The Replace Guide To 400-101 keys Apr 2021

Cause all that matters here is passing the Cisco 400-101 exam. Cause all that you need is a high score of 400-101 CCIE Routing and Switching (v5.0) exam. The only one thing you need to do is downloading Exambible 400-101 exam study guides now. We will not let you down with our money-back guarantee.


The article at Testaimer.com going over http://www.testaimer.com/400-101-test is very comprehensive.

2021 Apr 400-101 practice question

Q431. Refer to the exhibit. 

Which two statements about how the configuration processes Telnet traffic are true? (Choose two.) 

A. Telnet traffic from 10.1.1.9 to 10.10.10.1 is dropped. 

B. All Telnet traffic is dropped. 

C. Telnet traffic from 10.10.10.1 to 10.1.1.9 is permitted. 

D. Telnet traffic from 10.1.1.9 to 10.10.10.1 is permitted. 

E. Telnet traffic is permitted to all IP addresses. 

Answer: A,C 

Explanation: 

The ACL applied to the COPP policy matches only telnet traffic from 10.1.1.9 to 10.10.10.1, all other telnet traffic is not matched and therefore not used in the COPP policy, which means this traffic will be handled normally (accepted). For telnet traffic from 10.1.1.9 to 10.10.10.1, the COPP policy has defined this traffic as an exceed, and dropped. 


Q432. Refer to the exhibit. 

Routers R1 and R2 are configured as shown, and traffic from R1 fails to reach host 209.165.201.254. 

Which action can you take to correct the problem? 

A. Ensure that R2 has a default route in its routing table. 

B. Change the OSPF area type on R1 and R2. 

C. Edit the router configurations so that address 209.165.201.254 is a routable address. 

D. Remove the default-information originate command from the OSPF configuration of R2. 

Answer:

Explanation: 

Not sure that any of these answers are correct, it appears that this configuration is valid for reaching that one specific host IP. Answer A does have a route to that host so it would not need a default route to get to it. Choice B is incorrect as the area types have nothing to do with this. C is incorrect as that IP address is routable, and D is needed so that R1 will have a default route advertised to it from R2 so that it can reach this destination. 


Q433. Which two tasks are required for configuring SNMP to send traps on a Cisco IOS device? (Choose two.) 

A. Create access controls for an SNMP community. 

B. Configure SNMP notifications. 

C. Configure the SNMP agent. 

D. Configure SNMP status monitoring and troubleshooting. 

E. Configure SNMP server group names. 

F. Configure the SNMP server engine ID. 

Answer: A,B 

Explanation: 

The best current practices recommend applying Access Control Lists (ACLs) to community strings and ensuring that the requests community strings are not identical to notifications community strings. Access lists provide further protection when used in combination with other protective measures. This example sets up ACL to community string: 

access-list 1 permit 1.1.1.1 snmp-server community string1 ro 1 

. SNMP Notifications 

A key feature of SNMP is the ability to generate notifications from an SNMP agent. These notifications do not require that requests be sent from the SNMP manager. Unsolicited (asynchronous) notifications can be generated as traps or inform requests. Traps are messages alerting the SNMP manager to a condition on the network. Inform requests (informs) are traps that include a request for confirmation of receipt from the SNMP manager. Notifications can indicate improper user authentication, restarts, the closing of a connection, loss of connection to a neighbor router, or other significant events. 

Reference: http://www.cisco.com/c/en/us/td/docs/ios/12_2/configfun/configuration/guide/ffun_c/fcf014.h tml#wp1007320 


Q434. Refer to the exhibit. 

If router R1 is functioning as a DHCPv6 server and you enter the command show ipv6 dhcp binding, which two options are pieces of information in the output? (Choose two.) 

A. The IA PD 

B. The DUID 

C. The prefix pool 

D. The DNS server 

E. The Rapid-Commit setting 

Answer: A,B 

Explanation: 

In the following example, the show ipv6 dhcp binding command shows information about two clients, including their DUIDs, IAPDs, prefixes, and preferred and valid lifetimes: 

Router# show ipv6 dhcp binding 

Client: FE80::202:FCFF:FEA5:DC39 (GigabitEthernet2/1/0) 

DUID. 000300010002FCA5DC1C 

IA PD. IA ID 0x00040001, T1 0, T2 0 

Prefix: 3FFE:C00:C18:11::/68 

preferred lifetime 180, valid lifetime 12345 

expires at Nov 08 2002 02:24 PM (12320 seconds) 

Client: FE80::202:FCFF:FEA5:C039 (GigabitEthernet2/1/0) 

DUID. 000300010002FCA5C01C 

IA PD. IA ID 0x00040001, T1 0, T2 0 

Prefix: 3FFE:C00:C18:1::/72 

preferred lifetime 240, valid lifetime 54321 

expires at Nov 09 2002 02:02 AM (54246 seconds) 

Prefix: 3FFE:C00:C18:2::/72 

preferred lifetime 300, valid lifetime 54333 

expires at Nov 09 2002 02:03 AM (54258 seconds) 

Prefix: 3FFE:C00:C18:3::/72 

preferred lifetime 280, valid lifetime 51111 

Reference: http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/ipaddr_dhcp/configuration/xe-3s/dhcp-xe-3s-book/ip6-dhcp-prefix-xe.html 


Q435. What is the destination multicast MAC address for BPDUs on the native VLAN, for a switch that is running 802.1D? 

A. 0185. C400. 0000 

B. 0100.0CCC.CCCC 

C. 0100.0CCC.CCCD 

D. 0180.C200.0000 

Answer:

Explanation: 

If the native vlan is 1: 

A STP BPDU for VLAN 1 will be sent untagged to MAC 0180.c200.0000 (this is the 

common spanning tree) 

A PVST+ BPDU for VLAN 1 will be sent untagged to MAC 0100.0ccc.cccd 

A PVST+ BPDU for all other vlans will be sent with a 802.1Q tag to MAC 0100.0ccc.cccd 

(with a PVID = to the VLAN) 

If the native vlan is not 1: 

A STP BPDU for VLAN 1 will be sent untagged (on the native vlan) to MAC 

0180.c200.0000 (this is the common spanning tree) 

A PVST+ BPDU for VLAN1 will be sent with a 802.1Q tag to MAC 0100.0ccc.cccd (with a PVID=1) 

A PVST+ BPDU for the native vlan will be sent untagged to MAC 0100.0ccc.cccd (with a PVID=native vlan) 

A PVST+ BPDU for all other vlans will be sent with a 802.1Q tag to MAC 0100.0ccc.cccd (with a PVID = to the VLAN) 


Renovate 400-101 free practice test:

Q436. Refer to the exhibit. 

Router R2 is learning the 192.168.1.0/24 network from R1 via EIGRP and eBGP. R2 then redistributes EIGRP into OSPF as metric-type 2 with default metrics. Which metric of the route in the R3 routing table? 

A. 20 

B. 30 

C. 110 

D. The route is not present in the R3 routing table. 

Answer:


Q437. Which two protocols does the Management Plane Protection feature support? (Choose two.) 

A. ARP 

B. HTTPS 

C. TFTP 

D. OSPF 

Answer: B,C 


Q438. Refer to the exhibit. 

Why is network 172.16.1.0/24 not installed in the routing table? 

A. There is no ARP entry for 192.168.1.1. 

B. The router cannot ping 192.168.1.1. 

C. The neighbor 192.168.1.1 just timed out and BGP will flush this prefix the next time that the BGP scanner runs. 

D. There is no route for 192.168.1.1 in the routing table. 

Answer:

Explanation: 

Here we see that the next hop IP address to reach the 172.16.1.0 network advertised by the BGP peer is 192.168.1.1. However, the 192.168.1.1 IP is not in the routing table of R3 so it adds the route to the BGP table but marks it as inaccessible, as shown. 


Q439. Which three parameters must match to establish OSPF neighbor adjacency? (Choose three.) 

A. the process ID 

B. the hello interval 

C. the subnet mask 

D. authentication 

E. the router ID 

F. the OSPF interface priority 

Answer: B,C,D 


Q440. Which statement about the OSPF Loop-Free Alternate feature is true? 

A. It is supported on routers that are configured with virtual links. 

B. It is supported in VRF OSPF instances. 

C. It is supported when a traffic engineering tunnel interface is protected. 

D. It is supported when traffic can be redirected to a primary neighbor. 

Answer:

Explanation: 

Restrictions for OSPF IPv4 Remote Loop-Free Alternate IP Fast Reroute 

. The OSPF IPv4 Remote Loop-Free Alternate IP Fast Reroute feature is not supported on devices that are virtual links headends. 

. The feature is supported only in global VPN routing and forwarding (VRF) OSPF 

Instances. 

. The only supported tunneling method is MPLS. 

. You cannot configure a traffic engineering (TE) tunnel interface as a protected interface. Use the MPLS Traffic Engineering—Fast Reroute Link and Node Protection feature to protect these tunnels. For more information, see the “MPLS Traffic Engineering—Fast Reroute Link and Node Protection” section in the Multiprotocol Label Switching Configuration Guide. 

. You can configure a TE tunnel interface in a repair path, but OSPF will not verify the tunnel’s placement; you must ensure that it is not crossing the physical interface that it is intended to protect. 

. Not all routes can have repair paths. Multipath primary routes might have repair paths for all, some, or no primary paths, depending on the network topology, the connectivity of the computing router, and the attributes required of repair paths. 

. Devices that can be selected as tunnel termination points must have a /32 address advertised in the area in which remote LFA is enabled. This address will be used as a tunnel termination IP. If the device does not advertise a /32 address, it may not be used for remote LFA tunnel termination. 

. All devices in the network that can be selected as tunnel termination points must be configured to accept targeted LDP sessions using the mpls ldp discovery targeted-hello accept command. 

Reference: http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/iproute_ospf/configuration/xe-3s/iro-xe-3s-book/iro-ipfrr-lfa.html