Ensurepass

QUESTION 131

Your design client has requested that you ensure that the client devices are not dynamically configured with incorrect DNS information. When finalizing the network design, which security option must be configured on the switches?

 

A.

IGMP snooping

B.

DHCP snooping

C.

root guard

D.

DNS snooping

 

Correct Answer: B

 

 

 

QUESTION
132

You are designing an 802.11 wireless network to include a controller as a central configuration point and access points across several remote sites. Which two aspects will manage the flow of the traffic to meet these design considerations? (Choose two.)

 

A.

WLAN local switching with VLAN mapping requires that VLAN ID that is mapped on the AP to match a dynamic interface that is configured on the wireless LAN controller.

B.

Layer 3 roaming is not supported for locally switched WLANs.

C.

The 802.1x authentication for a client associated to an AP on a locally switched WLAN is always handled at the wireless LAN controller side.

D.

The access point can receive multicast traffic in the form of multicast packets from the WLC.

E.

WLAN access lists can be applied only to centrally switched WLANs.

 

Correct Answer: BE

 

 

QUESTION 133

Your firm has been awarded a contract to design a Criminal Justice Information Services Version 5.0-compliant network utilizing advanced authentication policies. Which two methods could be utilized? (Choose two.)

 

A.

biometric

B.

PKI

C.

UKI

D.

password

 

Correct Answer: AB

 

 

QUESTION 134

In a network design using carrier Ethernet, which three mechanisms can be used to improve Layer 2 down detection and thereby reduce routing convergence time? (Choose three.)

 

A.

BFD

B.

Ethernet port debounce timers

C.

link-state tracking

D.

object tracking

E.

fast IGP hello

 

Correct Answer: ADE

 

 

QUESTION 135

What are two functions of an NSSA in an OSPF network design? (Choose two.)

 

A.

It overcomes issues with suboptimal routing when there are multiple exit points from the area.

B.

It allows ASBRs to inject external routing information into the area.

C.

An ASBR advertises Type 7 LSAs into the area.

D.

An ABR advertises Type 7 LSAs into the area.

E.

It uses opaque LSAs.

 

Correct Answer: BC

 

QUESTION 136

You are tasked to design a QoS policy for a service provider so they can include it in the design of their MPLS core network. If the design must support an MPLS network with six classes, and CEs will be managed by the service provider, which QoS policy should be recommended?

 

A.

map DSCP bits into the Exp field

B.

map IP precedence bits into the DSCP field

C.

map flow-label bits into the Exp field

D.

map IP CoS bits into the IP Precedence field

E.

map IP ToS bits into the Exp field

 

Correct Answer: A

 

 

QUESTION 137

A company supports IPv4 and IPv6 addresses, and they need to be able to support flow- based translations for multiple IPv6 devices to a single IPv4 address. Which address family translation design solution should be recommended?

 

A.

stateful NAT-PT

B.

NAT-PT

C.

stateless NAT64

D.

stateful NAT64

 

Correct Answer: D

 

 

QUESTION 138

You are asked to design a large campus network that will be using multicast for data transport. Which feature should be enabled at the Layer 2 access edge for host-only ports?

 

A.

PortFast

B.

BPDU guard

C.

PIM-SM

D.

PIM query interval

 

Correct Answer: A

 

 

QUESTION 139

When creating a network design, which one of these options provides for basic Layer 2 client isolation to prevent broadcast traffic exposure?

 

A.

SVI

B.

VLAN

C.

routed port

D.

edge port

 

Correct Answer: B

 

 

 

 

QUESTION 140

When network summaries are created for access networks in a network design, how does it change the behavior of the Shortest Path First (SPF) running in a backbone area?

 

A.

There would be fewer incremental SPFs.

B.

There would be fewer partial SPFs.

C.

There would be fewer full SPFs.

D.

There would be no change with the SPFs.

 

Correct Answer: B

 

Free VCE & PDF File for Cisco 352-001 Practice Tests

Instant Access to Free VCE Files: CCNA | CCNP | CCIE …
Instant Access to Free PDF Files: CCNA | CCNP | CCIE …

Comments are closed.