Cisco 352-001 Online Practice Questions and Exam Preparation

Cisco 352-001 Online Questions & Answers

• Question 571:

  Your company's external routers BGP peer with multiple service providers and external organizations. In all cases, the external routers are peered with their BGP neighbors via directly-connected interfaces.

  How does GTSM provide additional security for your BGP speakers?

  A. GTSM prevents the processing of BGP packets from devices that are not on the directly- connected interfaces.
  B. GTSM prevents the formation of BGP adjacencies from unauthorized devices.
  C. GTSM ensures that all BGP routing updates have been verified for secure origination.
  D. GTSM replaces the TCP 3-way handshake between BGP speakers on directly connected interfaces.
  E. GTSM prevents random TCP resets from being injected into the BGP data stream.
  A. GTSM prevents the processing of BGP packets from devices that are not on the directly- connected interfaces.

• Question 572:

  Your company requires two diverse multihop eBGP peerings to a partner network. Which two methods should you use to improve lost peer detection? (Choose 2)

  A. Use Fast Peering Session Deactivation for the peers.
  B. Use sub-second keepalives for the peers.
  C. Use sub-second hold timers for the peers.
  D. Use sub-second minimum route advertisement Interval timers for the peers.
  E. Use Selective Address Tracking and match the peers.
  A. Use Fast Peering Session Deactivation for the peers.
  E. Use Selective Address Tracking and match the peers.

• Question 573:

  You are reviewing a new data center design for a customer. They chose to leverage a tunnel-based overlay technology for quick deployment and multitenant security. Which design concern can affect the availability across the data center?

  A. Nonoverlapping IP address space between the overlay networks
  B. MTU size on the underlay links
  C. Review of comman paths on the underlay links
  D. Paper placement of STP root bridge in overlay networks
  B. MTU size on the underlay links

• Question 574:

  Refer to the exhibit.

  

  A service provider would like to use Ethernet OAM to detect end-to-end connectivity failures between SP-SW1 and SP-SW2. In which two of these ways can you design this solution? (Choose two.)

  A. Enable Y.1731 Connectivity Fault Management on the SP switches.
  B. E-LMI PDUs must be forwarded over VPLS.
  C. Cisco Discovery Protocol PDUs must be forwarded over the VPLS.
  D. Use upward maintenance endpoints on the SP switches.
  E. Enable IEEE 802.1ag Connectivity Fault Management on the SP switches.
  D. Use upward maintenance endpoints on the SP switches.
  E. Enable IEEE 802.1ag Connectivity Fault Management on the SP switches.

• Question 575:

  A certain service provider offers RFC 2547-based L3VPN service. The service provider is using OSPF to carry infrastructure routes and MP-BGP to carry customer routes. It has also deployed a full mesh of Cisco MPLS TE tunnels with FRR for link and node protection. OSPF and BGP have not been tuned for faster convergence.

  Which three types of failure does Cisco MPLS TE FRR address in this service provider's network? (Choose three.)

  A. P (core) node failure
  B. PE node failure
  C. PE-P link failure
  D. P-P link failure
  E. PE-CE link failure
  A. P (core) node failure
  C. PE-P link failure
  D. P-P link failure

• Question 576:

  Your network operations team is deploying Access Control Lists (ACLs) across your Internet gateways. They wish to place an ACL inbound on the Internet gateway interface facing the core network (the "trusted" interface). Which one of these addresses would the ACL need for traffic sourced from the inside interface, to match the source address of the traffic?

  A. inside local
  B. outside local
  C. inside global
  D. outside global
  A. inside local

• Question 577:

  When creating a network design, which one of these options provides for basic Layer 2 client isolation to prevent broadcast traffic exposure?

  A. SVI
  B. VLAN
  C. routed port
  D. edge port
  B. VLAN

• Question 578:

  A company is planning to connect its 30 sites with a VPLS WAN backbone. A router at each site should establish neighborships with all other routers using the OSPF routing protocol. Which three points must be considered regarding DR and BDR when different router platforms are used? (Choose three.)

  A. It is a best practice that the routers with the most powerful hardware should take the role of the DR and BDR.
  B. If the IP OSPF priority is the same for all routers, the highest loopback IP address and router ID will decide which routers will take the DR and BDR role during the selection process.
  C. To select the DR and BDR, the IP OSPF priority must be set to a higher value than the default value at the DR and BDR during the selection process.
  D. To select the DR and BDR, the IP OSPF priority must be set to a lower value than the default value at the DR and BDR during the selection process.
  E. The role for the DR and BDR will be selected when a new OSPF router comes up.
  F. To force two routers to become a DR and a BDR, the IP OSPF priority can be set to zero at all other OSPF routers.
  A. It is a best practice that the routers with the most powerful hardware should take the role of the DR and BDR.
  B. If the IP OSPF priority is the same for all routers, the highest loopback IP address and router ID will decide which routers will take the DR and BDR role during the selection process.
  F. To force two routers to become a DR and a BDR, the IP OSPF priority can be set to zero at all other OSPF routers.

• Question 579:

  What are two reasons to choose L2TPv3 over other technologies for a VPN solution? (Choose two.)

  A. The VPN solution does not contain MPLS on the network core.
  B. The VPN solution should support Frame Relay to Ethernet pseudowire connections.
  C. The VPN solution requires multipoint Ethernet LAN service.
  D. The VPN solution should be industry-standard.
  A. The VPN solution does not contain MPLS on the network core.
  D. The VPN solution should be industry-standard.

• Question 580:

  You are designing a FabricPath network that connects to a spine-and-leaf topology using layer 2 IS-IS as the IGP. The solution should be able to detect changes in the network topology and calculate loop-free paths to other nodes in the network that are being used as top-of-rack switches. Which four options are characteristics of this FabricPath design solution? (Choose 4)

  A. The FabricPath domain should be replaced because it does not run STP.
  B. The switch operating system uses multiple equal-cost, parallel links that provide ECMP.
  C. To use the basic FabricPath functionality, you must configure IS-IS on every interface between the leaf-and-spine switches.
  D. FabricPath Layer 2 IS-IS uses the standard IS-IS functionality to populate up to 16 routes for a given destination switch.
  E. This path is used for forwarding unicast Fabricpath frames.
  F. Each switch computes its shortest path to every other switch in the network using the SPF algorithm.
  G. The interfaces in a FabricPath network run only the FabricPath Layer 2 IS-IS protocol with FTags disabled.
  B. The switch operating system uses multiple equal-cost, parallel links that provide ECMP.
  D. FabricPath Layer 2 IS-IS uses the standard IS-IS functionality to populate up to 16 routes for a given destination switch.
  E. This path is used for forwarding unicast Fabricpath frames.
  F. Each switch computes its shortest path to every other switch in the network using the SPF algorithm.