Cisco CCNP 350-401 Questions & Answers

• Question 1091:

  Under which network conditions is an outbound QoS policy that is applied on a router WAN interface most beneficial?

  A. under all network conditions

  B. under network convergence conditions

  C. under traffic classification and marking conditions

  D. under interface saturation conditions

  Correct Answer: D

  Marking is done at the edge, QOS performs no useful functions other than marking unless there is congestion.

• Question 1092:

  Which technology does VXLAN use to provide segmentation for Layer 2 and Layer 3 traffic?

  A. bridge domain

  B. VLAN

  C. VRF

  D. VNI

  Correct Answer: D

  VXLAN has a 24-bit VXLAN network identifier (VNI), which allows for up to 16 million (= 224) VXLAN segments to coexist within the same infrastructure. This surely solve the small number of traditional VLANs.

• Question 1093:

  A company has an existing Cisco 5520 HA cluster using SSO. An engineer deploys a new single Cisco Catalyst 9800 WLC to test new features. The engineer successfully configures a mobility tunnel between the 5520 cluster and 9800 WLC. Clients connected to the corporate WLAN roam seamlessly between access points on the 5520 and 9800 WLC. After a failure on the primary 5520 WLC, all WLAN services remain functional; however clients cannot roam between the 5520 and 9800 controllers without dropping their connection. Which feature must be configured to remedy the issue?

  A. mobility MAC on the 5520 cluster

  B. mobility MAC on the 9800 WLC

  C. new mobility on the 5520 cluster

  D. new mobility on the 9800 WLC

  Correct Answer: B

  You have 2 5k devices with SSO, and a 1 9k device.

  If cluster and primary works fine, then everything is fine.

  However when Primary 5k device fails, secondary should take over. Now Secondary with 9k doesnt talk to each other as it should.

  Ensure that you configure the mobility MAC address using the wireless mobility mac-address command for HighAvailability to work.

  Therefore you should enable this on the 9k device so it knows about the other devices.

  Doing it on the cluster with already established SSO wont do anything. Given answer (B) should be the correct one.

• Question 1094:

  What are two methods of ensuring that the multicast RPF check passes without changing the unicast routing table? (Choose two.)

  A. implementing static mroutes

  B. disabling BGP routing protocol

  C. implementing MBGP

  D. disabling the interface of the router back to the multicast source

  E. implementing OSPF routing protocol

  Correct Answer: AC

• Question 1095:

  What is the result when an active route processor fails in a design that combines NSF with SSO?

  A. An NSF-aware device immediately updates the standby route processor RIB without churning the network

  B. The standby route processor temporarily forwards packets until route convergence is complete

  C. An NSF-capable device immediately updates the standby route processor RIB without churning the network

  D. The standby route processor immediately takes control and forwards packets along known routes

  Correct Answer: D

  Stateful Switchover Routers specifically designed for high availability include hardware redundancy, such as dual power supplies and route processors (RPs). An RP is responsible for learning the network topology and building the route table (RIB). An RP failure can trigger routing protocol adjacencies to reset, resulting in packet loss and network instability. During an RP failure, it may be more desirable to hide the failure and allow the router to continue forwarding packets using the previously programmed CEF table entries rather than temporarily drop packets while waiting for the secondary RP to reestablish the routing protocol adjacencies and rebuild the forwarding table.

  Stateful switchover (SSO) is a redundancy feature that allows a Cisco router with two RPs to synchronize router configuration and control plane state information. The process of mirroring information between RPs is referred to as checkpointing. SSO-enabled routers always checkpoint line card operation and Layer 2 protocol states. During a switchover, the standby RP immediately takes control and prevents basic problems such as interface link flaps. However, Layer 3 packet forwarding is disrupted without additional configuration.

  The RP switchover triggers a routing protocol adjacency flap that clears the route table. When the routing table is cleared, the CEF entries are purged, and traffic is no longer routed until the network topology is relearned and the forwarding table is reprogrammed. Enabling nonstop forwarding (NSF) or nonstop routing (NSR) high availability capabilities informs the router(s) to maintain the CEF entries for a short duration and continue forwarding packets through an RP failure until the control plane recovers.

• Question 1096:

  What is a benefit of a virtual machine when compared with a physical server?

  A. Multiple virtual servers can be deployed on the same physical server without having to buy additional hardware.

  B. Virtual machines increase server processing performance.

  C. The CPU and RAM resources on a virtual machine cannot be affected by other virtual machines.

  D. Deploying a virtual machine is technically less complex than deploying a physical server.

  Correct Answer: A

  Definitely not C, because CPU resources are shared in all well known hypervisors, RAM may be shared or not (depends on hypervisor)

• Question 1097:

  What is the recommended MTU size for a Cisco SD-Access Fabric?

  A. 1500

  B. 9100

  C. 4464

  D. 17914

  Correct Answer: B

  VXLAN adds 50 bytes to the original packet. The common denominator and recommended MTU value available on devices operating in a fabric role is 9100. Network should have a minimum starting MTU of at least 1550 bytes to support the fabric overlay. MTU values between 1550 and 9100 are supported along with MTU values larger than 9100 though there may be additional configuration and limitations based on the original packet size. MTU 9100 is provisioned as part of LAN Automation. Devices in the same routing domain and Layer 2 domain should be configured with a consistent MTU size to support routing protocol adjacencies and packet forwarding without fragmentation.

• Question 1098:

  What Is the process for moving a virtual machine from one host machine to another with no downtime?

  A. high availability

  B. disaster recovery

  C. live migration

  D. multisite replication

  Correct Answer: C

• Question 1099:

  What are two features of NetFlow flow monitoring? (Choose two.)

  A. Copies all ingress flow information to an interface

  B. Include the flow record and the flow importer

  C. Can track ingress and egress information

  D. Can be used to track multicast, MPLS, or bridged traffic.

  E. Does not required packet sampling on interfaces

  Correct Answer: CD

• Question 1100:

  What is the wireless received signal strength indicator?

  A. The value given to the strength of the wireless signal received compared to the noise level

  B. The value of how strong the wireless signal Is leaving the antenna using transmit power, cable loss, and antenna gain

  C. The value of how much wireless signal is lost over a defined amount of distance

  D. The value of how strong a tireless signal is receded, measured in dBm

  Correct Answer: D

  RSSI, or "Received Signal Strength Indicator," is a measurement of how well your device can hear a signal from an access point or router. It's a value that is useful for determining if you have enough signal to get a good wireless connection. This value is measured in decibels (dBm) from 0 (zero) to -120 (minus 120). The closer to 0 (zero) the stronger the signal is which means it's better, typically voice networks require a - 65db or better signal level while a data network needs 80db or better.