1. Home
  2. Cisco
  3. 351-001

Cisco 351-001 Online Practice Questions and Exam Preparation

351-001 Exam Details

  • Exam Code
    :351-001
  • Exam Name
    :CCIE Routing and Switching Written
  • Certification
    :Cisco Certifications
  • Vendor
    :Cisco
  • Total Questions
    :996 Q&As
  • Last Updated
    :Dec 06, 2021

Cisco 351-001 Online Questions & Answers

  • Question 711:

    DRAG DROP

    Drag and drop the EIGRP query condition on the left to the corresponding action taken by the router on the right.

    Select and Place:

  • Question 712:

    What are the minimal configuration steps that are required to configure EIGRP HMAC- SHA2 authentication?

    A. classic router mode, interface XX, authentication mode hmac-sha-256
    B. named router mode, address-family statement, authentication mode hmac-sha-256
    C. named router mode, address-family statement, af-interface default, authentication mode hmac-sha-256
    D. named router mode, address-family statement, authentication mode hmac-sha-256

  • Question 713:

    Refer to the exhibit,

    which statement is true?

    A. BFD, SPF and LSA timers are tuned for faster convergence
    B. Fast convergence is not configured
    C. BFD and SPF throttling are configured
    D. Only BFD is enabled

  • Question 714:

    Refer to the exhibit.

    How can Router X in AS70000 peer with Router Y in AS65000, in case Router Y supports only 2-byte ASNs?

    A. Router X should be configured with a remove-private-as command, because this will establish the peering session with a random private 2-byte ASN.
    B. It is not possible. Router Y must be upgraded to an image that supports 4-byte ASN.
    C. Router Y should be configured with a 4-byte AS using the local-as command.
    D. Router X should be configured with a 2-byte AS using the local-as command.

  • Question 715:

    A configuration includes the line ip nbar port-map SSH tcp 22 23 443 8080. Which option describes the effect of this configuration line?

    A. It configures NBAR to search for SSH using ports 22, 23, 443, and 8080.
    B. It configures NBAR to allow SSH connections only on ports 22, 23, 443, and 8080.
    C. It enables NBAR to inspect for SSH connections.
    D. It creates a custom NBAR port-map named SSH and associates TCP ports 22, 23, 443, and 8080 to itself.

  • Question 716:

    Which three actions are required when configuring NAT-PT? (Choose three.)

    A. Enable NAT-PT globally.
    B. Specify an IPv4-to-IPv6 translation.
    C. Specify an IPv6-to-IPv4 translation.
    D. Specify a ::/96 prefix that will map to an IPv4 address.
    E. Specify a ::/48 prefix that will map to a MAC address.
    F. Specify a ::/32 prefix that will map to an IPv6 address.

  • Question 717:

    Which two BGP attributes are optional, non-transitive attributes? (Choose two.)

    A. AS path
    B. local preference
    C. MED
    D. weight
    E. cluster list

  • Question 718:

    Which two security risks can occur with PMTUD? (Choose two)

    A. An attacker can block valid Datagram Too small messages, to cause a DDos.
    B. An attacker can block valid Datagram Too small messages, to cause a Dos.
    C. An attacker can slow data flow by sending false messages that indicate that the PMTU is significantly smaller than the true PMTU.
    D. An attacker can cause data lost by sending false messages that indicate that the PMTU is significantly smaller than the true PMTU.
    E. An attacker can cause data lost by sending false messages that indicate that the PMTU is significantly larger than the true PMTU.
    F. An attacker can slow data flow by sending false messages that indicate that the PMTU is significantly larger than the true PMTU.

  • Question 719:

    What are the three required attributed in a BGP update message? (Choose three )

    A. AS_PATH
    B. COMMUNITY
    C. AGGREGATOR
    D. MED
    E. NEXT_HOP
    F. ORIGIN

  • Question 720:

    Which three features does GETVPN support to improve deployment and scalability? (Choose three.)

    A. configuration of multiple key servers to work cooperatively
    B. allowing traffic to be discarded until a group member registers successfully
    C. local exceptions in the traffic classification ACL
    D. GDOI protocol configuration between group members and the key server
    E. redundant IPsec tunnels between group members and the key server
    F. redundant multicast replication streaming through the use of a bypass tunnel

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 351-001 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.