♥♥ 2021 NEW RECOMMEND ♥♥

Free VCE & PDF File for Cisco 400-101 Real Exam (Full Version!)

★ Pass on Your First TRY ★ 100% Money Back Guarantee ★ Realistic Practice Exam Questions

Free Instant Download NEW 400-101 Exam Dumps (PDF & VCE):
Available on: http://www.surepassexam.com/400-101-exam-dumps.html

Q491. Refer to the exhibit. 

Which command can you enter to resolve this error message on a peer router? 

A. username <username> password <password> 

B. ppp chap <hostname> 

C. aaa authorization exec if-authenticated 

D. aaa authorization network if-authenticated 

Answer:


Q492. What is the goal of Unicast Reverse Path Forwarding? 

A. to verify the reachability of the destination address in forwarded packets 

B. to help control network congestion 

C. to verify the reachability of the destination address in multicast packets 

D. to verify the reachability of the source address in forwarded packets 

Answer:

Explanation: 

Network administrators can use Unicast Reverse Path Forwarding (Unicast RPF) to help limit the malicious traffic on an enterprise network. This security feature works by enabling a router to verify the reachability of the source address in packets being forwarded. This capability can limit the appearance of spoofed addresses on a network. If the source IP address is not valid, the packet is discarded. 

Reference: http://www.cisco.com/web/about/security/intelligence/unicast-rpf.html 


Q493. Which two statements about DHCP snooping are true? (Choose two.) 

A. It is implemented on a per-VLAN basis. 

B. It filters invalid DHCP messages. 

C. The binding database logs trusted and untrusted hosts with leased IP addresses. 

D. Interfaces are trusted by default. 

E. It uses the LFIB to validate requests from untrusted hosts. 

Answer: A,B 


Q494. Refer to the exhibit. 

Which statement describes the effect on the network if FastEthernet0/1 goes down temporarily? 

A. FastEthernet0/2 forwards traffic only until FastEthernet0/1 comes back up. 

B. FastEthernet0/2 stops forwarding traffic until FastEthernet0/1 comes back up. 

C. FastEthernet0/2 forwards traffic indefinitely. 

D. FastEthernet0/1 goes into standby. 

Answer:

Explanation: 

Use the switchport backup interface interface configuration command on a Layer 2 interface to configure Flex Links, a pair of interfaces that provide backup to each other. Use the no form of this command to remove the Flex Links configuration. With Flex Links configured, one link acts as the primary interface and forwards traffic, while the other interface is in standby mode, ready to begin forwarding traffic if the primary link shuts down. The interface being configured is referred to as the active link; the specified interface is identified as the backup link. The feature provides an alternative to the Spanning Tree Protocol (STP), allowing users to turn off STP and still retain basic link redundancy. 

Reference: http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst2960/software/release/12-2_53_se/command/reference/2960ComRef/cli3.html#wp3269214 


Q495. Which option is true about output policing for the control plane? 

A. It improves router performance by limiting traffic sent to the control plane. 

B. It improves router performance by limiting traffic sent from the control plane. 

C. It improves router performance by limiting traffic sent to and from the control plane. 

D. It controls traffic originated from the router. 

Answer:


Q496. The no ip unreachables command is configured on interfaces to protect the control plane of a router. 

Which mechanism is impacted by using this command? 

A. ICMP redirects 

B. path MTU discovery 

C. source routing 

D. ICMP router discovery protocol 

Answer:


Q497. Refer to the exhibit. 

Which action must you take to enable the WAN link to function properly? 

A. Enter a clock rate on the DCE interface. 

B. Enter a clock rate on the DTE interface. 

C. Enter a compression algorithm on both interfaces. 

D. Configure both interfaces for HDLC encapsulation. 

Answer:

Explanation: 

When connecting a serial cable to the serial interface of the router, clocking is provided by an external device, such as a CSU/DSU device. A CSU/DSU (Channel Service Unit/Data Service Unit) is a digital-interface device used to connect a router to a digital circuit. The router is the DTE (Data Terminal Equipment) and the external device is the DCE (Data Communications Equipment), where the DCE provides the clocking. However, in some cases we might connect two routers back-to-back using the routers’ serial interfaces (Example. Inside the router labs). Each router is a DTE by default. Since clocking is required to enable the interface, one of the two routers should function as DCE and should provide clocking. This can be done by using the "clock rate" command, from the interface configuration mode. 

Reference: http://www.omnisecu.com/cisco-certified-network-associate-ccna/how-to-configure-router-serial-interfaces.php 


Q498. DRAG DROP 

Drag each routing protocol on the left to the matching statement on the right. 

Answer: 


Q499. When you implement CoPP on your network, what is its default action? 

A. permit all traffic 

B. rate-limit bidirectional traffic to the control plane 

C. drop management ingress traffic to the control plane 

D. monitor ingress and egress traffic to the control plane by using access groups that are applied to the interface 

E. block all traffic 

Answer: