300-410 Practice Questions
30 questions from this objective
A network engineer runs the following command on Router R1:
R1# show ip eigrp neighbors
EIGRP-IPv4 Neighbors for AS(100) H Address Interface Hold Uptime SRTT RTO Q Seq (sec) (ms) Cnt Num 0 10.1.1.2 Gi0/0 13 00:12:34 1 200 0 45 1 10.2.2.2 Gi0/1 12 00:11:20 2 200 0 67 2 10.3.3.2 Gi0/2 10 00:10:15 1 200 0 89
Based on this output, which statement is correct?
A network engineer runs the following command on Router R1:
R1# show ip ospf neighbor Neighbor ID Pri State Dead Time Address Interface 192.168.1.2 1 FULL/DR 00:00:35 10.1.1.2 GigabitEthernet0/0 192.168.2.2 1 2WAY/DROTHER 00:00:32 10.2.2.2 GigabitEthernet0/1 192.168.3.2 1 FULL/BDR 00:00:38 10.3.3.2 GigabitEthernet0/2
Based on this output, what is a potential issue?
A network engineer runs the following command on Router R1:
R1# show bgp ipv4 unicast summary
BGP router identifier 192.168.1.1, local AS number 65001 BGP table version is 10, main routing table version 10
Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/PfxRcd 10.1.1.2 4 65002 1200 1200 10 0 0 01:00:00 5 10.2.2.2 4 65003 0 0 0 0 0 never Active
Based on this output, what is the problem with the neighbor 10.2.2.2?
A network engineer runs the following command on Router R1:
R1# show route-map TEST
route-map TEST, permit, sequence 10 Match clauses:
ip address (access-lists): 100
Set clauses: metric 50 Policy routing matches: 0 packets, 0 bytes route-map TEST, deny, sequence 20 Match clauses:
ip address (access-lists): 101
Set clauses: Policy routing matches: 0 packets, 0 bytes
Based on this output, which statement is correct?
A network engineer runs the following command on Router R1:
R1# show mpls ldp neighbor
Peer LDP Ident: 192.168.2.2:0, Local LDP Ident: 192.168.1.1:0 TCP connection: 10.1.1.2.646 - 10.1.1.1.646 State: Oper; Msgs sent/rcvd: 100/100; Downstream Up time: 00:45:00 LDP discovery sources: GigabitEthernet0/0, Src IP addr: 10.1.1.2 Addresses bound to peer LDP Ident:
10.1.1.2 192.168.2.2
Based on this output, what is the state of the LDP session?
A network engineer runs the following command on Router R1:
R1# show dmvpn Interface: Tunnel0, IPv4 NHRP Details
Type:Hub, NHRP Peers:2,
# Ent Peer NBMA Addr Peer Tunnel Add State UpDn Tm Attrb
----- ----------------- --------------- ----- -------- ----- 1 10.0.0.2 10.1.1.2 UP 00:10:00 D 2 10.0.0.3 10.1.1.3 UP 00:05:00 D
Based on this output, what is the role of Router R1 in the DMVPN network?
A network engineer runs the following command on Router R1:
R1# show policy-map control-plane
Control Plane
Service-policy input: CoPP class-map: MANAGEMENT (match-all) 100 packets, 10000 bytes 5 minute offered rate 0 bps police: cir 8000 bps, bc 1500 bytes conformed 100 packets, 10000 bytes; actions: transmit exceeded 0 packets, 0 bytes; actions: drop conformed 0 bps, exceed 0 bps
Based on this output, which statement is correct?
A network engineer runs the following command on Router R1:
R1# show ip vrf CUSTOMER
Name Default RD Interfaces CUSTOMER 65001:100 Gi0/0.100 Gi0/1.100
Based on this output, which statement is correct?
A network engineer runs the following command on Router R1:
R1# show ip sla statistics
IPSLAs Latest Operation Statistics
IPSLA operation id: 1 Type of operation: icmp-echo Latest RTT: 20 milliseconds Latest operation start time: 12:00:00 UTC Mon Mar 1 2021 Latest operation return code: OK Number of successes: 100 Number of failures: 0
Based on this output, which statement is correct?
Examine the following partial configuration on a Cisco IOS-XE router:
interface GigabitEthernet0/1 ip address 192.168.1.1 255.255.255.0 ip access-group MY_ACL in
!
access-list 100 permit tcp any host 192.168.1.1 eq 22 access-list 100 deny ip any any
!
line vty 0 4
transport input ssh login local !
username admin privilege 15 secret cisco
What is the effect of this configuration?
Consider the following partial configuration on a Cisco router:
ip access-list extended BLOCK_TELNET deny tcp any any eq 23 permit ip any any
!
interface Serial0/0/0 ip access-group BLOCK_TELNET out
!
line vty 0 4
transport input telnet password cisco login
What is the effect of this configuration?
Examine the following partial configuration:
username admin privilege 15 secret 5 $1$abcdefg$hashedvalue username operator privilege 1 password cisco
!
line console 0
login local !
line vty 0 4
login local transport input ssh
What is a potential security issue with this configuration?
Given the following partial configuration on a router:
ip access-list standard FILTER_SNMP permit 192.168.1.0 0.0.0.255 deny any
!
snmp-server community public RO FILTER_SNMP snmp-server location DataCenter snmp-server contact admin@example.com
What is the effect of this configuration?
Examine the following partial configuration:
ip access-list extended MGMT_ACCESS permit tcp 10.0.0.0 0.255.255.255 any eq 22 permit tcp 10.0.0.0 0.255.255.255 any eq
443
deny ip any any
!
line vty 0 4
access-class MGMT_ACCESS in transport input ssh login local
What is the effect of the 'access-class' command?
Consider the following partial configuration:
ip access-list extended SECURE_ACCESS permit icmp any any echo permit icmp any any echo-reply permit tcp any host 192.168.1.1 eq 22 permit tcp any host 192.168.1.1 eq
443
deny ip any any
!
interface GigabitEthernet0/0 ip access-group SECURE_ACCESS in
!
interface GigabitEthernet0/1 ip access-group SECURE_ACCESS out
What is a potential issue with this ACL placement?
More Device Access Control questions available in the full practice test.
Continue Practising →