Cisco 350-401 Online Practice Questions and Exam Preparation

Cisco 350-401 Online Questions & Answers

• Question 1151:

  What is a TLOC in a Cisco SD-WAN deployment?

  A. value that identifies a specific tunnel within the Cisco SD-WAN overlay
  B. identifier that represents a specific service offered by nodes within the Cisco SD-WAN overlay
  C. attribute that acts as a next hop for network prefixes
  D. component set by the administrator to differentiate similar nodes that offer a common service
  C. attribute that acts as a next hop for network prefixes

  ---

  Explanation

  OMP Routes, also referred to as vRoutes, are prefixes learned at the local site via connected interfaces, static routes, and dynamic routing protocols (such as OSPF, EIGRP, and BGP) running on the service side of the vEdge. These prefixes are redistributed into OMP and advertised to the vSmart controller so that they can be carried across the overlay fabric to all other WAN edge nodes. OMP routes resolve their next-hop to a TLOC. An OMP route is installed in the forwarding table only if the next-hop TLOC is known and there is a BFD session in UP state associated with that TLOC;

• Question 1152:

  SIMULATION

  Guidelines

  This is a lab item in which tasks will be performed on virtual devices.

  1. Refer to the Tasks tab to view the tasks for this lab item.

  2. Refer to the Topology tab to access the device console(s) and perform the tasks.

  3. Console access is available for all required devices by clicking the device icon or using the tab(s) above the console window.

  4. All necessary preconfigurations have been applied.

  5. Do not change the enable password or hostname for any device.

  6. Save your configurations to NVRAM before moving to the next item.

  7. Click Next at the bottom of the screen to submit this lab and move to the next question.

  8. When Next is clicked, the lab closes and cannot be reopened.

  Topology

  

  Tasks

  

  A. See the solution below in Explanation.
  B. Place Holder
  C. Place Holder
  D. Place Holder
  A. See the solution below in Explanation.

  ---

  Explanation

  Solution:

  

  

  

  VERIFICATION:

  

• Question 1153:

  Refer to the exhibit. An engineer must adjust the configuration so that Router A becomes the active router. Which commands should be applied to router A? (Choose two)

  

  A. vrrp 1 priority 90
  B. vrrp 1 timers advertise 1
  C. vrrp lip 10.1.0.11
  D. ip address 10.1.0.11 255.0.0.0
  E. vrrp 1 priority 120
  C. vrrp lip 10.1.0.11
  E. vrrp 1 priority 120

• Question 1154:

  Refer to the exhibit.

  

  An SSID is configured and both clients can reach their gateways on the Layer 3 switch, but they cannot communicate with each other. Which action resolves this issue?

  A. Set the WMM Policy to Allowed
  B. Set the P2P Blocking Action to Disabled
  C. Set the WMM Policy to Required
  D. Set the P2P Blocking Action to Forward-UpStream
  B. Set the P2P Blocking Action to Disabled

• Question 1155:

  How does Cisco Trustsec enable more access controls for dynamic networking environments and data centers?

  A. uses flexible NetFlow
  B. assigns a VLAN to the endpoint
  C. classifies traffic based an the contextual identity of the endpoint rather than its IP address
  D. classifies traffic based on advanced application recognition
  C. classifies traffic based an the contextual identity of the endpoint rather than its IP address

  ---

  Explanation

  The Cisco TrustSec solution simplifies the provisioning and management of network access control through the use of software-defined segmentation to classify network traffic and enforce policies for more flexible access controls. Traffic classification is based on endpoint identity, not IP address, enabling policy change without net-work redesign.

• Question 1156:

  What is the benefit of using TCAM for IP forwarding decisions versus using the CAM table?

  A. TCAM finds results based on binary, and CAM uses the longest match to find results
  B. TCAM processes lookups in a hardware CPU. and CAM relies on binary masks to find results.
  C. TCAM finds results based on masks, and CAM finds results basing on exact match.
  D. TCAM uses low cost hardware memory to store addresses, and CAM uses expensive hardware memory.
  B. TCAM processes lookups in a hardware CPU. and CAM relies on binary masks to find results.

  ---

  Explanation

  The problem with CAM is that it can only do exact matches on ones and zeros (binary CAMs)

  https://community.cisco.com/t5/networking-knowledge-base/cam-content-addressable-memory-vs-tcam-ternary-content/ta-p/3107938

  By implementing router prefix lookup in TCAM, we are moving process of Forwarding Information Base lookup from software to hardware.

  https://howdoesinternetwork.com/2015/tcam-memory

• Question 1157:

  Refer to the exhibit.

  

  An engineer configures monitoring on SW1 and enters the show command to verify operation. What does the output confirm?

  A. SPAN session 1 monitors activity on VLAN 50 of a remote switch
  B. SPAN session 2 only monitors egress traffic exiting port FastEthernet 0/14.
  C. SPAN session 2 monitors all traffic entering and exiting port FastEthernet 0/15.
  D. RSPAN session 1 is incompletely configured for monitoring
  D. RSPAN session 1 is incompletely configured for monitoring

  ---

  Explanation

  SW1 has been configured with the following commands:

  SW1(config)#monitor session 1 source remote vlan 50 SW1(config)#monitor session 2 source interface fa0/14 SW1(config)#monitor session 2 destination interface fa0/15 The session 1 on SW1 was configured for Remote SPAN (RSPAN) while session 2 was configured for local SPAN.

  For RSPAN we need to configure the destination port to complete the configuration.

  Note: In fact we cannot create such a session like session 1 because if we only configure Source RSPAN VLAN 50 (with the command monitor session 1 source remote vlan 50) then we will receive a Type: Remote Source Session (not Remote Destination Session).

• Question 1158:

  Refer to the exhibit.

  

  Which type of antenna does the radiation pattern represent?

  A. Yagi
  B. multidirectional
  C. directional patch
  D. omnidirectional
  A. Yagi

  ---

  Explanation

  A Yagi antenna is formed by driving a simple antenna, typically a dipole or dipolelike antenna, and shaping the beam using a well-chosen series of non-driven elements whose length and spacing are tightly controlled.

  

  https://www.cisco.com/c/en/us/products/collateral/wireless/aironetantennas-accessories/prod_white_paper0900aecd806a1a3e.htm

• Question 1159:

  Which two advanced security features are available in next-generation firewalls but were not provided by standard firewalls? (Choose two.)

  A. stateful traffic inspection
  B. remote access VPN
  C. network telemetry
  D. intrusion prevention
  E. application control
  D. intrusion prevention
  E. application control

• Question 1160:

  What is one benefit of implementing a VSS architecture?

  A. It provides multiple points of management for redundancy and improved support.
  B. It uses GLBP to balance traffic between gateways.
  C. It provides a single point of management for improved efficiency.
  D. It uses a single database to manage configuration for multiple switches.
  C. It provides a single point of management for improved efficiency.

  ---

  Explanation

  Support Virtual Switching System (VSS) to provide resiliency, and increased operational efficiency with a single point of management; VSS increases operational efficiency by simplifying the network, reducing switch management overhead by at least 50 percent. ?Single configuration file and node to manage. Removes the need to configure redundant switches twice with identical policies.