CCNA-Study01 Flashcards

Question

What is the benefit of using a point-to-point connection? (select 3) .Flexible correspondence with the movement and expansion of connection points .The contracted communication speed is guaranteed and highly available .A dedicated line with a point-to-point connection is the cost of the WAN line service .Communication quality is high without delay thanks to line congestion condition .It is a simple configuration that connects the points 1 to 1

Answer 1

.Communication quality is high without delay thanks to line congestion condition .It is a simple configuration that connects the points 1 to 1 .The contracted communication speed is guaranteed and highly available

Answer 2

Monitor communication flow and deny inappropriate communication

Answer 3

Get request | GetNext Request

Answer 4

Discards the information obtained with LLDP after 200 seconds after the packets stop reaching LLDP

Answer 5

Cisco routers can operate as a TFTP servers | Does not have encryption function

Answer 6

You can select the OS | The CPU and memory can be selected

Answer 7

Assigned channels have overlaps in frequency | The AP has not been installed in the appropriate place

Answer 8

Hub and Spoke

Answer 9

The Client VPN connects to a VPN using TLS | Within a site VPN, multiple terminals can use that one VPN

Answer 10

The switch learns the MAC address of the devices which are directly connected

Answer 11

Enable preemption

Answer 12

(CONFIG) #IP NAT INSIDE SOURCE STATIC 172.31.1.1 200.190.10.30

Answer 13

.You can install multiple OSs on one physical server | .Create a virtual machine using a hypervisor

Answer 14

FE80: 2A20: 193C: B30F: A: B: 332F: A 2001 :: 402 Explanation: The incorrect options are as follows. · FE80: 1315 :: 2245 :: 909A It is incorrect because it has used "::" twice. 210.128.20.1 Separator characters are dots, which is incorrect for IPv6. FE80: 143T: 4264: 35AA: 4365: 3214 It is incorrect because t and z are used, which are not hexadecimal characters.

Answer 15

.Support of dynamic routing .Does not encrypt .Supports multicast

Answer 16

IPv6 addresses are 128 bits Separated every 16 bits They are separated using a colon (:)

Answer 17

.Source MAC address .Fcs .type Explanation: Ethernet frames consist of the following fields · Preamble: bit string (10101010 repetition) for synchronizing the sender and receiver (10101010 ... SFD (Start Frame Delimiter): A mark to notify that the frame begins (10101011) -Destination MAC address (DA: DESTINATION MAC address): Frame destination MAC address -Source MAC address (SA: Source MAC Address): Source MAC address of the frame · Type: Type of data carried by frame (0x0800: IPv4, 0x86dd: IPv6, etc.) · Data: Data carried by the frame FCS (Frame Check Sequence): CRC (Circuit Redundancy Check) Checksum Data for Frame Error (Data Defect) Detection

Answer 18

A system deriving IP address from domain name Explanation: DNS (Domain Name System) is a system that supports domain names and IP addresses.

Answer 19

Improves IP phone call quality

Answer 20

Which of the following is correct about local database authentication (select 2) .Available as an AAA authentication method .Create a database with the username command Explanation: Other options are as follows. • Create a database with the service password-encryption command This creates a database with the username command. The service password-encryption is a command to encrypt password. · Can not be used for AAA It can be used as AAA authentication method. · Use the information registered on the external server Using the information registered on the external server is RADIUS and TACACS + authentication, so it is incorrec

Answer 21

Uses prefix length One of the criteria for selecting the optimal route Explanation: [Selection criteria for optimal route] The optimal path is selected in this order : 1. Longest Match (Longest Match) 2. Ad value (administrative distance value) 3. Metric Longest match is a rule that gives priority to the route of the prefix length (detailed) route of the destination network in the routing table. Therefore, the correct answers are: · One of the criteria for selecting the optimal route · Uses prefix length For example, when there are three paths below for the routing table · Route 1: 0.0.0/0 (default route) · Route 2: 172.16.0.0/16 · Route 3: 172.16.2.0/24 If it receives a packet addressed to the destination "192.168.1.1", it uses route 1 as it applies only to route 1. If it receives a packet addressed to "172.16.1.1", it corresponds to route 1 and path 2, but it uses route 2 as the Longest Match. If it receive a packet addressed to "172.16.2.1", all routes are applicable, but it uses route 3 as its the longest Match. Other options are as follows. · Value representing reliability for routing protocol The above is a description of the AD value. · The priority is lower than the AD value Longest match takes precedence over AD value. · List for filtering packets under conditions such as source IP address and protocol The above is a description about the access list.

Answer 22

.Client VPN .Site-to-site VPN Explanation: Internet VPN has two connection forms. · Site-to-site VPN The VPN end point sits in between points. A tunnel connection using IPsec is performed between the routers that become endpoints. ``` Client VPN (Remote Access VPN) A tunnel connection is made with the VPN device at the base where you want to connect to the client PC. VPN (SSL / TLS VPN) connections using IPSec and SSL or TLS is performed. ``` Therefore, the correct answers are: · Site-to-site VPN · Client VPN The other options are not valid forms.

Answer 23

255. 255.255.192 255. 255.255.128 Explanation: First, to secure 300 subnets and 50 hosts, we must calculate the required number of bits. To create 300 subnets, the formula "n squared of 2 ≥ 300" is used to calculate n ≥ 9. In other words, you can create 300 subnets if you have at least 9 bits. Next, to prepare 50 hosts, it is the formula of "2 N-2 50 50", and it is 6 at N ≧. If you have 6 bits or more, you can prepare 50 hosts. Subnet masks that meet these two conditions are correct. "255.255.255.128" will be when converted to a binary number and "11111111 11111111 11111111 10000000". The third octet 8-bit + fourth octet is used as the sub net part and 7 bits of the remaining fourth octets as the host. Therefore, the above condition is met, so it is correct. "255.255.255.192" is converted to binary number to "1111111111111111111111111111111111111 11000000". Using 2 bits of 8-bit + fourth octets of the third octet and 6 bits of the remaining fourth octets as the host. Therefore, this subnet mask also meets the above conditions as it meets the above conditions.

Answer 24

.OS information of adjacent devices .Interface of adjacent device .Administrative device management Address Explanation: LLDP is an "IEEE standard protocol" that sends a frame with its own information on adjacent devices. LLDP can check the following information: · Port ID (adjacent device interface) · System name (host name of adjacent device) · System Description (OS information of adjacent device) · Time Remaining (the number of seconds to hold LLDP information) · System Capabilities (Device Type of Adjacent Device) · Management Addresses (Administrative Device Administration Address) Therefore, the correct answers are : · Interface of adjacent device · OS information of adjacent device · Admin address of adjacent device Other options are as follows: · VTP domain name of adjacent device · VTP password for adjacent devices Because VTP is a Cisco proprietary protocol, LLDP, an IEEE standard does not contain VTP information.

Answer 25

channel-group 1 mode passive Explanation To wait for LACP negotiation from the other party, set the mode to "Passive".

Answer 26

The route learned by EIGRP Explanation: If you learn a route to the same destination in multiple routing protocols, the routing protocol route with the lowest value (AD value) called Administrative Distance is used in the routing table. ``` AD value (administrative distance value) is a value that represents the reliability of the routing protocol. If routing information for the same destination network is learned by multiple routing protocols, use route information learned by the low AD value routing protocol. ``` ``` Comparing the AD value of RIP, OSPF, EIGRP, since the value of EIGRP is lower, the route learned by EIGRP is selected. The metric (hop count and cost) is the value used for route selection if multiple paths are learned in the same routing protocol. ``` Therefore, the correct answer is: · Route learned by EIGRP Other options are as follows: · Route learned by OSPF These AD values are higher than EIGRP. · Load balancing with RIP and OSPF route · Load balancing with RIP and EIGRP route · Load balancing with OSPF and EIGRP route · Load balancing with three routes It is incorrect because it does not perform load balancing using routes learned by different routing protocols.

Answer 27

.(Config) #logging Console 4 .(Config) #logging Trap 4 ``` Explanation: Other options are as follows. · (Config) #logging Monitor 3 · (Config) #logging buffered 3 These are commands that change the severity level to "error". ``` · (Config) #logging trap 5 · (Config) #logging Monitor 5 These are commands that change the severity level to "notification".

Answer 28

.ROMMON occurs after sending a break signal within 60 seconds from turning on the router .It is a Mode used for password recovery and iOS recovery

Answer 29

Network device Data center Explanation: Physical security measures are one of the security programs. [Main security program] The security program has three main things. ■ Training It is an educational program that regularly carries out users. It should be noted that it should be aware of the system and the security policy of the organization and recognize how to act to the user. ■ User awareness (user's awareness) It is a program that educates attention to pay attention when the user uses system. You may want to make sure that you are taking action as learned in training For example, there is an effort to send a person who created a simulatedly created fraudulent mail from the security department to the employee, and the person who clicked on the link in the mail is a re-training target person. ■ Physical Security Measures It is a security program such as ID card and living room authentication, so that the user does not stand in the unlimited area.

Answer 30

Face and Duplex do not match

Answer 31

OSPF Explanation Cost is calculated from the bandwidth of the interface. Therefore, the correct answer is: · OSPF

Answer 32

.Do not send SNMP traps even if a security violation occurs .Even after a security violation occurs, the frame of permitted MAC address is transferred Explanation: Other options are as follows. · Transfer the not permitted MAC address frame even after a security violation occurs Frames with unauthorized MAC addresses are not forwarded. · Send SNMP trap if a security violation occurs Sending an SNMP trap is RESTRICT mode and SHUTDOWN mode. · After a security violation occurs, not the frame of the permitted MAC address is not forwarded The above is the operation of Shutdown mode.

Answer 33

.Does not synchronize other switches and VLAN information .Can create and delete VLANs .Transfers VLAN information sent from other switches Explanation: VTP is a protocol for synchronizing VLAN information between switches. VTP has three modes: Server Mode, Client Mode, and Transparent Mode. Server mode is a mode in synchronizing VLAN information. It can create and delete VLANs. Client mode is a mode in synchronizing VLAN information. It can not create and delete VLANs. Transparent mode is a mode that does not synchronize VLAN information. It can create and delete VLANs. Both modes transfers VLAN information from ton rank port. Transparent mode does not synchronize, but transfers VLAN information sent from other switches. Therefore, even if there is a switch in transparent mode between server mode switches and client mode switches, switches in server mode and client mode can be synchronized. Therefore, the correct answers are: · Does not synchronize other switches and VLAN information · Can create and delete VLANs · Transfer VLAN information sent from other switches Other options are as follows. • Synchronizes other switches and VLAN information Transparent mode is incorrect because VLAN information is not synchronized. · Sends from access port of own VLAN information Transparent mode is incorrect because it does not send its own VLAN information. · Does not transfer VLAN information sent from other switches VLAN information sent from other switches is transferred.

Answer 34

.it is a setting that is necessary to connect a PC and IP Phone to a single port of the switch .The port voice VLAN is set to is the access port Explanation: Audio VLAN is a function to separate IP Phone and PC data into separate VLANs. Voice traffic can be processed preferentially by setting voice VLANs and logically separating voice traffic and data traffic. When setting a voice VLAN, you need to be aware of the following: · The port you set voice VLAN to is the access port • In the Voice VLAN's setting port, you can enable CDP (CDP is enabled by default, so no CDP settings are required) · PortFast is enabled automatically when you set a voice VLAN Therefore, the correct answers are: · It is a setting that is necessary when connecting the PC and IP Phone to a single port of the switch · The port to set voice VLAN to is the access port Other options are as follows: · When setting a voice VLAN, you need to disable CDP The CDP must be enabled, as it will be required by IP Phone detection and voice VLAN notification. • When setting a voice VLAN, you also need settings for enabling CDP CDP is enabled by default, so CDP settings are not required. • When setting a voice VLAN, you also need settings for enabling PortFast When you set the audio VLAN, PortFast is automatically enabled.

Answer 35

Generation of security violation BPDU Guard Violation Explanation: "Err-Disabled" is automatically invalidated by the switch behavior. The main reason for Err-Disabled is as follows. · BPDU Guard Violation (STP Operation, which is a function to prevent Layer 2 loop) · Security violation (port security behavior that is a function to prevent unauthorized connection) Therefore, the correct answer · Generation of BPDU guard violation · Generation of security violation is. Other options are as follows. · Connect a PC to the default state switch If port security is enabled, it may be an err-disabled state, but by default it is an error because port security is disabled. • Enter the "Shutdown" command on the interface SHUTDOWN is an error because it is a command to disable the port with "Manual". The SHUTDOWN state is "AdministrativeY DOWN". • Enter the "no shutdown" command on the interface No shutdown is an error because it is a command to manually enable port.

Answer 36

Serial 0 is administratively down, line protocol is down Explanation: The output of the show interfaces serial0 command indicates the state of the first serial0 IS. The next LINE PROTOCOL IS ~ part represents the state of the data link layer. "Administratively Down" is displayed when the administrative interface is shut down.

Answer 37

Severity Level 5 It is a common occurrence but you should consider giving it attention Explanation: Syslog classifies messages by severity. Severity Level 5 "Notifications" represents a normal operation but a status that requires attention. For example, there are changes in interface status and state changes in routing processes. Therefore, the correct answers are: · Severity level 5 · Is a common occurance but you should consider giving it attention Other options are as follows. · Severity level 3 · When an error has occurred Severity level 3 represents an error. · Severity level 1 Severity level 1 represents "alerts" which should be addressed immediately. Severity level 0 to 4 are the level of equipment that affects the functionality of the device, but it does not require immediately attention.

Answer 38

.Communication is defined by the policy .The main constituent is the network Explanation: With only setting the policy describing inbound/outbound communication permissions, without consideration to kind of equipment or settings chosen on Cisco DNA CENTER, all required settings are reflected from the Cisco DNA Center to SD-Access fabric. This is a network implemented by an intent based network. As a result, the network administrator will be able to switch the implementation of the following: · Manage the network instead of the individual equipment · Cearly set the communication you want to implement and the network defined in the policies. Therefore, the correct answers are: · The network is the main constituent · Communication is defined by policy. Other options are as follows. · Manage each device individually · In advance verification is necessary for what setting Cisco DNA Center is automatically configured by the policy. It is not necessary to manage individual settings for each device. · Unnecessary communication is registered in a rejection list and secuity is maintained Cisco DNA Center allows the communications defined by the policy. It is not a denial list (blacklist) method.

Answer 39

Decimal number: 187 hexadecimal: BB Explanation: It is useful to remember the line "128, 64, 32, 16, 8, 4, 2 and 1" to convert binary numbers into decimal numbers. If the binary digit is "1", add its correspondings numeric number from the above list (with mind to the order of the digits) In this way, "10111011" is "128 + 0 + 32 +16 + 8 + 0 + 2 + 1 = 187". To convert from binary to hexadecimal, we will divide binary lines into the first 4 digits last 4 digits. We will first convert the divided numbers into decimal numbers and convert it into a hexadecimal number. Doing this, we can split "10111011" into 4 digits "1011" and "1011" . Now we convert them to decimal numbers. In the same way as with binary conversion above convert the first 4 digit number like this "1011" is "8 + 0 + 2 + 1 = 11", and converting "13" to hexadecimal gives "D". Since the lower 4 digit is the same number, it is also "B". Therefore, the correct answer is "0xbb".

Answer 40

.PC specifies HSRP virtual IP address as default gateway .Only one router is activated Explanation: HSRP (Hot Standby Router Protocol) is a Cisco proprietary protocol that makes the default gateway redundant using virtual IP addresses and virtual MAC addresses. The virtual IP address to be held in HSRP sets an arbitrary IP address from the free IP address that belongs to the same network as the interface to enable HSRP. For example, if you want to enable HSRP with FA0 / 0 with an address of "192.168.1.1/24", select and configure any IP address from "192.168.1.2 to 192.168.1.254". The HSRP virtual MAC address is automatically determined by the group number of HSRP (number specified at the time of setting). Therefore, the correct answers are: • Only one is activated ` • PC specifies HSRP virtual IP address as default gateway Other options are as follows. • Both become active HSRP is incorrect because it is active / standby configuration. Normally, the active router acts as a default gateway and the standby tower replaces the active router when the active router fails. • Load balancing is performed on two routers It is incorrect because only one is active. • PC specifies the router's real IP address as the default gateway If you specify an actual IP address as a default gateway, you must manually specify the IP address of another default gateway when a router with that IP address has failed. It is incorrect because it can not benefit from HSRP.

Answer 41

R1 own RAM Explanation: "Logging Buffered [Level]" is a command to change the output message level to the buffer. By entering the question command, the Syslog level saved in the R1 buffer (RAM) changes. Therefore, the correct answer · R1 own RAM is. Other options are as follows. · R1 own console The Logging Console command applies. · R1 own VTY The Logging Monitor command applies. · External storage location The Logging Trap command applies.

Answer 42

Michael, CBC-MAC, GMAC in MIC algorithm Used to check if the data has not been tampered with Explanation: Other options are as follows. · It is an algorithm for encrypting data The algorithm for encrypting data is "RC4" and "AES". · WPA authentication method The WPA authentication method is an incorrect because it is "PSK" or "IEEE 802.1X / EAP". · Used as Layer 2 address It is an error because it is a description about MAC address.

Answer 43

.Classifies packets and performs queuing according to priority Explanation: Congestion Management is performed by classification and marking packets for each type, allocating to the specified queue and scheduling. Congestion management can reduce the impact on important communication even if congestion occurs. Therefore, the correct answer is: · Classifies packets and performs queuing according to priority · Discards low priority packets before congestion occurs and prevents congestion The above falls under "congestion avoidance". · Saves Syslog This is not congestion management. · Send routing updates when path information changes The above is a description of dynamic routing.

Answer 44

IP Phone and Video Conference Traffic uses LLQ Explanation: In principle, congestion management is performed based on the following policy. · Non-dialogue data transfer (such as backup), non-dialogue audio and video (such as monitoring application recording and video recording) use round robin queues such as CBWFQ · Set the guaranteed bandwidth as needed for commercial packets · Interactive voice and video, such as IP telephones and video conferencing, use a queue that is prioritized (such as LLQ PQ) · Voice and video assign to different classes and make flexible configuration changes · In the LLQ settings, sufficient PQ size and prevent discarding packets due to queue shortages Therefore, the correct answer is: · Traffic for IP phones and video conferencing uses LLQ Other options are as follows: · Use LLQ for video and audio of surveillance camera Even with voice and video traffic, it is incorrect because it does not have to be a top priority. · Use LLQ for business web application traffic Even if it is a business traffic, it is not necessary to use LLQ because it does not require low delay, low jitter, low loss, so it is not necessary to use LLQ. · Assign a large amount of bandwidth to IP phone IP phones do not require much bandwidth, but requires low latency, low jitter, low loss. You need to use LLQ to achieve this, so it is incorrect · Voice queue secures minimum queue size PQ (Priority Queue) is used by LLQ specifies the maximum value to be secured during congestion. It is incorrect because it will ensure the largest queue size you need so as not to overflow the packet from PQ during congestion.

Answer 45

Overload Explanation: Overload (PAT) is appropriate for getting all 40 computers to connect to the Internet at the same time with four global addresses. Overload (PAT) is a NAT format that maps multiple IP addresses to a single global address using different port numbers. Static NAT is a method of mapping a private IP address and a global IP address 1 to 1. Dynamic NAT is a method of creating a group of private IP addresses in advance and mapping it to a global IP address.

Answer 46

.The controller communicates with network devices via SBI and sets equipment .Concentration of settings and policies can be maintained by centralized management .The controller has the role of the control plane Explanation: In SDN, the control plane, which is distributed across each network device, is centrally managed and defines how packets and frames are forwarded. The replacement for the control plane is the controller. ``` The controller has two major types of interfaces. Southbound Interface (SBI) is an interface that network devices and controllers communicate. ``` Therefore, the correct answer · Concentration of settings and policies can be maintained by centralized management · Controller has the role of control plane • The controller communicates with the network device via SBI and sets the device is. Other options are as follows. · Set settings for each network device It is an error because it is a feature of a conventional network. · Controller communicates with network device via NBI and set equipment NBI is an interface that programs and controllers communicate. The interface communicating with the network device and the controller is an error because it is SBI.

Answer 47

.Confirm that data has arrived by the "ACK" packet .Establish a connection with "SYN", "ACK + SYN", "ACK" over three transactions .TCP connection establishes before starting to send data Explanation: TCP establishes a virtual channel (TCP connection) before starting to transmit data to ensure communication. The behavior of establishing a TCP connection is called "3 way hand shake" from where the communication partner and packet are exchanged three times. [Process of connection establishment]: 1. The source (the side to start communication) sends a packet with the SYN Bit turned on 2. The communication partner replies the with "ACK" (acknowledgment) and "SYN" bit turned on 3. The source reply packet with "ACK" bit turned on This establishes a two-way connection. Therefore, the correct answers are: · TCP connection establishes before sending the data · Establish connections with "SYN", "ACK + SYN", "ACK" exchanges (over 3 transactions) · Verifies that data has arrived by the "ACK" packet Other options are as follows. · Establish connection connection once each other once "ACK + SYN" It is an error to establish a connection in three times exchanges "SYN", "ACK + SYN", "ACK". · Do not retransmit even if data not reach It is an error because it is the characteristic of UDP.

Answer 48

Reference bandwidth ÷ bandwidth of interface Explanation Other options are as follows. -1Mbps ÷ bandwidth of interface It is incorrect because it results in "1 Mbps". The default bandwidth default is 100Mbps, so it is correctly "100 Mbps ÷ bandwidth bandwidth". · (Bandwidth + delay) × 256 It is incorrect because it is a method of calculating "composite metric" which is a metric used in EIGRP. · Number of routers via the destination It is incorrect because it is a method of calculating the "hop number" which is a metric used in RIP.

Answer 49

.The severity level is "Notifications" .There was a change in EIGRP's neighbor state Explanation: The question log message (% dual-5-nbrchange) is the message output when there is a change in the nebar state of EIGRP. From the output, the following can be understood: · Neighbor at address 192.168.12.2 at the end of the Serial1/0 interface is down. · The factor down is "Interface Down" Therefore, the correct answer · Severity level is "Notifications" · There was a change in EIGRP's neibba state is. Other options are as follows. · Severity level is "Debugging" · Severity level is "Errors" From "-5-", you can see that the severity level is "5 = Notifications". · The IP address of the router that displays this message is "192.168.12.2" "192.168.12.2" is an error because it is the IP address of the neighbor.

Answer 50

Communication is encrypted Communication partner authentication Explanation VPN (Virtual Private Network) is a service that can virtually use public lines like a dedicated line. VPNs have secure connections that perform secure connections and provide security through mutual authentication and encryption. Such connections are called tunnels, and devices between tunnels can not directly refer to the communications in the tunnel. Therefore, the correct answers are: · Encrypts communication · Certification of communication partner Other options are as follows. · Can not be used on the Internet VPN is used to ensure security on public lines such as the Internet. · There is no function of security VPNs can encrypt and authenticate. · A termination device that multiplexes the signal sent from the subscriber's home The above is a description of DSLAM.

Answer 51

.The infrastructure layer corresponds to the data plane .The control layer corresponds to the control plane Explanation In the SDN (Software-Defined Networking) architecture, each network feature defines the layer as follows: Administrators use controller attachments and self-made programs that belong to application layers to control networks. From the application layer to which the self-made program belongs, you can change the control layer (corresponding to the control plane) through the NBI. Changes to the control layer are reflected in the infrastructure layer (equivalent to the data plane) through SBI. Therefore, the correct answers are: · The control layer corresponds to the control plane · The infrastructure layer corresponds the to data plane

Answer 52

Hierarchical address method best effort Connectionless type Explanation IP (Internet Protocol) is the communication protocol used to transfer packets. IP is characterized as "connectionless type", "best effort" and "hierarchical address method". · Connectionless type IP communication does not establish connections between the sender and the recipient before communication. By using TCP, which is the upper layer protocol, it is possible to establish a connection and communication. ·best effort IP communication does not guarantee bandwidth. Therefore, when the amount of communication increases, the communication speed may be reduced or packets can not reach their destination.. By using TCP, which is the upper layer protocol, it is possible to retransmit packets that have not reached the destination. · Hierarchical address method The IP address is a hierarchical address method that consists of two hierarchies between the network part and the host part.

Answer 53

Show lldp neighbors Explanation LLDP is an "IEEE standard protocol" that sends a frame with its own information on adjacent devices. Use the "show lldp neighbors" command to view information about adjacent devices obtained by LLDP. Therefore, the correct answer is: Show LLDP NEIGHBORS Other options are as follow: · Show LLDP This is a command to check the operating status of LLDP. · Show lldp interface it is a command to check the operation status of LLDP per interface. · SHOW CDP · Show CDP Neighbors Commands for Cisco Discovery Protocol (Cisco Discovery Protocol). LLDP information can not be displayed with these.

Answer 54

Host that receives traps Explanation: The show snmp host command allows you to check the information of the host that received the trap notification from the SNMP agent. Therefore, the correct answer is: The host that receives traps

Answer 55

."Reliability" represents the reliability of the interface .The most reliable value is "255/255", and the most reliable value is "0/255" Explanation: If reliability is reduced, an interface error can occur and packet could be lost etc. Check the "Reliability" value to verify interface reliability with the "show interfaces" command. The most reliable value is "255/255", and packet loss has not occurred and 100% reliable. Therefore, the correct answers are: · "Reliability" represents the reliability of the interface · The most reliable value is "255/255", and the most reliable value is "0/255" Other options are as follows. · "TXLOAD" indicates the reliability of the interface "TXLOAD" represents the load of the interface transmission state. · "RXLOAD" indicates the reliability of the interface "Rxload" represents the load on the interface reception state. · The most reliable value is "0/255", and the most reliable value is "255/255" The most reliable value is "255/255", and the most reliable value is "0/255" and is incorrect.

Answer 56

Access Layer Explanation: A star-type topology is a configuration in which other devices are radially connected around a device. In the Cisco 3-layer model, the access layer device constitutes a star topology. Therefore, the correct answer is: · Access layer Other options are as follows: · Core layer · Distribution layer These mainly configure a partial mesh topology. · Physical layer · Application layer These do not exist in the Cisco 3-tier model.

Answer 57

.Traceroute .Ping .Show Ip route Explanation Of the options, the commands that can check the connectivity of the network layer are "ping" and "traceroute" and "show IP Route". You can use the "Ping" or "traceroute" command to see the connectivity at the network layer level by looking at the response from the destination. You can use the "show ip route" command to see the connectivity at the network layer level by looking at or without route information to the destination network. [About other options] · Show interfaces By using the above command, you can check the physical layer and data link layer status (such as UP / UP or UP / DOWN), but you can not confirm the connectivity of the network layer. · Telnet If there is a problem with the transport layer or higher, Telnet fails even if there is a network layer level connectivity. Therefore, the telnet command is used to check the operation of the transport layer (Layer 4) or higher without using the network layer level connectivity.

Answer 58

.When a failure occurs, a network using Cisco DNA Center can quickly solve problems with machine learning .When a failure occurs, the conventional network requires manual troubleshooting ``` Explanation: Cisco DNA (Digital Network Architecture) is an architecture for applying Cisco's Intent-based Network (IBN) to enterprise networks. Intent-based Network (IBN) is an architecture proposed by Cisco to apply to enterprise networks. With intent-based networking, there is no need to be aware of individual configuration commands and values for each network device, and configuration changes are automatically made according to the administrator's objectives (intent). The interface for centralized management of Cisco DNA products and solutions is the "Cisco DNA Center"; the Cisco DNA Center also serves as the SDN controller. ``` In an SDN-enabled network (controller-based), the way the network is managed is also very different from a traditional network. Therefore, the correct answer is In the event of a failure, a network using Cisco DNA Center can quickly resolve the problem using machine learning. In the case of a failure, manual troubleshooting is required in a conventional network. The other options are listed below. Other options are as follows. When configuring devices, networks using Cisco DNA Center configure from a console on a per-device basis This is incorrect because it is a traditional network where each device is configured from a console. When configuring a device, in a traditional network, the controller configures it according to definitions. This is incorrect because the controller is configured according to definitions in a network using the Cisco DNA Center. In a network using Cisco DNA Center, security is thought of in terms of perimeter protection. This is incorrect because a perimeter defense is considered a traditional network. In a conventional network, security is considered on a network-wide basis. This is incorrect because a network using Cisco DNA Center is a network using Cisco DNA Center.

Answer 59

Two-way communication is possible Operate without collision Explanation: As half duplex communication is a method of communicating while switching between outbound and inbound wires, one wire alone cannot be used. Therefore, if you try to communicate in both directions at the same time, a collision will occur. On the other hand, full duplex communication is a communication method that can use the outbound wire and the inbound wire separately to simultaneously transmit and receive. In this case, communication can be performed without collisions. ``` Other incorrect options are as follows: · STP can be used · You can use VLAN · EIGRP can be used STP, VLAN, and EIGRP can not be used with half-duplex and full-duplex. ```

Answer 60

The duplex does not match When a collision is detected after sending the 64th byte Explanation The Late Collision counter indicates the number of collisions detected after 64 bytes (512 bits) are sent. The main cause of Late Collision increases is the use of cables exceeding the default length and a duplex mismatch (half duplex). Therefore, the correct answers are: · When a collision is detected after sending the 64th byte · The duplex does not match Other options are as follows. · While a broadcast storm is occurring "No Buffer" and "IGNORED" values increase if broadcast storms occur. · The duplex matches · When using CDP The above do not cause the error counter to increase.

Answer 61

· Priority value Explanation: The selection of OSPF DR first examines the priority value and selects the highest value router. If the priority value is the same, select the router ID and select the larger one as DR. The second priority value is elected by the BDR (backup representative router). Therefore, the correct answer is: · Priority value Other options are as follows. · Router ID Compare router ID if the priority value is the same. It is incorrect because the priority is lower than the priority value. · Process ID · IP address ·metric It is incorrect because it does not used for DR selection.

Answer 62

Specify where to search for iOS Explanation The incorrect options are as follows: · Host name is changed The command to change the host name is "hostname". · Save the current setting in RAM to NVRAM The command to save the current setting in RAM to NVRAM is "COPY RUNNING-CONFIG STARTUP-CONFIG". · Sets time zone The command to set the time zone is "Clock TimeZone" · Sets the default gateway it is the command "(config) #IP DEFAULT-GATEWAY {IP address}".

Answer 63

.Restrict Explanation: If the security violation continues if the security violation is continuing if the security violation mode is continuous, the value of the Security Violation Count can not be detected because the port is shut down (Err-Disabled state) and the security violation is continuing. After increasing, the value does not change until the err-disabled is released. By changing from the default shutdown mode to Restrict mode, you can balance security violation and continuing successful communication. Therefore, the correct answer · RESTRICT is.

Answer 64

DHCP snooping Explanation: 【DHCP Snooping】 DHCP Snooping is a function to monitor DHCP packets. DHCP snooping classifies each port into "trusted port" and "Untrusted port" (untrusted port). All DHCP packets arriving on the Trusted port allow. DHCP packets incoming on the Untrusted port allow DHCP packets (Discover, Request) sent from the client to the server, but reject DHCP packets (OFFER, ACK) sent to the client. This prevents DHCP spoofing. 【DHCP spoofing】 DHCP spoofing is an attack that an attacker launches an incorrect DHCP server and notifies the DHCP Offer to make your IP address to the default gateway and eavesdrop on packets from the user. Therefore, the correct answer · DHCP snooping is. Other options are as follows. · DHCP spoofing An attacker is an attacking method that will be a legitimate DHCP server or a DHCP client. · DHCP Relay Agent It is a function that transfers DHCP messages sent by broadcast to unicast. · Spriers DHCP server The DHCP server that exists on the Untrusted port side is called "spurious DHCP server" (fake DHCP server). DHCP snooping prevents attacks from spurious DHCP servers. · DHCP Discover · DHCP OFFER It is an error because it is the message used by DHCP.