs.D. Route summarization can lead to a more stable network.



QUESTION 97Study the following exhibit carefully. A service provider with a multi-area OSPF environment would like to deployMPLS TE tunnels among PE routers across area boundaries. Configure the LSPs with bandwidth constraintsand explicit loose route hops as indicated by the arrows in the following path:PE1 -> ABR1 -> ABR2 -> PE2Which two items identify devices that will execute constraint-based SPF in order to set up LSP from PE1 toPE2? (Choose two.)

A. PE1B. All routers in Area 1C. All ABRsD. All routers in Area 2



QUESTION 98VLAN Tagging, also known as Frame Tagging, is a method developed by Cisco to help identify packetstravelling through trunk links. When an Ethernet frame traverses a trunk link, a special VLAN tag is added tothe frame and sent across the trunk link .How does ERS use the VLAN tag?

A. Provide service internetworkingB. Support transparency for Layer 2 framesC. Indicate destination as a connection identifierD. Map to the DLCI in service internetworking



QUESTION 99Which tunneling mechanism provides confidentiality and tunneling capabilities?

A. L2TPv3B. IPsec ESPC. IPsec AHD. MPLS L3VPN



QUESTION 100What is one of the reasons that custom QoS ACLs are recommended over automatic QoSwhen configuring ports on a Catalyst 6500 for use with IP phones?

A. 79xx IP phones do not automatically mark voice packets with non-zero DSCP values.B. 79xx IP phones do not mark protocol packets such as DHCP, DNS, or TFTP with non-zero DSCP values.C. 79xx IP phones do not mark voice packets with optimal DSCP values.D. 79xx IP phones use a custom protocol to communicate CDP information to the switch.



QUESTION 101EIGRP supports internal and external routes. Which router should be configured as EIGRP stub routers whiledeploying EIGRP on a network?

A. Routers on the border of the EIGRP stub areaB. Routers never used to transit traffic between their neighboring upstream routers

C. Routers within the core of the networkD. Routers that do not need to originate any type of route into the autonomous system



QUESTION 102Fibre Channel, or FC, is a gigabit-speed network technology primarily used for storage networking. FibreChannel is standardized in the T11 Technical Committee of the InterNational Committee for InformationTechnology Standards (INCITS), an American National Standards Institute (ANSI) Caccredited standardscommittee. Which two of these correctly describe Fibre Channel? (Choose two.)

A. Supports multiple protocolsB. Works only in a shared or loop environmentC. Allows addressing for up to 4 million nodesD. Provides a high speed transport for SCSI payloads



QUESTION 103You work as a network administrator for the PG company. Study the exhibit carefully, the network is runningEIGRP. You need traffic from PG-R5 destined for 172.30.1.0/24 to be routed through PG-R4. You shouldcomplete which two actions combined? (Choose two.)

A. Change the bandwidth on the link between PG-R4 and PG-R5 to 110

B. Change the bandwidth on the link between PG-R2 and PG-R5 to 70C. Change the bandwidth on the link between PG-R1 and PG-R3 to 80D. Change the bandwidth on the link between PG-R3 and PG-R5 to 70



QUESTION 104The PG company connects a pair of sites with three GigE links between two routers with fairly high processorutilization. It has a great many pairs of hosts communicating between the sites, and some use applications thatmay be sensitive to packet re-ordering. How to maximize the utility of the links while adding minimal load to therouters?

A. Use policy-based routing to force all delivery order applications onto a single link and configure per-packetload sharing across the remaining two links

B. Verify that the total delay of each link is within 100 milliseconds of the other two links and configure per-packet load sharing across the three links PassGuide.com-Make

C. Set the link metrics so all three paths are installed in the routing table and use the default per-flow loadsharing across the links

D. Use multilink PPP to bundle the three links into a single logical link and adjust the routing metrics as needed



QUESTION 105Which two potential effects are caused by increasing the percentage of priority traffic? (Choose two.)

A. Can increase latency and jitter for priority trafficB. Can increase latency and jitter for non-priority trafficC. Must be avoided regardless of traffic patternsD. Will not ever change the performance of non-priority traffic



QUESTION 106Which security benefit can be provided by IPv4 anycast for a service such as DNS?

A. Robust detection capabilitiesB. Multiple paths to the serviceC. Improved availability of services during DoS attacksD. Mitigation of attacks



QUESTION 107The Cisco MDS 9000 Series Multilayer SAN Switches can help lower the total cost of ownership of the mostdemanding storage environments. By combining a robust and flexible hardware architecture with multiple layersof network and storage-management intelligence, the Cisco MDS 9000 Series helps you build highly available,scalable storage networks with advanced security and unified management. What method does the Cisco MDS9000 Series use to support trunking?

A. ISLB. VLAN TrunkC. VoQD. Enhanced ISL



QUESTION 108A service provider sets up LSP among all the edge routers in its network by using LDP. A user would like tomaintain its DSCP marking across the service provider backbone. Mark the MPLS packets with the appropriateEXP values according to QoS policies. Which step should be taken to classify and queue packets on egressnodes on the basis of EXP marking?

A. Disable penultimate hop poppingB. Use MPLS network-wide QoS propagationC. Copy IP DSCP at the ingress into MPLS EXPD. Copy MPLS EXP at penultimate hop into DSCP



QUESTION 109In the network presented below, configure routers PG-RE and PG-RF as route reflector clients of router PG-RA. When router PG-RE transmits a route to router PG-RA, which router or routers will router PG-RA send anupdate to?

A. Only iBGP routers, except router PG-REB. Only route reflector clients, except router PG-REC. All routers, except router PG-RED. Only EBGP routers



QUESTION 110Which two statements correctly describe OSPF flooding? (Choose two.)

A. Type 11 Opaque LSAs have area-local flooding scope.B. Type 1 and Type 2 LSAs have an area scope and are flooded only within an area boundary.C. Type 5 LSAs are converted to Type 7 LSAs in an NSSA area.D. OSPF areas help in containing the flooding scope and hiding topology details of other parts of the network.



QUESTION 111Which QoS requirement applies to streaming video traffic?

A. One-way latency of 150 ms to 200 msB. Jitter of 30 ms or lessC. Packet loss of 2 percent or lessD. 150bps of overhead bandwidth



QUESTION 112For the following options, which deployment can provide the least amount of downtime and also allow for dualactive-active hubs?

A. Dynamic VPN tunnelsB. Stateful IPsec failover tied to an HSRP address on dual hubsC. Gre tunnels from spokes to dual hubsD. Stateful IPsec failover with dead peer detection across dual hubs



QUESTION 113According to the network provided in the following exhibit, all routers are performing OSPF on all links and alllinks have the same cost. OSPF timers have not been modified on any router. Which network will convergefaster, and why, if the link between 10.1.1.0/24 and router PG-RA=fails?

A. Network 1 will converge faster, because there are fewer flooding hops through the network.B. They will converge at exactly the same time, because OSPF will flood before calculating the new path.C. They will converge at approximately the same time, because all routers have an equal cost alternate path.D. Network 2 will converge faster, because there are more alternate paths available.



QUESTION 114Tom is a network administrator for the PG Ltd. Study the exhibit carefully, he uses four Ethernet links toconnect routers PG-RA and PG-RB for the purpose of load-sharing transit traffic. Tom also thinks about theimpact of this design on the convergence of the network. The network currently runs IS-IS. What advice will yougive to Tom?

A. Configure the four links as broadcast links within IS-IS, because Designated Intermediate Systems help withscaling.

B. Consider EIGRP for high density neighbor situations, since link state protocols do not scale well in highlyredundant topologies.

C. Configure the four links as point-to-point links within IS-IS, to reduce the complexity of the shortest path treeand improve convergence.

D. Make two of the four interfaces passive, so IS-IS only runs on two of them.



QUESTION 115The Schuyler and Livingston Iron Works has been working on getting its network security under control. It hasset up VPN with IPSec links to its suppliers. It has installed network vulnerability scanners to proactively identifyareas of weakness, and it monitors and responds to security events as they occur. It also employs extensiveaccess control lists, stateful firewallimplementations, and dedicated firewall appliances. The company has been growing very fast lately and wantsto make sure it is up to date on security measures. Which two areas of security would you advise the companyto strengthen? (Choose two.)

A. Intrusion protectionB. IdentityC. Secure connectivityD. Security management

Correct Answer: BDSection: (none)

Explanation


QUESTION 116Why build link state flooding domain boundaries in large-scale networks running OSPF or IS-IS? (Choose two.)

A. Flooding domain borders block the transmission of external routing information in the network, whichimproves scaling and convergence times.

B. Network administrators can quickly find specific destinations when detailed link state information is sortedby flooding domain in the link state database.

C. Doing so limits the extent of SPF and allows the use of PRC for some best path calculations.D. Doing so provides logical break points at which to troubleshoot individual parts of the network, rather than

trying to troubleshoot the whole network at once.



QUESTION 117Which attack type may be indicated by unsolicited ACKs directed toward an unused portion of a network's IPaddress space?

A. A smurf attack against a host located elsewhere, spoofing the unused IP spaceB. A SYN flood attack against that IP address spaceC. IP backscatter from an attack located elsewhere, spoofing your unused IP spaceD. An ICMP flood attack against that IP address space



QUESTION 118Which description is correct about SNMPv3?

A. It expands the SNMP Response protocol message so that the message must be used by managers inresponse to traps sent by agents.

B. It adds the GetNext protocol message.C. It provides authentication.D. It adds the Inform protocol message.



QUESTION 119

You are the network consultant from Company.com. One of your customer has six sites, three of which processa large amount of traffic among them. He plans to grow the number of sites in the future. Which is the mostappropriate design topology?

A. Full meshB. Peer-to-peerC. Partial meshD. Hub and spoke



QUESTION 120A service provider is offering four classes of service, with each class mapped to a separate queue. Somecustomers complain about receiving out-of-order packets, which cause application degradation. Which QoSpolicy activity most likely causes these out-of-order packets?

A. RemarkingB. Traffic shapingC. PolicingD. Wred



QUESTION 121You are a network administrator for the PG Ltd. You are tasked to add a new OSPF router to an existingnetwork. Later, you discover that two existing routers in the same area as the new router are using differentMD5 keys to authenticate their neighbor relationships. Which option is correct if the new router is connected bymeans of a separate interface?

A. The three routers need to be in three different areas.B. The MD5 keys on the two neighboring routers must be changed to the same key.C. Each router must have a unique MD5 key to sign packets with.D. Each interface may have a unique MD5 key to sign packets with.



QUESTION 122Which filter type will you use for all nontransit networks running BGP with multiple, peering,autonomous systems?

A. An IGP filter to prevent internal routes from being transmitted to outside autonomous systems

B. A BGP route count filter to prevent the nontransit network routing tables from becoming overwhelmedC. A BGP filter to prevent locally originated routes from being transmitted to both peering autonomous systemsD. A BGP filter to prevent routes learned from one peer from being readvertised to the other peer



QUESTION 123Users at the Charleville Company began experiencing high network delays when Internet connectivity wasenabled for all users. After investigating the traffic flow, you determine that peer- to-peer traffic from a musicdownload site is consuming a large amount of bandwidth. Which QoS mechanism can you implement toimprove the network response time?

A. Use CBWFQ to queue the peer-to-peer traffic into the default traffic class.B. Use class-based WRED to randomly drop the peer-to-peer traffic during network congestions.C. Use class-based policing to limit the peer-to-peer traffic rate.D. Use class-based shaping to delay any excessive peer-to-peer traffic.



QUESTION 124When designing, why would a network architect use active performance monitoring instead of passiveperformance monitoring?

A. For performance verification (independent of application servers and users)B. To collect history and event statistics (specific to network devices)C. To decrease router CPU utilization on end systems (both user and server)D. To maintain accurate network statistics (independent of end systems)



QUESTION 125During periods of congestion, which two impacts are of traffic shaping on traffic flows? (Choose two.)

A. Increased delayB. Fewer packets droppedC. Less bandwidth consumptionD. More packets dropped

Correct Answer: ABSection: (none)

Explanation


QUESTION 126Which two options are true about the impact flooding domain boundaries have when built in OSPF? (Choosetwo.)

A. They increase convergence time by adding the time required to run two full Shortest Path Firstcomputations on the area border routers.

B. They decrease convergence time by automatically summarizing reachability information transmitted throughthe network, thereby decreasing the number of routes that must be installed in each router's routing table.

C. They decrease convergence time by reducing the complexity and size of the shortest path trees in theindividual areas.

D. They isolate network failures within a domain.



QUESTION 127Which statement about IDS/IPS design is correct?

A. An IPS should be deployed if the security policy does not support the denial of traffic.B. An IPS analyzes a copy of the monitored traffic and not the actual forwarded packet.C. An IDS analyzes a copy of the monitored traffic and not the actual forwarded packet.D. Bandwidth considerations must be taken into account since IDS is deployed inline to traffic flow.



QUESTION 128You are a network engineer for the PG Ltd. You are measuring one-way delay between two campus networksconnected through an MPLS network. One campus is in Chicago and the other is in Dallas. The company hasone appliance at each campus with which to measure the delay. Which of the following is a must for the twoappliances in order for the engineer to measure one- way delay with the best possible accuracy?

A. Connections to the CE routersB. A common TOD reference sourceC. A local Stratum 1 clock sourceD. The same physical interface to the network


Explanation/Reference:PassGuide.com-Make You Succeed To Pass IT Exams

PassGuide 352-001

QUESTION 129Which control plane problem can be prevented by implementing QoS, and how to eliminate the problem?

A. BGP instability, by prioritizing Precedence 6 traffic (per RFC 791)B. OSPF instability, by using WRED to prioritize Precedence 6 routing updates (per RFC 791)C. OSPF instability, by remarking to Precedence 6 (per RFC 791)D. BGP instability, by means of traffic shaping updates (per RFC 791)



QUESTION 130Study the following exhibit carefully, in which area should you put the link between router PG-RA and router PG-RB in order to avoid suboptimal routing?

A. Area 1B. Area 3C. Area 4D. Area 1, and create a virtual link between routers PG-RA and PG-RB

Correct Answer: D

Section: (none)Explanation


QUESTION 131What are disadvantages to storage directly attached to the application servers? (Choose three.)

A. ReliabilityB. ScalabilityC. RedundancyD. Manageability



QUESTION 132For the following items, which one is the weakness of rate limiting as a response to a DoS attack?

A. Rate limiting does not detect attacks.B. Rate limiting is too processor-intensive.C. Rate limiting does not drop enough packets.D. Rate limiting only works on inbound traffic.



QUESTION 133Fair queuing is a scheduling algorithm used in computer and telecommunications networks to allow multiplepacket flows to fairly share the link capacity. How does Fair Queuing divide bandwidth?

A. Equally between all flowsB. Between all destinations relative to traffic loadC. Equally between all classes of serviceD. Between classes of service based on traffic load



QUESTION 134A certain service provider is supporting a customer who uses IPsec tunnels between dual-homed CE routers.The service provider carries infrastructure routes using OSPF and carries tunnel endpoints using BGP. Which

two steps will be taken by the service provider to provide fast convergence in case of node failure in itsnetwork? (Choose two.)

A. Tune OSPF on all routersB. Tune BGP on all routersC. Carry IPsec tunnels in L2TPv3 among PE routersD. Carry IPsec tunnels in VPLS among PE routers



QUESTION 135Sun Stable is a global insurance company with headquarters located in Houston, Texas. The campus there ismade up of a number of office buildings located within the same vicinity. In 2003, a new building, Building 331Bwas added. The additional building houses approximately 1000 employees. Rather than deploy a private branchexchange (PBX) in the new building, Sun Stable has decided to implement an IP telephony solution. Externalcalls will be carried across a MAN link to another building, where a gateway connects into the worldwide PBXnetwork of Sun Stable. Voice mail and unified messaging components are required and all IP phones andworkstations should be on separate VLANs and IP subnets. Which IP telephony deployment best suits theirneed?

A. Single-siteB. Multisite with centralized call processingC. Multisite with distributed call processingD. Clustering over the WAN



QUESTION 136You are a network technician for the PG Ltd. You are redistributing between EIGRP autonomous systems 100and 200. Assume that there are no routing filters or aggregation applied anyplace in the network, which item isthe result when a query originating in AS 100 reaches the router redistributing between the two autonomoussystems?

A. The redistributing router will reply to the query in AS 100, and generate a new query in AS 200.B. The redistributing router will reply to the query in AS 100, and send an update indicating the new routing

information in AS 200.C. The redistributing router will forward the query from AS 100 into AS 200.D. The redistributing router will generate a new query into AS 200, and wait until it has PassGuide.com-Make

You Succeed To Pass IT Exams



QUESTION 137While adjusting the LSA generation time in OSPF, which two factors should be taken into consideration?(Choose two.)

A. Number of locally generated LSAsB. Interface stabilityC. Target convergence timeD. Size of the area



QUESTION 138Which roaming option will keep them on the same IP subnet when client traffic is being bridged through LANinterfaces on two WLCs?

A. Layer 1 intercontroller roamingB. Layer 2 intercontroller roamingC. Layer 3 intercontroller roamingD. Layer 4 intercontroller roaming



QUESTION 139Which two items are true concerning H-VPLS? (Choose two.)

A. Split horizon is enabled to avoid loops.B. There is a full mesh of pseudowires.C. There is a partial mesh of pseudowires.D. Split horizon is disabled to forward packets.



QUESTION 140Which advantage is of creating an in-band instead of an out-of-band management network?

A. Separate transport equipmentB. Lower equipment costsC. Protection of production trafficD. Protection of management traffic







QUESTION 142When a router running EIGRP takes alternate paths into consideration, which ones will it consider loop-free?

A. Ones in which the feasible distance is the same as the best possible routeB. Ones in which the reported distance is less than the feasible distanceC. Ones in which the reported distance is the same as the metric of the best possible pathD. Ones in which the reported distance is equal to the feasible distance PassGuide.com-Make



QUESTION 143Which two items could be used to determine how much jitter is occurring across a customer's existing network?(Choose two.)

A. Synthetic transactions in conjunction with Service Assurance Agent (IP SLA)B. SNMP GET requests and put commands between CallManager and VoIP phonesC. External test equipmentD. RMON probes



QUESTION 144You are the Cisco Network Designer in Company.com. Which is not major scaling, sizing, and performance

consideration for an IPsec design?

A. Connection speedB. Number of remote sitesC. Features to be supportedD. Types of devices at the remote site



QUESTION 145In secure IP multicast, which protocol handles group key management?

A. GDOIB. MD5C. IPsecD. SHA-256



QUESTION 146Which two disadvantages are of using proxy servers as compared to stateful firewalls? (Choose two.)

A. Proxy servers must be explicitly set to support new applications and protocols.B. Proxy servers typically perform more slowly.C. Proxy servers expose the source addresses of traffic flows.D. Proxy servers use network address translation as their primary security mechanism.



QUESTION 147The Domain Name System Security Extensions (DNSSEC) are a suite of IETF specifications for securingcertain kinds of information provided by the Domain Name System (DNS) as used on Internet Protocol (IP)networks. Which two security services are provided by DNSSEC? (Choose two.)

A. Data validityB. Data integrityC. Data origin authenticationD. Data confidentiality



QUESTION 148Which three components comprise the AVVID framework? (Choose three.)

A. Common network infrastructureB. Abstracted integrationC. Network solutionsD. Intelligent network services



QUESTION 149Which action can identify and monitor denial of service attacks?

A. Select attack counter-measuresB. Establish normal network characteristicsC. Deploy deep packet inspection appliancesD. Deploy access control lists that match well-known attack vectors



QUESTION 150In order to improve scaling and convergence speed, what capability of EIGRP can be configured while runningEIGRP on point-to-multipoint multi-access networks?

A. Route filters on the remotesB. Spoke routers as EIGRP stubsC. Floating static routes on the remotesD. Fast hellos between the hub and spoke routers



QUESTION 151Study the following exhibit carefully. A customer is deploying three unicast applications (voice, video, and data)

between these two PCs. OSPF is performing as a single area, Area 0, from PG- R1 to PG-R2. Three MPLS TEtunnels have been set up between PG-R1 and PG-R2. Each tunnel carries only one application's traffic. Whatis needed on PG-R1 and PG-R2 to separate he three types of traffic into the appropriate tunnels?

A. VPLSB. Multiple VRFsC. Policy-based routingD. TE autoroute announce



QUESTION 152SCSI interfaces provide for faster data transmission rates (up to 80 megabytes per second) than standardserial and parallel ports. In addition, you can attach many devices to a single SCSI port, so that SCSI is reallyan I/O bus rather than simply an interface Which two statements about SCSI are true?

A. The bus is limited to 64 devices.B. It is a full-duplex serial standard.C. It is a half-duplex serial standard.D. It allows up to 320 MB/s of shared channel bandwidth.



QUESTION 153MPLS VPN is a family of methods for harnessing the power of Multiprotocol Label Switching (MPLS) to createVirtual Private Networks (VPNs). When using MP-BGP peering to connect two MPLS-VPN service providers toone another between route reflectors. Which type of routes should be exchanged between the ASBRs?

A. Infrastructure routesB. PE loopback addressesC. Labeled routes

D. Vpn routes



QUESTION 154The Sender Policy Framework (SPF) is an open standard specifying a technical method to prevent senderaddress forgery. When configuring the SPF exponential backoff timer, which one of the following items isamong the primary issues to consider?

A. Number of external routesB. Area sizeC. Average SPF run timeD. Interface stability



QUESTION 155Which method can most efficiently implement IP multicast in a network without using RPs?

A. RPs can't be eliminated; they're mandatory in multicast networks.B. Implement PIM dense mode multicast to eliminate the need for RPs.C. Implement source-specific multicast and utilize the functionality of IGMPv3 to replace the RPs.D. Implement source-specific multicast and utilize the functionality of IGMPv2 to replace the RPs.







QUESTION 157A service provider would like to provide a service allowing customers to span VLANs across multiplecampuses. Which configuration will allow this service provider to achieve its desiredresult with a minimal effect on the scalability of PE routers?

A. RFC 2547-based service, with MPLS/LDP between PE and CE (in other words, CsC)B. VPWS service, with 802.1Q between PE and CEC. RFC 2547-based service, with L2TPv3 between PE and CED. VPWS service, with QinQ between PE and CE



QUESTION 158In this network presented in the following exhibit, configuring all routers to run OSPF on all interfaces. If youexamine the OSPF database on PG-R4, in which LSA will you find 10.1.5.0/24?

A. 10.1.5.0/24 is in a router (type 1) LSA generated by PG-R3.B. 10.1.5.0/24 is in a summary (type 3) LSA originated by PG-R3.C. 10.1.5.0/24 is in a network (type 2) LSA originated by PG-R3.D. 10.1.5.0/24 is not in any LSA in the OSPF database at PG-R4, because PG-R4 and PG-R3 are in different

areas.



QUESTION 159According to the following exhibit, will traffic sourced from router PG-RA and destined for a host on network10.1.1.0/24 always take the optimal path to that host?

A. No, if router PG-RA chooses to forward traffic destined to a host on the 10.1.1.0/24 network to router PG-RB, it will take a less than optimal path to reach its destination.

B. It doesn't matter which path to a host on 10.1.1.0/24 router PG-RA chooses, through router PG-RB or routerPG-RC, since they are equal in cost.

C. Yes, router PG-RA has enough information to always direct traffic to router PG-RC when forwarding trafficto a host on the 10.1.1.0/24 network.

D. Yes, router PG-RB will forward the traffic towards 10.1.1.0/24 correctly, if router PG-RA chooses that path.



QUESTION 160You are the Cisco Network Designer in Company.com. Your company is using the G.711 codec with 802.11aaccess point radios. This can support a maximum of how many phones per access point?

A. 5

B. 10C. 14D. 20



QUESTION 161You work as a network administrator for the PG company. You are responsible for a large-scale EIGRPnetwork and you have discovered that one hub-and-spoke topology in the network is generating a lot of linkflaps. You have tried many times to reduce the number of link flaps, but it seems that the stability of the hub-and-spoke topology can not be improved. The reason for this is that most failures seem to result from poweroutages in a number of locations.Which action should you take?

A. Demand that uninterruptible power supplies be installed at every point in the network to prevent futureoutages

B. Summarize the routes advertised into the core of the network to reduce the impact of these frequent failuresC. Switch routing protocols to IS-IS, which handles large neighbor counts better and supports PassGuide.com-

MakeD. Switch routing protocols to OSPF, then create area boundaries to reduce the size of fault domains



QUESTION 162In the network presented in the following exhibit. Traffic destined for 10.1.3.1 arrives at PG-R1. Which path willthe traffic take from here and why?

A. Through PG-R2, because PG-R3 is in a different autonomous systemB. Through PG-R2, because it is an intra-area pathC. Through PG-R3, because PG-R1 will only have a summary (type 3) LSA from PG-R2D. Through PG-R3, because it is the lowest cost path



QUESTION 163In this BGP setup shown in the following exhibit, AS 400 advertises 10.1.1.0/24 to its peers. Border routers inAS 100 reset the next-hop router to themselves. PG-R2, PG-R3, and PG-R4 are route reflector clients of PG-R1 and PG-R5 is a non-client iBGP peer of PG-R1. Which option is the BGP next hop on PG-R5 for theaddress 10.1.1.0/24?

A. PG-R6B. PG-R5C. PG-R2D. PG-R4



QUESTION 164A company is using a multi-site centralized call processing model. Which feature ensures that the remote siteIP phones will still have limited functionality given a WAN outage?

A. Call Admission ControlB. TAPIC. MGCPD. SRST



QUESTION 165Which option is true about how PIM sparse mode operates?

A. If an RP fails and there is no backup RP, multicast traffic will cease flowing in the network.B. RPs can become bottlenecks, since multicast traffic must always flow through the RP and down the shared

tree to get to the receivers.C. If an RP fails and there is no backup RP, new sources that begin sending will not be discovered by the other

PIM routers in the network.

D. RPs switch each traffic flow to the shortest path tree when more than one receiver is present.



QUESTION 166What is the reason that you want to synchronize IGP and BGP convergence by advertising an infinite metric inOSPF or setting the overload bit in IS-IS?

A. To prevent traffic loss when the path from a router to a BGP next hop traverses another router that has notyet learned the path via BGP

B. To prevent churning between multiple available routes reachable through IGP and BGPC. To prevent BGP from converging faster than IGP, which can cause temporary routing loops in the networkD. To prevent routes which are learned both from IGP and BGP from forming a routing loop



QUESTION 167There are two hub-and-spoke networks in the following exhibit. Each has about 60 branches spread over awide area. Connect routers PG-RE and PG-RF to two different frame providers. Problems with one providerhave impacted branches connected to the other provider and reaching the data center. Which is the best placeto build flooding domain boundaries to isolate these WAN issues?

A. At routers PG-RB and PG-RC, because this will provide a good balance between separating the complextopologies behind routers PG-RD, PG-RE, and PG-RF from the core and good route aggregation

B. At routers PG-RB and PG-RF, because this will provide good route aggregation and prevent routing alongsuboptimal paths in the case of link failure

C. At router PG-RA, because this will provide optimal route aggregation and prevent suboptimal routing in thecase of link failure

D. At routers PG-RD, PG-RE, and PG-RF, because this will provide good route aggregation and also separatecomplex topologies within the network from one another



QUESTION 168When you decide on Campus QoS Design elements, which two statements correctly identify considerations tobe taken into account?

A. Voice needs to be assigned to the hardware priority queue.B. Voice needs to be assigned to the software priority queue.C. Call signaling must have guaranteed bandwidth service.D. Strict-priority queuing should be limited to 50 percent of the capacity of the link.



QUESTION 169Study the following exhibit carefully. Only the standard spanning tree is running on PG-SWB, routers PG-RAand PG-RC are running EIGRP. By which mechanism could Router PG-RC discover the failure when the linkfrom PG-RA to PG-SWB fails?

A. By means of the expiration of the EIGRP dead timerB. By means of the clearing of the PG-RA bit from PG-SWBC. As a result of the loss of carrierD. By means of an EIGRP goodbye message from router PG-RA



QUESTION 170Which description is correct about connecting an IP multicast domain that is operating in PIM dense mode to aPIM sparse mode domain?

A. The interconnection must be made at the rendezvous point of the PIM sparse mode domain.B. The connection can be made at any location in the network, but PIM sparse mode and PIM dense mode

cannot inter-operate; IGMP must be used to provide the interconnection.C. The connection can be made at any location in the network, as PIM sparse mode will inter- operate

seamlessly with PIM dense mode.D. PIM dense mode and sparse mode domains are not inter-operable and cannot be connected.



QUESTION 171MPLS is a standards-approved technology for speeding up network traffic flow and making it easier to manage.Two MPLS service providers (SP1 and SP2) are offering inter-provider RFC 2547/4364-based IP-VPN serviceto an enterprise customer. IP traffic among some of the customer's sites has to traverse both of the serviceproviders. The service providers and the enterprise do not know what the minimum MTU is along the end-to-end path. How to guarantee that large packets are not dropped for MTU-related reasons?

A. Configure the IP sender or senders to clear the DF flag in the IP headerB. Enable Path MTU Discovery on all devices within the enterpriseC. Enable Path MTU Discovery on all devices within SP1 and SP2D. Configure the IP sender or senders to set the DF flag in the IP header



QUESTION 172Which two of the following Cisco router platforms support Multicast Distributed Fast Switching? (Choose two.)

A. 3600 seriesB. 7200 series with NSE-1C. 7500 seriesD. 12000 series



QUESTION 173The boss of the PG company plans to dual-home two service providers for Internet connectivity. The fullInternet routing table will be accepted from each provider to provide optimal outbound routing. PG has obtainedaddress space and an AS to use in connecting to the Internet.Which mechanism is the simplest one that PG can use to prevent it from becoming a transit between the twoservice providers?

A. Build a route filter that only allows networks which are tagged with the LOCAL community to be advertisedto each of the service providers.

B. Build a route filter that only allows the specific networks the enterprise owns to be advertised to each of theservice providers.

C. Build a route filter that only allows networks with an empty AS path to be advertised to each of the serviceproviders.

D. Build a traffic filter that only allows traffic originating from the specific networks the enterprise owns to beforwarded towards the service providers.



QUESTION 174Which description is correct about how MTU mismatches are addressed in the IS-IS neighbor-formationprocess?

A. IS-IS does not check for MTU mismatches when forming a neighbor relationship.B. IS-IS checks the locally configured MTU against the MTU advertised in neighbor hello packets.

C. IS-IS checks the locally configured MTU against the MTU advertised in neighbor LSPs.D. IS-IS pads hellos, so neighbor relationships will not be formed on links with mismatched MTUs.



QUESTION 175Which three reasons are to summarize link state topology information? (Choose three.)

A. To create boundaries for containing potential network changes and instabilitiesB. To permit traffic engineering between areasC. To reduce the amount of routing information being advertisedD. To hide detailed topology information



QUESTION 176Observe the network presented in the following exhibit. Which routes will be installed in the routing table atrouter PG-RE?

A. Neither the OSPF nor the EIGRP routeB. The OSPF routeC. The OSPF and EIGRP routesD. The EIGRP route



QUESTION 177Which two descriptions are not correct about IS-IS? (Choose two.)

A. ISIS pads each hello to a full MTU and can detect MTU mismatches between neighbors.B. With the exception of point-to-point, IS-IS treats all networks and interfaces as broadcast.C. In IS-IS, setting an overload bit will cause traffic to be black-holed.D. IS-IS allows NSSA-like behavior via Level 2 to Level 1 route leaking.



QUESTION 178You are the Cisco Network Designer in Company.com. In your company site, a NAS is both physically andlogically in the traffic path. The NAS identifies clients solely based on their MAC addresses. In which accessmode has this NAS been configured to operate?

A. Layer 2 modeB. Layer 2 Edge modeC. Layer 3 modeD. Layer 3 In-Band mode



QUESTION 179Study the exhibit carefully. In this network, configure PG-R1, PG-R2, and PG-R3 in EIGRP AS 100, andconfigure PG-R3 and PG-R4 in EIGRP AS 200. PG-R3 is configured to redistribute between the two EIGRPautonomous systems. Then, PG-R1 loses its connection to 192.168.1.0/24. Which source will PG-R4 receive aquery from, or if it will not receive a query, why not?

A. PG-R4 will not receive any queries for 192.168.1.0/24, because it's not in the same autonomous system asPG-R1 or 192.168.1.0/24.

B. PG-R4 will not receive any queries for 192.168.1.0/24. PG-R1 will not generate any queries for thisdestination because there are no other paths available in the network.

C. PG-R4 will receive one query for 192.168.1.0/24 from PG-R1 itself, since PG-R1 has lost its connection tothe destination.

D. PG-R4 will receive one query. Once AS100 has converged, PG-R3 will have no route to 192.168.1.0/24, soit will initiate a query into AS 200.



cisco passguide 352-001 exam questions & answers

Documents