CCNA IP Routing Questions

75 of 344 questions · Page 4/5 · IP Routing · Answers revealed

226
MCQhard

A router has a static route to 10.20.20.0/24 and also has a default route. Which route is used for traffic to 10.20.20.8?

A.The static route to 10.20.20.0/24
B.The default route
C.Both routes are used equally
D.Neither route is valid
AnswerA

This is correct because the /24 route matches the destination more specifically than the default route.

Why this answer

The static route to 10.20.20.0/24 is used because it is more specific than the default route. In practical terms, the router always chooses the route that most precisely matches the destination before falling back to the default route.

This question reinforces the idea that the default route is a route of last resort, not a preferred choice when a better match already exists.

Exam trap

A frequent exam trap is assuming the default route is used whenever it exists, ignoring the presence of more specific static routes. This misunderstanding leads to incorrect answers because routers always prefer the route with the longest matching prefix, not the default route unless no other matches exist.

Why the other options are wrong

B

This option is incorrect because the default route is less specific and only used when no other matching routes exist. Here, a more specific static route is present.

C

This option is incorrect because routers do not load balance equally between a specific static route and a default route; they prefer the most specific route.

D

This option is incorrect because the static route to 10.20.20.0/24 clearly matches the destination, making it a valid route for forwarding traffic.

227
PBQhard

You are connected to R1 via the console. Configure single-area OSPFv2 on R1 and R2 so that they form a full adjacency. The link between R1 and R2 uses 203.0.113.0/30. R1 has G0/0 203.0.113.1/30 and R2 has G0/0 203.0.113.2/30. R1's router-id must be 1.1.1.1, and R2's router-id must be 2.2.2.2. R1's GigabitEthernet0/0 interface is configured as a passive interface under OSPF, preventing OSPF hello messages from being sent out of that interface. Ensure that R1 does not send OSPF hellos out of its loopback0 interface (203.0.113.129/32). After configuration, verify the adjacency is established and OSPF routes are exchanged.

Hints

  • Check if G0/0 is passive on R1 using 'show ip ospf interface'
  • The passive-interface default command makes all interfaces passive unless explicitly excluded
  • Use 'no passive-interface <interface>' under router ospf to allow hellos on the link
A.The adjacency fails because R1's GigabitEthernet0/0 interface is configured as passive-interface. Remove the passive-interface command for G0/0.
B.The adjacency fails because the router-id 1.1.1.1 is not reachable from R2. Configure a static route for 1.1.1.1/32 on R2.
C.The adjacency fails because the subnet mask on the link is /30 but OSPF expects a /24. Change the mask to /24 on both interfaces.
D.The adjacency fails because OSPF is not enabled on R2's GigabitEthernet0/0 interface. Configure 'ip ospf 1 area 0' on R2's G0/0.
AnswerA
solution
! R1
router ospf 1
no passive-interface GigabitEthernet0/0

Why this answer

The adjacency fails because R1's GigabitEthernet0/0 interface is configured as passive-interface (the 'No Hellos' line in show ip ospf interface). This prevents R1 from sending OSPF hellos to R2. To fix, remove the passive-interface command for G0/0.

The loopback0 interface should remain passive. After removal, verify with 'show ip ospf neighbor' to see the neighbor state change to FULL and 'show ip route ospf' to see routes.

Exam trap

The trap is that candidates may overlook the 'passive-interface' command's effect on hello suppression. They might focus on router-id or subnet issues instead. Always check 'show ip ospf interface' for passive status when adjacency fails.

Why the other options are wrong

B

The router-id is used only for OSPF router identification and does not need to be reachable; adjacency uses interface IP addresses.

C

OSPF does not require a specific subnet mask; it uses the configured mask on the interface as the network type.

D

OSPF is enabled on R2's G0/0; the issue is on R1's side where the passive-interface prevents hellos.

228
Multi-Selectmedium

Which two statements accurately describe route summarization?

Select 2 answers
A.It can reduce the number of individual routes that must be advertised.
B.It can help improve routing scalability by simplifying route information.
C.It forces every router to use only a default route.
D.It is the same thing as PAT overload.
E.It automatically encrypts routing updates.
AnswersA, B

This is correct because summarization aggregates routes into fewer advertisements.

Why this answer

Route summarization combines multiple specific routes into a smaller number of broader advertisements. In plain language, it lets a router describe a group of networks with one shorter, more general route instead of announcing each one individually. This can reduce routing-table size and improve scalability. It can also reduce the amount of routing information that must be exchanged across certain boundaries.

The wrong answers often confuse summarization with default routing or encryption. The two correct statements are the ones that preserve its aggregation and scaling purpose.

Exam trap

A frequent exam trap is mistaking route summarization for default routing or NAT-related functions. Some candidates incorrectly believe summarization forces routers to use only a default route, which is false because summarization still advertises specific aggregated routes, not just a default. Others confuse summarization with PAT overload, a NAT feature unrelated to routing.

Additionally, some think summarization automatically encrypts routing updates, which it does not. These misconceptions can lead to incorrect answers and misunderstandings about routing behavior in Cisco networks.

Why the other options are wrong

C

Option C is incorrect because summarization does not force routers to use only a default route; it aggregates routes but still allows routers to use more specific routes within the summary when available.

D

Option D is incorrect since route summarization is a routing optimization technique and is unrelated to PAT overload, which is a NAT function that translates multiple private IP addresses to a single public IP address with port differentiation.

E

Option E is incorrect because route summarization does not involve encryption of routing updates; encryption is a separate security feature not related to summarization.

229
MCQhard

Refer to the exhibit. A network engineer notices that traffic from R1 to the 10.1.0.0/16 network is taking a longer path than expected despite OSPF being the only routing protocol. The engineer examines the OSPF LSDB on R1 to investigate. Based on the output, what is the most likely cause of the suboptimal routing?

A.The reference bandwidth has been misconfigured on R1, causing the OSPF cost calculation to be inflated for some links.
B.The ABR is filtering the 10.1.0.0/16 route from Area 1 into Area 0, causing the router to recalculate the metric higher.
C.The ABR is configured with the 'area 1 range 10.1.0.0 255.255.0.0 cost 1000' command.
D.The metric-type for OSPF external routes has been set to type 2, causing the metric to be inflated to 1000 for the 10.1.0.0/16 prefix.
AnswerC

The ABR (10.1.1.1) is advertising a Type 3 summary LSA for 10.1.0.0/16 with a metric of 1000. This matches the behavior of the 'area range' command with the 'cost' keyword, which overrides the default metric calculation for inter-area summaries and injects the specified cost. The other LSAs from the same ABR use normal metrics, confirming the summary-specific configuration.

Why this answer

The exhibit shows three Type 3 summary LSAs from the same ABR (10.1.1.1). Two of them have metrics 10 and 20, which are consistent with normal OSPF intra-area path costs. The LSA for 10.1.0.0/16 has metric 1000, an abnormally high value.

This indicates that the ABR is injecting this summary with a manually configured cost, typically done with the 'area <id> range <network> <mask> cost <value>' command. Global reference bandwidth changes would affect all metrics equally, and route filtering does not alter metric values. External route metric types are unrelated to Type 3 inter-area summaries.

Exam trap

Candidates often choose misconfigured reference bandwidth (Option A) when they see an unexpected metric, but the fact that only one summary LSA has a high value while others are normal proves the cause is specific to that prefix, not a global parameter.

Why the other options are wrong

A

Candidates may attribute arbitrary high metrics to a bandwidth calculation error, without noticing that only one LSA is affected.

B

A misunderstanding that filtering can somehow alter the metric rather than block the advertisement completely.

D

Confusion between external and inter-area route types leads candidates to think that metric-type manipulation could affect an internal summary LSA.

230
MCQhard

An enterprise network uses an IPv6 dual-stack design. Router R1 has a primary default route ::/0 via 2001:db8:1::1 with AD 1 and a floating default route with AD 10 via link-local address fe80::2. After the primary link fails, the floating route fails to install, and R1 loses all external connectivity. The administrator confirms the backup interface is up/up.

A.The administrative distance of the backup route is 10, so it is not installed while the primary route still exists.
B.The floating static route uses a link-local next-hop but does not specify an exit interface, making the route incomplete.
C.The floating static route will be installed only if the primary link is administratively shut down, not after a physical failure.
D.The next-hop fe80::2 is unreachable because IPv6 neighbor discovery is disabled on the backup interface.
AnswerB

A static route with a link-local next-hop requires an exit interface to be valid; omitting it causes the route to stay out of the routing table.

Why this answer

Option B is correct because a floating static route using a link-local next-hop (fe80::2) must also specify an exit interface (e.g., GigabitEthernet0/1) to be considered complete. Without the exit interface, the router cannot determine which interface to use for neighbor discovery, leaving the route incomplete and unable to be installed into the routing table. This is a common requirement for IPv6 static routes with link-local addresses, as the next-hop is not globally unique.

Exam trap

Cisco often tests the requirement that IPv6 static routes with link-local next-hops must include an exit interface, tricking candidates into thinking the route is valid without it or misattributing the failure to administrative distance or interface status.

Why the other options are wrong

A

A floating static route with a higher AD is installed when the lower AD route is removed because of interface failure.

C

Floating static routes do not distinguish between physical and administrative interface down events; the primary route is removed in both cases.

D

The immediate cause is the missing exit interface; neighbor discovery configuration does not make an incomplete static route valid.

231
PBQhard

You are connected to R1. Configure IPv4 and IPv6 static routes so that R1 can reach the loopback networks on R2 (192.0.2.0/24 and 2001:db8:1::/32) via G0/0. Also, configure a floating static default route via G0/1 (next-hop 203.0.113.2) with an administrative distance of 200 so that it is only used if the directly connected default route fails. The current configuration has a recursive routing failure for the IPv6 route and a missing default route.

Network Topology
G0/010.0.0.1/30G0/010.0.0.2/30linkR1R2

Hints

  • Check the IPv6 next-hop: is it directly connected?
  • Floating static routes require a higher administrative distance than the primary route.
  • Use the exit interface for the IPv6 static route to avoid recursive lookup failure.
A.ip route 0.0.0.0 0.0.0.0 203.0.113.2 200 ipv6 route 2001:db8:1::/32 GigabitEthernet0/0
B.ip route 0.0.0.0 0.0.0.0 203.0.113.2 200 ipv6 route 2001:db8:1::/32 2001:db8:0:1::2
C.ip route 0.0.0.0 0.0.0.0 203.0.113.2 ipv6 route 2001:db8:1::/32 GigabitEthernet0/0
D.ip route 0.0.0.0 0.0.0.0 203.0.113.2 200 ipv6 route 2001:db8:1::/32 2001:db8:0:1::2 200
AnswerA
solution
! R1
no ipv6 route 2001:db8:1::/32 2001:db8:0:1::2
ipv6 route 2001:db8:1::/32 GigabitEthernet0/0
no ip route 0.0.0.0 0.0.0.0 203.0.113.2
ip route 0.0.0.0 0.0.0.0 203.0.113.2 200

Why this answer

The IPv6 static route uses a next-hop address (2001:db8:0:1::2) that is not directly connected; the router will attempt recursive lookup but fails because there is no route to that subnet. The fix is to use the exit interface (GigabitEthernet0/0) instead. The IPv4 default route is present but has AD 1, which prevents it from being a floating route; change it to AD 200 so it only activates when the connected default route (if any) is down.

The task did not require a connected default route, so the floating static is the only default.

Exam trap

Watch out for recursive routing failures when using a next-hop address that is not directly connected. For floating static routes, always specify a higher AD than the primary route's AD.

Why the other options are wrong

B

The IPv6 next-hop 2001:db8:0:1::2 is not reachable via a directly connected network; the router cannot resolve it.

C

The administrative distance must be set to a higher value (e.g., 200) to make it a floating route.

D

The IPv6 route fails due to recursive lookup failure; adding AD does not fix the next-hop issue.

232
MCQhard

Refer to the exhibit. A network technician is troubleshooting router R1, which cannot reach hosts on the internet. R1 is connected to an ISP router at 203.0.113.1. The exhibit shows the output of the show ip route command. What is the most likely cause of the issue?

A.A static default route is not configured on R1, and OSPF is not advertising a default route.
B.The OSPF neighbor relationship with the ISP router is down.
C.The interface connecting to the ISP router is in a shutdown state.
D.An incorrect next-hop address was specified in the static default route, making the route invalid.
AnswerA

The output explicitly shows 'Gateway of last resort is not set' and no 0.0.0.0/0 route. A default route is required to reach external networks like the internet. The OSPF-learned route proves OSPF adjacency, but the absence of O*E2 or similar default route indicates default-information originate is not configured.

Why this answer

The exhibit shows 'Gateway of last resort is not set' and no route entry for 0.0.0.0/0 (default route). Without a default route, R1 has no path to forward unknown destinations, such as internet hosts. The OSPF neighbor is active (192.168.2.0/24 learned via OSPF), but no default route is being originated by OSPF.

Therefore, a static default route or OSPF default-information originate command is missing.

Exam trap

Candidates may incorrectly think that the OSPF neighbor relationship with the ISP router is down, but the exhibit shows an OSPF-learned route (192.168.2.0/24), proving the OSPF adjacency is up. They might also assume a static default route exists but is invalid, but the absence of any S* entry and the 'Gateway of last resort is not set' indicate no default route is configured at all.

Why the other options are wrong

B

Candidates often assume OSPF is not working at all when a default route is missing, ignoring other OSPF routes in the table.

C

Candidates may assume any connectivity failure means an interface is disabled, but the routing table would show no connected network if the interface were shut down.

D

Candidates might think a misconfigured static route would cause the problem, but they overlook that the route would still appear in the table, just with a different next-hop.

233
MCQhard

R1 has routes to 172.16.10.0/24 from multiple sources. Which route will be installed?

A.The OSPF route with metric 20
B.The EIGRP internal route
C.The RIP route because hop count is lowest
D.The static route with administrative distance 95
AnswerB

EIGRP internal AD 90 is the lowest among the listed candidates.

Why this answer

Routers compare route source trust first using administrative distance. EIGRP internal routes have an AD of 90, which is lower than OSPF (110), RIP (120), and a static route with AD 95. Therefore, the EIGRP internal route is installed, regardless of metrics.

Exam trap

A common trap is confusing administrative distance with routing metric, causing candidates to choose OSPF due to its lower metric or the static route with AD 95 over the correct EIGRP route.

Why the other options are wrong

A

The OSPF route (AD 110) has a lower metric but a higher administrative distance than EIGRP, so it loses.

C

The RIP route (AD 120) has the highest administrative distance and loses regardless of its hop count metric.

D

The static route with AD 95 loses to the EIGRP internal route (AD 90) because a lower AD is preferred.

234
Matchingmedium

Match each WAN or interdomain concept to its most accurate description.

Drag a concept onto its matching description — or click a concept then click the description.

Concepts
Matches

Point-to-point WAN encapsulation

PPP-style session behavior over Ethernet access

Tunneling mechanism across another network

Path-vector routing protocol associated with autonomous systems

Why these pairings

PPP is the standard Layer 2 encapsulation for point-to-point WAN links. PPPoE adapts PPP’s authentication and session features for Ethernet-based broadband networks. GRE provides a simple tunneling mechanism that encapsulates any protocol across another network.

BGP is the path-vector routing protocol used to exchange routes between autonomous systems.

Exam trap

Learners often mistake PPPoE as merely PPP over Ethernet media, overlooking that it establishes a distinct PPP session; similarly, they may treat GRE as a secured VPN when it is only a tunnel, and confuse BGP’s interdomain role with an IGP like OSPF.

235
Drag & Dropmedium

Drag and drop the following steps into the correct order to describe the router's routing table lookup process from receiving a packet with a destination IP address to making the forwarding decision, including best-path selection criteria.

Drag steps to the numbered slots on the right, or tap a step then tap a slot.

Steps
Order
1Step 1
2Step 2
3Step 3
4Step 4

Why this order

The process starts with packet arrival, then longest prefix match, followed by tie-breaking using administrative distance and metric, culminating in forwarding.

Exam trap

Do not confuse the order of longest prefix match and administrative distance. Longest prefix match is always performed first; administrative distance and metric are tie-breakers applied only when multiple routes match the same prefix length.

236
MCQhard

A router shows the following routing table entries for the same destination: O 10.10.50.0/24 [110/20] via 192.168.12.2, GigabitEthernet0/0 D 10.10.50.0/24 [90/30720] via 192.168.13.2, GigabitEthernet0/1 Which route will become the active route in the routing table?

A.The OSPF route, because its metric is lower
B.The EIGRP route, because its administrative distance is lower
C.Both routes, because the prefixes are identical
D.Neither route, because the metrics use different scales
AnswerB

Correct. This is correct. EIGRP wins here because its default administrative distance of 90 is lower than OSPF's 110, so the router trusts the EIGRP route more when both advertise the same destination prefix.

Why this answer

The EIGRP route becomes active because the router compares administrative distance first when the same destination is learned from different routing protocols. This is one of the most common Cisco exam traps: candidates compare the OSPF metric value of 20 to the EIGRP metric value and assume the smaller number must win. That is not how route selection works across different protocols.

OSPF metrics and EIGRP metrics are calculated differently, so the router does not compare them directly. Instead it checks administrative distance. EIGRP internal routes default to 90, while OSPF routes default to 110.

Since 90 is lower than 110, the EIGRP route is trusted more and is installed as the active path.

Exam trap

Avoid comparing metric values directly between different protocols; focus on administrative distance first.

Why the other options are wrong

A

This option is incorrect because the active route is determined by the administrative distance, not the metric. In this case, the EIGRP route has a lower administrative distance than the OSPF route, making it the active route.

C

This option is incorrect because only one route can be active for a given destination in a routing table, and having identical prefixes does not mean both routes can be active simultaneously. The router will select the route with the lower administrative distance, which is not addressed here.

D

This option is wrong because both routes are valid, and the router will select the route with the lower administrative distance, not the metric. The administrative distance of the EIGRP route is lower than that of the OSPF route, making it the active route.

237
Multi-Selecthard

A static default route is configured on R1 toward ISP-A, and a second default route toward ISP-B is configured with a higher administrative distance. Which two statements are correct during normal operation and after ISP-A failure?

Select 2 answers
A.The route through ISP-A is preferred during normal operation
B.The route through ISP-B acts as a floating backup
C.Both defaults are always installed and used equally
D.The backup route is ignored permanently because only one default route can exist
AnswersA, B

It has the default static administrative distance and is preferred over AD 200.

Why this answer

This is a classic floating static design. The lower-AD default route is primary, and the higher-AD default waits in reserve.

Exam trap

A frequent exam trap is assuming that both default routes are simultaneously active and load-balanced, or that the backup route is permanently ignored because only one default route can exist. The trap lies in misunderstanding administrative distance behavior: the higher AD route is not used until the primary route fails. Misreading this can lead to incorrect answers claiming equal usage or permanent backup route exclusion.

Remember, Cisco routers always prefer the route with the lowest administrative distance and only switch to the floating static route when the primary path is lost.

Why the other options are wrong

C

This option is incorrect because Cisco routers do not install multiple default routes with different administrative distances simultaneously; only the route with the lowest AD is installed and used.

D

This option is incorrect because the backup route is not ignored permanently; it becomes active when the primary default route toward ISP-A fails, ensuring continuous connectivity.

238
Multi-Selectmedium

Which three of the following are valid features of Enhanced Interior Gateway Routing Protocol (EIGRP)? (Choose three.)

Select 3 answers
.EIGRP maintains a topology table containing all routes learned from neighbors.
.EIGRP uses the Diffusing Update Algorithm (DUAL) to ensure loop-free paths.
.EIGRP supports unequal-cost load balancing using the 'variance' command.
.EIGRP is a link-state routing protocol similar to OSPF.
.EIGRP uses multicast address 224.0.0.5 for all neighbor communications.
.EIGRP automatically summarizes routes at classful boundaries by default on all interfaces.

Why this answer

All three statements are correct features of EIGRP. EIGRP maintains a topology table that stores all routes learned from directly connected neighbors, including feasible successors. It uses the Diffusing Update Algorithm (DUAL) to guarantee loop-free paths by performing a diffusing computation when a route is lost.

Additionally, EIGRP supports unequal-cost load balancing by using the 'variance' command, which allows traffic to be distributed across multiple paths with different metrics, as long as the metric of the alternate path is within the variance multiplier times the best metric.

Exam trap

Cisco often tests the distinction between EIGRP's topology table (which stores all learned routes) and its routing table (which stores only the best routes), and candidates may confuse the 'variance' command with equal-cost load balancing only, forgetting that it enables unequal-cost load balancing.

239
MCQmedium

A router has these routes in its routing table: O 172.16.0.0/16 O 172.16.20.0/24 S 172.16.20.128/25 A packet destined for 172.16.20.200 arrives. Which route will the router use?

A.172.16.0.0/16
B.172.16.20.0/24
C.172.16.20.128/25
D.The default route
AnswerC

Correct. Longest prefix match takes precedence over route source and less specific entries.

Why this answer

Routers choose the most specific matching route. The destination 172.16.20.200 falls within 172.16.20.128/25, so that static route is used even though broader matches also exist.

Exam trap

A frequent exam trap is to select the route with the lowest administrative distance or the route learned via OSPF simply because it is dynamic. Candidates often overlook that the router first applies the longest prefix match rule before considering administrative distance. In this question, the static route 172.16.20.128/25 is more specific than the OSPF routes, so it is chosen despite static routes typically having a lower administrative distance.

Misunderstanding this can lead to incorrect answers, especially when multiple routes overlap in the routing table.

Why the other options are wrong

A

The route 172.16.0.0/16 matches the destination IP but is the least specific route with a /16 mask. Since more specific routes exist, the router will not select this route.

B

The route 172.16.20.0/24 also matches the destination but is less specific than the /25 static route. The router prefers the longer prefix match, so this route is not chosen.

D

The default route is only used when no other routes match the destination IP. Since multiple specific routes exist, the default route is not used in this case.

240
PBQhard

You are connected to R1, a router that must establish OSPFv3 adjacency with R2 over the directly connected link G0/0. The current configuration is incomplete: OSPFv3 process is configured but not enabled on the interface, and global IPv6 unicast routing is missing. Configure R1 so that it becomes an OSPFv3 neighbor with R2 and learns the loopback route 2001:db8:1:2::/64 via OSPFv3. Then verify neighbor state and routing table.

Network Topology
G0/02001:db8:0:1::1/64G0/02001:db8:0:1::2/64linkR1R2

Hints

  • OSPFv3 requires IPv6 unicast routing to be enabled globally before it can operate.
  • OSPFv3 is enabled on an interface using the 'ipv6 ospf <process-id> area <area-id>' command.
  • Without the interface-level command, the router will not send hellos and will not form an adjacency.
A.Enable IPv6 unicast routing globally and activate OSPFv3 on GigabitEthernet0/0 with the command 'ipv6 ospf 1 area 0'.
B.Enable IPv6 unicast routing globally and configure OSPFv3 process 1 with the 'network' command under the OSPFv3 router configuration mode.
C.Enable IPv6 unicast routing globally and configure OSPFv3 process 1 with the 'router-id' command to ensure adjacency.
D.Enable IPv6 unicast routing globally and configure OSPFv3 process 1 with the 'passive-interface default' command to allow adjacency.
AnswerA
solution
! R1
ipv6 unicast-routing
interface GigabitEthernet0/0
ipv6 ospf 1 area 0

Why this answer

R1 is missing two critical configurations: global IPv6 unicast routing must be enabled with 'ipv6 unicast-routing', and OSPFv3 must be activated on GigabitEthernet0/0 using 'ipv6 ospf 1 area 0' under the interface. Without these, R1 cannot send or receive OSPFv3 hellos, so no adjacency forms and routes are not exchanged. After applying both commands, the neighbor state becomes FULL and the remote loopback appears in the IPv6 routing table.

Exam trap

The exam trap is that OSPFv3 configuration differs from OSPFv2: OSPFv3 does not use network statements under the router process; instead, it is enabled directly on the interface. Additionally, IPv6 unicast routing must be globally enabled before OSPFv3 can function. Candidates often forget one of these two steps.

Why the other options are wrong

B

The specific factual error is that OSPFv3 uses interface-level configuration, not network statements under the OSPF process.

C

The specific factual error is that setting a router ID alone does not activate OSPFv3 on an interface; OSPFv3 must be explicitly enabled on the interface.

D

The specific factual error is that 'passive-interface default' would actually prevent adjacency, not help form it.

241
Multi-Selecthard

Exhibit: An OSPFv2 adjacency between two routers on Ethernet is not forming. Which two mismatches would directly prevent the routers from becoming neighbors?

Select 2 answers
A.Different OSPF area assignments on the interfaces
B.Authentication mismatch between the interfaces
C.Different hostnames on the routers
D.Different loopback addresses used for management
E.One router using SSH version 2
AnswersA, B

Neighbors on the same link must agree on the area.

Why this answer

On an OSPFv2 network, area mismatch and authentication mismatch both directly prevent adjacency formation. Mismatched timers (such as hello or dead intervals) also block adjacency on all network types, including Ethernet. In this scenario, the correct choices are area mismatch (A) and authentication mismatch (B).

Exam trap

A common exam trap is selecting options like different hostnames or loopback addresses as causes for OSPF adjacency failure. Candidates may mistakenly believe that router identification parameters affect neighbor formation. However, OSPF adjacency strictly depends on protocol parameters such as area ID and authentication.

Hostnames and loopback interfaces are used for management or router ID purposes but do not block adjacency. Misunderstanding this can lead to incorrect troubleshooting steps or exam answers, wasting valuable time and causing confusion.

Why the other options are wrong

C

Different hostnames do not affect OSPF adjacency since hostnames are used only for identification and management, not neighbor formation.

D

Different loopback addresses used for management do not influence OSPF adjacency on Ethernet interfaces, so they do not block neighbor relationships.

E

One router using SSH version 2 is unrelated to OSPF adjacency because SSH is a management protocol and does not impact routing protocol neighbor formation.

242
MCQhard

Refer to the exhibit. A network administrator is troubleshooting an OSPF adjacency on R1's GigabitEthernet0/0 interface connected directly to R2. R2 is powered on and shows correct OSPF configuration, but the adjacency is stuck in the INIT or DOWN state. Based on the output, what is the most likely cause of the failure?

A.The OSPF network type on R1's GigabitEthernet0/0 does not match the network type on R2.
B.The OSPF hello and dead timers on R1 do not match those configured on R2.
C.The GigabitEthernet0/0 interface on R1 has been assigned to a different OSPF area than R2's connected interface.
D.The OSPF passive-interface command has been applied to GigabitEthernet0/0, preventing hello packets from being sent.
AnswerD

The line 'No Hellos (Passive interface)' in the output directly indicates that the interface has been configured as passive, which suppresses all OSPF hello messages and blocks adjacency formation.

Why this answer

The command output explicitly shows 'No Hellos (Passive interface)', confirming that the passive-interface command has been applied to GigabitEthernet0/0. With this configuration, OSPF does not send or receive hello packets on the interface, preventing any adjacency from forming with the directly connected neighbor R2.

Exam trap

Many candidates immediately suspect a Hello/Dead timer mismatch (Option B) because mismatched timers are a common cause of adjacency failures. However, the output clearly states that no hellos are being sent at all due to the passive state, making B incorrect.

Why the other options are wrong

A

Candidates may think network type mismatch when they see no adjacency, but the exhibit does not indicate a mismatch and explicitly shows the passive state.

B

Timer mismatch is a classic troubleshooting trap, but the 'No Hellos (Passive interface)' message overrides any timer considerations.

C

Candidates may guess area mismatch as a cause, but the exhibit provides no evidence of it, while the passive-interface message is a direct cause.

243
PBQmedium

You are connected to R1 via console. R1 is connected to three routers (R2, R3, R4) over Ethernet links, all in OSPF area 0. Due to network topology, R1 should not become the Designated Router (DR) or Backup Designated Router (BDR) on any of its interfaces. You need to configure R1's OSPF priority appropriately to ensure it never participates in DR/BDR elections.

Network Topology
G0/010.0.0.1/24G0/110.0.1.1/24G0/210.0.2.1/24R1R2R3R4

Hints

  • The DR/BDR election is based on the highest OSPF priority, with a tiebreaker on router ID.
  • Setting the priority to 0 on an interface means the router cannot become DR or BDR.
  • The command is configured under the interface.
A.Set the OSPF priority to 0 on all interfaces of R1.
B.Set the OSPF priority to 255 on all interfaces of R1.
C.Set the OSPF priority to 1 on all interfaces of R1.
D.Set the OSPF priority to 0 on the loopback interface of R1.
AnswerA
solution
! R1
interface GigabitEthernet0/0
ip ospf priority 0
interface GigabitEthernet0/1
ip ospf priority 0
interface GigabitEthernet0/2
ip ospf priority 0

Why this answer

Setting the OSPF priority to 0 on each Ethernet interface excludes R1 from DR/BDR elections entirely, as a priority of 0 signals that the router is ineligible. In contrast, option B (priority 255) is incorrect because the highest priority makes a router the most likely to become DR/BDR, not prevent it. Option C (priority 1) allows the router to participate in elections and could still become DR/BDR if no higher-priority router exists.

Option D is wrong because setting priority to 0 on the loopback interface does not affect the physical Ethernet interfaces where elections occur.

Exam trap

Remember that only a priority of 0 prevents a router from being elected as DR or BDR. Do not confuse priority with other OSPF parameters like cost or hello interval. Also, priority must be set on the actual interfaces facing the multiaccess network, not on loopback or other logical interfaces.

Why the other options are wrong

B

A priority of 255 is the highest possible value, ensuring the router becomes the DR or BDR, not excluding it.

C

Priority 1 is the default and allows the router to be elected if it has the highest priority or Router ID.

D

Loopback interfaces are not used for DR/BDR elections; they are logical interfaces. The priority must be set on the physical interfaces connecting to other routers.

244
MCQhard

A network engineer notices that traffic from the router to server 192.168.10.5 is being sent over a slow backup link, even though the primary high-speed link is up. The routing table has an OSPF route for 192.168.10.0/24 via the primary link and a static host route to 192.168.10.5/32 via the backup link. Why is the backup link used for traffic to the server?

A.The static route has an administrative distance of 1, which is lower than OSPF's 110, so it is always preferred.
B.The router is load-balancing between the two routes, and traffic is being hashed to the backup link for this particular flow.
C.The OSPF route is not installed in the routing table because the static route has a better AD.
D.The static /32 route is a more specific match than the OSPF /24 route, so it is selected regardless of administrative distance.
AnswerD

The router always picks the route with the longest prefix match. The /32 route matches 192.168.10.5 exactly, while the /24 route matches a broader range. Therefore, the /32 route is used.

Why this answer

The router uses the most specific matching route in the routing table to forward traffic. The static host route to 192.168.10.5/32 has a longer prefix length (32 bits) than the OSPF route for 192.168.10.0/24 (24 bits), making it a more specific match. Even though OSPF has a higher administrative distance, the longest prefix match rule takes precedence over administrative distance when both routes are present in the routing table.

Exam trap

Cisco often tests the misconception that administrative distance is the sole factor in route selection, when in fact the longest prefix match rule is evaluated first and takes priority over AD for any routes that are already in the routing table.

Why the other options are wrong

A

Administrative distance is only compared when two routes have the same prefix length. Here, the /32 route has a longer prefix, so it is chosen first.

B

Load balancing requires routes with identical prefix lengths and metrics. The /32 and /24 routes are treated as different destinations.

C

AD is only compared when routes have the exact same prefix length. The routing table can hold multiple overlapping routes as long as they differ in prefix length.

245
MCQhard

An OSPF-enabled router has two paths to the same destination network, and both paths have the same OSPF cost. What is the most likely default behavior?

A.Install both routes and use equal-cost multipath forwarding
B.Discard both routes because OSPF cannot handle duplicates
C.Always keep only the route learned first
D.Replace both routes with a default route
AnswerA

This is correct because OSPF can install multiple equal-cost paths to the same destination.

Why this answer

When OSPF learns two equally good paths to the same destination, the router can install both and perform equal-cost multipath forwarding. In plain language, the router does not have to throw one away simply because there are two valid answers. If the routes are truly equal from OSPF’s perspective, it can use both paths to improve resilience and share traffic.

This is a classic routing behavior question because many candidates assume the router must always choose only one best path. In reality, equal-cost multipath is a normal feature in many routing environments. The key is that the paths must be equally good according to the protocol’s metric logic.

Exam trap

A frequent exam trap is believing that OSPF must select only one best route when multiple paths have the same cost. Many candidates mistakenly think OSPF discards duplicates or keeps only the first learned route. This misunderstanding leads to incorrect answers suggesting route discarding or default route replacement.

The trap arises because some routing protocols or older implementations do not support equal-cost multipath. However, OSPF explicitly supports installing multiple equal-cost routes to improve load balancing and fault tolerance, so assuming otherwise causes errors in exam scenarios.

Why the other options are wrong

B

Incorrect because OSPF can handle multiple equal-cost routes and does not discard them; it uses all equal-cost paths to improve traffic distribution.

C

Incorrect since OSPF does not keep only the first learned route when multiple equal-cost paths exist; it installs all such routes for load balancing.

D

Incorrect because OSPF does not replace multiple valid equal-cost routes with a default route; default routes are used only when no specific routes exist.

246
MCQhard

Exhibit: R1 has a default route pointing to 10.1.1.2. Users lose internet access when that next hop fails, even though a floating static backup exists. Why is the backup not installed?

A.The backup route has a higher administrative distance and therefore is never considered
B.The primary static route remains installed because there is no tracking to remove it
C.Floating statics work only with dynamic routing protocols
D.The backup route must use the same next hop as the primary route
AnswerB

Without IP SLA or object tracking, the router may keep the primary route.

Why this answer

A floating static route is used only when the primary route disappears from the routing table. If the primary interface stays up and the next hop becomes unreachable beyond that segment, the route can remain installed unless tracking or another detection mechanism removes it.

Exam trap

A frequent exam trap is believing that a floating static route activates automatically when the primary next hop fails. Many candidates overlook that the router only removes the primary static route if it detects the route is invalid or unreachable. Without IP SLA or object tracking, the router sees the primary route as valid because the interface remains up, so it never installs the backup route.

This misunderstanding causes confusion about why users lose internet access despite a floating static backup being configured. The exam tests your knowledge of how Cisco routers handle administrative distance and route tracking, not just static route configuration.

Why the other options are wrong

A

Option A incorrectly states that the backup route is never considered because of its higher administrative distance. In reality, the higher AD is intentional to make it a floating static route that only activates when the primary route is removed.

C

Option C is incorrect because floating static routes do not require dynamic routing protocols to work. They are static routes with adjusted administrative distance and can function independently.

D

Option D is wrong because backup routes typically use a different next hop to provide true redundancy. Using the same next hop would not protect against next-hop failure.

247
Multi-Selectmedium

Which three of the following are characteristics of a distance-vector routing protocol? (Choose three.)

Select 3 answers
.Routers send their entire routing table to directly connected neighbors at regular intervals.
.Routers have a limited view of the network topology and rely on hop count or other metrics to determine the best path.
.Routers converge more slowly than link-state protocols in large networks.
.Routers maintain a complete map of the entire network topology.
.Routers use the Shortest Path First (SPF) algorithm to calculate routes.
.Routers flood link-state advertisements (LSAs) to all routers in the area.

Why this answer

Distance-vector routing protocols are characterized by periodic full routing table updates to directly connected neighbors, as seen in classic protocols like RIP. However, advanced distance-vector protocols such as EIGRP do not send their full routing table at regular intervals; they perform a one-time full exchange during neighbor formation and then send only partial, triggered updates. Regardless of this distinction, all distance-vector protocols have a limited view of the network topology (often called 'routing by rumor'), rely on hop count or composite metrics, and converge more slowly than link-state protocols in large networks.

The correct options highlight these general characteristics of distance-vector protocols.

Exam trap

A common mistake is to assume that all distance-vector protocols, including EIGRP, send their full routing table periodically; in reality, EIGRP only does a full exchange once and then uses partial updates.

248
MCQhard

R1 loses its route to 192.168.20.0/24 whenever R2's GigabitEthernet0/0 interface flaps. The network engineer has configured a floating static route with an administrative distance of 200. The OSPF route has an AD of 110. After R2's G0/0 interface recovers, the floating static route appears in the routing table instead of the OSPF route. What should the technician do next?

A.Adjust the administrative distance of the floating static route to 201.
B.Check the carrier delay timers on R2's GigabitEthernet0/0 interface.
C.Clear the IP routing table and reset the OSPF process on R1.
D.Verify that the MTU on R1 and R2's GigabitEthernet0/0 interfaces match.
AnswerB

A high carrier-delay (interface debounce) timer can keep the link down for too long after a flap, delaying OSPF neighbor formation. While the interface remains down, the floating static route stays in the table. Checking this timer is a logical, non‑destructive next step.

Why this answer

The next step is to check the carrier delay timers on R2's G0/0 interface. If a high debounce (carrier-delay) timer is configured, the interface remains down for several seconds after physical link recovery. During this time OSPF neighbor adjacency cannot form, so the floating static route (which is already installed) remains in the table.

This is a Layer 2/Layer 1 timing issue that directly impacts OSPF convergence.

Exam trap

Many candidates will jump to adjusting the static route's AD or clearing the routing table, which skips the proper diagnostic sequence. They may incorrectly assume OSPF is misconfigured rather than verifying link‑level timers first.

Why the other options are wrong

A

Misunderstanding of route preference: a higher AD value does not keep a floating static installed when a better OSPF route becomes available.

C

Troubleshooting should follow the OSI model bottom‑up; immediately resetting processes skips basic interface‑level verification.

D

It targets a different root cause (OSPF adjacency failure due to MTU) that would manifest constantly, not only after interface recovery.

249
Matchingmedium

Match each routing concept to its most accurate description.

Drag a concept onto its matching description — or click a concept then click the description.

Concepts
Matches

Trust comparison between route sources

Protocol-specific path comparison value

Fallback route used when no more specific route matches

Backup static route configured with higher administrative distance

Why these pairings

Administrative distance is used by a router to select the best path when multiple routing protocols provide route information for the same destination; a lower AD is preferred. Metric is a value used by a specific routing protocol (e.g., OSPF cost, EIGRP composite metric) to compare routes within that protocol; a lower metric is preferred. A default route (0.0.0.0/0) is the entry used when no other more specific route matches the destination.

A floating static route is a static route configured with a higher administrative distance than the primary route, so it becomes active only when the primary route fails.

Exam trap

Learners often confuse administrative distance with metric: AD compares trust between protocols, while metric compares path quality within a single protocol.

250
MCQhard

An engineer wants a static route to be used only if the OSPF route to the same network disappears. What should be configured?

A.A static route with lower administrative distance than OSPF
B.A static route with higher administrative distance than OSPF
C.A second OSPF route with a lower metric
D.A default route with no next hop
AnswerB

Correct. Higher-AD static routes provide backup behavior.

Why this answer

A floating static route is given a higher administrative distance than the preferred dynamic route so it stays out of the routing table unless the dynamic route is lost.

Exam trap

Remember, administrative distance determines route preference across different protocols, not metrics.

Why the other options are wrong

A

This option is wrong because a static route with a lower administrative distance than OSPF would take precedence over OSPF routes, making it active even when OSPF is available, contrary to the requirement of using the static route only when the OSPF route is unavailable.

C

This option is wrong because a second OSPF route with a lower metric would not serve as a backup to the existing OSPF route; instead, it would be preferred over the static route, which contradicts the requirement for the static route to be used only if the OSPF route disappears.

D

A default route with no next hop would not serve as a backup for an OSPF route because it lacks specificity and cannot direct traffic to a specific network. It would be ineffective in scenarios where a specific static route is needed when OSPF fails.

251
Matchingmedium

Drag and drop the route types on the left to the correct administrative distance and use case descriptions on the right.

Drag a concept onto its matching description — or click a concept then click the description.

Concepts
Matches

AD 1; manually configured path

AD 5; backup route when primary fails

AD 1; catch-all for unknown destinations

AD 110; used for internal routing within an AS

AD 0; network directly attached to router interface

Why these pairings

Floating static routes do not have a fixed administrative distance; they are manually configured with an AD higher than the primary dynamic routing protocol's AD (e.g., higher than OSPF's 110 or EIGRP's 90) to serve as backup. Using AD 5 would make the route preferred over most dynamic protocols, defeating its backup purpose. The other pairings are correct: static and connected routes have AD 0/1, OSPF has AD 110, and a default route is a static route with AD 1 for unknown destinations.

Exam trap

The most common trap is confusing the AD values of connected (0) and static (1). Remember that connected routes are automatically generated and have the highest preference. Also, note that EIGRP internal (90) and OSPF (110) are both IGPs, but their ADs differ.

252
PBQmedium

You are connected to R1 via console. R1 is a new router connecting two subnets: 192.168.1.0/24 on G0/0 and 192.168.2.0/24 on G0/1. You need to configure IPv6 static routes so that hosts on these subnets can reach the IPv6 Internet via R2 (2001:db8:1::2). R1's G0/0 has IPv6 address 2001:db8:1::1/64, and R2 is the next-hop. Also configure a default IPv6 route toward R2.

Network Topology
G0/02001:db8:1::1/64G0/02001:db8:1::2/64G0/12001:db8:2::1/64R1R2internal

Hints

  • The default IPv6 route uses the prefix ::/0.
  • The next-hop address must be reachable via a directly connected interface.
  • No need to create static routes for directly connected networks.
A.ipv6 route ::/0 2001:db8:1::2
B.ipv6 route 2001:db8:1::/64 2001:db8:1::2
C.ipv6 route ::/0 g0/0
D.ipv6 route 2001:db8:1::2/128 g0/0
AnswerA
solution
! R1
ipv6 route ::/0 2001:db8:1::2

Why this answer

A default IPv6 static route with prefix ::/0 points to the next-hop 2001:db8:1::2, which correctly forwards all traffic not in the local routing table to R2 for Internet reachability. Option B is wrong because it creates a static route for the directly connected network 2001:db8:1::/64, which is already in the routing table and unnecessary. Option C fails because on Ethernet interfaces, a static route must specify a next-hop IP address, not just an exit interface.

Option D is incorrect because it creates a host route to 2001:db8:1::2, which is a directly connected address, and does not provide a default route.

Exam trap

Be careful to distinguish between a default route (::/0) and a specific route. Also, remember that on Ethernet interfaces, static routes must specify a next-hop IP address, not just an exit interface. Directly connected networks do not require static routes.

Why the other options are wrong

B

Creates a static route for a directly connected network that is already in the routing table, which is unnecessary.

C

On Ethernet interfaces, a static route must specify a next-hop IP address; specifying only an exit interface does not work for multi-access networks.

D

Creates a host route for the next-hop address itself, which is directly connected and already reachable, and does not provide a default route.

253
MCQhard

Refer to the exhibit. A network engineer is troubleshooting a missing route on R1. The router R3 is configured to advertise network 192.168.30.0/24 via OSPF, but the route is not present in the OSPF routing table of R1 when issuing the show ip route ospf command. What is the most likely cause?

A.R3 has not enabled OSPF on the network 192.168.30.0/24 using the network command.
B.R3 has passive-interface default configured and has not issued the no passive-interface command on the interface facing the OSPF neighbor.
C.R1 has an inbound ACL applied to GigabitEthernet0/1 that blocks OSPF multicast traffic to 224.0.0.5 and 224.0.0.6.
D.R3's OSPF router ID is duplicated with another OSPF router, causing the SPF algorithm to drop routes.
AnswerB

Passive-interface default suppresses OSPF hello packets on all interfaces unless explicitly enabled. Without hellos, an adjacency cannot form, so R1 never learns the 192.168.30.0/24 route. The exhibit shows OSPF working with another neighbor, confirming the problem is isolated to R3’s interface configuration.

Why this answer

The exhibit from R1# show ip route ospf displays OSPF routes for 192.168.10.0/24 and 192.168.20.0/24 learned via 10.1.1.2 on GigabitEthernet0/1, proving that OSPF is functioning with neighbor R2. The route 192.168.30.0/24 that R3 is supposed to advertise is missing, indicating that R1 has not formed an OSPF adjacency with R3. When 'passive-interface default' is configured, OSPF hello packets are suppressed on all interfaces unless explicitly overridden with 'no passive-interface'.

As a result, R3 does not send hellos, preventing adjacency and route advertisement. This directly explains why the exhibit lacks the 192.168.30.0/24 entry.

Exam trap

Candidates often jump to answer A, thinking that a missing route means the network command is missing under OSPF. However, the scenario explicitly states R3 is configured to advertise the network, so the real issue is an adjacency problem caused by passive-interface default, which stops hellos from being exchanged.

Why the other options are wrong

A

The question says R3 advertises the network via OSPF; a missing network command would contradict that, so the failure must be in adjacency formation.

C

The presence of other OSPF routes on the same interface disproves a blanket multicast ACL; the issue is specific to R3’s adjacency.

D

A duplicate router ID could prevent adjacency, but the scenario’s focus on passive-interface default provides a more common and direct cause for a total lack of adjacency when OSPF is correctly configured on the network.

254
MCQhard

Refer to the exhibit. An administrator is troubleshooting connectivity from a branch router R1 to the internet. A ping to 8.8.8.8 from R1 fails. The output of the show ip route command is shown. What is the most likely cause?

A.The default route is missing from the routing table.
B.The next-hop IP address for the default route is not reachable.
C.The static route has an incorrect administrative distance.
D.The ip routing process has not been enabled.
AnswerB

The default route via 203.0.113.1 is present, but the routing table contains no connected or static route to reach 203.0.113.1. Without a route to the next-hop, the default route cannot be used, causing the ping failure.

Why this answer

The routing table shows the static default route 'S* 0.0.0.0/0 [1/0] via 203.0.113.1', but there is no connected or static route to network 203.0.113.0/24 (or any subnet containing 203.0.113.1). Without a route to the next-hop, the default route is unreachable, so the router cannot forward traffic to the internet, causing ping failures.

Exam trap

Candidates often see that a default route is present and assume it is sufficient, ignoring the requirement that the next-hop address must be directly reachable via another route in the table. The trap answer would be to think the default route is missing or misconfigured, but the real issue is its next-hop unreachability.

Why the other options are wrong

A

Candidates may misinterpret a failed ping as indicating no default route exists, overlooking that the route is present but unusable.

C

Candidates may think a higher AD is blocking the route, but the AD is standard and not the issue.

D

A common troubleshooting step is to verify ip routing, but the exhibit clearly shows an active routing table.

255
MCQhard

Two directly connected routers running OSPFv3 do not form an adjacency. Both interfaces have valid IPv6 addresses and can ping each other using link-local addresses. What is the most likely cause?

A.The interfaces are assigned to different OSPFv3 areas.
B.The routers need global unicast addresses before OSPFv3 can run.
C.The router IDs must be identical before adjacency can form.
D.The link-local addresses must be learned from DHCPv6.
AnswerA

This is correct because OSPFv3 neighbors on the same link must agree on the area.

Why this answer

The most likely cause is an OSPFv3 area mismatch on the interface. In practical terms, OSPFv3 still requires neighbors on the same link to agree on the area assignment, just as OSPF for IPv4 does. Link-local reachability alone is not enough to form an adjacency. The protocol parameters still have to match.

This is an important IPv6 routing point because people sometimes assume that successful IPv6 ping means the routing protocol should automatically work. It does not. Adjacency depends on protocol alignment, not just basic connectivity.

Exam trap

A frequent exam trap is to assume that because two routers can ping each other using IPv6 link-local addresses, their OSPFv3 adjacency should automatically form. This mistake overlooks the critical requirement that both routers must be configured in the same OSPFv3 area. Candidates might also incorrectly believe that global unicast addresses are necessary for OSPFv3 adjacency or that router IDs must be identical.

These misconceptions lead to selecting incorrect answers, as adjacency depends on matching area IDs and unique router IDs, not on global addressing or identical IDs.

Why the other options are wrong

B

Incorrect. OSPFv3 forms adjacencies using IPv6 link-local addresses, so global unicast addresses are not mandatory for adjacency formation or neighbor discovery.

C

Incorrect. Router IDs must be unique identifiers for OSPF routers. Identical router IDs cause adjacency failure, but they do not need to be identical to form adjacency.

D

Incorrect. IPv6 link-local addresses are automatically configured on interfaces and do not require DHCPv6. OSPFv3 uses these link-local addresses for neighbor communication.

256
PBQhard

You are connected to R1 via console. Configure OSPFv3 for IPv6 on R1 and R2 so that IPv6 loopback interfaces on both routers can communicate. R1's GigabitEthernet0/0 and R2's GigabitEthernet0/1 are directly connected. Ensure OSPFv3 is enabled on the correct interfaces and verify neighbors and routes.

Network Topology
G0/02001:db8:12::1/64G0/12001:db8:12::2/64linkR1R2

Hints

  • OSPFv3 must be enabled per-interface, not globally.
  • Use the same OSPFv3 process ID and area on both routers.
  • Check which interfaces are physically connected between the routers.
A.Enable OSPFv3 on R1's GigabitEthernet0/0 and Loopback0, and on R2's GigabitEthernet0/1 and Loopback0.
B.Enable OSPFv3 only on the loopback interfaces of both routers.
C.Enable OSPFv3 on R1's GigabitEthernet0/0 and R2's GigabitEthernet0/1 only, without loopbacks.
D.Enable OSPFv3 on R1's Loopback0 and R2's GigabitEthernet0/1 only.
AnswerA
solution
! R1
interface GigabitEthernet0/0
ipv6 ospf 1 area 0
interface Loopback0
ipv6 ospf 1 area 0

! R2
interface GigabitEthernet0/1
ipv6 ospf 1 area 0
interface Loopback0
ipv6 ospf 1 area 0

Why this answer

The issue is that OSPFv3 is not enabled on the interfaces. On R1, OSPFv3 must be enabled on GigabitEthernet0/0 (the link to R2) and Loopback0 (to advertise the loopback). On R2, OSPFv3 must be enabled on GigabitEthernet0/1 (the link to R1) and Loopback0.

After enabling OSPFv3 on the correct interfaces, the neighbor adjacency forms and routes are exchanged.

Exam trap

A common trap is to enable OSPFv3 only on the link interfaces or only on the loopbacks. Remember that OSPFv3 must be enabled on every interface that needs to be advertised or that participates in neighbor discovery. Also, note that OSPFv3 uses 'ipv6 ospf <process-id> area <area-id>' under the interface, not the network statement used in OSPFv2.

Why the other options are wrong

B

OSPFv3 requires the link interface to be enabled to form neighbors; loopback-only configuration results in no neighbor relationship.

C

OSPFv3 must be enabled on the loopback interfaces to advertise their prefixes; otherwise, they remain unknown to the neighbor.

D

Both routers must have OSPFv3 enabled on the link interface to form an adjacency, and both loopbacks must be enabled to advertise their prefixes.

257
PBQhard

You are connected to R1 via the console. R1 has two directly connected interfaces: G0/0 to R2 (IPv4 only) and G0/1 to a LAN switch (dual stack). Your task: configure IPv4 and IPv6 default routes on R1 pointing to R2 (next-hop 10.0.0.2 and 2001:db8:1::2). Also configure a floating static route to 192.0.2.0/24 via R2 with an administrative distance of 10 (so it is used only if the directly connected route fails). The current running-config shows an incorrect static route that causes recursive routing failure. Identify and fix the issue.

Network Topology
G0/010.0.0.1/30G0/010.0.0.2/30linkG0/1192.168.1.1/24R2R1switchLAN

Hints

  • Check the next-hop IP in the static route to 192.0.2.0/24 — is it a directly connected neighbor?
  • For a floating static route, the administrative distance must be higher than the primary route's AD.
  • Use 'show ip route 192.0.2.0' to see if the route is flagged as 'recursive failure'.
A.Remove the incorrect static route 192.0.2.0 255.255.255.0 10.0.0.1 and add ip route 192.0.2.0 255.255.255.0 10.0.0.2 10
B.Remove the incorrect static route 192.0.2.0 255.255.255.0 10.0.0.1 and add ip route 192.0.2.0 255.255.255.0 10.0.0.2 1
C.Keep the existing static route and add ip route 192.0.2.0 255.255.255.0 10.0.0.2 10
D.Remove the incorrect static route 192.0.2.0 255.255.255.0 10.0.0.1 and add ip route 192.0.2.0 255.255.255.0 g0/0
AnswerA
solution
! R1
no ip route 192.0.2.0 255.255.255.0 10.0.0.1
ip route 192.0.2.0 255.255.255.0 10.0.0.2 10

Why this answer

The static route to 192.0.2.0/24 uses next-hop 10.0.0.1, which is R1's own interface IP, not R2's. This causes recursive routing failure because the router tries to reach itself. The correct next-hop should be 10.0.0.2 (R2's G0/0 IP).

Additionally, the floating static route must have a higher AD (10) so it is less preferred than the directly connected route (AD 0). Remove the incorrect route and add the correct floating static route with AD 10.

Exam trap

Watch out for recursive routing failures caused by using the router's own interface IP as the next-hop. Also, remember that floating static routes require a higher administrative distance than the primary route to act as a backup.

Why the other options are wrong

B

The specific factual error: The AD of a floating static route must be higher than the primary route's AD to serve as a backup. Here AD 1 is lower than 0? Actually directly connected routes have AD 0, so AD 1 is higher than 0, but the question states the floating static route should be used only if the directly connected route fails, so AD must be higher than 0. AD 1 is higher than 0, so it would still be a backup? Wait, the primary route is directly connected (AD 0).

A floating static route with AD 1 would be less preferred than AD 0, so it would only be used if the directly connected route fails. That is correct behavior. However, the question says 'with an administrative distance of 10' so AD 1 is not 10.

The error is that the AD is not 10 as specified. Also, the explanation in the stem says 'the floating static route must have a higher AD (10) so it is less preferred than the directly connected route (AD 0).' Actually AD 1 is also higher than 0, so it would also be less preferred. But the question explicitly asks for AD 10.

So the answer is wrong because it uses AD 1 instead of 10.

C

The specific factual error: The incorrect static route remains in the routing table, causing recursive routing failure. The router will still try to resolve the next-hop 10.0.0.1, which is its own interface, leading to a loop.

D

The specific factual error: The route does not have an administrative distance of 10, and using an exit interface instead of a next-hop IP is not the intended configuration. Also, the route would be installed with default AD 1, not 10.

258
Matchingmedium

Match each routing term to its most accurate description.

Drag a concept onto its matching description — or click a concept then click the description.

Concepts
Matches

Trust value assigned to a route source

Protocol-specific value used to compare paths

Fallback route used when no more specific match exists

Combining multiple routes into a broader advertisement

Why these pairings

Administrative distance (AD) is a trust value assigned to a route source (e.g., OSPF = 110, EIGRP = 90); it is not a metric or a default route. Metric is a protocol-specific value (e.g., hop count, bandwidth) used to compare paths within the same routing protocol; it is not a trust value. Default route is the fallback used when no more specific match exists in the routing table, not a summarization method.

Summarization combines multiple routes into a broader advertisement to reduce routing table size, not a fallback mechanism. These definitions align correctly, while common confusions (e.g., swapping AD and metric) would misassign the terms.

Exam trap

The key trap is confusing administrative distance with routing protocol metrics or timers. Remember: AD is about trustworthiness of the source, while metrics (like hop count, bandwidth) are about the quality of the path within a protocol. Timers manage route aging and convergence.

259
PBQhard

You are connected to a multilayer switch MLS1. Configure a static default route for IPv4 that points to next-hop 192.0.2.2, but also configure a floating static default route with an administrative distance of 10 that uses next-hop 198.51.100.2. Additionally, configure a static host route for IPv6 host 2001:db8:1::10/128 via next-hop 2001:db8:1::1. The current configuration has a recursive routing failure for the IPv4 default route because the next-hop 192.0.2.2 is not reachable; you must first fix that by adding a directly connected static route. Ensure the floating route becomes active only when the primary route fails.

Network Topology
192.0.2.2/30G0/0SiMLS1R2

Hints

  • The default route fails because the next-hop is not directly connected and there is no route to reach it.
  • You need a static route to the network containing 192.0.2.2, specifying the outgoing interface.
  • Use the command 'ip route 192.0.2.0 255.255.255.252 GigabitEthernet0/0 192.0.2.2' to fix recursive routing.
A.ip route 0.0.0.0 0.0.0.0 192.0.2.2 ip route 0.0.0.0 0.0.0.0 198.51.100.2 10 ip route 192.0.2.0 255.255.255.252 GigabitEthernet0/0 192.0.2.2 ipv6 route 2001:db8:1::10/128 2001:db8:1::1
B.ip route 0.0.0.0 0.0.0.0 192.0.2.2 ip route 0.0.0.0 0.0.0.0 198.51.100.2 10 ip route 192.0.2.0 255.255.255.0 GigabitEthernet0/0 ipv6 route 2001:db8:1::10/128 2001:db8:1::1
C.ip route 0.0.0.0 0.0.0.0 192.0.2.2 ip route 0.0.0.0 0.0.0.0 198.51.100.2 10 ip route 192.0.2.2 255.255.255.255 GigabitEthernet0/0 ipv6 route 2001:db8:1::10/128 2001:db8:1::1
D.ip route 0.0.0.0 0.0.0.0 192.0.2.2 ip route 0.0.0.0 0.0.0.0 198.51.100.2 10 ip route 192.0.2.0 255.255.255.252 198.51.100.2 ipv6 route 2001:db8:1::10/128 2001:db8:1::1
AnswerA
solution
! MLS1
configure terminal
ip route 192.0.2.0 255.255.255.252 GigabitEthernet0/0 192.0.2.2

Why this answer

The IPv4 primary default route fails because next-hop 192.0.2.2 is not directly connected and no recursive route exists to it. The floating static route with next-hop 198.51.100.2 is in the directly connected Vlan20 subnet (198.51.100.1/30), so it installs without issue. To fix the primary default route, add a directly connected static route for the network containing 192.0.2.2, e.g., ip route 192.0.2.0 255.255.255.252 GigabitEthernet0/0 192.0.2.2.

The IPv6 host route is correct if next-hop 2001:db8:1::1 is reachable.

Exam trap

Be careful with recursive routing failures: a static route with a next-hop that is not directly connected requires a route to that next-hop in the routing table. Always ensure the next-hop is reachable, either by a directly connected route or another static/dynamic route. Also, remember that a floating static route uses a higher administrative distance than the primary route, so it only becomes active when the primary route is removed.

Why the other options are wrong

B

The specific factual error is using an incorrect subnet mask and omitting the next-hop IP in the directly connected static route. The mask should match the point-to-point link (typically /30 or /31), and the next-hop must be specified to ensure the route is directly connected.

C

The specific factual error is using a /32 mask instead of the subnet mask of the link. A /32 route to the next-hop IP is a valid workaround but is not the standard practice; the question expects a directly connected route to the network containing the next-hop, not a host route.

D

The specific factual error is using the floating route's next-hop as the next-hop for the directly connected route. The directly connected route must be to the network containing 192.0.2.2, not to the backup next-hop.

260
MCQhard

A router has the following routes in its routing table: a static route to 10.60.4.16/28, an OSPF route to 10.60.4.0/24, and an EIGRP route to 10.60.0.0/16. Which route will be used for a packet destined to 10.60.4.17?

A.The static route to 10.60.4.16/28
B.The OSPF route to 10.60.4.0/24
C.The EIGRP route to 10.60.0.0/16
D.No route at all
AnswerA

This is correct because the destination falls inside the more specific /28 prefix.

Why this answer

The route used will be the route with the longest matching prefix. In practical terms, 10.60.4.17 falls inside the /28 route shown, and that is more specific than the broader /24 and /16 alternatives. Because specificity comes first, the /28 route wins.

This is a clean route-table interpretation problem that mirrors actual exam-style thinking very closely.

Exam trap

Remember, the longest prefix match rule is crucial; don't assume broader prefixes are better.

Why the other options are wrong

B

This option is wrong because the OSPF route to 10.60.4.0/24 does not directly match the destination 10.60.4.17, which falls under the static route to 10.60.4.16/28. OSPF would not be preferred if a more specific static route exists.

C

The EIGRP route to 10.60.0.0/16 is not used for the destination 10.60.4.17 because it does not match the more specific subnet of 10.60.4.16/28, which is preferred in routing decisions.

D

This option is wrong because there is a valid static route to the destination 10.60.4.17 via the static route to 10.60.4.16/28, making it reachable. Therefore, stating 'no route at all' is incorrect in this context.

261
PBQhard

You are connected to R1. Configure IPv4 and IPv6 static routes, default routes, and floating static routes so that R1 can reach the Internet via R2 (IPv4 and IPv6). The primary route to the Internet should use next-hop 203.0.113.2 (IPv4) and 2001:db8:203:0:113::2 (IPv6). A backup floating static route with administrative distance 200 must exist for IPv4 only, using next-hop 198.51.100.2. Ensure the default routes are correctly configured and troubleshoot any recursive routing failure. Note: R1 currently has an incorrect IPv6 default route pointing to 2001:db8:198:51:100::2 that must be removed.

Network Topology
G0/010.0.0.1/30G0/010.0.0.2/30linkG0/1198.51.100.1/30G0/1198.51.100.2/30linkG0/2203.0.113.1/30G0/2203.0.113.2/30linkR1R2R3R4

Hints

  • The IPv4 primary default route is missing; only the floating route exists.
  • The IPv6 default route points to the wrong next-hop (should be via 2001:db8:203:0:113::2).
  • Floating static route AD must be higher than the primary route's AD to act as backup.
A.Remove the incorrect IPv6 default route: no ipv6 route ::/0 2001:db8:198:51:100::2; configure the primary default route: ip route 0.0.0.0 0.0.0.0 203.0.113.2; the floating route is already configured with AD 200; add IPv6 default route: ipv6 route ::/0 2001:db8:203:0:113::2
B.Configure the primary default route: ip route 0.0.0.0 0.0.0.0 203.0.113.2; change the floating route AD to 1; add IPv6 default route: ipv6 route ::/0 2001:db8:203:0:113::2
C.Configure the primary default route: ip route 0.0.0.0 0.0.0.0 203.0.113.2 200; the floating route is already configured with AD 200; add IPv6 default route: ipv6 route ::/0 2001:db8:203:0:113::2
D.Configure the primary default route: ip route 0.0.0.0 0.0.0.0 203.0.113.2; the floating route is already configured with AD 200; no IPv6 route is needed because IPv6 is not required.
AnswerA
solution
! R1
ip route 0.0.0.0 0.0.0.0 203.0.113.2
ip route 0.0.0.0 0.0.0.0 198.51.100.2 200
no ipv6 route ::/0 2001:db8:198:51:100::2
ipv6 route ::/0 2001:db8:203:0:113::2

Why this answer

The IPv4 floating route is already correctly pre-configured with AD 200 to serve as a backup. To meet the requirements, you must add the primary IPv4 default route with default AD 1, remove the existing incorrect IPv6 default route, and add the correct IPv6 default route. Option A correctly identifies these steps, while other options either omit the removal, assign a wrong AD to the primary route, or neglect IPv6 entirely.

Exam trap

The trap is that candidates may think the floating route needs to be modified or that the primary route should also have a high AD. Remember: a floating static route must have a higher AD than the primary route to act as a backup. Also, do not forget IPv6 if the question specifies it.

Why the other options are wrong

B

Setting the floating route AD to 1 makes it equal to the primary route's AD, defeating the purpose of a floating static route.

C

The primary route must have a lower AD than the floating route to be preferred. Setting it to 200 makes it equal to the backup, causing ambiguity.

D

The question states 'IPv4 and IPv6 static routes, default routes' and specifies an IPv6 next-hop. Ignoring IPv6 is a direct violation of the requirements.

262
Matchingmedium

Drag and drop the routing concepts on the left to the matching descriptions on the right.

Drag a concept onto its matching description — or click a concept then click the description.

Concepts
Matches

Trustworthiness of a routing source; OSPF uses 110

Cost used by OSPF based on bandwidth

Route with the most specific subnet mask wins

Route with AD of 0, added when interface IP is configured

IP address of the next router to forward packets to

Route learned via OSPF or EIGRP

Why these pairings

Administrative distance (AD) indicates the trustworthiness of a routing source; OSPF is assigned AD 110. Metric is the cost used by OSPF, calculated based on bandwidth. Longest-prefix match selects the route with the most specific (longest) subnet mask.

Directly connected routes have an AD of 0 and are added automatically when an interface IP is configured. Next-hop is the IP address of the next router to forward packets to. Dynamic routes are learned through routing protocols like OSPF or EIGRP.

Exam trap

Be careful not to confuse administrative distance with metric: AD compares different routing protocols to determine trustworthiness, while metric compares routes within the same protocol based on cost or other criteria.

263
MCQhard

A network administrator is troubleshooting connectivity from a PC (192.168.1.10/24) to a server at 10.0.0.5/24. The PC's default gateway is 192.168.1.1. Router R1 has a directly connected route to 10.0.0.0/24 via interface GigabitEthernet0/1, which is connected to another VLAN. The server is actually located on the 10.0.0.0/16 network, reachable via a static route through 192.168.1.2. What is the most likely cause of the connectivity issue?

A.The route to 10.0.0.0/16 has a lower administrative distance than the directly connected route.
B.The directly connected route to 10.0.0.0/24 is the most specific match but is incorrect for the destination.
C.The route to 10.0.0.0/8 has a higher metric, so it is not used.
D.The router does not have a default route, so traffic to 10.0.0.5 is dropped.
AnswerB

The longest-prefix match algorithm selects 10.0.0.0/24 over /16 or /8, but this route points to an interface that cannot reach 10.0.0.5.

Why this answer

Option B is correct because the router's routing table contains a directly connected route to 10.0.0.0/24, which is the most specific match (longest prefix) for the destination 10.0.0.5. However, if that directly connected subnet is not actually the network where the server resides (e.g., it points to a different interface or VLAN), traffic will be forwarded incorrectly. The router always prefers the most specific prefix, even if another route (like a summary) is administratively preferred or has a lower metric.

Exam trap

Cisco often tests the concept that the longest prefix match overrides administrative distance and metric, leading candidates to incorrectly assume that a lower AD or metric route will be chosen when a more specific but incorrect route exists.

Why the other options are wrong

A

You might think that OSPF routes are more reliable, but directly connected routes are always preferred regardless of AD.

C

You might confuse metric with prefix length; metric only matters when prefix lengths are equal.

D

A default route is only used when no more specific route exists; here a specific route exists.

264
MCQhard

A network engineer configures OSPF between R1 and R2, but the routers never become neighbors on GigabitEthernet0/0. Based on the exhibit, what is the most likely cause?

A.The routers are using different OSPF areas.
B.The OSPF interface timers do not match.
C.The routers must use the same hostname to become neighbors.
D.The subnet mask prevents multicast OSPF traffic.
AnswerB

This is correct because OSPF neighbors on the same segment must agree on hello/dead intervals.

Why this answer

The most likely cause is a hello/dead timer mismatch. In practical terms, both routers are on the same subnet and both are trying to run OSPF in area 0, so the obvious items look correct. But OSPF does not form adjacency based on IP reachability alone. It also checks whether key interface parameters agree. Hello and dead intervals are among those required parameters.

On R1, the hello interval is 10 seconds and the dead interval is 40 seconds. On R2, the hello interval is 5 seconds and the dead interval is 20 seconds. That mismatch is enough to prevent the neighbor relationship from forming. This is a common CCNA troubleshooting pattern because the interfaces can still ping each other, which makes the failure look less obvious at first glance.

Exam trap

A frequent exam trap is assuming that OSPF adjacency forms as long as routers are in the same area and can ping each other. Candidates often overlook the necessity for matching hello and dead intervals, which are critical for neighbor discovery and maintenance. Because routers can still exchange ICMP packets, it may appear that the link is fully operational, leading to the mistaken belief that OSPF should work.

This misunderstanding causes candidates to select incorrect answers related to area mismatches or subnet masks, ignoring the timer mismatch that actually prevents adjacency.

Why the other options are wrong

A

This option is incorrect because both routers are configured to use the same OSPF area 0, so area mismatch is not the cause of adjacency failure.

C

Hostnames do not influence OSPF neighbor relationships; routers form adjacencies based on protocol parameters, not device names, so this option is invalid.

D

A /24 subnet mask does not block OSPF multicast traffic; OSPF uses multicast addresses that function normally on standard subnet masks, so this option is incorrect.

265
MCQhard

A router has a static route and a RIP route for the same destination prefix. What is the primary reason the static route is preferred over the RIP route?

A.Because the static route has a lower administrative distance for the same prefix.
B.Because RIP can never be installed when static routing is configured anywhere.
C.Because RIP is valid only for host routes.
D.Because static routes are always more specific than RIP routes.
AnswerA

This is correct because both routes are /16, so source preference is decisive and static wins.

Why this answer

The static route is preferred because both routes describe the same destination prefix and the static route has the lower administrative distance. In practical terms, longest-prefix match does not break the tie because the prefixes are equal. The router then compares source trust, and static routing wins over RIP by default.

This is a core route-selection concept and a very exam-relevant comparison.

Exam trap

Do not confuse administrative distance with metrics or prefix length; administrative distance is the deciding factor here.

Why the other options are wrong

B

This option is incorrect because RIP can coexist with static routes in a routing table; static routes do not prevent RIP routes from being installed. Both routing protocols can be used simultaneously, and the routing decision is based on administrative distance.

C

This option is incorrect because RIP can coexist with static routes in a routing table; static routes do not prevent RIP routes from being installed. Both routing protocols can be used simultaneously in a network.

D

This option is wrong because static routes are not inherently more specific than RIP routes; both can have varying levels of specificity depending on the configuration. The preference of static routes over RIP is determined by administrative distance, not specificity.

266
PBQhard

You are connected to R1, a multilayer switch acting as an HSRP active gateway for VLAN 100. The network requires R1 to be the active router with a virtual IP of 192.168.100.1. Currently, both R1 and the peer router R2 show as active in 'show standby brief', and the virtual IP is misconfigured. Configure HSRP on R1 to fix these issues: set priority to 110, enable preempt, correct the virtual IP, and track interface GigabitEthernet0/1 (decrement priority by 20 if it goes down).

Network Topology
linkG0/1:10.0.0.1/30linkR1R2upstream router

Hints

  • Check the virtual IP address configured under the standby group — it should match the expected virtual IP.
  • Preempt is disabled by default; verify if it's configured to allow R1 to become active after a failure.
  • Use 'show standby' to see all details including tracking status.
A.interface Vlan100 standby 100 ip 192.168.100.1 standby 100 priority 110 standby 100 preempt standby 100 track GigabitEthernet0/1 20
B.interface Vlan100 standby 100 ip 192.168.100.254 standby 100 priority 110 standby 100 preempt standby 100 track GigabitEthernet0/1 20
C.interface Vlan100 standby 100 ip 192.168.100.1 standby 100 priority 100 standby 100 preempt standby 100 track GigabitEthernet0/1 20
D.interface Vlan100 standby 100 ip 192.168.100.1 standby 100 priority 110 standby 100 track GigabitEthernet0/1 20
AnswerA
solution
! R1
interface Vlan100
standby 100 ip 192.168.100.1
standby 100 priority 110
standby 100 preempt
standby 100 track GigabitEthernet0/1 20

Why this answer

The problem had multiple issues: the virtual IP was wrong (192.168.100.254 instead of 192.168.100.1), preempt was not enabled (both routers could claim active), and priority was default (100). Additionally, interface tracking was missing to decrement priority if the upstream link failed. The solution consists of four commands: 'standby 100 ip 192.168.100.1' to set the correct virtual IP, 'standby 100 priority 110' to make R1 the active router, 'standby 100 preempt' to allow R1 to reclaim active role after recovery, and 'standby 100 track GigabitEthernet0/1 20' to reduce priority by 20 if that interface goes down.

Exam trap

Watch out for three common HSRP pitfalls: (1) virtual IP must match the configured gateway, (2) preempt is required for a router to reclaim active role after recovery, and (3) priority must be higher than the peer to be preferred. Also, remember that interface tracking decrements priority, so the tracked interface must be specified correctly.

Why the other options are wrong

B

The virtual IP address is wrong; it should be 192.168.100.1, not 192.168.100.254.

C

Priority must be higher than the default (100) to ensure R1 becomes the active router; 110 is required.

D

Preempt is required to allow R1 to reclaim the active role when its priority becomes higher again after a failure.

267
MCQhard

After configuring a static discard route with the command 'ip route 0.0.0.0 0.0.0.0 Null0 254' on R1, a network engineer finds that traffic to destinations that are not in the routing table is still being forwarded out to the ISP instead of being dropped. What is the most likely cause?

A.The Null0 interface is administratively shut down.
B.The address 0.0.0.0/0 is an invalid destination for a static route because it is not a real network.
C.The static discard route must include a next-hop IP address instead of specifying Null0 as the interface.
D.The ISP static default route has an administrative distance of 1, which is lower than the administrative distance of 254 set for the Null0 route.
AnswerD

When a router has multiple routes for the same 0.0.0.0/0 prefix, it selects the one with the lowest administrative distance. The ISP route with AD 1 wins, so traffic never matches the AD 254 Null0 discard route.

Why this answer

The static default route via the ISP has an administrative distance of 1 (either explicitly configured or inherited as a static route), which is lower than the Null0 route's AD of 254. Because the router always prefers the route with the lowest administrative distance for the same destination, the ISP route is installed in the forwarding table, and the discard route is never used. For the discard route to be selected, its AD would need to be less than or equal to the ISP route's AD, or the ISP route must be removed.

Exam trap

Many candidates think the Null0 interface must be ‘up/up’ for the route to work and mistakenly assume it is down, but Null0 is a virtual interface that is always up. The real issue is the administrative distance preference.

Why the other options are wrong

A

Candidates often assume that a route pointing to an interface requires that interface to be up, but Null0 is always available.

B

A misconception that the default route is special and cannot be used with Null0, but any valid IP prefix can be directed to Null0 to create a discard route.

C

Confusing Null0 routes with Ethernet interface routes, which require a next hop, leads to the incorrect belief that a next hop is mandatory for all static routes.

268
PBQhard

You are troubleshooting a network connectivity issue on R1. The network 192.168.10.0/24 behind R2 must be reachable from R1 via the primary path through R2 (192.0.2.2). A backup path via R3 (198.51.100.2) should automatically take over if the primary fails. Currently, traffic to 192.168.10.0/24 is incorrectly using the backup path even though the primary path is operational. Analyze the routing table and configuration, then fix the issue so that the primary path is preferred when available.

Network Topology
G0/0192.0.2.1/30G0/0192.0.2.2/30linkG0/1198.51.100.1/30G0/0198.51.100.2/30linkR1R2R3

Hints

  • Compare the Administrative Distance values in the routing table for the two paths.
  • The default AD for a static route is 1; a floating static uses a higher AD.
  • You need to swap the AD values between the primary and backup routes.
A.Remove the static route to 192.168.10.0/24 via 198.51.100.2 and add a floating static route via 198.51.100.2 with AD 200. Ensure the primary route via 192.0.2.2 uses default AD 1.
B.Change the AD of the static route via 192.0.2.2 to 200 and the AD of the route via 198.51.100.2 to 1.
C.Add a static route to 192.168.10.0/24 via 192.0.2.2 with AD 1 and remove the existing route via 198.51.100.2.
D.Configure a policy-based route to prefer the next-hop 192.0.2.2 for traffic to 192.168.10.0/24.
AnswerA
solution
! R1
no ip route 192.168.10.0 255.255.255.0 198.51.100.2
no ip route 192.168.10.0 255.255.255.0 192.0.2.2 200
ip route 192.168.10.0 255.255.255.0 192.0.2.2
ip route 192.168.10.0 255.255.255.0 198.51.100.2 200

Why this answer

The routing table shows a static route to 192.168.10.0/24 via 198.51.100.2 with Administrative Distance (AD) 1, which is the default for static routes. The intended primary path via 192.0.2.2 was configured with AD 200 (floating static), but because the default AD (1) is lower than 200, the backup route is preferred. The fix is to reconfigure the primary path with the default AD (1) and the backup path with a higher AD (e.g., 200).

This ensures the primary path is used when available and the backup takes over only if the primary fails.

Exam trap

The trap is confusing which route is primary and which is backup. The route with lower AD is preferred, so the backup must have a higher AD. Candidates often misconfigure the AD values, setting the primary with a higher AD.

Why the other options are wrong

B

Swapping the ADs would keep the backup route preferred, failing to make the primary path active when available.

269
Multi-Selectmedium

Which two statements accurately describe why BGP is often relevant at an Internet or multi-provider edge?

Select 2 answers
A.It is associated with routing between autonomous systems.
B.It is used for routing between organizations and providers at the network edge.
C.It is mainly used to replace STP on access switches.
D.It is required before DHCP relay can function.
E.It is the protocol used by CAPWAP for AP discovery.
AnswersA, B

This is correct because inter-AS routing is the classic BGP scope.

Why this answer

BGP is often relevant at the edge because it is associated with route exchange between autonomous systems and large external routing domains. In practical terms, this makes it a natural protocol to discuss where organizations connect to providers or exchange external reachability. It is not just another interior campus protocol.

The question is about conceptual fit, not deep BGP attribute tuning.

Exam trap

A frequent exam trap is mistaking BGP for an internal protocol or confusing it with unrelated network functions. For example, some might incorrectly believe BGP replaces STP on access switches or is necessary for DHCP relay to work. These are incorrect because BGP operates between autonomous systems for external routing, while STP manages Layer 2 loops and DHCP relay forwards broadcast requests.

Misunderstanding BGP’s scope leads to selecting wrong answers that describe internal or unrelated protocols, so it’s important to focus on BGP’s role in inter-AS routing and external route exchange at the Internet or multi-provider edge.

Why the other options are wrong

C

Option C is incorrect because BGP does not replace Spanning Tree Protocol (STP). STP is a Layer 2 protocol used to prevent loops in Ethernet networks, whereas BGP is a Layer 3 routing protocol used for inter-AS routing.

D

Option D is incorrect since DHCP relay functions independently of BGP. DHCP relay forwards DHCP requests across subnet boundaries and does not rely on BGP routing information or sessions to operate.

E

Option E is incorrect because CAPWAP is a wireless control protocol used for managing access points and is unrelated to BGP or routing protocols used at the Internet edge.

270
MCQhard

A router has routes to 172.20.0.0/16, 172.20.10.0/24, and 172.20.10.64/26. Which route is used for traffic to 172.20.10.70?

A.172.20.0.0/16
B.172.20.10.0/24
C.172.20.10.64/26
D.The default route
AnswerC

This is correct because .70 falls within the 172.20.10.64/26 range.

Why this answer

The /26 route is used because it is the most specific matching prefix. In practical terms, 172.20.10.70 falls inside the 172.20.10.64/26 range, so that route narrows the destination more precisely than the broader /24 and /16 routes. Longest-prefix match therefore selects the /26 entry.

This question is designed to reinforce that specificity comes first in route lookup. Broader routes remain useful, but they lose when a more exact route matches.

Exam trap

A common exam trap is to select a less specific route such as 172.20.0.0/16 or 172.20.10.0/24 because they appear to cover the destination IP 172.20.10.70. Candidates may overlook that the router always prefers the most specific route, which in this case is the /26 subnet. Choosing a broader subnet ignores the longest prefix match principle and leads to incorrect routing decisions.

This trap tests your understanding of how subnet masks influence route selection and the importance of prefix length in Cisco routing tables.

Why the other options are wrong

A

172.20.0.0/16 is the least specific route covering a large address range. Although it includes 172.20.10.70, it is overridden by more specific subnets like /24 and /26, so it is not used for this destination.

B

172.20.10.0/24 is more specific than /16 but less specific than /26. Since 172.20.10.70 falls within the /26 subnet, the router prefers the /26 route over this /24 route.

D

The default route is only used when no other routes match the destination IP. Since multiple specific routes match 172.20.10.70, the default route is not selected.

271
PBQhard

You are connected to R1. R1 has OSPF configured on GigabitEthernet0/0 with network 10.0.0.0 0.0.0.3 area 1, ip ospf hello-interval 10, and ip ospf dead-interval 40. R2 has OSPF configured on its GigabitEthernet0/0 with network 10.0.0.0 0.0.0.3 area 0, ip ospf hello-interval 5, and ip ospf dead-interval 20. Correct these mismatches so that R1 and R2 become OSPF neighbors.

Network Topology
G0/010.0.0.1/30G0/010.0.0.2/30linkR1R2

Hints

  • Check the OSPF area configuration on both routers.
  • Use 'show ip ospf interface' to compare hello and dead timers.
  • The timers must match exactly on both sides of the link.
A.On R1, change the network statement to area 0 and set ip ospf hello-interval 5 and ip ospf dead-interval 20 under the interface.
B.On R2, change the network statement to area 1 and set ip ospf hello-interval 10 and ip ospf dead-interval 40 under the interface.
C.On R1, change the network statement to area 0 and set ip ospf hello-interval 10 and ip ospf dead-interval 40 under the interface.
D.On R2, change the network statement to area 0 and set ip ospf hello-interval 10 and ip ospf dead-interval 40 under the interface.
AnswerA
solution
! R1
configure terminal
router ospf 1
no network 10.0.0.0 0.0.0.3 area 1
network 10.0.0.0 0.0.0.3 area 0
interface gigabitethernet 0/0
ip ospf hello-interval 5
ip ospf dead-interval 20
end

Why this answer

The OSPF adjacency fails due to two mismatches. First, the area is mismatched: R1 uses area 1, R2 uses area 0 (both must be the same area, typically area 0). Second, the hello and dead timers are mismatched: R1 uses Hello 10/Dead 40, R2 uses Hello 5/Dead 20.

To fix, on R1 change the network statement to area 0 and adjust timers to match R2 (or vice versa). The solution below changes R1's area to 0 and sets hello to 5 and dead to 20 to match R2.

Exam trap

The exam trap is that candidates may focus on only one mismatch (area or timers) and forget that both must match. Additionally, they might assume that the router they are connected to should not be changed, or that default timers are always correct. Always verify all OSPF parameters that must match: area ID, hello/dead intervals, network type, and authentication.

Why the other options are wrong

B

The specific factual error is that the question implies you are connected to R1, so configuring R1 is the expected action. Additionally, using area 1 instead of area 0 is not recommended for a single-area design.

C

The specific factual error is that the timers are not changed to match R2; they remain at the original values.

D

The specific factual error is that R2's area is already 0, so changing it to area 0 is redundant. Changing R2's timers to match R1's original timers would still leave a mismatch because R1's timers are not changed.

272
MCQmedium

What problem do first-hop redundancy protocols such as HSRP solve?

A.They prevent duplicate MAC addresses on a LAN
B.They provide a backup default gateway for end hosts
C.They replace spanning tree on switched networks
D.They encrypt traffic between users and the default gateway
AnswerB

Correct. FHRPs provide gateway redundancy for hosts.

Why this answer

First-hop redundancy protocols allow hosts to use a virtual default gateway that can remain available even if one physical router fails.

Exam trap

A frequent exam trap is mistaking HSRP for a protocol that prevents duplicate MAC addresses or replaces Spanning Tree Protocol (STP). While STP prevents Layer 2 loops by blocking redundant paths, HSRP operates at Layer 3 to provide gateway redundancy. Another trap is assuming HSRP encrypts traffic between hosts and routers, which it does not.

Candidates might also confuse HSRP with routing protocols like OSPF or EIGRP, but HSRP only manages default gateway availability, not routing decisions. Understanding these distinctions is crucial to avoid selecting incorrect options that describe unrelated network functions.

Why the other options are wrong

A

Option A incorrectly states that HSRP prevents duplicate MAC addresses on a LAN. Duplicate MAC address prevention is a function of Layer 2 protocols and network design, not HSRP, which operates at Layer 3 to provide gateway redundancy.

C

Option C incorrectly claims that HSRP replaces Spanning Tree Protocol (STP). STP prevents Layer 2 switching loops, while HSRP provides Layer 3 gateway redundancy; they serve distinct purposes and coexist in networks.

D

Option D incorrectly suggests that HSRP encrypts traffic between users and the default gateway. HSRP does not provide encryption; it only manages gateway availability and failover.

273
MCQmedium

A router has routes for 10.10.0.0/16, 10.10.20.0/24, and a default route. Which route is used for destination 10.10.20.55?

A.The 10.10.0.0/16 route
B.The default route
C.The 10.10.20.0/24 route
D.The router load-balances across all matching routes
AnswerC

Correct. The /24 route is chosen.

Why this answer

The destination matches multiple routes, but the /24 is the most specific match and wins by longest prefix match.

Exam trap

Remember that routers use the longest prefix match rule, not the most general or default route, when multiple routes are available.

Why the other options are wrong

A

The 10.10.0.0/16 route is broader and encompasses the 10.10.20.0/24 subnet, but it is not the most specific match for the destination 10.10.20.55, which falls under the more specific 10.10.20.0/24 route.

B

The default route is used only when no more specific routes match the destination address. Since 10.10.20.55 falls within the 10.10.20.0/24 subnet, the default route is not applicable in this case.

D

This option is wrong because routers do not load-balance across routes unless configured to do so with specific routing protocols or settings. In this case, the most specific route, 10.10.20.0/24, is the only applicable choice for the destination 10.10.20.55.

274
MCQhard

A router has a static route to 10.30.5.128/25, an OSPF route to 10.30.5.0/24, and a default route 0.0.0.0/0 in its routing table. Which route will the router use for destination 10.30.5.130?

A.The static route to 10.30.5.128/25
B.The OSPF route to 10.30.5.0/24
C.The default route
D.No route, because the destination is outside all prefixes shown.
AnswerA

This is correct because 10.30.5.130 falls inside the more specific /25 route.

Why this answer

The router selects the route with the longest prefix match between the destination IP and the prefixes in the routing table. 10.30.5.130 matches both 10.30.5.0/24 (prefix length 24) and 10.30.5.128/25 (prefix length 25); the /25 is more specific and wins. Option D is wrong because 10.30.5.130 falls within the subnet range of 10.30.5.128/25 (hosts .129–.254), so a valid route does exist.

Exam trap

Always prioritize the longest prefix match over broader subnets or default routes.

Why the other options are wrong

B

The OSPF route to 10.30.5.0/24 is less specific than the /25 static route, so the router prefers the longest mask.

C

The default route (0.0.0.0/0) has the shortest prefix length and would be used only if no other route matches.

D

10.30.5.130 is inside the 10.30.5.128/25 subnet range, meaning a route exists for this destination.

275
PBQhard

You are connected to R1 via console. You have attempted to configure single-area OSPFv2 on R1 and R2 so that they form a full adjacency, but the adjacency is not establishing. The link between them is 192.168.1.0/30. R1 uses G0/0 (192.168.1.1/30) and R2 uses G0/0 (192.168.1.2/30). R1's router-id must be 1.1.1.1, and R2's router-id must be 2.2.2.2. Additionally, ensure that no OSPF hello packets are sent on R1's loopback0 interface (10.0.0.1/32). After troubleshooting, identify what is causing the issue and what must be corrected. Then verify the adjacency is full and passive-interface is set correctly.

Network Topology
G0/0192.168.1.1/30G0/0192.168.1.2/30R1R2

Hints

  • Check the hello and dead timer values on both routers using 'show ip ospf interface'.
  • The timers must match for OSPF adjacency to form.
  • Use 'ip ospf hello-interval' and 'ip ospf dead-interval' under the interface to adjust.
A.The adjacency is not forming because the hello and dead timers are mismatched: R1 uses Hello 10 / Dead 40, but R2 uses Hello 5 / Dead 20. To fix, on R1's G0/0 interface, change the hello timer to 5 and dead timer to 20 using 'ip ospf hello-interval 5' and 'ip ospf dead-interval 20' (or adjust R2 to match R1's timers). After correction, the adjacency should become full. Additionally, R1's loopback0 is already correctly configured as passive-interface.
B.The adjacency is not forming because R1's router-id is not set correctly. To fix, configure 'router-id 1.1.1.1' under the OSPF process on R1, and 'router-id 2.2.2.2' on R2. After that, clear the OSPF process with 'clear ip ospf process' to force the new router-id to take effect. Additionally, R1's loopback0 is already correctly configured as passive-interface.
C.The adjacency is not forming because the network type is mismatched: R1 is configured as point-to-point, while R2 is broadcast. To fix, change the network type on both interfaces to the same type, e.g., 'ip ospf network point-to-point' on both. Additionally, R1's loopback0 is already correctly configured as passive-interface.
D.The adjacency is not forming because the passive-interface command is incorrectly applied to R1's G0/0 interface instead of loopback0. To fix, remove passive-interface from G0/0 using 'no passive-interface g0/0' and ensure it is only applied to loopback0. Additionally, verify that the router-ids are correctly set.
AnswerA
solution
! R1
interface gigabitethernet0/0
ip ospf hello-interval 5
ip ospf dead-interval 20

Why this answer

The correct answer is A: the adjacency is not forming because the hello and dead timers are mismatched. R1 uses Hello 10 / Dead 40, while R2 uses Hello 5 / Dead 20. To fix, on R1's G0/0 interface, change the hello timer to 5 and dead timer to 20 using 'ip ospf hello-interval 5' and 'ip ospf dead-interval 20' (or adjust R2 to match R1's timers).

After correction, the adjacency becomes full. The other options are incorrect: B is wrong because router-ids can be set after the process starts and a mismatch does not prevent adjacency; C is wrong because network type mismatch would still allow adjacency if both agree (or if one is point-to-point and the other broadcast they will not form, but that is not the case here); D is wrong because the passive-interface on G0/0 would prevent hello packets and thus adjacency, but the question states it is only on loopback0, so that is not the issue. Verify with 'show ip ospf neighbor' and 'show ip ospf interface loopback0'.

Exam trap

The trap is that candidates may overlook timer mismatch and focus on other common OSPF adjacency requirements like network type, area ID, or authentication. Always verify timers first when adjacency fails on a directly connected link. Also, remember that passive-interface on a loopback is normal and does not affect the link adjacency.

Why the other options are wrong

B

Router-ID mismatch does not block OSPF adjacency; an OSPF router can still form a neighbor relationship even if the router-ID is not explicitly set (it will use the highest loopback IP) and can be changed without issue.

C

Network type mismatch would prevent adjacency, but the scenario does not indicate a mismatch; the default for Ethernet is broadcast, so both should be broadcast, and if one were changed to point-to-point they would not form, but that is not stated.

D

Passive-interface on the link interface (G0/0) would suppress hello packets and prevent adjacency, but the configuration correctly has passive-interface only on loopback0, so this is not the problem.

276
Multi-Selectmedium

Which TWO statements are true about OSPFv2 neighbor adjacency, network statements, and passive interfaces?

Select 2 answers
A.Configuring an interface as passive stops OSPF from sending Hello packets out of that interface, but OSPF will still advertise the connected network in its LSAs.
B.For two OSPF routers to establish full adjacency, they must agree on the Hello and Dead intervals.
C.The network command with a wildcard mask of 0.0.0.0 will enable OSPF on the exact matching interface, but it will also prevent OSPF from forming adjacencies on that interface.
D.Using the passive-interface default command makes all OSPF interfaces passive, which means OSPF will not advertise any connected networks.
E.The network command with a wildcard mask of 0.0.0.255 area 0 will match any interface whose IP address falls within that /24 subnet, but OSPF will only attempt to form adjacencies on the interface with the highest IP address in that range.
AnswersA, B

Passive-interface suppresses OSPF Hello packets, preventing neighbor formation on that interface, yet the network is still advertised via the Router LSA.

Why this answer

Option A is correct because configuring an interface as passive in OSPFv2 prevents the router from sending Hello packets out of that interface, which stops neighbor discovery and adjacency formation. However, OSPF still includes the connected network of that passive interface in its Type 1 Router LSAs, allowing the network to be advertised to other OSPF routers.

Exam trap

Cisco often tests the misconception that a passive interface stops network advertisement, when in fact it only stops Hello packets and adjacency formation while still advertising the connected network in LSAs.

Why the other options are wrong

C

A wildcard mask of 0.0.0.0 only matches one exact IP address. It does not impose any restriction on adjacency.

D

Passive interfaces still advertise their networks—they just do not send or receive Hello packets. Only adjacency is suppressed.

E

The network command matches multiple interfaces; OSPF then tries to form adjacencies on every enabled interface, regardless of IP address order.

277
MCQhard

Refer to the exhibit. An engineer expects all traffic destined to the 10.10.10.0 network to be forwarded via 10.1.1.2. However, when testing connectivity to host 10.10.10.64, traffic is being sent to 10.2.2.2 instead. What is the most likely cause?

A.The static route to 10.10.10.0/24 has a higher administrative distance than the /26 route, making the /26 preferred.
B.The router is using longest prefix matching; the /26 route is more specific, so traffic to 10.10.10.64 is forwarded via 10.2.2.2.
C.The /26 static route was configured as a floating static route with an administrative distance of 5, overriding the /24 route.
D.The next-hop 10.1.1.2 for the /24 route is unreachable, causing the router to fall back to the /26 route.
AnswerB

The exhibit shows two overlapping static routes. The /26 prefix length is longer (more specific) than the /24. According to IP routing logic, the router selects the route with the longest matching prefix. The destination 10.10.10.64 falls within the /26 subnet, making it the preferred route.

Why this answer

The show ip route output contains two static routes for destination 10.10.10.0, one with a /24 prefix and one with a /26 prefix. Both routes have an administrative distance of 1 and a metric of 0, as indicated by the [1/0] in the output. The router always performs longest prefix matching; a packet destined to 10.10.10.64 falls within the range 10.10.10.0 – 10.10.10.63 of the /26 route, making the /26 the more specific match.

Therefore, traffic to 10.10.10.64 is forwarded via 10.2.2.2 despite the engineer's intent.

Exam trap

Candidates often believe the route with the lowest administrative distance or metric is always preferred, or that the route appearing first in the table is chosen. In this case, both routes have identical AD and metric, leading them to incorrectly assume the /24 route would be used. The key differentiator is the subnet mask length, not the numerical order in the output.

Why the other options are wrong

A

Misreading the administrative distance value in the routing table; candidates may overlook that both are the same.

C

Assuming that any backup route must be a floating static, without verifying the actual AD value in the exhibit.

D

Misconception that a route can be displayed yet be in a 'down' state; in reality, an invalid next-hop prevents the route from being installed.

278
MCQmedium

A router learns 172.16.40.0/24 from OSPF with AD 110 and metric 20. It also learns the same prefix from EIGRP with AD 90 and feasible distance 30720. Which route is installed?

A.The OSPF route because metric 20 is lower than 30720
B.The EIGRP route because its administrative distance is lower
C.Both routes because ECMP is automatic across different protocols
D.Neither route until one is redistributed into the other protocol
AnswerB

Different protocols are compared by AD first.

Why this answer

When the same prefix is learned from different routing protocols, the router compares administrative distance first. EIGRP internal routes have AD 90, which beats OSPF AD 110, so the EIGRP path goes into the table.

Exam trap

A frequent exam trap is assuming that the route with the lower metric value is always preferred, regardless of the routing protocol. In this question, the OSPF route has a metric of 20, which seems better than EIGRP's feasible distance of 30720. However, Cisco routers do not compare metrics across different protocols.

Instead, they rely on administrative distance to choose the best route. Mistaking metric comparison for cross-protocol route selection can lead to choosing the wrong answer and misunderstanding how Cisco routing decisions work.

Why the other options are wrong

A

This option incorrectly assumes that the router compares OSPF metric 20 directly against EIGRP feasible distance 30720 to select the route. Cisco routers do not compare metrics across different routing protocols; they use administrative distance first. Therefore, this option is incorrect.

C

This option incorrectly claims that both routes are installed due to automatic ECMP across different protocols. Cisco routers do not perform equal-cost load balancing between different routing protocols without explicit redistribution or configuration, so this is false.

D

This option incorrectly states that neither route is installed until redistribution occurs. Redistribution is not necessary for a router to install a route learned from a routing protocol. The router installs the route with the lowest administrative distance immediately, so this option is incorrect.

279
MCQmedium

A router interface is configured for OSPF, but neighbors do not form. The engineer checks the interface and sees Hello 10 and Dead 40. The neighbor on the same segment uses Hello 30 and Dead 120. What is the most likely cause of the OSPF adjacency failure?

A.Router IDs are identical
B.OSPF timers do not match
C.The interface cost is too low
D.The subnet mask is invalid because it is a transit link
AnswerB

Correct. This is correct. OSPF neighbors must agree on timer values such as hello and dead intervals. If they do not, the devices will not form a full adjacency even if other parts of the link appear healthy.

Why this answer

The adjacency fails because the OSPF hello and dead timers do not match. OSPF neighbors on the same segment must agree on several key parameters before they accept each other as neighbors, and the timer settings are one of those required matches. In plain terms, each router is expecting to hear OSPF hellos at one rhythm, but the other side is speaking at a different rhythm, so the relationship never becomes valid.

This is different from cost, which matters later during path selection after neighbors are already exchanging information. The timer mismatch is a classic CCNA troubleshooting point because the interfaces can be up and IP connectivity can even appear normal while the OSPF adjacency still fails.

Exam trap

Be cautious of confusing OSPF timer mismatches with other common OSPF configuration issues like network types or authentication.

Why the other options are wrong

A

This option is wrong because OSPF allows multiple routers to have the same Router ID, but they can still form adjacencies if other parameters are correctly configured. The issue in this scenario is related to mismatched OSPF timers, not Router IDs.

C

This option is incorrect because the interface cost does not directly affect the formation of OSPF adjacencies; it only influences the route selection process once adjacencies are established.

D

The subnet mask being invalid is not the cause of the OSPF adjacency failure in this scenario, as the issue lies with the mismatch of OSPF timers rather than an incorrect subnet mask. Both routers are on the same segment and should have compatible subnet configurations.

280
MCQhard

A router has these routes installed. Which path will be chosen for traffic to 172.16.10.200?

A.O 172.16.10.0/24 via 10.1.1.2
B.S 172.16.10.128/25 via 10.1.1.6
C.O 172.16.0.0/16 via 10.1.1.10
D.S* 0.0.0.0/0 via 203.0.113.1
AnswerB

This is correct because 172.16.10.200 falls within the 172.16.10.128/25 range, making it the most specific matching route.

Why this answer

When multiple routes could match a destination, the router first uses longest-prefix match. In plain language, it chooses the route that describes the destination most specifically, not simply the one from the protocol with the lowest metric somewhere else in the table. For 172.16.10.200, the key is to determine which listed prefix actually contains that address and is the narrowest valid match.

If a /25 and a /24 both match, the /25 wins because it is more specific. If the destination does not fit inside the smaller subnet, then the broader route is used instead. That is the entire skill being tested here: careful evaluation of the prefix boundaries before thinking about anything else. Once you recognize the address falls within the upper half of the /24, the more specific route becomes obvious.

Exam trap

A frequent exam trap is to select a route based solely on the routing protocol type or administrative distance without verifying the subnet mask specificity. For example, candidates might incorrectly choose the OSPF-learned /24 route over the static /25 route because they assume dynamic routes are preferred or because they overlook the subnet boundaries. This mistake ignores the fundamental longest-prefix match rule, which always prioritizes the most specific subnet regardless of protocol.

Misreading subnet ranges or confusing the address boundaries of a /25 versus a /24 can also lead to choosing an incorrect route.

Why the other options are wrong

A

Option A shows an OSPF route to 172.16.10.0/24 via 10.1.1.2. Although the /24 subnet covers 172.16.10.200, it is less specific than the /25 subnet. Therefore, this route will not be chosen because the router prefers the more specific /25 route.

C

Option C shows an OSPF route to 172.16.0.0/16 via 10.1.1.10. This is a very broad subnet covering a large address range, including 172.16.10.200. However, since more specific routes exist (/24 and /25), this route will be ignored in favor of the longer prefix matches.

D

Option D is a static default route (0.0.0.0/0) via 203.0.113.1. Default routes are only used when no other more specific route matches the destination. Since the /25 route matches 172.16.10.200, the default route will not be selected.

281
MCQmedium

Why is route summarization useful at a distribution layer or area boundary?

A.It reduces the number of specific prefixes that must be carried or advertised.
B.It forces all traffic to use a default route only.
C.It automatically encrypts routing updates.
D.It removes the need for subnetting.
AnswerA

This is correct because summarization aggregates multiple routes into fewer broader entries.

Why this answer

Route summarization is useful because it reduces the number of individual routes that have to be advertised and stored. In practical terms, one summary can represent many more specific internal prefixes, which helps keep routing tables smaller and updates simpler. That improves scalability and reduces control-plane clutter.

Summarization does not eliminate the need for detail everywhere, but it helps present the network more efficiently at aggregation points.

Exam trap

A frequent exam trap is mistaking route summarization for default routing or encryption. Some candidates incorrectly believe summarization forces all traffic to use a default route or that it secures routing updates by encrypting them. Neither is true.

Summarization simply aggregates multiple specific routes into fewer, broader prefixes to reduce routing table size and update complexity. Misunderstanding this can lead to selecting incorrect answers such as options B or C, which confuse summarization with unrelated routing concepts. Recognizing that summarization optimizes routing information without changing traffic forwarding behavior or security is essential to avoid this trap.

Why the other options are wrong

B

This option is incorrect because summarization does not force all traffic to use a default route. Summarization aggregates routes but does not replace them with a default route, so traffic forwarding decisions remain based on specific or summarized routes.

C

This option is wrong as route summarization does not provide encryption for routing updates. Encryption is a separate security feature unrelated to summarization, which only aggregates routing information.

D

This option is incorrect because summarization does not remove the need for subnetting. Subnetting defines network address structure, while summarization aggregates existing subnets into broader prefixes for routing efficiency.

282
MCQhard

A static default route is configured with an administrative distance of 250. What is the most likely design intention?

A.To keep the route as a backup of last resort behind normal learned routes
B.To make the route override all dynamic routing immediately
C.To disable default routing entirely
D.To convert the default route into a host route
AnswerA

This is correct because a very high administrative distance makes the static route float behind preferred sources.

Why this answer

The design intention is to make the static default route a very low-priority backup path. In plain language, the administrator wants the route to exist only as a last resort behind almost any normal learned path. By assigning such a high administrative distance, the route stays out of the active table unless better routes disappear.

This is a floating-static design concept. The route is not meant to be primary. It is intentionally configured to sit in reserve and become relevant only during failure conditions or severe loss of normal routing information.

Exam trap

A common exam trap is assuming that increasing the administrative distance disables the static route or forces it to override dynamic routes. In reality, a higher AD causes the static route to be less preferred, effectively floating it behind all other routes. Candidates might confuse the AD value with route priority or think that setting it to 250 disables the route, but the route remains active and is used only as a last resort.

Misinterpreting this can lead to incorrect answers about route behavior and fail to recognize the floating static route design pattern.

Why the other options are wrong

B

Incorrect. A high administrative distance does not make a route override dynamic routes; it makes the route less preferred. Therefore, the static route will not immediately override dynamic routes.

C

Incorrect. Assigning a high administrative distance does not disable the route; it remains configured and available as a backup. The route is not conceptually disabled but deprioritized.

D

Incorrect. Administrative distance affects route preference, not the route prefix or mask. Changing AD does not convert a default route into a host route.

283
PBQhard

You are connected to R1 via the console. Configure single-area OSPFv2 on R1, R2, and R3 so that all three routers can exchange routes. The current configuration has mismatched hello/dead timers on the link between R1 and R2, and an area mismatch on the link between R2 and R3. Correct these issues and ensure OSPF adjacencies form.

Network Topology
G0/010.0.12.1/30G0/110.0.23.2/30G0/110.0.23.2/30G0/010.0.13.2/30G0/010.0.13.2/30G0/110.0.13.1/30R1R2 (G0/0 10.0.12.2/30)R3 (G0/1 10.0.23.2/30)

Hints

  • Check the hello/dead timers on R2's G0/0 using 'show ip ospf interface'.
  • Check the OSPF area on R2's G0/1 and R3's G0/1 using 'show ip ospf interface'.
  • On R2, use 'ip ospf hello-interval' and 'ip ospf dead-interval' under G0/0, and 'network' command under router ospf to change area.
A.On R2, configure interface G0/0 with 'ip ospf hello-interval 10' and 'ip ospf dead-interval 40', and modify the OSPF network statement for 10.0.23.0/30 to area 0.
B.On R2, configure interface G0/0 with 'ip ospf hello-interval 30' and 'ip ospf dead-interval 120', and modify the OSPF network statement for 10.0.23.0/30 to area 1.
C.On R1, configure interface G0/0 with 'ip ospf hello-interval 30' and 'ip ospf dead-interval 120', and on R3, change the OSPF network statement for 10.0.23.0/30 to area 1.
D.On R1, configure interface G0/0 with 'ip ospf hello-interval 10' and 'ip ospf dead-interval 40', and on R2, modify the OSPF network statement for 10.0.23.0/30 to area 1.
AnswerA
solution
! R1

Why this answer

The adjacency between R1 and R2 fails because R1 has hello/dead timers of 10/40, while R2 has 30/120 on G0/0. The adjacency between R2 and R3 fails because R2's G0/1 is in area 1, but R3's G0/1 is in area 0. On R2, change the hello/dead timers on G0/0 to match R1 (10/40) using 'ip ospf hello-interval 10' and 'ip ospf dead-interval 40'.

Also change the network statement for 10.0.23.0/30 to area 0 using 'network 10.0.23.0 0.0.0.3 area 0'. Verify with 'show ip ospf neighbor' on all routers.

Exam trap

A common trap is to assume that timers must be changed on the router with the 'non-default' values, but OSPF requires timers to match on both ends; either router can be adjusted. Another trap is to think that the area mismatch can be resolved by changing the area on either router, but the correct area must be consistent with the network design. In this scenario, the existing explanation specifies the correction on R2.

Why the other options are wrong

B

The specific factual error is that the timers should be made consistent by adjusting R2 to match R1, not the other way around, and the area mismatch requires both routers to be in the same area, which is area 0.

C

The specific factual error is that the timers can be adjusted on either router, but the area mismatch must be resolved by making both routers use the same area. Changing R3 to area 1 would not fix the adjacency if R2 is already in area 1? Actually, R2 is in area 1 on G0/1, so changing R3 to area 1 would make them match, but the question states the area mismatch is on the link between R2 and R3, and the existing explanation says to change R2's network statement to area 0. This option changes R3 instead, which could also work, but the question expects the correction on R2 as per the existing explanation.

Additionally, changing R1's timers is not the most efficient if R1 is already configured correctly.

D

The specific factual error is that the timers on R1 are already correct, and the area mismatch requires both routers to be in the same area. Changing R2's area to area 1 would not match R3's area 0.

284
Multi-Selectmedium

Which two statements accurately describe passive interfaces in OSPF?

Select 2 answers
A.It suppresses OSPF hello packets on that interface.
B.It can still allow the connected network to be advertised into OSPF.
C.It converts OSPF on that interface into static routing.
D.It forces the interface IP address to become the router ID.
E.It disables OSPF on every interface in the router automatically.
AnswersA, B

This is correct because passive interfaces do not actively form OSPF neighbors.

Why this answer

A passive interface stops the router from sending OSPF hello packets on that interface, which means the router will not try to form neighbors there. In practical terms, this is useful on user-facing or stub-like links where no OSPF neighbor should exist. However, passive does not necessarily mean the connected network disappears from OSPF. The network can still be advertised through the router’s other active adjacencies.

This is a common design and security practice because it reduces unnecessary routing chatter on interfaces that should not form adjacencies in the first place.

Exam trap

A frequent exam trap is assuming that configuring an interface as passive disables OSPF routing on that interface or converts OSPF routes into static routes. Candidates may also mistakenly believe that passive interfaces automatically disable OSPF on all router interfaces or force the interface IP to become the router ID. These misunderstandings arise because passive interfaces stop hello packets but do not disable OSPF or affect router ID selection.

Misreading this can lead to incorrect answers about OSPF behavior and network design.

Why the other options are wrong

C

Option C is incorrect because passive interfaces do not convert OSPF into static routing; OSPF remains active and continues to advertise routes.

D

Option D is incorrect because passive interface configuration does not influence router ID selection, which is determined by other OSPF rules.

E

Option E is incorrect because passive interface settings apply only to the specified interface and do not disable OSPF on all router interfaces.

285
PBQhard

You are connected to R1. The network must route IPv6 traffic between two directly connected routers using OSPFv3. Configure OSPFv3 on R1's GigabitEthernet0/0 interface in area 0, enable IPv6 unicast routing, and verify that R1 forms an OSPFv3 neighbor adjacency with R2 and learns the remote network 2001:DB8:CAFE:2::/64 via OSPFv3.

Network Topology
G0/02001:DB8:CAFE:1::1/64G0/02001:DB8:CAFE:1::2/64linkR1R2

Hints

  • OSPFv3 is enabled per interface, not as a network statement.
  • You need to create the OSPFv3 process before enabling it on the interface.
  • The OSPFv3 process ID must match on both routers.
A.Enable OSPFv3 on the interface with 'ipv6 ospf 1 area 0' under GigabitEthernet0/0.
B.Configure 'ipv6 router ospf 1' and then 'network 2001:DB8:CAFE:1::/64 area 0' under the OSPFv3 process.
C.Enable OSPFv3 on the interface with 'ipv6 ospf 1 area 0' under the OSPFv3 router configuration mode.
D.Configure 'ipv6 unicast-routing' and then 'ipv6 ospf 1 area 0' under the interface.
AnswerA
solution
! R1
router ospfv3 1
exit
interface GigabitEthernet0/0
ipv6 ospf 1 area 0

Why this answer

The issue is that OSPFv3 is not enabled on R1's GigabitEthernet0/0 interface, and the OSPFv3 routing process has not been started. To fix this, first ensure ipv6 unicast-routing is already enabled (it is). Then configure the OSPFv3 process with a process ID (e.g., 1) and enable OSPFv3 on the interface in area 0 using the command 'ipv6 ospf 1 area 0' under the interface.

After that, R1 will form a neighbor adjacency with R2 and learn the remote route.

Exam trap

Do not confuse OSPFv3 configuration with OSPFv2. OSPFv3 uses interface-level activation, not the 'network' command. Also, ensure you apply the command in the correct configuration mode (interface mode, not router mode).

Why the other options are wrong

B

The 'network' command is not valid for OSPFv3; OSPFv3 uses interface-level configuration.

C

This command is only valid in interface configuration mode.

D

The question explicitly says IPv6 unicast routing is already enabled, so this option includes an unnecessary step.

286
MCQhard

Exhibit: R3 learns 10.50.0.0/16 by OSPF through two equal-cost paths. What will R3 do by default?

A.Install both routes and load balance
B.Choose the route from the neighbor with the highest router ID only
C.Install only one route because OSPF does not support ECMP
D.Prefer the path with the lower next-hop IP address
AnswerA

Equal-cost OSPF paths are installed by default.

Why this answer

When OSPF has equal-cost routes to the same destination, the router installs multiple paths and can load balance across them, assuming the platform supports the default maximum-paths value.

Exam trap

A frequent exam trap is believing that OSPF will choose only one route when multiple equal-cost paths exist, often assuming it picks the route from the neighbor with the highest router ID or the path with the lowest next-hop IP address. This misconception leads to incorrect answers because OSPF’s path selection process installs all equal-cost routes by default. Misunderstanding this behavior can cause candidates to overlook OSPF’s load balancing capability and mistakenly select options that describe single-route preferences, which do not apply to equal-cost multipath scenarios.

Why the other options are wrong

B

Incorrect because OSPF does not select a single route based on the highest router ID when multiple equal-cost paths exist; it installs all such routes.

C

Incorrect because OSPF explicitly supports equal-cost multipath (ECMP) routing and does not limit itself to installing only one route.

D

Incorrect because the next-hop IP address is not a factor in OSPF’s path selection among equal-cost routes; cost metric is the deciding factor.

287
MCQhard

A branch router uses PPP on a serial WAN link. Which additional PPP capability most directly improves access security on that link?

A.PPP authentication
B.STP root election
C.Wireless roaming
D.IPv6 loopback addressing
AnswerA

This is correct because peer authentication is a direct PPP security-related capability.

Why this answer

PPP authentication most directly improves access security on the link. In practical terms, authentication helps verify the identity of the peer rather than simply bringing up the point-to-point connection without validation. That makes PPP more useful than a bare unauthenticated link in environments where peer identity matters.

At CCNA level, the important point is recognizing that PPP is associated with optional authentication capability on WAN links.

Exam trap

A common exam trap is selecting options like STP root election or IPv6 loopback addressing as security features for PPP links. STP is a Layer 2 protocol that prevents loops in Ethernet networks and does not apply to serial WAN links or PPP authentication. Similarly, IPv6 loopback addresses are used for router management and diagnostics, not for authenticating peers on a WAN link.

Candidates may also be tempted by unrelated wireless concepts like roaming, which have no bearing on PPP serial link security. Recognizing that PPP authentication specifically addresses peer verification on point-to-point links is essential to avoid these distractions.

Why the other options are wrong

B

STP root election is incorrect because STP operates at Layer 2 to prevent loops in Ethernet networks and does not provide authentication or security on PPP serial links.

C

Wireless roaming is unrelated to serial WAN links and PPP authentication; it applies to wireless LAN environments and does not affect WAN link security.

D

IPv6 loopback addressing is used for router management and diagnostics and does not provide any authentication or security features for PPP WAN links.

288
Multi-Selectmedium

Which TWO statements are true regarding HSRP active/standby election, priority, and preemption?

Select 2 answers
A.The router with the highest priority becomes the active router.
B.The router with the lowest IP address in the standby group becomes the active router.
C.HSRP priority can be configured from 0 to 100, with 100 being the highest.
D.Preemption is enabled by default on all HSRP interfaces.
E.If preemption is enabled, a router with a higher priority can take over the active role from a router with a lower priority that is already active.
F.The standby router uses a priority of 0 to indicate it will never become active.
AnswersA, E

HSRP uses a priority value (0–255, default 100) to determine the active router; the highest priority wins.

Why this answer

In HSRP, the router with the highest priority wins the election to become the active router (A correct). If preemption is enabled, a router with a higher priority can take over the active role from a lower-priority active router (E correct). Option B is incorrect: when priorities are equal, the router with the highest IP address in the standby group is chosen, not the lowest.

Option C is incorrect: HSRP priority ranges from 0 to 255, not 0 to 100. Option D is incorrect: preemption is disabled by default on all HSRP interfaces. Option F is incorrect: a priority of 0 is used to indicate that the router will not participate in the election or will immediately give up the active role, but it does not mean it will never become active; in fact, it can be configured to force a new election.

Exam trap

Cisco often tests the exact priority range (0–255) and the tiebreaker rule (highest IP, not lowest), leading candidates to confuse HSRP with VRRP or GLBP, or to misremember the priority scale.

Why the other options are wrong

B

This describes a different mechanism (e.g., VRRP uses IP address as a tiebreaker only after priority).

C

The range is 0–255, not 0–100.

D

Preemption is not a default behavior.

F

Priority 0 is a special value, not the normal standby priority.

289
MCQhard

A router has a default route and a specific route to 203.0.113.0/24. Which route is used for traffic to 203.0.113.25?

A.The specific route to 203.0.113.0/24
B.The default route
C.Both routes are always load-balanced
D.Neither route because defaults cannot coexist with specific routes
AnswerA

This is correct because it is more specific than the default route.

Why this answer

The specific route to 203.0.113.0/24 is used because it is a more specific match than the default route. In plain language, even though the default route could technically match almost anything, the router always prefers a route that more precisely describes the destination network. Since 203.0.113.25 is inside 203.0.113.0/24, that route wins under longest-prefix match.

This is one of the most basic routing-table interpretation rules. The default route remains important as a fallback, but it is not chosen when a more specific valid route exists.

Exam trap

Remember that the router always prefers the most specific route, not the default route, when a specific match is available.

Why the other options are wrong

B

The default route is used for traffic to destinations not explicitly defined in the routing table. Since there is a specific route to 203.0.113.0/24, that route will take precedence for traffic to 203.0.113.25.

C

This option is incorrect because routing protocols do not load-balance traffic between a specific route and a default route; the more specific route will always take precedence for matching traffic.

D

This option is wrong because default routes can coexist with specific routes; the router will prioritize the specific route to 203.0.113.0/24 for traffic to 203.0.113.25.

290
Multi-Selectmedium

A network engineer needs a floating static route to back up an OSPF-learned route. Which two configurations are necessary for the static route to remain unused until OSPF fails?

Select 2 answers
A.Configure the static route with an administrative distance higher than 110
B.Point the static route toward a valid next-hop or exit interface
C.Set the static route metric lower than the OSPF cost
D.Configure the route as directly connected with no next-hop information
AnswersA, B

It must be less preferred than OSPF while OSPF is available.

Why this answer

A floating static route requires an administrative distance higher than OSPF's default of 110 (option A) so that the static route is less preferred and remains inactive while OSPF is available. Additionally, the static route must point to a valid next-hop IP or exit interface (option B); without a valid next-hop, the route cannot be installed in the routing table and would never serve as a backup. Option C is incorrect because Cisco routers compare administrative distance before metric when routes come from different sources, so a lower metric cannot override the AD difference.

Option D is wrong because a directly connected route (with no next-hop) would be treated as a connected route, not a static route, and would be preferred over OSPF due to its AD of 0, defeating the purpose of a floating backup.

Exam trap

A common mistake is assuming that lowering the static route's metric makes it preferred, but Cisco routers compare administrative distance before metric when routes originate from different sources.

Why the other options are wrong

C

Setting the static route metric lower than the OSPF cost is ineffective because Cisco routers compare administrative distance first across different routing sources.

D

Configuring the route as directly connected with no next-hop information would give it an administrative distance of 0, making it preferred over OSPF, which is not the behavior of a floating static route.

291
Matchingmedium

Match each WAN or edge concept to its most accurate description.

Drag a concept onto its matching description — or click a concept then click the description.

Concepts
Matches

Point-to-point WAN encapsulation

PPP-style session behavior over Ethernet access

Tunneling mechanism across another network

BGP between different autonomous systems

Why these pairings

These matches reflect foundational WAN and edge concepts: PPP is a Layer 2 point-to-point encapsulation used on serial links, PPPoE extends PPP’s authentication and session behavior to Ethernet-based access networks, GRE is a simple tunneling protocol that can encapsulate various protocols for transport across another network, and eBGP exchanges routing information between different autonomous systems, which is essential for internet connectivity.

Exam trap

Do not confuse PPPoE (which runs PPP over Ethernet) with plain PPP on serial WAN links, and remember that eBGP operates between autonomous systems, not within a single AS.

292
MCQmedium

Exhibit: R1 has learned 10.50.0.0/24 through OSPF and also has a floating static route to the same prefix with administrative distance 130. Which route is installed while OSPF is healthy?

A.The static route because static routes always win over dynamic routes
B.The OSPF route because its administrative distance is lower than the floating static route
C.Both routes because the prefix length matches
D.Neither route until equal-cost load balancing is configured
AnswerB

OSPF AD 110 beats the floating static AD 130.

Why this answer

A floating static route is meant to stay out of the table until the preferred route disappears. OSPF has administrative distance 110, which is lower than the static route AD 130, so the OSPF route is installed while the OSPF path is still present.

Exam trap

Remember that administrative distance determines route preference. A lower value means higher preference.

Why the other options are wrong

A

This option is incorrect because static routes do not always win over dynamic routes; the route with the lowest administrative distance is preferred. In this case, OSPF has a lower administrative distance (110) than the floating static route (130).

C

This option is incorrect because only one route can be installed in the routing table for a specific prefix, and in this case, OSPF has a lower administrative distance than the floating static route, so only the OSPF route will be installed.

D

This option is incorrect because OSPF is healthy and has a lower administrative distance than the floating static route, meaning the OSPF route will be preferred and installed in the routing table.

293
PBQhard

You are connected to R1. R1, R2, and R3 are connected via serial links as shown. Configure single-area OSPFv2 on all three routers so that all interfaces in the 10.0.0.0/8 range participate in OSPF area 0, except the loopback interfaces. Currently R1 cannot form OSPF adjacencies with R2 and R3. Examine the running-config of R1 below and determine the corrective actions needed.

Network Topology
Se0/0/010.0.1.1/30Se0/0/010.0.1.2/30Se0/0/110.0.2.1/30Se0/0/010.0.2.2/30R1R2R3

Hints

  • Check the passive-interface configuration under router ospf.
  • Verify hello and dead timers on serial interfaces.
  • Use show ip ospf interface serial0/0/0 to see timer values.
A.Remove the passive-interface configuration from GigabitEthernet0/0, Serial0/0/0, and Serial0/0/1, and adjust the hello timer on Serial0/0/0 to 30 seconds.
B.Change the OSPF network type on all interfaces to point-to-point and increase the dead timer to 120 seconds.
C.Add the network 10.0.0.0 0.255.255.255 area 0 command under router ospf and enable OSPF on all interfaces.
D.Configure the loopback interfaces with the ip ospf network point-to-point command to ensure they participate in OSPF.
AnswerA
solution
! R1
configure terminal
router ospf 1
no passive-interface GigabitEthernet0/0
no passive-interface Serial0/0/0
no passive-interface Serial0/0/1
interface Serial0/0/0
ip ospf hello-interval 30
ip ospf dead-interval 120
end

Why this answer

R1 has passive-interface configured on all active interfaces (G0/0, Se0/0/0, Se0/0/1), which prevents OSPF hello packets from being sent and stops adjacencies from forming. Additionally, the hello timer on Serial0/0/0 is mismatched (default 10 vs. required 30). To resolve the adjacency issues while keeping loopback interfaces inactive, the passive-interface command must be removed from only the necessary interfaces and the hello timer on Se0/0/0 must be set to 30 seconds.

Exam trap

This question tests your ability to identify two common OSPF adjacency issues: passive interfaces and hello/dead timer mismatches. Many candidates focus only on one issue and miss the other. Always check both the passive-interface configuration and timer values when troubleshooting OSPF adjacencies.

Why the other options are wrong

B

The specific factual error is that changing network type is unnecessary and does not fix the passive-interface or timer mismatch problems.

C

The specific factual error is that the network command is already configured, so adding it again does not solve the adjacency problem.

D

The specific factual error is that loopback interfaces are intentionally excluded from OSPF, and forcing them to participate is not required and would be incorrect.

294
Drag & Dropmedium

Drag and drop the following steps into the correct order to configure HSRP on a Cisco IOS-XE router, including priority, preempt, virtual IP, and then verify the active/standby election and failover process.

Drag steps to the numbered slots on the right, or tap a step then tap a slot.

Steps
Order
1Step 1
2Step 2
3Step 3
4Step 4

Why this order

First, the interface is configured. Then the virtual IP is set, followed by priority and preempt. Verification confirms the election, and failover testing demonstrates the preempt mechanism works.

Exam trap

The exam trap is that candidates often confuse the order of priority and preempt, or try to configure HSRP parameters before the interface is ready. Remember: interface first, then virtual IP, then priority, then preempt. Verification and testing come last.

295
Multi-Selectmedium

Which two statements accurately describe floating static routes?

Select 2 answers
A.They are static routes configured with higher administrative distance so they act as backups.
B.They can become active automatically if the preferred route is lost.
C.They always override dynamic routes immediately.
D.They are identical to equal-cost load balancing.
E.They remove the need for routing tables.
AnswersA, B

This is correct because that is the definition of a floating static route.

Why this answer

The two correct statements describe floating static routes as backup routes with higher administrative distance that activate when the preferred route is lost. Option C is wrong because floating static routes have a higher administrative distance, so they do not override dynamic routes immediately; they only activate if the dynamic route is lost. Option D is wrong because floating static routes are for backup, not equal-cost load balancing.

Option E is wrong because floating static routes are entries in the routing table that provide backup, not a replacement for it.

Exam trap

Be cautious of confusing floating static routes with load balancing or manual intervention requirements.

Why the other options are wrong

C

Floating static routes have higher administrative distance, so they do not override dynamic routes immediately.

D

Floating static routes are for backup purposes, not equal-cost load balancing.

E

Floating static routes are entries in the routing table, not a replacement for it.

296
Matchingmedium

Match each route-selection concept to the description that best fits it.

Drag a concept onto its matching description — or click a concept then click the description.

Concepts
Matches

Selects the most specific matching route

Compares trust between route sources

Compares candidate paths within a protocol or route source

Fallback when no more specific route exists

Why these pairings

Longest-prefix match selects the most specific matching route. Administrative distance compares trust between route sources. Metric compares candidate paths within a protocol or route source.

Default route serves as a fallback when no more specific route exists.

Exam trap

Do not confuse the order of route selection: LPM is always checked first, before AD or metric. Many candidates mistakenly think AD or metric determines specificity, but they only come into play after LPM is applied.

297
MCQhard

Two routers are in the same OSPF area and on the same subnet, but they do not form an adjacency. One interface uses a hello interval of 10 seconds and the other uses 5 seconds. What is the most likely cause?

A.The OSPF hello timers do not match.
B.The routers need matching hostnames.
C.The subnet must be changed to /24 before OSPF can work.
D.The routers must both use static routes first.
AnswerA

This is correct because OSPF neighbors must agree on hello timing in order to form an adjacency.

Why this answer

An OSPF timer mismatch is the most likely cause. In plain language, the routers are trying to discover each other, but they are speaking on different timing expectations. OSPF neighbors on the same segment must agree on certain parameters before they trust each other enough to form an adjacency, and the hello and dead timers are among those critical values.

This is a very common OSPF troubleshooting issue because the interfaces may still be reachable with ping and may even appear correctly addressed and placed in the same area. But OSPF is stricter than simple IP reachability. If the hello interval does not match, the adjacency usually fails before it becomes fully operational.

Exam trap

A common exam trap is assuming that because two routers can ping each other on the same subnet, their OSPF adjacency will form automatically. The trap lies in overlooking the importance of matching OSPF hello and dead timers. Many candidates focus only on IP addressing or area configuration and miss that OSPF requires exact timer agreement.

This leads to confusion when adjacency never forms despite correct IP setup. The exam tests your understanding that OSPF is a protocol with strict neighbor parameter requirements, not just IP reachability.

Why the other options are wrong

B

Incorrect because router hostnames do not affect OSPF adjacency formation. OSPF neighbors identify each other by router IDs and interface parameters, not hostnames.

C

Incorrect because OSPF supports various subnet masks and does not require a /24 subnet. The problem is related to timer mismatch, not subnet size.

D

Incorrect because static routes are not necessary for OSPF adjacency. OSPF dynamically discovers neighbors using hello packets and forms adjacencies based on protocol parameters.

298
Multi-Selectmedium

A branch router is running single-area OSPF. An engineer wants an interface to advertise its connected network into OSPF but must prevent hello packets from being sent on that LAN segment. Which two actions achieve that goal?

Select 2 answers
A.Enable OSPF on the interface or matching network statement
B.Configure the interface as passive in the OSPF process
C.Set the interface network type to point-to-point
D.Apply distribute-list out on the interface
AnswersA, B

OSPF must still be enabled for the connected subnet to be advertised.

Why this answer

In OSPF, a passive interface still advertises the connected network but does not send or process hello packets. So the interface must participate in OSPF, and then it must be made passive.

Exam trap

A frequent exam trap is assuming that changing the OSPF network type or applying a distribute-list on the interface will stop hello packets. Many candidates mistakenly believe that setting the interface to point-to-point suppresses hellos, but it only changes adjacency behavior. Similarly, distribute-lists filter routing updates but do not affect hello packet transmission.

The key mistake is forgetting that OSPF must be enabled on the interface to advertise the network and that only the passive-interface command prevents hello packets while still advertising the connected subnet.

Why the other options are wrong

C

Setting the interface network type to point-to-point changes adjacency behavior but does not suppress hello packets. Therefore, it does not meet the requirement to prevent hello packet transmission.

D

Applying a distribute-list out on the interface filters routing updates but does not affect the sending of OSPF hello packets. It does not prevent hello packet transmission on the LAN segment.

299
Multi-Selecthard

Exhibit: A static route to 172.16.40.0/24 is configured, but traffic still follows the default route. Which two explanations are plausible?

Select 2 answers
A.The next hop for the static route may not be reachable
B.The exit interface associated with that path may be down
C.The default route always overrides more specific routes
D.Static routes require a metric lower than 1
E.The destination prefix must be configured under router ospf first
AnswersA, B

A recursive lookup problem can prevent installation.

Why this answer

If a static route points to an unreachable next hop or the outgoing interface is down, the route may not be installed as usable. In that case the router can still use a less specific route such as the default route.

Exam trap

A frequent exam trap is believing that a static route always takes precedence over a default route regardless of network conditions. Candidates may overlook that Cisco routers require the next hop to be reachable and the exit interface to be operational before installing the static route. If these conditions are not met, the router ignores the static route and uses the default route instead.

This misunderstanding can lead to incorrect answers, especially when the question involves static route reachability or interface status.

Why the other options are wrong

C

Incorrect because Cisco routers use the longest prefix match rule, meaning a more specific static route overrides the default route when valid. The default route does not always override specific routes.

D

Incorrect because static routes do not require a metric lower than 1. Static routes have an administrative distance of 1 by default, but metric values do not prevent route installation based on reachability.

E

Incorrect because static routes operate independently of dynamic routing protocols like OSPF. The destination prefix does not need to be configured under OSPF for a static route to function.

300
MCQhard

On a broadcast multiaccess segment, R3 has an OSPF priority of 255, but it is in the DROTHER state. Which explanation best fits OSPF behavior?

A.DR election is nonpreemptive on broadcast networks
B.A router cannot become DR if it uses a loopback router ID
C.OSPF priority works only on point-to-point links
D.R3's priority is lower than the current DR's priority
AnswerA

Changing priority later does not automatically replace the existing DR.

Why this answer

On broadcast networks, OSPF DR and BDR election is not preemptive. If a DR is already elected, giving another router a higher priority later does not force a new election unless the current DR goes down or OSPF is reset on the segment.

Exam trap

A common exam trap is assuming that increasing a router's OSPF priority after the DR election will cause it to immediately become the new DR. Many candidates mistakenly believe OSPF DR election is preemptive and that the router with the highest priority always becomes DR instantly. However, OSPF DR election on broadcast networks is nonpreemptive, meaning the current DR remains until it fails or OSPF adjacency resets.

This misunderstanding can lead to incorrect answers about why a router with a higher priority remains DROTHER, as in the case of R3 in the question.

Why the other options are wrong

D

This distractor assumes the election is based on current priority values, but OSPF DR election is nonpreemptive; even if R3's priority is higher, it will not become DR unless the current DR fails.

← PreviousPage 4 of 5 · 344 questions totalNext →

Ready to test yourself?

Try a timed practice session using only IP Routing questions.