400-201 Exam Details
-
Exam Code
:400-201 -
Exam Name
:CCIE Service Provider Written -
Certification
:Cisco Certifications -
Vendor
:Cisco -
Total Questions
:920 Q&As -
Last Updated
:Dec 14, 2021
Cisco 400-201 Online Questions & Answers
-
Question 481:
Which two actions of Cisco IOS Software prevent a DDOS attack? (Choose two.)
A. Filter all source addresses from which traffic is not expected in the network, including RFC 1918 addresses.
B. Filter all traffic for TCP ports in the range 1014-49151.
C. Enable BFD to have links taken down when there is an attack.
D. Enable the ip verify reverse-path command on the interface.
E. Allow only static routes; dynamic routing protocols should not be allowed. -
Question 482:
Which are the three characteristics of SDR? (Choose three)
A. The logical router can span across chassis.
B. Each logical router has a distinct fabric and system controller module.
C. Owner SDR can be reloaded, without affecting all non-SDRs.
D. The logical router has dedicated route processor.
E. The logical router can share line cards.
F. The fabric and system controller module are shared by all logical routers. -
Question 483:
Which two restrictions of the trunk EFP are true? (Choose two)
A. A bridge-domain number that is part of trunk EFP configuration can be shared only by other EFP if under the same port or interface
B. Features about encapsulations specification are not supported
C. Only one trunk port EFP can be configured under one port or interface
D. Features that requires VLAN-specific values must be removed form the EFP trunk to from individual EFPs
E. It supports only static EFPs that are user-configurable -
Question 484:
Drag and drop each MPLS TE component from the left onto its correct description on the right
Select and Place:
-
Question 485:
Refer to the exhibit. How can IPv4 hosts located on the IPv4 Internet access the IPv6-only servers located in a small IPv6-only net
A. By using NAT 444
B. By using stateless NAT64 with static v6v4 mapping
C. By using statefull NAT64
D. It is not possible IPv6 translation with IPv4 Internet hosts
E. By using stateful NAT64 with static v6v4 mappings -
Question 486:
Refer to the exhibit. a network engineer is troubleshooting PTP on the Cisco ASR 9000 router. what can be concluded about the interface based on output provided ?
A. The interface is aware of a better clock than the one it would advertise if it was in master state.
B. the interface is about to go into master state
C. the interface receives times stamps from a master clock, but the routers clock is not yet synchronized to the master
D. the interface is not yet ready to participate on PTP -
Question 487:
Which major disadvantage of virtual machines versus containers is true?
A. operational management
B. security
C. vendor lock-in
D. boot time
E. limited management tools -
Question 488:
Refer to the exhibit. Which option is the S-TAG VLAN allocated to the egress NNI when a packet with C-TAG VLAN ID 25 is received from the ingress UNI interface?
A. 200
B. 100
C. 25 -
Question 489:
Which two statements about IP LFA/FRR are true? (Choose two.)
A. The repair path installation is done in the IS-IS or OSPF database.
B. LFA/FRR can protect paths through an interface only if the interface is a point-to-point interface.
C. The repair path computation is done by any IGP such as EIGRP or OSPF.
D. Cisco MPLS TE can be used as a protected interface, regardless of whether the Cisco MPLS TE tunnel is used as a primary path.
E. The resulting repair paths are sent to the RIB. -
Question 490:
An enterprise customer has recently purchased a WAN link from a service provider. BGP is running over this WAN link. An engineer notices that the CE router uses an large amount of system resources to process routing updates by filtering out unwanted routing updates received from the PE, which configuration can be applied to reduce the amount of processing required on the CE router that is not accepting full routes from PE?
A. Enable the BGP prefix-based ORF capability CE and PE to filter out unwanted routing updates at the source
B. On CE, apply an outbound route-map on BGP PE-neighbor to filter all the undesired BGP updates learned from the PE
C. Enable BGP flowspec between CE and PE to negotiate which BGP prefixes to advertise
D. On CE place an inbound ACL on the interface-facing PE to filter all unwanted BGP prefixes
Related Exams:
-
300-745
Designing Cisco Security Infrastructure (300-745 SDSI) v1.0 -
350-101
Implementing and Operating Cisco Wireless Core Technologies (350-101 WLCOR)v1.0 -
352-011
Cisco Certified Design Expert Practical -
500-052
Cisco Unified Contact Center Express -
500-173
Designing the FlexPod Solution (FPDESIGN) -
500-201
Deploying Cisco Service Provider Mobile Backhaul Solutions -
500-210
SP Optical Technology Field Engineer Representative -
500-220
Engineering Cisco Meraki Solutions (ECMS) v2.2 -
500-230
Cisco Service Provider Routing Field Engineer -
500-240
Cisco Mobile Backhaul for Field Engineers
Tips on How to Prepare for the Exams
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 400-201 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.