Ensurepass
2017 July Cisco Official New Released 400-101 Q&As
100% Free Download! 100% Pass Guaranteed!
http://www.ensurepass.com/400-101.html

CCIE Routing and Switching Written Exam v5.1

QUESTION 611

Refer to the exhibit. RIPv2 authentication is failing on a device with this configuration. Which two actions can you take to enable it? (Choose two.)

 

clip_image001

 

A.

Set the RIP authentication mode to text.

B.

Set the RIP authentication mode to MD5.

C.

Configure the password encryption for the key.

D.

Set the password encryption to AES.

 

Correct Answer: AB

Explanation:

See the reference link below for information on configuring RIPv2 authentication, including both test and MD5 modes.

Reference: http://www.cisco.com/c/en/us/support/docs/ip/routing-information-protocol-rip/13719-50.html#configuringplain

 

 

QUESTION 612

Which three capabilities are provided by MLD snooping? (Choose three.)

 

A.

dynamic port learning

B.

IPv6 multicast router discovery

C.

user-configured ports age out automatically

D.

a 5-minute aging timer

E.

flooding control packets to the egress VLAN

F.

a 60-second aging timer

 

Correct Answer: ABD

Explanation:

Like IGMP snooping, MLD snooping performs multicast router discovery, with these characteristics:

 

clip_image003Ports configured by a user never age out.

clip_image003[1]Dynamic port learning results from MLDv1 snooping queries and IPv6 PIMv2 packets.

clip_image003[2]If there are multiple routers on the same Layer 2 interface, MLD snooping tracks a single multicast router on the port (the router that most recently sent a router control packet).

clip_image003[3]Dynamic multic
ast router port aging is based on a default timer of 5 minutes; the multicast router is deleted from the router port list if no control packet is received on the port for 5 minutes.

clip_image003[4]IPv6 multicast router discovery only takes place when MLD snooping is enabled on the switch.

 

Reference: https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst3750/software/release/12-2_55_se/configuration/guide/scg3750/swv6mld.pdf

 

 

QUESTION 613

Refer to the exhibit. Your network is suffering excessive output drops. Which two actions can you take to resolve the problem? (Choose two.)

 

clip_image005

 

A.

Install a switch with larger buffers.

B.

Configure a different queue set.

C.

Reconfigure the switch buffers.

D.

Configure the server application to use TCP.

E.

Update the server operating system.

 

Correct Answer: AB

Explanation:

Installing a switch with larger buffers and correctly configuring the buffers can solve output queue problems.

For each queue we need to configure the assigned buffers. The buffer is like the `storage’ space for the interface and we have to divide it among the different queues. This is how to do it:

mls qos queue-set output <queue set> buffers Q1 Q2 Q3 Q4

In this example, there is nothing hitting queue 2 or queue 3 so they are not being utilized.

 

 

QUESTION 614

Refer to the exhibit. Which AS paths are matched by this access list?

 

clip_image006

 

A.

The origin AS 64496 only

B.

The origin AS 64496 and any ASs after AS 64496

C.

The directly attached AS 64496 and any ASs directly attached to AS 64496

D.

The directly attached AS 64496 and any longer AS paths

Correct Answer: C

Explanation:

If you want AS 1 to get networks originated from AS 4 and all directly attached ASs of AS 4, apply the following inbound filter on Router 1.

ip as-path access-list 1 permit ^4_[0-9]*$ router bgp 1 neighbor 4.4.4.4 remote-as 4 neighbor 4.4.4.4 route-map foo in route-map foo permit 10 match as-path 1

In the ip as-path access-list command, the carat (^) starts the input string and designates “AS”.

The underscore (_) means there is a a null string in the string that follows “AS 4”. The [0-9]* specifies that any connected AS with a valid AS number can pass the filter. The advantage of using the [0-9]* syntax is that it gives you the flexibility to add any number of ASs without modifying this command string.

Reference: http://www.cisco.com/c/en/us/support/docs/ip/border-gateway-protocol-bgp/13754-26.html

 

 

QUESTION 615

Which two features are used for inspection when IPv6 address glean is enabled? (Choose two.)

 

A.

DHCP messages

B.

ND messages

C.

ICMPv6 messages

D.

UDP messages

E.

TCP messages

 

Correct Answer: AB

Explanation:

IPv6 address glean is the foundation for many other IPv6 features that depend on an accurate binding table. It inspects ND and DHCP messages on a link to glean addresses, and then populates the binding table with these addresses. This feature also enforces address ownership and limits the number of addresses any given node is allowed to claim.

Reference: http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/ipv6_fhsec/configuration/15-s/ip6f-15-s-book/ip6-snooping.html

 

 

QUESTION 616

Refer to the exhibit. The device with this configuration is unable to reach network 172.31.31.0/24. The next hop router has been verified to have full connectivity to the network. Which two actions can you take to establish connectivity to the network? (Choose two.)

 

clip_image007

 

A.

Create a static route to 172.16.199.0 using the address of the next hop router.

B.

Create a default route to the link address of the next hop router.

C.

Create a static route to the loopback address of the next hop router.

D.

Create a default route to 172.16.199.9.

E.

Modify the existing static route so that the next hop is 0.0.0.0.

F.

Replace the ip default-network command with the ip default-gateway command.

 

Correct Answer: AB

Explanation:

Unlike the ip default-gateway command, you can use ip default-network when ip routing is enabled on the Cisco router. When you configure ip default-network the router considers routes to that network for installation as the gateway of last resort on the router.

 

For every network configured with ip default-network, if a router has a route to that network, that route is flagged as a candidate default route. However, in this case if the router does not a route to the drfault network of 172.16.199.9, then you would need to ensure that this route exisits by creating a static route to 172.16.199.0 using the address of the next hop router, or simply create a default route using the address of the next hop router.

 

 

QUESTION 617

Which option is an incorrect design consideration when deploying OSPF areas?

 

A.

area 1 – area 0 – MPLS VPN backbone – area 0 – area 2

B.

area 1 – MPLS VPN backbone – area 2

C.

area 1 – MPLS VPN backbone – area 1

D.

area 2 – area 0 – MPLS VPN backbone – area 1

E.

area 0 – area 2 – MPLS VPN superbackbone – area 1

 

Correct Answer: E

Explanation:

In the case of MPLS-VPN Backbone as The OSPF superbackbone behaves exactly like Area 0 in regular OSPF, so we cannot have two different area 0’s that are not directly connected to each other. When area 0 connects to the superbackbone, it simply becomes an extension of area 0.

 

 

QUESTION 618

DRAG DROP

Drag and drop the StackWise stack master election rule on the left into the correct priority order on the right.

 

clip_image009

 

Correct Answer:

clip_image011

 

 

QUESTION 619

Refer to the exhibit. Which statement about the device routing table is true?

 

clip_image012

A.

Only networks 10.10.10.0/24 and smaller from host 192.168.168.1 are in the routing table.

B.

Only networks 10.10.10.0/24 and larger from host 192.168.168.1 are in the routing table.

C.

Only network 10.10.10.0/24 from host 192.168.168.1 is in the routing table.

D.

Networks 10.10.10.0/24 and smaller from any host are in the routing table.

 

Correct Answer: A

Explanation:

When you add the keywords “GE” and “LE” to the prefix-list, the “len” value changes its meaning. When using GE and LE, the len value specifies how many bits of the prefix you are checking, starting with the most significant bit.

ip prefix-list LIST permit 1.2.3.0/24 le 32

This means:Check the first 24 bits of the prefix 1.2.3.0The subnet mask must be less than or equal to 32

 

Reference: http://blog.ine.com/2007/12/26/how-do-prefix-lists-work/

 

 

 

 

 

 

 

 

 

QUESTION 620

Refer to the exhibit. All of the routers on this network are running RIP. If you edit the R3 RIP process configuration to reduce the number of hops from R3 to R1, which statement about the configuration change is true?

 

clip_image014

 

A.

Configuring no passive-interface for GigabitEthernet0/0 in the R3 RIP process reduces the number of hops to R1 by 2.

B.

Configuring no passive-interface for GigabitEthernet0/0 in the R3 RIP process reduces the number of hops to R1 by 1.

C.

Configuring no passive-interface for GigabitEthernet0/1 in the R3 RIP process reduces the number of hops to R1 by 3.

D.

Configuring no passive-interface for GigabitEthernet0/1 in the R3 RIP process reduces the number of hops to R1 by 1.

 

Correct Answer: A

Explanation:

By changing the link from R3 to R2 to not be passive, traffic can then take the direct route from R3-R2-R1 instead of the longer path of R3-R6-R5-R4-R1, resulting in two less hops.

100% Free Download!
—Download Free Demo:400-101 Demo PDF
100% Pass Guaranteed!
Download 2017 Ensurepass 400-101 Full Exam PDF and VCE Q&As:1299
—Get 10% off your purchase! Copy it:TJDN-947R-9CCD [2017.07.01-2017.07.31]

Ensurepass ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
PDF + VCE Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No

2017 Ensurepass IT Certification PDF and VCE