Ensurepass.com : Ensure you pass the IT Exams
2018 Jan Cisco Official New Released 300-101
100% Free Download! 100% Pass Guaranteed!
http://www.EnsurePass.com/300-101.html
Implementing Cisco IP Routing
Question No: 51 – (Topic 4)
Which common issue causes intermittent DMVPN tunnel flaps?
-
a routing neighbor reachability issue
-
a suboptimal routing table
-
interface bandwidth congestion
-
that the GRE tunnel to hub router is not encrypted
Answer: A
Question No: 52 – (Topic 4)
Refer to the following output:
Router#show ip nhrp detail
10.1.1.2/8 via 10.2.1.2, Tunnel1 created 00:00:12, expire 01:59:47 TypE. dynamic, Flags: authoritative unique nat registered used NBMA address: 10.12.1.2
What does the authoritative flag mean in regards to the NHRP information?
-
It was obtained directly from the next-hop server.
-
Data packets are process switches for this mapping entry.
-
NHRP mapping is for networks that are local to this router.
-
The mapping entry was created in response to an NHRP registration request.
-
The NHRP mapping entry cannot be overwritten.
Answer: A
Topic 5, Infrastructure Security
Question No: 53 – (Topic 5)
What does the following access list, which is applied on the external interface FastEthernet 1/0 of the perimeter router, accomplish?
router(config)#access-list 101 deny ip 10.0.0.0 0.255.255.255 any log
router (config)#access-list 101 deny ip 192.168.0.0 0.0.255.255 any log
router (config)#access-list 101 deny ip 172.16.0.0 0.15.255.255 any log router (config)#access-list 101 permit ip any any
router (config)#interface fastEthernet 1/0 router (config-if)#ip access-group 101 in
-
It prevents incoming traffic from IP address ranges 10.0.0.0-10.0.0.255, 172.16.0.0- 172.31.255.255, 192.168.0.0-192.168.255.255 and logs any intrusion attempts.
-
It prevents the internal network from being used in spoofed denial of service attacks and logs any exit to the Internet.
-
It filters incoming traffic from private addresses in order to prevent spoofing and logs any intrusion attempts.
-
It prevents private internal addresses to be accessed directly from outside.
Answer: C
Question No: 54 – (Topic 5)
How is network layer addressing accomplished in the OSI protocol suite?
-
Internet Protocol address
-
Media Access Control address
-
Packet Layer Protocol address
-
Network Service Access Point address
-
Authority and Format Identifier address
Answer: D Explanation:
OSI network-layer addressing is implemented by using two types of hierarchical addresses:
network service access-point addresses and network-entity titles.
A network service-access point (NSAP) is a conceptual point on the boundary between the network and the transport layers. The NSAP is the location at which OSI network services are provided to the transport layer. Each transport-layer entity is assigned a single NSAP, which is individually addressed in an OSI internetwork using NSAP addresses.
Question No: 55 – (Topic 5)
Which traffic does the following configuration allow?
ipv6 access-list cisco
permit ipv6 host 2001:DB8:0:4::32 any eq ssh line vty 0 4
ipv6 access-class cisco in
-
all traffic to vty 0 4 from source 2001:DB8:0:4::32
-
only ssh traffic to vty 0 4 from source all
-
only ssh traffic to vty 0 4 from source 2001:DB8:0:4::32
-
all traffic to vty 0 4 from source all
Answer: C
Question No: 56 – (Topic 5)
What two situations could require the use of multiple routing protocols? (Choose two)
-
when using UNIX host-based routers
-
when smaller broadcast domains are desired
-
because having multiple routing protocols confuses hackers
-
when migrating from an older Interior Gateway Protocol (IGP) to a new IGP
-
when all equipment is manufactured by Cisco
-
when there are multiple paths to destination networks
Answer: A,D Explanation:
Simple routing protocols work well for simple networks, but networks grow and become more complex. While running a single routing protocol throughout your entire IP internetwork is desirable, multiprotocol routing is common for a number of reasons, including company mergers, multiple departments managed by multiple network administrators, multivendor environments, or simply because the original routing protocol is no longer the best choice. Often, the multiple protocols are redistributed into each other during a migration period from one protocol to the other.
Question No: 57 – (Topic 5)
Router RTA is configured as follows:
RTA (config)#router rip
RTA(config-router)#network 10.0.0.0
RTA(config-router)#distribute-list 44 in interface BRIO RTA(config-router)#exit
RTA(config)#access-list 44 deny 172.16.1.0 0.0.0.255 RTA(config)#access-list 44 permit any
What are the effects of this RIP configuration on router RTA? (Choose two)
-
no routing updates will be sent from router RTA on interface BRIO to router RTX
-
router RTA will not advertise the 10.0.0.0 network to router RTX
-
the route to network 172.16.1.0 will not be entered into the routing table on router RTA
-
user traffic from the 172.16.1.0 network is denied by access-list 44
-
the routing table on router RTA will be updated with the route to router RTW
Answer: C,E Explanation:
Distribute list are used to filter routing updates and they are based on access lists. In this case, an access list of 44 was created to deny the route from network 172.16.1.0/24 so this route will not be entered into the routing table of RTA. But the route from RTW can be entered because it is not filtered by the access list A and B are not correct because the distribute list is applied to the inbound direction of interface BRI0 so outgoing routing updated will not be filtered.
Distribute list just filters routing updates so user traffic from network 172.16.1.0 will not be denied.
Question No: 58 – (Topic 5)
Which three statements are true when configuring redistribution for OSPF? (Choose three)
-
The default metric is 10.
-
The default metric is 20.
-
The default metric type is 2.
-
The default metric type is 1.
-
Subnets do not redistribute by default.
-
Subnets redistribute by default.
Answer: B,C,E
Question No: 59 – (Topic 5)
Observe the exhibit.
If the command variance 3 were added to RTE, which path or paths would be chosen to route traffic to network X?
-
E-B-A
-
E-B-A and E-C-A
-
E-C-A and E-D-A
-
E-B-A, E-C-A and E-D-A
Answer: B Explanation:
Advertised distance of RTD is greater than FD of RTE-RTC-RTA, so the route through D will not be used.
Question No: 60 – (Topic 5)
Refer to the exhibit.
On the basis of the partial configuration, which two statements are correct? (Choose two.)
-
Only routes matching 10.0.1.0/24 will be advertised out Ethernet 0.
-
Only routes 10.0.1.0/24 will be sent out all interfaces.
-
Only routes 10.0.1.0/24 will be allowed in the routing table.
-
Only routes matching 10.0.0.0/8 will be advertised out Ethernet 0.
-
Only routes matching 10.0.0.0/8 will be advertised out interfaces other than Ethernet 0.
-
All routes will be advertised out interfaces other than Ethernet 0.
Answer: A,E Explanation: Explanation
In this case, the following algorithm is used when multiple distribute-lists are used:
-
First check which interface is being sent out. If it is Ethernet 0, distribute-list 2 is applied first. If the network is denied then no further checking is done for this network. But if distribute-list 2 permits that network then distribute-list 1 is also checked. If both distribute- lists allow that network then it will be sent out.
-
If the interface is not Ethernet 0 then only distribute-list 1 is applied.
Now let’s take some examples. If the advertised network is 10.0.1.0/24, it will be sent out all interfaces, including Ethernet 0. If the advertised network is 10.0.2.0/24, it will be sent out all interfaces, excepting Ethernet 0. If the advertised network is 11.0.0.0/8, it will be dropped.
Note: It is possible to define one interface-specific distribute-list per interface and one protocol-specific distribute-list for each process/autonomous-system.
(For more information, please read: http://www.cisco.com/en/US/tech/tk365/technologies_tech_note09186a0080208748.shtml)
100% Ensurepass Free Download!
–Download Free Demo:300-101 Demo PDF
100% Ensurepass Free Guaranteed!
–300-101 DumpsEnsurePass ExamCollection Testking Lowest Price Guarantee Yes No No Up-to-Dated Yes No No Real Questions Yes No No Explanation Yes No No PDF VCE Yes No No Free VCE Simulator Yes No No Instant Download Yes No No HOT CATEGORY!HOT EXAM!100-105 Dumps VCE PDF
200-105 Dumps VCE PDF
300-101 Dumps VCE PDF
300-115 Dumps VCE PDF
300-135 Dumps VCE PDF
300-320 Dumps VCE PDF
400-101 Dumps VCE PDF
640-911 Dumps VCE PDF
640-916 Dumps VCE PDF
70-410 Dumps VCE PDF
70-411 Dumps VCE PDF
70-412 Dumps VCE PDF
70-413 Dumps VCE PDF
70-414 Dumps VCE PDF
70-417 Dumps VCE PDF
70-461 Dumps VCE PDF
70-462 Dumps VCE PDF
70-463 Dumps VCE PDF
70-464 Dumps VCE PDF
70-465 Dumps VCE PDF
70-480 Dumps VCE PDF
70-483 Dumps VCE PDF
70-486 Dumps VCE PDF
70-487 Dumps VCE PDF
220-901 Dumps VCE PDF
220-902 Dumps VCE PDF
N10-006 Dumps VCE PDF
SY0-401 Dumps VCE PDF
-