Download New Updated (July) Cisco 400-101 Actual Test 351-360

Ensurepass

 

 

QUESTION 351

Which two are features of DMVPN? (Choose two.)

 

A.

It does not support spoke routers behind dynamic NAT.

B.

It requires IPsec encryption.

C.

It only supports remote peers with statically assigned addresses.

D.

It supports multicast traffic.

E.

It offers configuration reduction.

 

Correct Answer: DE

Explanation:

DMVPN Hub-and-spoke deployment model: In this traditional topology, remote sites (spokes) are aggregated into a headend VPN device at the corporate headquarters (hub). Traffic from any remote site to other remote sites would need to pass through the headend device. Cisco DMVPN supports dynamic routing, QoS, and IP Multicast while significantly reducing the configuration effort.

Reference: http://www.cisco.com/c/en/us/products/collateral/security/dynamic-multipoint-vpn-dmvpn/data_sheet_c78-468520.html

 

 

 

QUESTION 352

Refer to the exhibit. What is wrong with the configuration of this tunnel interface?

 

clip_image002

 

A.

ISATAP tunnels cannot use the EUI-64 address format.

B.

No tunnel destination has been specified.

C.

The tunnel source of an ISATAP tunnel must always point to a loopback interface.

D.

Router advertisements are disabled on this tunnel interface.

 

Correct Answer: D

Explanation:

Sending of IPv6 router advertisements is disabled by default on tunnel interfaces. This command reenables the sending of IPv6 router advertisements to allow client autoconfiguration:

Example:

Router(config-if)# no ipv6 nd ra suppress

Reference: http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/interface/configuration/xe-3s/ir-xe-3s-book/ip6-isatap-xe.html

 

 

QUESTION 353

Which two statements are true about a 6to4 tunnel connecting two IPv6 islands over the IPv4 Internet? (Choose two.)

 

A.

It embeds the IPv6 packet into the IPv4 payload with the protocol type set to 51.

B.

It works by appending the private IPv4 address (converted into hexadecimal format) to the 2002::/16 prefix.

C.

It embeds the IPv6 packet into the IPv4 payload with the protocol type set to 41.

D.

It works by appending the public IPv4 address (converted into hexadecimal format) to the 2002::/16 prefix.

 

Correct Answer: CD

Explanation:

6to4 embeds an IPv6 packet in the payload portion of an IPv4 packet with protocol type 41. To send an IPv6 packet over an IPv4 network to a 6to4 destination address, an IPv4 header with protocol type 41 is prepended to the IPv6 packet. The IPv4 destination address for the prepended packet header is derived from the IPv6 destination address of the inner packet (which is in the format of a 6to4 address), by extracting the 32 bits immediately following the IPv6 destination address’s 2002::/16 prefix. The IPv4 source address in the prepended packet header is the IPv4 address of the host or router which is sending the packet over IPv4. The resulting IPv4 packet is then routed to its IPv4 destination address just like any other IPv4 packet.

Reference: http://en.wikipedia.org/wiki/6to4

 

 

 

 

 

 

 

 

QUESTION 354

Refer to the exhibit. What will be the IP MTU of tunnel 0?

 

clip_image004

 

A.

1500

B.

1524

C.

1476

D.

1452

E.

1548

 

Correct Answer: C

Explanation:

In the case of the GRE tunnel interface, the IP maximum transmission unit (MTU) is 24 bytes less than the IP MTU of the real outgoing interface. For an Ethernet outgoing interface that means the IP MTU on the tunnel interface would be 1500 minus 24, or 1476 bytes.

Reference: http://www.cisco.com/c/en/us/support/docs/ip/generic-routing-encapsulation-gre/13725-56.html

 

 

QUESTION 355

On an MPLS L3VPN, which two tasks are performed by the PE router? (Choose two.)

 

A.

It exchanges VPNv4 routes with other PE routers.

B.

It typically exchanges iBGP routing updates with the CE device.

C.

It distributes labels and forwards labeled packets.

D.

It exchanges VPNv4 routes with CE devices.

E.

It forwards labeled packets between CE devices.

 

Correct Answer: AC

Explanation:

MPLS VPN functionality is enabled at the edge of an MPLS network. The PE router performs these tasks:

 

clip_image006Exchanges routing updates with the CE router

clip_image006[1]Translates the CE routing information into VPN version 4 (VPNv4) routes

clip_image006[2]Exchanges VPNv4 routes with other PE routers through the Multiprotocol Border Gateway Protocol (MP-BGP)

 

A PE router binds a label to each customer prefix learned from a CE router and includes the label in the network reachability information for the prefix that it advertises to other PE routers. When a PE router forwards a packet received from a CE router across the provider network, it labels the packet with the label learned from the destination PE router. When the destination PE router receives the labeled packet, it pops the label and uses it to direct the packet to the correct CE router. Label forwarding across the provider backbone is based on either dynamic label switching or traffic engineered paths. A customer data packet carries two levels of labels when traversing the backbone.

Reference: http://www.cisco.com/c/en/us/td/docs/routers/asr9000/software/asr9k_r4- 2/lxvpn/configuration/guide/vcasr9kv342/vcasr9k42v3.html

 

 

QUESTION 356

Refer to the exhibit. Which statement describes what the authoritative flag indicates?

 

clip_image008

 

A.

Authentication was used for the mapping.

B.

R1 learned about the NHRP mapping from a registration request.

C.

Duplicate mapping in the NHRP cache is prevented.

D.

The registration request had the same flag set.

 

Correct Answer: B

Explanation:

Show NHRP:

Examples:

The following is sample output from the show ip nhrp command:

Router# show ip nhrp

10.0.0.2 255.255.255.255, tunnel 100 created 0:00:43 expire 1:59:16

Type. dynamic Flags: authoritative

NBMA address: 10.1111.1111.1111.1111.1111.1111.1111.1111.1111.11

10.0.0.1 255.255.255.255, Tunnel0 created 0:10:03 expire 1:49:56

Type. static Flags: authoritative

The fields in the sample display are as follows:

Flags:

authoritative–Indicates that the NHRP information was obtained from the Next Hop Server or router that maintains the NBMA-to-IP address mapping for a particular destination.

Reference: http://www.cisco.com/c/en/us/td/docs/ios/12_4/ip_addr/configuration/guide/hadnhrp.html

 

 

 

 

 

 

 

 

 

 

 

 

QUESTION 357

Refer to the exhibit. Which two statements about this configuration are true? (Choose two.)

 

clip_image010

 

A.

Spoke devices will be dynamically added to the NHRP mappings.

B.

The next-hop server address must be configured to 172.168.1.1 on all spokes.

C.

The next-hop server address must be configured to 192.168.1.1 on all spokes.

D.

R1 will create a static mapping for each spoke.

 

Correct Answer: AC

Explanation:

NHRP is a client/server model protocol which is defined by RFC2332. The hub is considered to be the Next Hop Server (NHS) and the spokes are considered to be the Next Hop Client (NHC). The hub must be configured as the next-hop server.

NHRP provides a mapping between the inside and outside address of a tunnel endpoint. These mappings can be static or dynamic. In a dynamic scenario, a next-hop server (NHS) is used to maintain a list of possible tunnel endpoints. Each endpoint using the NHS registers its own public and private mapping with the NHS. The local mapping of the NHS must always be static. It is important to note that the branch points to the inside or protected address of the NHS server. This scenario is an example of dynamic mappings.

Reference: http://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/WAN_and_MAN/DMVPDG/DMVPN_2_ Phase2.html

 

 

QUESTION 358

Which two tunneling techniques determine the IPv4 destination address on a per-packet basis? (Choose two.)

 

A.

6to4 tunneling

B.

ISATAP tunneling

C.

manual tunneling

D.

GRE tunneling

 

Correct Answer: AB

Explanation:

Tunnel Configuration Parameters by Tunneling Type

Tunneling Type

Tunnel Configuration Parameter

Tunnel Mode

Tunnel Source

Tunnel Destination

Interface Prefix or Address

Manual

ipv6ip

An IPv4 address, or a reference to an interface on which IPv4 is configured.

An IPv4 address.

An IPv6 address.

GRE/IPv4

gre ip

An IPv4 address.

An IPv6 address.

IPv4-compatible

ipv6ip auto-tunnel

Not required. These are all point-to-multipoint tunneling types. The IPv4 destination address is calculated, on a per-packet basis, from the IPv6 destination.

Not required. The interface address is generated as ::tunnel-source/96.

6to4

ipv6ip 6to4

An IPv6 address. The prefix must embed the tunnel source IPv4 address

ISATAP

ipv6ip isatap

An IPv6 prefix in modified eui-64 format. The IPv6 address is generated from the prefix and the tunnel source IPv4 address.

Reference: http://www.cisco.com/c/en/us/td/docs/ios/ipv6/configuration/guide/12_4t/ipv6_12_4t_book/ip6-tunnel.html

 

 

QUESTION 359

Which two services are used to transport Layer 2 frames across a packet-switched network? (Choose two.)

 

A.

Frame Relay

B.

ATM

C.

AToM

D.

L2TPv3

 

Correct Answer: CD

Explanation:

Both AToM and L2TPv3 have the common objective of transmitting packet switched traffic of L2 frames (Frame Relay, ATM, and Ethernet) across a packet-switched network.

Reference: Layer 2 VPN Architectures – Google Books Result Wei Luo, Carlos Pignataro, Anthony Chan

https://books.google.com/books?isbn=0132796864

 

 

 

 

QUESTION 360

Which two statements about the C-bit and PW type are true? (Choose two.)

 

A.

The C-bit is 1 byte and the PW type is 15 bytes.

B.

The PW type indicates the type of pseudowire.

C.

The C-bit is 3 bits and the PW type is 10 bits.

D.

The C-bit set to 1 indicates a control word is present.

E.

The PW type indicates the encryption type.

 

Correct Answer: BD

Explanation:

The control word carries generic and Layer 2 payload-specific information. If the C-bit is set to 1, the advertising PE expects the control word to be present in every pseudowire packet on the pseudowire that is being signaled. If the C-bit is set to 0, no control word is expected to be present.

Pseudowire Type–PW Type is a 15-bit field that represents the type of pseudowire.

Reference: http://www.ciscopress.com/articles/article.asp?p=386788&seqNum=2

 

Free VCE & PDF File for Cisco 400-101 Real Exam

Instant Access to Free VCE Files: CCNA | CCNP | CCIE …
Instant Access to Free PDF Files: CCNA | CCNP | CCIE …