Академический Документы
Профессиональный Документы
Культура Документы
Refer to the exhibit. If the firewall module has been correctly configured using best practices for
network security, which statement is true about the security design for the network?
2
What are three ways to ensure that an unwanted user does not connect to a wireless network and
view the data? (Choose three.)
3
In a well-designed, high-availability network, which device significantly affects the most users if a
failure occurs?
4
Which Cisco IOS function can be configured at the distribution layer to filter unwanted traffic and
provide traffic management?
- virus protection
- spyware protection
- VPNs
- access control lists
5
Refer to the exhibit. Which two devices are part of the access design layer? (Choose two.)
- Edge2
- ISP4
- BR4
- FC-AP
- FC-CPE-1
- FC-ASW-2
6
A network designer is creating a new network. The design must offer enough redundancy to provide
protection against a single link or device failure, yet must not be too complex or expensive to
implement. What topology would fill these needs?
- star
- full mesh
- partial mesh
- extended star
- hub and spoke
7
What are two mechanisms that provide redundancy for server farm implementations? (Choose two.)
8
Centralizing servers in a data center server farm can provide which benefit over a distributed server
environment?
9
The network administrator is designing network connectivity for a home teleworker. The teleworker
needs secure access to download and upload documents on the network file server. What network
connection would be most cost efficient while still meeting the security and connectivity needs of
this teleworker?
10
Which two statements are true regarding network convergence? (Choose two.)
- In a large network, using the EIGRP or OSPF routing protocols rather than RIPv2
may improve convergence time.
- Using STP at the core layer improves convergence time by allowing the
use of redundant links between devices.
- Route summarization improves convergence time by minimizing the size of the
routing table.
- A full mesh topology improves convergence time by allowing load
balancing.
- ACLs can be configured to improve convergence time.
11
Which two items in a physical WLAN design can be identified through a site survey? (Choose two.)
12
Refer to the exhibit.Which two statements correctly describe the benefits of the network access layer
design that is shown?(Choose two)
- If host A sends a broadcast message, only hosts in VLAN10 receive the broadcast
frame.
- If host A attempts to transmit data at the same time as another host,
only hosts in VLAN10 are affected by the collision.
- Segmenting all voice traffic on a separate VLAN facilitates the implementation of
QoS.
- VLANs improve network performance by facilitating the use of route
summarization.
- VLANs at the access layer help guarantee network availability by
facilitating load balancing.
13
Refer to exibit. What happens when Host 1 attempts to send data?
14
What are two best practices in wireless LAN design to ensure secure wireless access to the
corporate network? (Choose two.)
- Configure APs for broadcast SSID.
- Place APs as far apart as possible.
- Use a separate WLAN for employees.
- Configure WPA.
- Use wireless routers in all IDFs.
15
Refer to the exhibit. The network administrator creates a standard access control list to prohibit
traffic from the 192.168.1.0/24 network from reaching the 192.168.2.0/24 network while still permitting
Internet access for all networks. On which router interface and in which direction should it be
applied?
Refer to the exhibit. The server broadcasts an ARP request for the MAC address of its default
gateway. If STP is not enabled, what is the result of this ARP request?
+ Router_1 contains the broadcast and replies with the MAC address of
the next-hop router.
+ Switch_A replies with the MAC address of the Router_1 E0 interface.
+ Switch_A and Switch_B continuously flood the message onto the network.
+ Switch_B forwards the broadcast request and replies with the Router_1
address.
17
What kind of ACL inspects outbound UDP, TCP, and ICMP traffic and allows inbound access only to
traffic that belongs to these established sessions?
- dynamic ACL
- time-based ACL
- reflexive ACL
- lock and key ACL
18
Which statement is true about a DMZ in a traditional network firewall design?
19
Which two considerations are valid when designing access layer security? (Choose two.)
20
The ability to connect securely to a private network over a public network is provided by which WAN
technology?
- DSL
- Frame Relay
- ISDN
- PSTN
- VPN
21
What is true about implementing a centralized server farm topology?
22
What address can be used to summarize only networks 172.16.0.0/24, 172.16.1.0/24, 172.16.2.0/24,
and 172.16.3.0/24?
- 172.16.0.0/21
- 172.16.0.0/22
- 172.16.0.0 255.255.255.248
- 172.16.0.0 255.255.254.0
23.
Refer to the exhibit. What effect does the ACL shown have on network traffic, assuming that it is
correctly applied to the interface?
24
Which three statements describe the functions of the Cisco hierarchical network design model?
(Choose three.)
- The access layer provides a means of connecting end devices to the network.
- The distribution layer distributes network traffic directly to end
users.
- The core layer usually employs a star topology.
25
Which three functions are performed at the distribution layer of the hierarchical network model?
(Choose three.)