Which three features are benefits of using GRE tunnels in conjunction with IPsec for building siteto-site VPNs? (Choose three.)
A.
allows dynamic routing over the tunnel
B.
supports multi-protocol (non-IP) traffic over the tunnel
C.
reduces IPsec headers overhead since tunnel mode is used
D.
simplifies the ACL used in the crypto map
E.
uses Virtual Tunnel Interface (VTI) to simplify the IPsec VPN configuration
Here are some links to websites that we link to mainly because we think they may be worth visiting.
0
0
I’m currently studying for 300-135 I do enjoy studying for exams. It’s hard, but it’s an excellent forcing function. I learn bits and pieces here and there now and then about this and that, but when I have an exam schedule for a set date, I have to study! And not only do I put in more hours, but I follow a more systematic approach. I’m going to share 300-135 braindumps in case you too are studying and this method works for you.
QUESTION 21
The following commands are issued on a Cisco Router:
Router(configuration)#access-list 199 permit tcp host 10.1.1.1 host 172.16.1.1
Router(configuration)#access-list 199 permit tcp host 172.16.1.1 host 10.1.1.1
Router(configuration)#exit
Router#debug ip packet 199
What will the debug output on the console show?
A. All IP packets passing through the router
B. Only IP packets with the source address of 10.1.1.1
C. All IP packets from 10.1.1.1 to 172.16.1.1
D. All IP Packets between 10.1.1.1 and 172.16.1.1
Answer: D
Explanation:
In this example, the “debug ip packet” command is tied to access list 199, specifying which IP packets should be debugged. Access list 199 contains two lines, one going from the host with IP address 10.1.1.1 to 172.16.1.1 and the other specifying all TCP packets from host 172.16.1.1 to 10.1.1.1.
QUESTION 22
What level of logging is enabled on a Router where the following logs are seen?
%LINK-3-UPDOWN: Interface FastEthernet0/1, changed state to up
%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/1, changed state to up
A. alerts
B. critical
C. errors
D. notifications
Answer: D
Explanation:
Cisco routers, switches, PIX and ASA firewalls prioritize log messages into 8 levels (0-7), as shown below:
LevelLevel NameDescription
0 Emergencies System is unusable
1 Alerts Immediate action needed
2 Critical Critical conditions
3 Errors Error conditions
4 Warnings Warning conditions
5 Notifications Informational messages
6 Informational Normal but significant conditions
7 Debugging Debugging messages
When you enable logging for a specific level, all logs of that severity and greater (numerically less) will be logged. In this case we can see that logging level of 3 (as seen by the 3 in “LINK-3-UPDOWN”) and level 5 (as seen by the 5 in “LINEPROTO-5-UPDOWN”) are shown, which means that logging level 5 must have been configured. As shown by the table, logging level 5 is Notifications.
QUESTION 23
You have the followings commands on your Cisco Router:
ip ftp username admin
ip ftp password backup
You have been asked to switch from FTP to HTTP. Which two commands will you use to replace the existing commands?
A. ip http username admin
B. ip http client username admin
C. ip http password backup
D. ip http client password backup
E. ip http server username admin
F. ip http server password backup
Answer: BD
QUESTION 24
You have 2 NTP servers in your network – 10.1.1.1 and 10.1.1.2.
You want to configure a Cisco router to use 10.1.1.2 as its NTP server before falling back to
10.1.1.1. Which commands will you use to configure the router?
A. ntp server 10.1.1.1
ntp server 10.1.1.2
B. ntp server 10.1.1.1
ntp server 10.1.1.2 primary
C. ntp server 10.1.1.1
ntp server 10.1.1.2 prefer
D. ntp server 10.1.1.1 fallback
ntp server 10.1.1.2
Answer: C
Explanation:
A router can be configured to prefer an NTP source over another. A preferred server’s responses are discarded only if they vary dramatically from the other time sources. Otherwise, the preferred server is used for synchronization without consideration of the other time sources. Preferred servers are usually specified when they are known to be extremely accurate. To specify a preferred server, use the prefer keyword appended to the ntp server command. The following example tells the router to prefer TimeServerOne over TimeServerTwo:
Router#config terminal
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#ntp server TimeServerOne prefer
Router(config)#ntp server TimeServerTwo
Router(config)#^Z
QUESTION 25
The following command is issued on a Cisco Router:
Router(configuration)#logging console warnings
Which alerts will be seen on the console?
A. Warnings only
B. debugging, informational, notifications, warnings
C. warnings, errors, critical, alerts, emergencies
D. notifications, warnings, errors
E. warnings, errors, critical, alerts
Answer: C
Explanation:
Cisco routers prioritize log messages into 8 levels (0-7), as shown below:
LevelLevel NameDescription
0 Emergencies System is unusable
1 Alerts Immediate action needed
2 Critical Critical conditions
3 Errors Error conditions
4 Warnings Warning conditions
5 Notifications Informational messages
6 Informational Normal but significant conditions
7 Debugging Debugging messages
When you enable logging for a specific level, all logs of that severity and greater (numerically less) will be logged. In this case, when you enable console logging of warning messages (level 4), it will log levels 0-4, making the correct answer warnings, errors, critical, alerts, and emergencies.
QUESTION 26
Which two of the following options are categories of Network Maintenance tasks?
A. Firefighting
B. Interrupt-driven
C. Policy-based
D. Structured
E. Foundational
Answer: BD
Explanation:
Proactive Versus Reactive Network Maintenance:
Network maintenance tasks can be categorized as one of the following:
Structured tasks: Performed as a predefined plan.
Interrupt-driven tasks: Involve resolving issues as they are reported.
QUESTION 27
A customer network engineer has made configuration changes that have resulted in some loss of connectivity. You have been called in to evaluate a switch network and suggest resolutions to the problems.
PC2 in VLAN 200 is unable to ping the gateway address 172.16.200.1; identify the issue.
A. VTP domain name mismatch on SW4
B. VLAN 200 not configured on SW1
C. VLAN 200 not configured on SW2
D. VLAN 200 not configured on SW4
Answer: D
Explanation:
By looking at the configuration for SW4, we see that it is missing VLAN 200, and the “switchport access vlan 200” command is missing under interface eth 0/0:
QUESTION 28
A customer network engineer has made configuration changes that have resulted in some loss of connectivity. You have been called in to evaluate a switch network and suggest resolutions to the problems.
Which of statement is true regarding STP issue identified with switches in the given topology?
A. Loopguard configured on the New_Switch places the ports in loop inconsistent state
B. Rootguard configured on SW1 places the ports in root inconsistent state
C. Bpduguard configured on the New_Switch places the access ports in error-disable
D. Rootguard configured on SW2 places the ports in root inconsistent state
Answer: A
Explanation:
On the new switch, we see that loopguard has been configured with the “spanning-tree guard loop” command.
The loop guard feature makes additional checks. If BPDUs are not received on a non-designated port, and loop guard is enabled, that port is moved into the STP loop- inconsistent blocking state, instead of the listening / learning / forwarding state. Without the loop guard feature, the port assumes the designated port role. The port moves to the STP forwarding state and creates a loop.
QUESTION 29
A customer network engineer has made configuration changes that have resulted in some loss of connectivity. You have been called in to evaluate a switch network and suggest resolutions to the problems.
You have configured PVST+ load balancing between SW1 and the New_Switch in such a way that both the links E2/2 and E2/3 are utilized for traffic flow, which component of the configuration is preventing PVST+ load balancing between SW1 and SW2 links
A. Port priority configuration on SW1
B. Port priority configuration on the New_Switch
C. Path cost configuration on SW1
D. Path cost configuration on the New_Switch
Answer: D
Explanation:
Here is the configuration found on the New_Switch:
This causes the port cost for link eth 1/3 to increase the path cost to 250 for all VLANs, making that link less preferred so that only eth 1/2 will be used.
QUESTION 30
A customer network engineer has made configuration changes that have resulted in some loss of connectivity. You have been called in to evaluate a switch network and suggest resolutions to the problems.
Refer to the topology. SW1 Switch Management IP address is not pingable from SW4. What could be the issue?
A. Management VLAN not allowed in the trunk links between SW1 and SW4
B. Management VLAN not allowed in the trunk links between SW1 and SW2
C. Management VLAN not allowed in the trunk link between SW2 and SW4
D. Management VLAN ip address on SW4 is configured in wrong subnet
E. Management VLAN interface is shutdown on SW4
Answer: D
More 300-135 real questions are on my Google Drive: https://drive.google.com/drive/u/0/folders/0B3Syig5i8gpDZmFQVlZDZnpLejA
0
0
Sorry, the Google Drive address is useless, please try this new one: https://drive.google.com/open?id=0B3Syig5i8gpDZmFQVlZDZnpLejA
0
0
I will always update the new 300-135 exam questions on my blog: https://www.freebraindump.com/?s=300-135
Welcome to follow me!
0
0