Cisco Cisco Certifications 352-001 Questions & Answers

• Question 571:

  You are working on a network design plan for a company with approximately 2000 sites. The sites will be connected using the public Internet. You plan to use private IP addressing in the network design, which will be routed without NAT through an encrypted WAN network. Some sites will be connected to the Internet with dynamic public IP addresses, and these addresses may change occasionally. Which VPN solution will support these design requirements?

  A. GET VPN must be used, because DMVPN does not scale to 2000 sites.

  B. DMVPN must be used, because GET VPN does not scale to 2000 sites.

  C. GET VPN must be used, because private IP addresses cannot be transferred with DMVPN through the public Internet.

  D. DMVPN must be used, because private IP addresses cannot be transferred with GET VPN through the public Internet.

  E. GET VPN must be used, because DMVPN does not support dynamic IP addresses for some sites.

  F. DMVPN must be used, because GET VPN does not support dynamic IP addresses for some sites.

  Correct Answer: D

• Question 572:

  How are community formats sent in SNMPv1 and SNMPv2c?

  A. In both protocols they are encrypted.

  B. In both protocols they are sent as clear text.

  C. In SNMPv1 they are sent as clear text and in SNMPv2c they are encrypted.

  D. In SNMPv1 they are sent as clear text and in SNMPv2c they are sent as part of an encrypted session.

  Correct Answer: B

• Question 573:

  Refer to the exhibit.

  

  All routers in this network are configured to place all interfaces in OSPF area 5. R3 is the designated router on the 10.1.5.0/24 network. If you examine the OSPF database on R4, what would the network (type 2) LSA, generated by R3, contain?

  A. a connection to 10.1.5.0/24 and links to R3, R2, and R1

  B. a connection to 10.1.5.0/24 and links to R2 and R1

  C. connections to 10.1.5.0/24 and 10.1.1.0/31

  D. no connections, R3 does not generate a network (type 2) LSA in this network

  Correct Answer: A

• Question 574:

  Which two mechanisms ensure that a network design provides fast path failure detection? (Choose two.)

  A. BFD

  B. fast hello packets

  C. UDLD

  D. IP Cisco Express Forwarding

  Correct Answer: AB

• Question 575:

  When you design a network, when would it be required to leak routes into a Level 1 area?

  A. when a multicast RP is configured in the nonbackbone area

  B. when MPLS L3VPN PE devices are configured in the Level 1 areas

  C. when equal cost load balancing is required between the backbone and nonbackbone areas

  D. when unequal cost load balancing is required between the backbone and nonbackbone areas

  Correct Answer: B

• Question 576:

  For a storage area network design, which technology allows a switch to support multiple Fibre Channel IDs per fabric port?

  A. N-Port Identifier Virtualization

  B. Inter-Virtual Storage Area Network Routing

  C. Zoning

  D. Fabric Port Trunking

  E. Node Port Virtualization

  F. Expansion Port Trunking

  Correct Answer: A

• Question 577:

  A company plans to include Nonstop Forwarding and Bidirectional Forwarding Detection as a part of their network redundancy plan. In which two ways do NSF and BFD work together when different hardware platforms are compared? (Choose two.)

  A. During supervisor engine or routing engine failover, the NSF feature will always ensure that the BFD at the peer router will not trigger a link down independent of the used hardware platform.

  B. At some hardware platforms, BFD and NSF are not supported together. During supervisor engine or routing engine failover, the BFD at the peer router will trigger a link down.

  C. To ensure that BFD at the peer router will not trigger a link down during NSF, the BFD packets must be processed fast enough, and, during supervisor engine or routing engine failover, by processing the BFD independent from the supervisor engine or routing engine.

  D. Because BFD is always processed at the line cards (not at the supervisor engine or routing engine), a supervisor engine or routing engine failover will not affect the BFD peer router.

  E. Because BFD is always processed at the supervisor engine or routing engine, a supervisor engine or routing engine failover will always trigger a link down at the peer router.

  Correct Answer: BC

• Question 578:

  You are hired to design a solution that will improve network availability for users on a campus network with routed access. If the budget limits you to three components, which three components would you recommend in your design proposal? (Choose three.)

  A. redundant power supplies in the access routers

  B. standby route processors for SSO in the core routers

  C. standby route processors for SSO in the distribution routers

  D. standby route processors for SSO in the access routers

  E. replace copper links between devices with fiber links

  Correct Answer: ADE

• Question 579:

  Refer to the exhibit.

  

  In this network, all routers are configured to run EIGRP on all interfaces. All interface bandwidths are set to 1000, and the delays are configured as shown. In the topology table at Router C, you see only one path towards 10.1.1.0/24. What is the reason that Router C only has one path in its topology table?

  A. Router D is not advertising 10.1.1.0/24 to Router C because Router C is its feasible successor.

  B. Router B is not advertising 10.1.1.0/24 to Router C because Router C is its feasible successor.

  C. Router D is not advertising 10.1.1.0/24 to Router C due to split horizon.

  D. Router B is not advertising 10.1.1.0/24 to Router C due to split horizon.

  Correct Answer: C

• Question 580:

  When adding an IPSec headend termination device to your network design, which two performance indicators are the most accurate to determine device scalability? (Choose two.)

  A. CPU capabilities

  B. bandwidth capabilities

  C. packets per second capabilities

  D. maximum tunnel termination capabilities

  Correct Answer: CD