CCNP Route Flashcards
What is the task you must perform when configuring SSH? (Choose two)
Configure hostname
Generate RSA key
Which two pieces of information can you determine from the output of the show ntp status command?
The IP address of the peer to which the clock is synchronized
Where the clock is synchronized
You are implementing WAN access for an enterprise network while running applications that require a fully meshed network, which two design standards are appropriate for such an environment? (Choose two)
A centralized DMVPN solution to simplify connectivity for the enterprise
A dedicated WAN distribution layer to consolidate connectivity to remote sites
Which task do you need to perform first when you configure IP SLA to troubleshoot a network connectivity issue?
Enable the ICMP echo operation
Which technology can combine multiple physical switches into one logical switch?
VSS
Which two features are compatible with port security? (Choose two)
Voice VLAN
SPAN source port
Which fallback method can you configure to allow all AAA authorization requests to be granted if the other methods do not respond or return an error?
A. Radius B. Enable C. TACACS+ D. NONE
Answer: D
By default what is the maximum number of equal metric path BGP uses for load balancing?
8
The track objects in IP SLA and make sure that it is only up if all track objects are up, which method achieves that goal?
AND
With PCA and PCB and there are three routers between them and a different MTU value and they want a PCA to run an application with PCB and DF is set so we have to choose?
MSS
Drag and Drop
- TLL
- ICMP Redirect
- ICMP unreachable
- when reaches ‗0‘ drops packets
- indicate to host that another route is available for a specific destination
- when destination is unreachable when IP is unable to give a packet to destination host due to some problem or issue
How to implement local authentication using a list for case insensitive usernames?
aaa authentication login default local
Define: \+ IP NHRP redirect – ? \+ IP NHRP static – ? \+ IP NHRP (map) – ? \+ IP NHRP (shortcut) – ?
?
Which is the minimum privilege level to allow a user to execute all user-level commands but prohibits enable-level commands by default?
level 1
What command can you enter to configure an enable password that uses an encrypted password from another configuration?
enable secret 5 $abc%!e.Cd34$!ao0
Which is minimum level for which user can see full commands but can‘t change anything?
1
Which password takes precedence if you configure multiple passwords for Telnet connections to a Cisco IOS device?
enable secret password
Which condition must be met before you can configure SSH on a device running Cisco IOS?
The IOS must be a crypto in
Which two statements about the enable secret and enable password commands are true? (Choose two)
- If both commands are missing from the global configuration, vty lines use the console password
- The enable secret command overrides enable password
What does the following access list, which is applied on the external interface FastEthernet 1/0 of the perimeter router, accomplish?
router(config)#access-list 101 deny ip 10.0.0.0 0.255.255.255 any log
router (config)#access-list 101 deny ip 192.168.0.0 0.0.255.255 any log
router (config)#access-list 101 deny ip 172.16.0.0 0.15.255.255 any log
router (config)#access-list 101 permit ip any any
router (config)#interface FastEthernet 1/0
router (config-if)#ip access-group 101 in
It filters incoming traffic from private addresses in order to prevent spoofing and logs any intrusion attempts.
Which two statements about IP access-lists are true? (Choose two)
- They support wildcard masks to limit the address bits to which entries are applies.
- Entries are applied to traffic in the order in which they appear.
Which two different configuration can you apply to a device to block incoming SSH access? (Choose two)
1 ipv6 access-list VTY-ACCESS-IN sequence 10 deny tcp any any eq 22 sequence 20 permit ipv6 any any line vty 0 15 ipv6 access-class VTY-ACCESS-IN in 2 ipv6 access-list VTY-ACCESS-IN sequence 10 deny tcp any any eq 22 sequence 20 permit ipv6 any any interface Ethernet0/0 ipv6 traffic-filter VTY-ACCESS-IN in
Which access list entry checks for an ACK within a packet TCP header?
access-list 149 permit tcp any any eq 21 established
Which PPP authentication method sends authentication information in cleartext?
PAP
Which two features were added in MSCHAP Version 2? (Choose two)
- Ability to change an expired password
- Mutual authentication between peers
Which value does a Cisco router use as its default username for CHAP authentication?
Its own hostname
Which command instruct a PPPoE client to obtain its IP address from the PPPoE server? (OR What command is needed to get the ip address assigned from the PPPOE server?)
ip address negotiated
What configurations does PPPoE allow? (Choose two)
-8 clients can be configured on 1 CPE -Clients can connect to multiple hosts over DMVPN
Which feature can automatically assign IP addresses in a PPPoE environment?
PPP
Which two commands must you configure in the calling router to support the PPPoE client? (Choose two)
- mtu
- pppoe-client dial-pool-number
Which Cisco Express Forwarding table or tables hold forwarding information?
FIB and adjacency tables only
Which feature eliminates the need for Cisco Express Forwarding to maintain a route cache?
FIB
Which Cisco Express Forwarding component maintains Layer 2 next-hop addresses that are used for hardware switching?
adjacency table
Refer to exhibit. What is indicated by the show ip cef command for an address?
CEF cannot switch packet for this route and passes it to the next best switching method.
Which three algorithms can you configure with the ip cef load-sharing algorithm command? (Choose three)
- Tunnel
- Universal
- Include-ports
Refer to Exhibit
A network engineer is working on the network topology and executes the command no ip split horizon on interface S0/0 of the Hub router. What is the result of this command?
Each of the spoke routers can see the routes that are advertised from the other spoke routers.
If you convert a WAN connection with OSPF from T1 to a Frame Relay circuit, which two actions must you take to enable the connection? (Choose two)
- Change the OSPF network type to nonbroadcast.
- Manually configure neighbors in the OSPF process.
Which two statements about Frame Relay LMI autosense are true on a router? (Choose two)
- It operates on Frame Relay DTE interfaces
- It operates when the line is up but the line protocol is down
In a point-to-multipoint Frame Relay topology, which two methods ensure that all routing updates are received by all EIGRP routers within the Frame Relay network? (Choose two)
- Disable split horizon
- Use subinterface
In which two ways can split horizon issues be overcome in a Frame Relay network environment? (choose two)
- Configuring multiple subinterfaces on a single physical interface to various remote sites
- Disabling split horizon.
On which two types of interface is Frame Relay switching supported? (Choose two)
- serial interfaces
- ISDN interfaces
Which task must you perform to enable a point-to-point Frame Relay connection?
Configure static address mapping.
Which two statements about Frame Relay Point-to-Point connections are true? (Choose two)
- Changing a point-to-point sub interface to a different type requires the device to be reloaded.
- They use two DLCIs to communicate with multiple endpoints over the Frame Relay cloud.
Which value does a point-to-point GRE tunnel use to identify a peer?
IP address
Which two statement about GRE tunnel interface are true? (Choose two)
- A tunnel destination must be routable, but it can be unreachable
- To establish a tunnel the source interface must be up/up state
A network engineer has configured GRE between two IOS routers. The state of the tunnel interface is continuously oscillating between up and down. What is the solution to this problem?
Create a more specific static route to define how to reach the remote router.
When the tunnel interface is configured in default mode, which statement about routers and the tunnel destination address is true?
The router must have a route installed towards the tunnel destination
Which two statements about GRE tunnel keys are true? (Choose two)
- The key ID must be the same on each device.
- They prevent the injection of unwanted packets.
Refer to the exhibit. R1(config-if)#interface Tunnel0 R1(config-if)#tunnel source 10.0.0.1 R1(config-if)#tunnel destination 10.0.0.2 R1(config-if)#ipv6 address k:k:k:k::1/64 R1(config-if)#ipv6 ospf 1 area 1 R1(config-if)#tunnel mode ipv6ip ! R2(config-if)#interface Tunnel1 R2(config-if)#tunnel source 10.0.0.2 R2(config-if)#tunnel source 10.0.0.1 R2(config-if)#ipv6 address k:k:k:k::2/64 R2(config-if)#ipv6 ospf 1 area 1 R2(config-if)#tunnel mode ipv6ip
A user calls from another branch office with a request to establish a simple VPN tunnel to test a new router‘s tunneling capability. Based on the configuration in the exhibit, which type of tunnel was configured?
6to4
Refer to the exhibit. After configuring GRE between two routers running OSPF that are connected to each other via a WAN link, a network engineer notices that the two routers cannot establish the GRE tunnel to begin the exchange of routing updates. What is the reason for this?
Either a firewall between the two routers or an ACL on the router is blocking IP protocol number 47.
During which DMVPN phase is spoke-to-spoke communication enabled?
phase 2
Which two statements about NHRP in a DMVPN environment are true? (Choose two)
- It can authenticate VPN endpoints
- It provides address resolution to route traffic
Which two phases of DMVPN allow the spoke site to create dynamic tunnels to one other? (Choose two)
- Phase 2
- Phase 3
Which Cisco VPN technology can use multipoint tunnel, resulting in a single GRE tunnel interface on the hub, to support multiple connections from multiple spoke devices?
DMVPN
Which two statements about NAT in a DMVPN environment are true? (Choose two)
- A spoke router can be represented by a static NAT on a device
- A hub router can use static NAT for its public IP address
Which security feature can protect DMVPN tunnels?
IPSec
Which condition prevents the establishment of a DMVPN tunnel between two spokes?
The two spokes are behind different PAT devices
Which three problems result from application mixing of UDP and TCP streams within a network with no QoS? (Choose three)
- starvation
- latency
- lower throughput
Which feature can mitigate fragmentation issues within network segments that are between GRE endpoints?
TCP MSS
- also correct -> PMTUD
Which feature mitigates fragmentation issues caused by endpoint hosts?
TCP MSS
What is the default maximum segment size for TCP traffic?
536
Which two protocols can cause TCP starvation? (Choose two)
TFTP, SNMP
Which technology was originally developed for routers to handle fragmentation in the path between end points?
PMTUD
A network engineer applies the command “ip tcp adjust-mss” under interface configuration mode. What is the result?
The probability of dropped or segmented TCP packets is decreased.
Which value determines the amount of traffic that a network path can hold in transit?
bandwidth delay product
Which protocol can you use to remotely install an IOS image on a Cisco switch?
FTP
Under which circumstance can TCP starvation occur?
when TCP and UDP traffic are mixed in the same class of service
Which option is one way to mitigate asymmetric routing on an active/active firewall setup for TCP-based connections?
disabling stateful TCP checks
Which three TCP enhancements can be used with TCP selective acknowledgments? (Choose three)
- explicit congestion notification
- keepalive
- time stamps
Refer to the exhibit.
After configuring the routes, the network engineer executes the show ip route command. What is the expected results?
Gateway of last resort is not set Router #
What happens when a router receives a route with an administrative distance of 255?
The router is unable to install the route into the routing table
efer to the exhibit. Which networking challenge is the most important issue to address to enable optimal communication between the networks at company A and company B?
asymmetric routing
A router receives a routing advertisement for 10.1.1.0/24 from an EIGRP peer and from an OSPF peer. Which route does the router install in the routing table, and for which reason?
The EIGRP route, because the administrative distance is lower.
You are configuring a static route. Which action must you take to avoid the possibility of recursive row?
Use the ip route command to specify both the next-hop IP address and the connected interface
Which routing protocol routes traffic through the best path and second best path at the same time?
EIGRP or BGP
You want to configure a device to select an OSPF-learned route as the preferred path over an EBGP-learned route. Which action must you take?
Decrease the OSPF administrative distance
A network engineer is modifying RIPng timer configuration. Which configuration mode should the engineer use?
router(config-rtr)#
What is the default authentication in RIPv2 when authentication is enabled?
Plaintext authentication
Two routers are configured with RIPng but can‘t form neighbors as traffic traverses a firewall. Which port does the firewall need to permit to form neighbors?
UDP Port 521
Which command must you configure globally to support RIPng?
ipv6 unicast-routing
Afer configuring RIPng on two routers that are connected via a WAN link, a network engineer notices that the two routers cannot exchange routing updates. What is the reason for this?
Either a firewall between the two routers or an ACL on the router is blocking UDP 521
A network engineer is enabling RIPng on a new customer link. Under which configuration mode is RIPng enabled?
Interface
A route with default RIPv2 settings loses connectivity to it‘s next-hop neighbor. How long does the router wait before removing the route to the next hop from its route table?
240 seconds
Customer enabled new link to partner using RIPng, how and where is RIPng configured?
global – (config)#ipv6 router rip “RIPNG”
What is the maximum number of hops on a route that RIPng advertises as reachable?
15
A network engineer is troubleshooting connectivity issues with a directly connected RIPng neighbor. Which command should show directly connected RIPng neighbor adjacencies only?
router#show ipv6 rip next-hops
Which two statements about OSPF E1 routes are true? (Choose two)
- They use the OSPF cost from redistribution and the OSPF cost to the ASBR.
- They are preferred over E2 routes
OSPF has R1 router ID 172.18.1.1. What happens when R1 configure with a new loopback interface IP address 172.17.1.1?
OSPF retains 172.18.1.1 as router ID until interface on which is configured goes down
Which two areas does OSPF send a summary route by default ? (Choose two)
- Totally stubby
- Stub
Refer to the exhibit. Which LSA type does R3 propagate into Area 1 for the 192.168.10.0/24 network?
type 7 LSA
Which OSPF network type uses a DR?
Nonbroadcast multi-access
What are two important differences between OSPFv2 and OSPFv3? (Choose two)
- Only OSPFv3 provides support for IPv6.
- Only OSPFv3 supports multiple OSPF instances on a single link.
Device R1 has 1 Gigabit and 10 Gigabit Ethernet interfaces, which command do you enter so that it takes full advantage of OSPF costs?
R1(config-router)#auto-cost reference-bandwidth 10000
Which LSA type in OSPFv3 is used for link-local updates?
Link LSA type 8
Which two statements about OSPFv3 are true? (Choose two)
- The router ID is configured as an IPv4 address.
- It uses link-local addresses to form neighbor relationships.
Refer to the exhibit.
You notice that traffic from R1 to the 192.168.10 0/24 network prefers the path through R3 instead of the least-cost path through R2.What is the most likely reason for this route selection?
OSPF prefers intra-area routes over interarea routes.
When OSPF is forming an adjacency, in which state does the actual exchange of the information in the link-state database occur?
loading
A network engineer enables OSPF on a Frame Relay WAN connection to various remote sites, but no OSPF adjacencies come up Which two actions are possible solutions for this issue? (Choose Two)
- Change the network type to point-to-multipoint under WAN interface
- Configure the neighbor command under OSPF process for each remote site
Which two OSPF router types can perform summarization in an OSPF network? (Choose two)
- area border router
- autonomous system boundary router
If you want to migrate an IS-IS network to another routing protocol. Which routing protocols should you choose? (Choose two)
- EIGRP
- OSPF
A router was configured with the ―eigrp stub‖ command. The router advertises which types of routes?
connected and summary
Refer to Exhibit - All interfaces on each router are participating in the EIGRP 100 process. Interface Loopback 2 on HQR2 is currently in shutdown mode. An engineer issues the eigrp stub command on router BR1. Which statements about the query messages sent from router HQ-R2 for a route to reach the 12.12.12.12/32 network is true?
Router HQ-R1 receives query messages from HQ-R2 for a route to 12.12.12.12/32 network.
Refer to the exhibit. router eigrp 65535 no auto-summary network 10.0.0.0 0.0.0.255 router ospf 1 network 192.168.5.0 0.0.0.255 area 0 passive-interface loopback0 redistribute eigrp 65535
If this configuration is applied to a device that redistributes EIGRP routes into OSPF. which two statements about the behavior of the device are true? (Choose two)
- The device redistributes all EIGRP networks into OSPF
- The device redistributes only classful EIGRP networks into OSPF
Refer to the exhibit.
12.0.0.0/24 is subnetted, 1 subnets
D 12.12.12.0 [90/30720] vi 52.52.52.2, 00:00:12, FastEthernet2/0
[90/30720] vi 51.51.51.1, 00:00:12, FastEthernet1/0
The excerpt was taken from the routing table of router SATX. Which option ensures that routes from 51.51.51.1 are preferred over routes from 52.52.52.2?
SATX(config-router)#distance 89 51.51.51.1 0.0.0.0
Which two options can you use to configure an EIGRP stub router? (Choose two)
- receive-only
- summary
Which two types of authentication does EIGRP offer? (Choose two)
- MD5
- Plain Text
Which three statements about IPv6 EIGRP are true? (Choose three)
- EIGRP neighbor relationships are formed using the link-local address.
- EIGRP route advertisement is configured under the interface configuration.
- An IPv6 EIGRP router ID is required.
What is EIGRP Summary Route Administrative Distance?
5
Which EIGRP packets use unreliable delivery? (Choose two)
- Request
- Hello
What is used in EIGRP metric calculation?
Minimum bandwidth on the path
How EIGRP metric is calculated?
Bandwidth+Delay
Which statements are true to configure IPv6 EIGRP configuration for route advertisements? (Choose two)
- Route advertisements are configured at the interface configuration
- Uses link-local IP address for route advertisements
Which task must you preform to implement EIGRP for IPv6 on a device?
Manually configure the router ID
Which two features are provided by EIGRP for IPv6? (Choose two)
- Partial Update
- Scaling
Which two packet type can an EIGRP router send when a route goes into the Active state? (Choose two)
- reply
- query
Which two EIGRP metrics have nonzero K values by default? (Choose two)
- delay
- bandwidth
Refer to the exhibit. You want router R1 to perform unequal-cost routing to the 192.168.10.0/24 network. What is the smallest EIGRP variance value that you can configure on R1 to achieve this result?
3
What happens when two EIGRP peers have mismatched K values?
The two devices fail to form an adjacency
When an EIGRP router discovers a new neighbor, which packet type does the router send to help the neighbor build its topology table?
updates
Refer to the exhibit. R1 interface Loopback0 ip address 172.16.1.1. 255.255.255.255 interface FastEthernet0/0 ip address 192.168.10.33 255.255.255.224 router eigrp 100 eigrp router-id 172.16.1.1 no auto-summary network 192.168.10.0 network 172.16.0.0
R2 interface Loopback0 ip address 172.16.2.2 255.255.255.255 interface FastEthernet0/0 ip address 192.168.10.17 255.255.255.240 router eigrp 100 eigrp router-id 172.16.2.2 network 192.168.10.0 network 172.16.0.0
R1 and R2 are unable to establish an EIGRP adjacency. Which action corrects the problem?
Change the IP address and subnet mask on R2 so that is on the same subnet as R1.
Which calculation is used to determine the default EIGRP metric?
bandwidth + delay
Other than a working EIGRP configuration, which option must be the same on all routers for EIGRP authentication key rollover to work correctly?
Time
Based on the output, which option is the next hop to get to the 130.0.1.0/24 network?
10.20.20.1
Which two conditions can cause BGP neighbor establishment to fail? (Choose two)
- There is an access list blocking all TCP traffic between the two BGP neighbors.
- The BGP neighbor is referencing an incorrect autonomous system number in its neighbor statement.
Which BGP option is required when load sharing over multiple equal-bandwidth parallel from a single CE router to a single ISP router over eBGP?
eBGP Multipath
Which two options are benefits of BGP peer groups? (Choose two)
-A configuration change can be applied simultaneously to all peers in the peer group - Each neighbor in a peer group can have different inbound BGP policies
Which criterion does the BGP maximum paths feature use for load balancing?
weight
Which adverse circumstance can the TTL feature prevent?
DoS attacks
Which two tasks must you perform to configure a BGP peer group? (Choose two)
- Activate each neighbor
- Assign neighbors to the peer group
Which criterion does BGP evaluate first when determining the best path?
weight
Which command do you enter on router R6 so that BGP supports multiple protocols?
R6(config-router)#no bgp default ipv4-unicast
Which two BGP neighbor states are valid? (Choose two)
- Established
- Active
Refer to the exhibit.
router eigrp 1
redistribute bgp 1 route-map BGP_DEFAULT_ROUTE_RM
network 2.0.0.0
route-map BGP_DEFAULT_ROUTE_RM permit 10
match ip address prefix-list DEFAULT_ROUTE_PL
ip prefix-list DEFAULT_ROUTE_PL seq 10 permit 0.0.0.0/0
For which reason is EIGRP failing to redistribute the default route?
The EIGRP process is missing the default metric.
Refer to the exhibit. Which option describes why the EIGRP neighbors of this router are not learning routes that are received from OSPF?
router eigrp 1 redistribute ospf 100 network 10.10.10.0 0.0.0.255 auto-summary ! router ospf 100 network 172.16.0.0 0.0.255.255 area 100 redistribute eigrp 1
Default metrics are not configured under EIGRP
Refer to the exhibit. How does R1 handle the route to network 10.1.80.0/24?
R1 router eigrp 1 no auto-summary redistribute ospf 1 route-map ospf-to-eigrp default-metric 10000 10 255 1 1500
ip prefix-list ccnp1 seq 5 permit 10.1.48.0/24 le 24 ip prefix-list ccnp2 seq 5 permit 10.1.80.0/24 le 32
ip prefix-list ccnp3 seq 5 permit 10.1.64.0/24 le 24
route-map ospf-to-eigrp permit 10 match ip address prefix-list ccnp1 route-map ospf-to-eigrp permit 20 match ip address prefix-list ccnp2
R1 redistributes network 10.1.80.0/24 into EIGRP without changing the mask
Which option is an invalid redistribute command option for redistributing routes from EIGRP into OSPF?
access list
Which command denies the default route?
ip prefix-list de10.ny-route seq 5 deny 0 0 0.0/0
A network engineer is configuring a DHCP server to support a specialized application. Which additional DHCP feature must be enabled to support the delivery of various additional parameters to DHCP clients?
options
