Ensurepass
2017 July Cisco Official New Released 400-101 Q&As
100% Free Download! 100% Pass Guaranteed!
http://www.ensurepass.com/400-101.html

CCIE Routing and Switching Written Exam v5.1

QUESTION 401

DRAG DROP

Drag and drop the MPLS term on the left to the function it performs on the right.

 

clip_image002

 

Correct Answer:

clip_image004

 

 

QUESTION 402

Which two options are benefits of EIGRP OTP? (Choose two.)

 

A.

It allows EIGRP routers to peer across a service provider without the service provider involvement.

B.

It allows the customer EIGRP domain to remain contiguous.

C.

It requires only minimal support from the service provider.

D.

It allows EIGRP neighbors to be discovered dynamically.

E.

It fully supports multicast traffic.

F.

It allows the administrator to use different autonomous system numbers per EIGRP domain.

 

Correct Answer: AB

Explanation:

EIGRP Over the Top (OTP) allows EIGRP routers to peer across a service provider infrastructure without the SP’s involvement. In fact with OTP, the provider won’t see customer routes at all. EIGRP OTP acts as a provider-independent overlay that transports customer data between the customer’s routers.

To the customer, the EIGRP domain is contiguous. A customer’s EIGRP router sits at the edge of the provider cloud, and peers with another EIGRP router a different location across the cloud.

Learned routes feature a next hop of the customer router — not the provider. Good news for service providers is that customers can deploy EIGRP OTP with their involvement.

Reference: http://ethancbanks.com/2013/08/01/an-overview-of-eigrp-over-the-top-otp/

 

 

QUESTION 403

Which statement about the EIGRP RTO is true?

 

A.

It is six times the SRTT.

B.

It is the time that it normally takes for an update to be received by a peer.

C.

It is the time that it normally takes to receive a reply to a query.

D.

It is the average time that it takes for a reliable packet to be acknowledged.

 

Correct Answer: A

Explanation:

The RTO is typically six times
the SRTT, the value may vary from a minimum of 200 microseconds (ms) to a maximum of 5 seconds (s).

Reference: EIGRP for IP: Basic Operation and Configuration, Alvaro Retana, Russ White, Don Slice – 2000

 

 

QUESTION 404

Refer to the exhibit. The customer wants to use IP SLA to create a failover to ISP2 when both Ethernet connections to ISP1 are down. The customer also requires that both connections to ISP1 are utilized during normal operations. Which IP route configuration accomplishes these requirements for the customer?

 

clip_image006

 

A.

ip route 0.0.0.0 0.0.0.0 192.168.0.1 track 1

ip route 0.0.0.0 0.0.0.0 192.168.1.1 track 2

ip route 0.0.0.0 0.0.0.0 192.168.2.1 track 3

B.

ip route 0.0.0.0 0.0.0.0 192.168.0.1 track 1

ip route 0.0.0.0 0.0.0.0 192.168.1.1 track 2

ip route 0.0.0.0 0.0.0.0 192.168.2.1 track 4 100

C.

ip route 0.0.0.0 0.0.0.0 192.168.0.1 track 1

ip route 0.0.0.0 0.0.0.0 192.168.1.1 track 2

ip route 0.0.0.0 0.0.0.0 192.168.2.1 track 3 100

D.

ip route 0.0.0.0 0.0.0.0 192.168.0.1 track 1 1

ip route 0.0.0.0 0.0.0.0 192.168.1.1 track 2 2

ip route 0.0.0.0 0.0.0.0 192.168.2.1 track 3 3

 

Correct Answer: C

 

 

QUESTION 405

A company is multihomed to several Internet providers using EBGP. Which two measures guarantee that the network of the company does not become a transit AS for Internet traffic? (Choose two.)

 

A.

Prepend three times the AS number of the company to the AS path list.

B.

Add the community NO_EXPORT when sending updates to EBGP neighbors.

C.

Write AS-path access-list which permits one AS long paths only and use it to filter updates sent to EBGP neighbors.

D.

Add the community NO_EXPORT when receiving updates from EBGP neighbors.

 

Correct Answer: CD

Explanation:

By default BGP will advertise all prefixes to EBGP (External BGP) neighbors. This means that if you are multi-homed (connected to two or more ISPs) that you might become a transit AS. Let me show you an example:

 

clip_image008

 

R1 is connected to ISP1 and ISP2 and each router is in a different AS (Autonomous System). Since R1 is multi-homed it’s possible that the ISPs will use R1 to reach each other. In order to

prevent this we’ll have to ensure that R1 only advertises prefixes from its own autonomous system.

As far as I know there are 4 methods how you can prevent becoming a transit AS:

Filter-list with AS PATH access-list.

No-Export Community.

Prefix-list Filtering

Distribute-list Filtering

 

Reference: http://networklessons.com/bgp/bgp-prevent-transit-as/

 

 

QUESTION 406

Which two modes of operation does BFD support? (Choose two.)

 

A.

Synchronous mode

B.

Asynchronous mode

C.

Demand mode

D.

Echo mode

E.

Aggressive mode

F.

Passive mode

 

Correct Answer: BC

Explanation:

A session may operate in one of two modes: asynchronous mode and demand mode. In asynchronous mode, both endpoints periodically send Hello packets to each other. If a number of

those packets are not received, the session is considered down.

In demand mode, no Hello packets are exchanged after the session is established; it is assumed that the endpoints have another way to verify connectivity to each other, perhaps on the underlying physical layer. However, either host may still send Hello packets if needed.

 

Reference: http://en.wikipedia.org/wiki/Bidirectional_Forwarding_Detection

 

 

QUESTION 407

Which two Cisco IOS XE commands can install a subpackage onto a router? (Choose two.)

 

A.

Request platform software package install rp rpSlotNumber file fileURL

B.

Boot system flash bootflash:filename

C.

Copy sourceUrl destinationUrl

D.

License install file storedLocationUrl

E.

Issu loadversion rp identifier file diskType imageFilename

F.

Config-register value

 

Correct Answer: AC

Explanation:

In the following example, the request platform software package install command is used to upgrade a consolidated package running on RP 0. The force option, which forces the upgrade past any prompt (such as already having the same consolidated package installed), is used in this example.

Router# request platform software package install rp 0 file bootflash:asr1000rp1-adventerprisek9.02.01.00.122-33.XNA.bin force

To upgrade a consolidated package on the Cisco ASR 1000 Series Routers using the copy command, copy the consolidated package into the bootflash: directory on the router using the copy command as you would on most other Cisco routers. After making this copy, configure the router to boot using the consolidated package file.

In the following example, the consolidated package file is copied onto the bootflash: file system from TFTP. The config-register is then set to boot using boot system commands, and the boot

system commands instruct the router to boot using the consolidated package stored in the bootflash: file system. The new configuration is then saved using the copy running-config startup-config command, and the system is then reloaded to complete the process.

Router# dir bootflash:

Directory of bootflash:/

 

11 drwx 16384 Dec 4 2007 04:32:46 -08:00 lost+found

86401 drwx 4096 Dec 4 2007 06:06:24 -08:00.ssh

14401 drwx 4096 Dec 4 2007 06:06:36 -08:00.rollback_timer

28801 drwx 4096 Mar 18 2008 17:31:17 -07:00.prst_sync

43201 drwx 4096 Dec 4 2007 04:34:45 -08:00.installer

13 -rw- 45977 Apr 9 2008 16:48:46 -07:00 target_support_output.tgz.tgz

 

928862208 bytes total (712273920 bytes free)

Router# copy tftp bootflash:

Address or name of remote host []? 172.17.16.81

Source filename []? /auto/tftp-users/user/asr1000rp1-adventerprisek9.02.01.00.122-33.XNA.bin

Destination filename [asr1000rp1-adventerprisek9.02.01.00.122-33.XNA.bin]?

Reference:

http://www.cisco.com/c/en/us/td/docs/routers/asr1000/configuration/guide/chassis/asrswcfg/Package_Management.html#78189

 

 

QUESTION 408

What is the most secure way to store ISAKMP/IPSec preshared keys in Cisco IOS?

 

A.

Use the service password-encryption command.

B.

Encrypt the ISAKMP preshared key in secure type 5 format.

C.

Encrypt the ISAKMP preshared key in secure type 7 format.

D.

Encrypt the ISAKMP preshared key in secure type 6 format.

Correct Answer: D

Explanation:

Using the Encrypted Preshared Key feature, you can securely store plain text passwords in type 6 format in NVRAM using a command-line interface (CLI). Type 6 passwords are encrypted. Although the encrypted passwords can be seen or retrieved, it is difficult to decrypt them to find out the actual password. This is currently the most secure way to store keys.

Reference: http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_conn_ikevpn/configuration/xe-3s/asr1000/sec-ike-for-ipsec-vpns-xe-3s-asr1000-book/sec-encrypt-preshare.html

 

 

QUESTION 409

A configuration includes the line ip route 10.0.0.0 255.0.0.0 172.16.10.10 permanent. Which option is a benefit of configuring this static route as permanent?

 

A.

It allows the route to be redistributed into the network even if the outgoing interface is down.

B.

It allows the route to be saved in the running configuration of the device.

C.

It places a hidden tag on the route that can be matched on other devices.

D.

It allows the route to have a tracking status even if no tracking object is configured.

 

Correct Answer: A

 

 

QUESTION 410

Which two statements about the assert process in LAN-based PIM are true? (Choose two.)

 

A.

If the metrics are the same, the router with the lowest advertised routing protocol metric for that route is elected.

B.

If the metrics are the same, the router with the highest IP address on the LAN is elected.

C.

If the metrics are the same, the router with the highest advertised routing protocol metric for that route is elected.

D.

If the metrics are the same, the router with the lowest IP address on the LAN is elected.

 

Correct Answer: AB

100% Free Download!
—Download Free Demo:400-101 Demo PDF
100% Pass Guaranteed!
Download 2017 Ensurepass 400-101 Full Exam PDF and VCE Q&As:1299
—Get 10% off your purchase! Copy it:TJDN-947R-9CCD [2017.07.01-2017.07.31]

Ensurepass ExamCollection Testking
Lowest Price Guara
ntee
Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
PDF + VCE Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No

2017 Ensurepass IT Certification PDF and VCE