Practice Free 300-410 Exam Online Questions
Refer to the exhibit.
The company implemented uRPF to address an antispoofing attack. A network engineer received a call from the IT security department that the regional data center is under an IP attack Which configuration must be implemented on R1 to resolve this issue?
- A . Option A
- B . Option B
- C . Option C
- D . Option D
DRAG DROP
Drag and drop the MPLS VPN device types from the left onto the definitions on the right.
Explanation:
Graphical user interface, application Description automatically generated
Refer to the exhibit.
R1 cannot authenticate via TACACS.
Which configuration resolves the issue?
- A . Option A
- B . Option B
- C . Option C
- D . Option D
Refer to the exhibit.
An engineer must establish a point-to-point GRE VPN between R1 and the remote site.
Which configuration accomplishes the task for the remote site?
- A . Interface Tunnel1
tunnel source 199.1.1.1
tunnel destination 200.1.1.3
ip address 192.168.1.3 255.255.255.0 - B . Interface Tunnel1
tunnel source 200.1.1.3
tunnel destination 199.1.1.1
ip address 192.168.1.1.255.255.255.0 - C . Interface Tunnel1
tunnel source 200.1.1.3
tunnel destination 199.1.1.1
ip address 192.168.1.3.255.255.255.0 - D . Interface Tunnel
tunnel source 199.1.1.1
tunnel destination 200.1.1.3
ip address 192.168.1.1.255.255.255.0
Which statement about IPv6 RA Guard is true?
- A . It does not offer protection in environments where IPv6 traffic is tunneled.
- B . It cannot be configured on a switch port interface in the ingress direction.
- C . Packets that are dropped by IPv6 RA Guard cannot be spanned.
- D . It is not supported in hardware when TCAM is programmed.
A
Explanation:
https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/ipv6_fhsec/configuration/xe-3s/ip6f-xe-3s-book/ip6-ra-guard.html#GUID-589AF00C-7499-439F-AD23-51005D61CAB7
The IPv6 RA Guard feature does not offer protection in environments where IPv6 traffic is tunneled.
Reference: https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/ipv6_fhsec/configuration/xe-16/ip6f-xe-16-book/ip6-ra-guard.pdf
What does IPv6 Source Guard utilize to determine if IPv6 source addresses should be forwarded?
- A . ACE
- B . ACLS
- C . DHCP
- D . Binding Table
D
Explanation:
DRAG DROP
Drag and drop the ICMPv6 neighbor discovery messages from the left onto the correct packet types on the right.
Explanation:
Table Description automatically
generated with medium confidence
Refer to the exhibit.
A network administrator configured NetFlow data, but the data is not visible at the NetFlow collector.
Which configuration allows the router to send the records?
- A . Configure the management interface in the global routing table to send the records.
- B . Configure a different interface to send the records.
- C . Configure the NetFlow collector to listen at export-protocol netflow-v5.
- D . Rectify NetFlow collector reachability from the management interface.
SIMULATION
A network is configured with IP connectivity, and the routing protocol between devices started having problems right after the maintenance window to implement network changes.
Troubleshoot and resolve to a fully functional network to ensure that:
R4
R5
Int range et0/0 C 1
Ip ospf authentication message-digest
Ip ospf message-digest-key 1 md5 CCNP
Router ospf 1
Redistribute connected subnets route-map to-ospf metric-type 1
Copy run start
R5
Int range et0/0 C 1
Ip ospf authentication message-digest
Ip ospf message-digest-key 1 md5 CCNP
Interface eth 0/1
Ip ospf cost 10
Copy run start
VERIFICATION: –
Graphical user interface, text, application Description automatically generated
SIMULATION
A network is configured with IP connectivity, and the routing protocol between devices started having problems right after the maintenance window to implement network changes.
Troubleshoot and resolve to a fully functional network to ensure that:
R4
R5
Int range et0/0 C 1
Ip ospf authentication message-digest
Ip ospf message-digest-key 1 md5 CCNP
Router ospf 1
Redistribute connected subnets route-map to-ospf metric-type 1
Copy run start
R5
Int range et0/0 C 1
Ip ospf authentication message-digest
Ip ospf message-digest-key 1 md5 CCNP
Interface eth 0/1
Ip ospf cost 10
Copy run start
VERIFICATION: –
Graphical user interface, text, application Description automatically generated