1. Home
  2. Cisco
  3. 300-320

Cisco 300-320 Online Practice Questions and Exam Preparation

300-320 Exam Details

  • Exam Code
    :300-320
  • Exam Name
    :Designing Cisco Network Service Architectures
  • Certification
    :Cisco Certifications
  • Vendor
    :Cisco
  • Total Questions
    :720 Q&As
  • Last Updated
    :Dec 10, 2021

Cisco 300-320 Online Questions & Answers

  • Question 431:

    Which three statements about firewall modes are correct? (Choose three.)

    A. A firewall in routed mode has one IP address.
    B. A firewall in transparent mode has one IP address.
    C. In routed mode, the firewall is considered to be a Layer 2 device.
    D. In routed mode, the firewall is considered to be a Layer 3 device.
    E. In transparent mode, the firewall is considered to be a Layer 2 device.
    F. In transparent mode, the firewall is considered to be a Layer 3 device.

  • Question 432:

    A client request includes a network design that ensures all connections between the access layer and distribution layer are active and forwarding traffic at all times. Which design approach achieves this request?

    A. Enable backbone fast on the two distribution switches and create a port channel between each access layer switch and both distribution switches
    B. Configure HSRP for all VLANs and adjust the hello timer for faster convergence
    C. Configure Rapid PVST+ and adjust the timers for fast convergence
    D. Create a VSS between the two distribution switches and also create a MEC between the VSS and each access layer switch.

  • Question 433:

    A customer with a single Cisco Adaptive Security Appliance wants to separate multiple segments of the e-commerce network to allow for different security policies. What firewall technology accommodates these design requirements?

    A. virtual contexts
    B. private VLANs
    C. admission control
    D. virtual private network

  • Question 434:

    DRAG DROP

    Click and drag the command on the left to the associated task on the right.

    Select and Place:

  • Question 435:

    A company has 30 sites and wants allow dynamic IGP protocol, multicast and non IP traffic between sites. Which topology should the company implement?

    A. dmvpn spoke-to-spoke
    B. dmvpn hub-to-spoke
    C. vti
    D. p2p gre

  • Question 436:

    Which feature must be configured for the VRRP-enabled router to regain the master VRRP status upon recovery from a failure?

    A. priority
    B. authentication
    C. pre-emption
    D. Stateful Switchover

  • Question 437:

    When designing the routing for an Enterprise Campus network it is important to keep which of the following route filtering aspects in mind?

    A. Filtering is only useful when combined with route summarization
    B. It is best to filter (allow) the default and summary prefixes only in the Enterprise Edge to remote sites or site-to-site IPsec VPN networks
    C. IGPs (for example EIGRP or OSPF) are superior to route filtering in avoiding inappropriate transit traffic through remote nodes or inaccurate or inappropriate routing updates
    D. The primary limitation of router filtering is that it can only be applied on outbound updates

  • Question 438:

    What added enforcement feature is available on IDS-based devices to terminate active malicious traffic?

    A. Signature detection
    B. TCP reset
    C. SNMP alert
    D. Layer 4 filtering

  • Question 439:

    Which security feature can help prevent spoofed packets on the network?

    A. uRPF
    B. ACLs
    C. DAI
    D. DHCP spoofing

  • Question 440:

    An engineer has proposed the deployment of a Cisco ACI fabric solution to introduce automation and zero-touch operation experience to a DC network. Which type of virtualization technology is utilized by the Cisco ACI to encapsulate the traffic inside the fabric and to virtualize the physical infrastructure?

    A. IPsec
    B. NSX
    C. STP
    D. VXLAN

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 300-320 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.