Key benefits of cisco 300 101

Our pass rate is high to 98.9% and the similarity percentage between our 300 101 dumps study guide and real exam is 90% based on our seven-year educating experience. Do you want achievements in the Cisco ccnp 300 101 pdf exam in just one try? I am currently studying for the Cisco ccnp route 300 101 dumps pdf exam. Latest Cisco cisco 300 101 Test exam practice questions and answers, Try Cisco ccnp route 300 101 dumps Brain Dumps First.

Q51. Refer to the exhibit. After configuring GRE between two routers running OSPF that are connected to each other via a WAN link, a network engineer notices that the two routers cannot establish the GRE tunnel to begin the exchange of routing updates. What is the reason for this? 

A. Either a firewall between the two routers or an ACL on the router is blocking IP protocol number 47. 

B. Either a firewall between the two routers or an ACL on the router is blocking UDP 57. 

C. Either a firewall between the two routers or an ACL on the router is blocking TCP 47. 

D. Either a firewall between the two routers or an ACL on the router is blocking IP protocol number 57. 

Answer: A 

Explanation: 

Q52. A network engineer initiates the ip sla responder tcp-connect command in order to gather statistics for performance gauging. Which type of statistics does the engineer see? 

A. connectionless-oriented 

B. service-oriented 

C. connection-oriented 

D. application-oriented 

Answer: C 

Explanation: 

Configuration Examples for IP SLAs TCP Connect Operations The following example shows

how to configure a TCP Connection-oriented operation from Device B to the Telnet port (TCP port 23) of IP

Host 1 (IP address 10.0.0.1), as shown in the "TCP Connect Operation" figure in the "Information About

the IP SLAs TCP Connect Operation" section. The operation is scheduled to start immediately. In this

example, the control protocol is disabled on the source (Device B). IP SLAs uses the control protocol to

notify the IP SLAs responder to enable the target port temporarily. This action allows the responder to reply

to the TCP Connect operation. In this example, because the target is not a Cisco device and a well- known

TCP port is used, there is no need to send the control message. Device A (target device) Configuration

configure terminal ip sla responder tcp-connect ipaddress 10.0.0.1 port 23 

Reference: http://

www.cisco.com/c/en/us/td/docs/ios-xml/ios/ipsla/configuration/15-mt/sla-15- mt-book/ sla_tcp_conn.html

Q53. Which type of BGP AS number is 64591? 

A. a private AS number 

B. a public AS number 

C. a private 4-byte AS number 

D. a public 4-byte AS number 

Answer: A 

Explanation: 

Q54. Which Cisco VPN technology uses AAA to implement group policies and authorization and is also used for the XAUTH authentication method? 

A. DMVPN 

B. Cisco Easy VPN 

C. GETVPN 

D. GREVPN 

Answer: B 

Explanation: 

Q55. Refer to the exhibit. Which statement about the command output is true? 

A. The router exports flow information to 10.10.10.1 on UDP port 5127. 

B. The router receives flow information from 10.10.10.2 on UDP port 5127. 

C. The router exports flow information to 10.10.10.1 on TCP port 5127. 

D. The router receives flow information from 10.10.10.2 on TCP port 5127. 

Answer: A 

Explanation: 

Q56. A user is having issues accessing file shares on a network. The network engineer advises the user to open a web browser, input a prescribed IP address, and follow the instructions. After doing this, the user is able to access company shares. Which type of remote access did the engineer enable? 

A. EZVPN 

B. IPsec VPN client access 

C. VPDN client access 

D. SSL VPN client access 

Answer: D 

Explanation: 

The Cisco AnyConnect VPN Client provides secure SSL connections to the security

appliance for remote users. Without a previously installed client, remote users enter the IP address in their

browser of an interface configured to accept SSL VPN connections. Unless the security appliance is

configured to redirect http:// requests to https://, users must enter the URL in the form https://<address>.

After entering the URL, the browser connects to that interface and displays the login screen. If the user

satisfies the login and authentication, and the security appliance identifies the user as requiring the client, it

downloads the client that matches the operating system of the remote computer. After downloading, the

client installs and configures itself, establishes a secure SSL connection and either remains or uninstalls

itself (depending on the security appliance configuration) when the connection terminates. Reference:

http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next- generation-firewalls/100936-

asa8x-split-tunnel-anyconnect-config.html

Q57. What is the primary service that is provided when you implement Cisco Easy Virtual Network? 

A. It requires and enhances the use of VRF-Lite. 

B. It reduces the need for common services separation. 

C. It allows for traffic separation and improved network efficiency. 

D. It introduces multi-VRF and label-prone network segmentation. 

Answer: C 

Explanation: 

Q58. Refer to the following command: router(config)# ip http secure-port 4433 

Which statement is true? 

A. The router will listen on port 4433 for HTTPS traffic. 

B. The router will listen on port 4433 for HTTP traffic. 

C. The router will never accept any HTTP and HTTPS traffic. 

D. The router will listen to HTTP and HTTP traffic on port 4433. 

Answer: A 

Explanation: 

To set the secure HTTP (HTTPS) server port number for listening, use the ip http secure-port

command in global configuration mode. To return the HTTPS server port number to the default, use the no

form of this command. ip http secure-port port-number no ip http secure-port Syntax Description port-

Integer in the range of 0 to 65535 is accepted, but the port number must be number higher than 1024

unless the default is used. The default is 443. Reference: http://www.cisco.com/en/US/docs/ios-xml/ios/

https/command/nm-https-cr-cl- sh.html#wp3612805529

Q59. Which switching method is used when entries are present in the output of the command show ip cache? 

A. fast switching 

B. process switching 

C. Cisco Express Forwarding switching 

D. cut-through packet switching 

Answer: A 

Explanation: 

Fast switching allows higher throughput by switching a packet using a cache created by the initial packet

sent to a particular destination. Destination addresses are stored in the high-speed cache to expedite forwarding. Routers offer better packet-transfer performance when fast switching is enabled. Fast switching is enabled by default on all interfaces that support fast switching.

To display the routing table cache used to fast switch IP traffic, use the "show ip cache" EXEC command.

Reference:

http://www.cisco.com/c/en/us/td/docs/ios/12_2/switch/command/reference/fswtch_r/xrfscmd5.ht

ml#wp1038133

Q60. After a recent DoS attack on a network, senior management asks you to implement better logging functionality on all IOS-based devices. Which two actions can you take to provide enhanced logging results? (Choose two.) 

A. Use the msec option to enable service time stamps. 

B. Increase the logging history . 

C. Set the logging severity level to 1. 

D. Specify a logging rate limit. 

E. Disable event logging on all noncritical items. 

Answer: A,B 

Explanation: 

The optional msec keyword specifies the date/time format should include milliseconds. This can aid in

pinpointing the exact time of events, or to correlate the order that the events happened. To limit syslog messages sent to the router's history table and to an SNMP network management station based on severity, use the logging history command in global configuration mode. By default, Cisco devices Log error messages of severity levels 0 through 4 (emergency, alert, critical, error, and warning levels); in other words, "saving level warnings or higher." By increasing the severity level, more granular monitoring can occur, and SNMP messages will be sent by the less sever (5-7) messages.