awsnetsec

4.3

awsNetSec.psm1

                                function Start-Tray {

    [CmdletBinding()]

    param(

    )

    Begin {

        $CSV_Array = @'

"Question","Answer"

"Which two advantages does scheduled maintenance offer over interrupt-driven events? (Choose two.)","reduced network downtime

predictable lead times for change requests"

"RSPAN depends on which type of VLAN?","RSPAN VLAN"

"Refer to the exhibit. What information can be deduced from the provided debug aaa accountingcommand output?","The user successfully gained access to the router EXEC shell"

"Refer to the exhibit. A network administrator issues the show interfaces s0/0/0command on a router to determine the cause for a recent decrease in device performance. Based on theoutput shown, what is a possible cause of the observed performance issues?","high CPU usage on the router"

"In which three situations will traffic be handed off (punted) to the CPU for processing? (Choose three.)","any traffic that is going through a GRE tunnel

any traffic that is destined for any of the switch IP addresses

any multicast and broadcast traffic that is coming from the Spanning Tree Protocol (STP) or routing protocols"

"An administrator has just implemented two-way routeredistribution between an OSPF and EIGRP domain. However, network performance between domains quickly degraded and aninvestigation revealed routing loops. What action could be used to solve this issue?","Filter the routes being redistributed between the protocols"

"What content can be found in the show ip eigrp topology network maskoutput?","hop count"

"Refer to the exhibit. BPDU guard and PortFast have been configured on all edge ports on the access switches. A junior network administrator tested a new switch in the lab and verified that the bridge ID is 32887. What would happen when the administrator plugs this switch into port Fa0/20 on ASW_1 in an attemptto extend the LAN?","Port Fa0/20 will be shut down"

"What is a characteristic of network maintenance?","Maintaining network documentation is an important element of network maintenance"

"Refer to the exhibit. A network administrator is troubleshooting a connectivity issue between LAN clients on routers R1 and R3. Connectivity tests from R2 to the R1 and R3 LAN segments are successful. The administrator issues the debug ip icmpcommand for R1 and confirms that a routing issue exists. Based on the information that is presented in the exhibit, which configuration command would correct the problem?","R1(config)# ip route 172.16.6.0 255.255.255.0 172.16.7.10"

"What is the final task in a structured troubleshooting process?","documenting the changes"

"Syslogs reveal malicious activity originating from an internal host that is located at IP address 10.10.10.251. From the local gateway router, the administrator successfully pings the host IP address and populates the ARP cache of the router. The administrator then issues the show ip arp 10.10.10.251command and discovers that the MAC address of the host is 0011.9254.e2a0. What could the administrator do next to discover the physical location of the malicious host?","Issue the show mac address-table address 0011.9254.e2a0command on various switches and follow the path tothe host"

"Which two pieces of information are displayed by the debug ip bgpcommand? (Choose two.)","BGP related events

phases of BGP peering relationships"

"Refer to the exhibit. What could be concluded aboutthe TACACS+ failure based on the exhibited commandoutput from debug tacacsand debug aaa authentication?","The TACACS+ server key of the router does not matchthat of the TACACS+ server"

"Refer to the exhibit. A network administrator issued the debug dhcp detailcommand to verify the operations of DHCP on routerR2. Which statement is correct about the active DHCP processes on R2?","The DHCP server sends a DHCPACK message with the full set of configuration parameters to the client"

"Which two benefits do the use of templates provide in the troubleshooting process? (Choose two.)","provide an effective method of maintaining network documentation

ensure that all individuals carry out similar tasks in a consistent manner"

"Which VTP mode is configured on a switch in the implementation of private VLANs?","transparent"

"A network administrator notices frames are receivedon a different port than expected on a switch. What are two plausible causes of the problem? (Choose two.)","duplicate MAC addresses

a Spanning Tree Protocol related issue"

"What are the three private VLAN (PVLAN) port types? (Choose three.)","community

isolated

promiscuous"

"Refer to the exhibit. Based on the information thatis provided, which two NetFlow statements are correct? (Choose two.)","All NetFlow packets sent from R1 to the traffic collector will be sourced from IP address 1.1.1.1

NetFlow will track all ingress traffic for interfaces Fa0/0 and Fa0/1"

"Refer to the exhibit. A network administrator is troubleshooting a NAT translation issue on router R2.The IP addresses of hosts on the R2 LAN are not being translated by R2. Based on theinformation in the exhibit, what is the issue?","The R2 LAN is not configured as an inside interface"

"Refer to the exhibit. An administrator has configured VRRP on routers R1 and R2. However, no output isgenerated using the show vrrp briefcommand on router R1. The administrator then verifies the VRRP interface and key chain configurations. Based on the output in the exhibit. what is the cause of the problem?","Interface FastEthernet 0/0 on router R1 requires the vrrp 1 ip 10.1.1.254command to be issued"

"Refer to the exhibit. A network administrator is investigating a possible network congestion problem. Which information is indicative of network congestion?","The Q Cnt field should be at zero"

"Which DHCP message is sent by the server to the client and contains the DHCP configuration parameters?","DHCP ACK"

"Which statement is true based on the show ip ospf neighborcommand output that is shown in the exhibit?","RTB did not see its router ID in the hello packet that was received from RTA"

"Refer to the exhibit. A network administrator is troubleshooting a connectivity issue between R1 and R2. The routers are failing to create a neighbor relationship and no OSPF HELLO packets are traversing the Frame Relay link. Based on the output, what does the administrator need to do on R1 to correct the issue?","Map the DLCI to the link local address of R2"

"Refer to the exhibit. You have been asked to troubleshoot a connectivity issue between R3 and R1. Fromthe partial output of theshow running-configcommand on both routers, what configuration changeis required?","The tunnel destination for Tunnel0 on R3 should be the IP address of Loopback0 on R1"

"Which type of spanning tree failure is the most disruptive?","Ports that should be blocked start forwarding"

"Refer to the exhibit. Wireless network users are complaining aboutperformance issues, especially when using Voice over WLAN. Based on the output that is shown, what could be the problem?","SW1 is resetting the DSCP values supplied by the Lightweight AP"

"Which backup mechanism presents the highest security risk?","TFTP"

"An administrator notices that CDP is disabled on a port that connects to an IP phone. What effect willthis have?","The phone will not be able to discover auxiliary VLAN information, QoS settings, or automatically negotiate power settings"

"Which two conditions could cause two routers to have trouble establishing a neighbor relationship in an OSPF network? (Choose two.)","Hello packets are not sent from either neighbor

Slow network connections cause OSPF advertisements to time out"

"Refer to the exhibit. A port channel link between abranch site and the main site experiences an outage after a hardware upgrade at the branch site. The network administrator at the main site checks the log and sees a "%SPANTREE-2-CHNL_MISCFG" message. What is a likely cause of this message?","The main site has been configured to bundle links into an EtherChannel and the branch site has not"

"Refer to the exhibit. Based on the output of the debug ip natcommand in the exhibit, which two statements are true? (Choose two.)","Packets that are destined for 172.31.2.132 from source 192.168.1.95 are translated into 172.31.233.209

Entries that are indicated with NAT* have been translated via the fast path"

"When configuring private VLANs, how many isolated VLANs can be mapped to a primary VLAN?","1"

"Which switch error is indicative of a duplex mismatch on the full-duplex side of a link?","FCS-Err"

"Refer to the exhibit. Users are complaining that they are unable to access the web server that is located at 172.16.1.101. Based on the partial syslog output that is exhibited, what is causing this problem?","A Java applet reset option is configured on the zone-based policy firewall"

"Which action occurs immediately following POST in the boot process of a Cisco IP phone?","The IP phone uses CDP to learn the voice VLAN"

"What occurs when the no service password-recoverycommand is entered on the router?","The original configuration and passwords cannot be retrieved"

"Which anti-spoofing mechanism will filter packets that enter a multilayer switch through an interface that does not provide the best path back to the source of the packet?","Unicast Reverse Path Forwarding"

"Which DSCP value should be applied to voice traffic?","EF"

"Which command would a network administrator use to verify which VLANs are allowed on a trunk?","show interfaces trunk"

"Refer to the exhibit. An administrator is troubleshooting an HSRP implementation on routers R1 and R2.Based on the output in the exhibit, what is the probable cause of the problem?","Routers R1 and R2 have different MD5 authentication strings configured"

"What are two problems that can occur when routes are redistributed in two directions? (Choose two.)","suboptimal routing

routing loops"

"Refer to the exhibit. Which two FTP-related statements are true? (Choose two.)","The configuration was copied using a method that isless secure than HTTPS

The ip ftp usernameand ip ftp passwordcommands were issued on router R1"

"Refer to the exhibit. Users are complaining that they are unable to connect to resources outside of their corporate network during peak hours. What action should the administrator take tocorrect this problem?","Increase the size of the NAT pool to provide more IP addresses for translation"

"Refer to the exhibit. A network administrator is trying to secure the remote administration of the router by enabling the use of the SSH protocol. Which changes should be made on the partial configuration as shown in the graphic?","The transport input telnet command should be changed to transport input ssh"

"Users at a branch office are complaining that they are unable to connect to resources at the head office. The network administrator issues the show ip routecommand and verifies that the correct next hop IP address and egress interface are listed. What should the administrator do next?","Verify end-to-end connectivity via the use of the pingcommand"

"Refer to the exhibit. In a converged spanning tree,how many blocked ports will there be in VLAN 1 forthe pictured topology?","2"

"What is a characteristic of network maintenance toolkits?","may be both GUI and CLI"

"What can be inferred from the fact that a switch isreceiving BPDUs on a port but not transmitting BPDUs?","The port is a root port"

"A newly configured switch is connected to an existing network. The instant the trunk link is brought up to the rest of the network, the entire network goes down. What could have caused this problem?","The configuration revision number of the inserted switch was higher than the configuration revision ofthe VTP domain"

"Refer to the exhibit. A network engineer is investigating a reported issue of Computer1 not receiving its IP configuration from the DHCP server. Computer2 is receiving its configuration from the DHCP server. What is a plausible reason for this issue?","The DHCP server does not have a DHCP pool for 192.168.0.0 /24 network"

"Refer to the exhibit. Based on the output that is generated, which two statements are true? (Choose two.)","The archive path is the only mandatory archive parameter that must be configured

Every time the running configuration file is saved to NVRAM, it will also be automatically archived"

"What are two limitations of using buffered logging?(Choose two.)","Log messages are removed when a device is powered down

Oldest messages are overwritten when allocated memory is exceeded"

"Refer to the exhibit. You have been asked to correct the configuration on R1 so that the Tunnel 0 interface does not flap and R3 can be consistently reached from R1. What command would you issue on R1 to accomplish this?","ip route 10.3.3.3 255.255.255.255 Serial0/0/0"

"What type of BGP message precedes the successful formation of a BGP peering session?","open"

"Refer to the exhibit. A network administrator is unable to have two BGP peers exchange routing information. Which solution would correct this problem?","Change the neighbor peer IP addresses on R1 and R2 to the loopback interface IP address of the other router

Remove the neighbor x.x.x.x updatesource command from the configurations on R1 and R2.

Router R1 should be configured with the neighbor 2.2.2.2 remoteas 300 command."

"Refer to the exhibit. Based on the partial configuration that is shown, which traffic will be inspected by the zone-based policy firewall?","Telnet, SMTP, and HTTP traffic that is destined forthe public network"

"Refer to the exhibit. Users are complaining that they are receiving duplicate address error messages when they start their machines. What should the administrator do to correct this problem?","Use the ip dhcp excluded-addresscommand to exclude any statically assigned addresses from the DHCP pool"

"What is a potential drawback to selecting the bottomup general troubleshooting procedure?

requires checking every device and interface"

"After a network change that occurred during a scheduled maintenance window, users were complaining about not being able to access a local file server. Upon investigation, the administrator determined that the problem was with the recently entered routing configurations. Because of company policy, the administrator is not allowed to correct the routing configuration outside of a scheduled maintenance window. Instead, the administrator moved the file server to an accessible subnet. Which statement describes what the administrator did?","The administrator determined a workaround for the problem."

"What are two limitations of an ad hoc troubleshooting approach? (Choose two.)","inefficient use of time and resources

difficult to transfer the job to someone else"

"The help desk receives several calls on Monday morning stating that users cannot connect to a local print server that was working on Friday. Which statement about the problem would be correct?","The inability to connect to the print server is a symptom of a problem."

"Which condition is a symptom of a connectivity issue on a router that provides access to the Internet?","An interface status is down."

"What is a symptom of an incorrectly applied network command when issued under the routing process?","a timeout message when attempting to ping a device on another network"

"Users at a remote site have reported that it is no longer possible to access the Internet. A network administrator issued the show interface S0/0/0 command to check the status of the interface. Which troubleshooting approach would fit this situation?","bottomup"

"A network engineer compares the routing table of a working router with that of a router that is experiencing connectivity issues. Which troubleshooting approach best describes this scenario?","perform-comparison approach"

"A network engineer initially uses the ping command to help troubleshoot a connection problem. Which troubleshooting approach best describes this scenario?","divide-and-conquer approach"

"What is common between Layer 3 switches and routers?","the commands for troubleshooting the control plane"

"What is an important element of troubleshooting, regardless of the method used?","following a structured and systematic process"

"Network users have complained that it is no longer possible to access an important webbased application. Using the ping command, an administrator verifies that there is connectivity between one of the workstations and the server. The administrator has also determined that BGP connectivity has remained established. At which layer of the OSI model is the problem most likely to be found?","Layer 7"

"The help desk receives several calls on Monday morning stating that users cannot connect to a local print server that was working on Friday. Which statement about the problem would be correct?","The inability to connect to the print server is a symptom of a problem."

"Which condition is a symptom of a connectivity issue on a router that provides access to the Internet?","An interface status is down."

"What is a symptom of an incorrectly applied network command when issued under the routing process?","a timeout message when attempting to ping a device on another network"

"What is an important element of troubleshooting, regardless of the method used?","following a structured and systematic process"

"A user creates a trouble ticket indicating that the Internet is inaccessible. The network administrator receives the ticket and determines that this user is the only one having problems. A ping command issued from the administrative PC to the user PC is successful. What should the administrator do next?","Escalate the issue to the desktop support group."

"What is a benefit of change control during the processes of regular network maintenance?","reduction in the frequency and duration of unplanned outages"

"What is the first step of a structured troubleshooting process?","Define the problem."

"Refer to the exhibit. What principles are depicted in the exhibit?","the main subprocesses of structured troubleshooting"

"Which element forms the basis of a good problem description?","description of observed symptoms"

"What is a situation where escalation of an issue is inadvisable?","Escalation will slow the procedure."

"During the troubleshooting of an issue, it is determined that the most probable cause of the issue is not within the administrator's area of responsibility. What is the next step in the problem solving process?","Escalate."

"After a proposed solution has been implemented, the network administrator realizes that new problems have been introduced by the changes. What is the next step in the troubleshooting process?","Execute the rollback plan."

"To correct an issue that was discovered a few days earlier, an administrator makes a change during a regularly scheduled maintenance window. After making the change, the administrator discovers that a new problem has occurred. What should the administrator do next?","Rollback the change and resume the troubleshooting process."

"What are two situations where escalation of a case is recommended? (Choose two.)","when shift work requires handing off the problem

when insufficient knowledge and skills exist"

"In which structured troubleshooting process phase would a network engineer ask questions such as 'When did it last work?' or 'Has it ever worked?'","define the problem phase"

"In which phase of the structured troubleshooting process should a network administrator clearly communicate to the affected network users what is going to be done and why it is being done?","the proposal and testing of a hypothesis"

"What is a benefit of change control during the processes of regular network maintenance?","reduction in the frequency and duration of unplanned outages"

"Which three pieces of information should be gathered during regular maintenance in order to create a baseline to support the troubleshooting processes? (Choose three.)","network traffic profiles via NetFlow or NBAR

network performance characteristics via IP SLA

performance statistics via SNMP"

"Which three pieces of information should be gathered during regular maintenance in order to create a baseline to support the troubleshooting processes? (Choose three.)","performance statistics via SNMP

network performance characteristics

network traffic flow characteristics"

"What is the goal of change control In network maintenance and troubleshooting?","to increase network uptime"

"Which two components are normally considered part of change control? (Choose two.)","the authorization that is required to make changes

the time when changes can be made"

"What are two facts regarding the information that is collected for baseline creation? (Choose two.)","It can be used for capacity planning.

It can be collected using tools such as NBAR, NetFlow, and SNMP."

"What type of information can be gathered by using SNMP during the process of collecting baseline information?","basic performance statistics about the Interface load for critical network links

show"

"Which three IOS features can be used to keep the network documentation accurate? (Choose three.)","Embedded Event Manager

rollback feature

configuration archive"

"Which Cisco IOS baseline performance tool can be used to measure delay and jitter across the network infrastructure?","IP Service Level Agreement (IP SLA)"

"A network administrator executes the show processes cpu command on a production router and notices that the average CPU load over the past 5 seconds was 97% and over the last one minute was around 39%. What should the administrator do next?","Compare the result to the baseline for an accurate assessment."

"Which two procedures can be implemented to ensure that current backups of all device configurations are maintained? (Choose two.)","Implement a system to create automatic configuration backups.

Log all configuration change events to a syslog server."

"Which IOS feature can be leveraged to maintain current backups of all device configurations?","Cisco Embedded Event Manager"

"Which three types of data are useful for creating a baseline? (Choose three.)","basic performance statistics like the interface load for critical network links and the CPU load and memory usage of routers and switches

Remote Monitoring (RMON), Network Based Application Recognition (NBAR), and NetFlow statistics

network performance characteristics"

"What is a purpose of a disaster recovery plan?","to minimize downtime in the event of a failed device"

"Refer to the exhibit. A network administrator is troubleshooting a routing related problem. Which two facts can be concluded based on the generated output of the show logging command? (Choose two.)","Interface Serial 0/1 is flapping.

Router R1 is unable to establish a stable BGP peering relationship with the neighbor at IP address 192.168.2.2."

"What are two situations where escalation of a case is recommended? (Choose two.)","when insufficient knowledge and skills exist

when shift work requires handing off the problem"

"Refer to the exhibit. A network administrator used an extended ping to verify connectivity to a remote location. The ping indicated a 50 percent packet loss. What could be the cause of the problem?","Load balancing is occurring with packet loss on one path."

"Refer to the exhibit. A network administrator uses ping commands to verify connectivity to the remote 172.16.1.0/24 network . On the basis of the exhibited output, what could be a possible cause for the failure of the second ping?","R2 does not have a return path to the source address that is used in the second ping."

"Refer to the exhibit. What conclusion can be drawn from the exhibited output?","An interface on a device along the path cannot accommodate the larger packets."

"Refer to the exhibit. An administrator issues the show interfaces serial2/0 command. What are two possible causes of an increase in the number of input errors? (Choose two.)","There could be a problem with the cabling.

The router hardware could be defective."

"Which two symptoms would the show processes cpu command be helpful in troubleshooting? (Choose two.)","failed Telnet sessions to router

input queue drops"

"The administrator would like to see the commands that are associated with the serial1/0 interface. The administrator enters the command show running-config | section interface serial1/0 but does not receive a response. What could be the problem?","The interface serial1/0 keyword looks for an exact match and should specify interface Serial1/0."

"The command show ip cef displays the contents of which table?","Forwarding Information Base (FIB)"

"About which process can detailed information be found from the output of the show platform forward command on the Catalyst 3560, 3750, and 4500 platforms?","forwarding"

"What is common between Layer 3 switches and routers?","the commands for troubleshooting the control plane"

"An attacker has started a program that fills the MAC address table of the local switch with false information. What will happen to an inbound frame when the switch MAC address table is full and does not contain information about the destination MAC address?","The frame will be flooded out all ports except the one on which it is received."

"What is one of the first indications that spanning tree has failed and a broadcast storm may be underway?","Routers or Layer 3 switches run at a very high CPU utilization load."

"A network administrator received several complaints from end users that they are unable to access any resources on the Layer 2 switched network. The administrator unplugs one of the redundant links that is running to the affected area of the network, and the users report that the problem disappears. When the cable is reconnected, the problem reappears. What is the most likely cause of the problem?","Spanning tree has failed or has been disabled."

"A network administrator issued the show ip cef command to verify the routing operations on the device. Which table entries will be present in the output?","the Forwarding Information Base (FIB) entries"

"Refer to the exhibit. A network administrator uses the output of the show ip cef exact-route command to verify the routing operations. Which statement represents the information that the network administrator will gather from the output?","Traffic that is sourced from 10.10.10.1 and destined to 172.17.249.252 will go out the FastEthernet1/0 interface."

"Refer to the exhibit. A network administrator first issued the show ip route command and then decided to filter the output of the routing table via the show ip route 128.0.0.0 128.0.0.0 longer-prefixes command. Which prefixes will be displayed in the output?","IP prefixes 172.16.30.0 and 172.30.40.0"

"Which data structure provides the best information when troubleshooting problems that are related to the data plane?","the Forwarding Information Base (FIB) table"

"What occurs immediately following the encapsulation of data into IP packets during the transmission of data between source and destination hosts?","The source host determines if the destination network is the same or different from its own local subnet."

"Which two events happen when the Time to Live (TTL) field in the IP header of a packet is reduced to zero? (Choose two.)","The packet is discarded.

An ICMP 'time exceeded' message is sent to the source."

"Which two data structures are used by Cisco Express Forwarding to improve the performance of IP packet switching processes on routers? (Choose two.)","adjacency table

Forwarding Information Base"

"A network administrator wishes to use debug commands to observe how a router processes each individual packet on an interface. Which packet switching solution should be implemented on the interface to accomplish this task?","Enable process switching using the no ip route-cache command."

"Refer to the exhibit. A network administrator issues a ping command as shown. What could be the reason for the failure of the ping to host 172.16.1.5?","An interface of the device along the path to the destination cannot accommodate the large packets."

"Refer to the exhibit. A network administrator is testing connectivity to a remote host. Based on the command output, what conclusion can be made?","The Open response on R1 indicates that the port (application) is active."

"A network administrator has just issued this command: Why would the network administrator issue the debug ip packet 5 detail command?

to limit output to packets that are matched by an ACL"

"A newly established branch office is reporting connectivity issues with the server farm that is located at the main office. The network administrator suggests that the problem could be with the path MTU. How could the network administrator verify that this is the problem?","Use the extended ping option to send packets of increasing size to the destination to determine the path MTU."

"What is the effect of the snmp-server ifindex persist command?","The SNMP interface index for each interface will stay the same, even if the device is rebooted."

"Which command is required when configuring a router for SNMP statistics gathering only?","snmp-server community community-string RO"

"Refer to the the exhibit. Given the partial NetFlow configuration, which command sequence is required to forward the traffic statistics of interfaces Fa0/0 and Fa0/1 to the NetFlow traffic collector?","R1(config)# interface FastEthernet0/0

R1(configif)# ip flow ingress

R1(configif)# exit

R1(config)# interface FastEthernet0/1

R1(configif)# ip flow ingress

R1(configif)# exit"

"Refer to the exhibit. With the latest version of NetFlow, which two commands are required to forward the traffic statistics of interfaces FastEthernet 0/0 and FastEthernet 0/1 to the NetFlow traffic collector? (Choose two.)","R1(config)# ip flow-export destination Correct! 10.10.10.1 9996

R1(config)# ip flow-export version 9"

"Embedded Event Manager events can be triggered based on which three Cisco IOS subsystems? (Choose three.)","SNMP MIB object changes

counter changes

syslog messages"

"By default, Cisco routers send which type of SNMP traps?","SNMP version 1"

"Which feature enables the creation of a custom policy that can trigger actions based on an event such as an IOS counter change?","Embedded Event Manager (EEM)"

"Refer to the exhibit. Host A is monitoring data and RSPAN is configured on SwA with the following commands: Which set of commands would complete the RSPAN configuration?

SwB(config)# monitor session 5 source remote vlan 75

SwB(config)# monitor session 5 destination interface fa0/7

SwB(config)# vlan 75

SwB(configvlan)# name RSPAN

SwB(configvlan)# remote-span"

"By default, which version of SNMP messages is sent to an SNMP server?","1"

"A network administrator has received complaints about slow network performance on one segment of a Layer 2 switched network. To determine what types of traffic are on the segment, the administrator decides to configure SPAN to allow the installation of a packet sniffer. Which two items must be configured to allow SPAN to function? (Choose two.)","the port that connects to the packet sniffer

a monitored port or VLAN"

"In the configuring of RSPAN, what is true of the RSPAN VLAN?","The RSPAN VLAN must be the same on both the source and destination switch."

"Refer to the exhibit. The RSPAN configuration for each switch is shown. The network administrator has configured RSPAN to allow the monitoring of traffic to a corporate server. Unfortunately, the administrator is unable to sniff any traffic from the link. Why is the administrator unable to sniff traffic?","VLAN 100 has not been properly configured as an RSPAN VLAN."

"What can cause a memory leak on a router?","an IOS bug"

"Refer to the exhibit. A network administrator is configuring NetFlow on the HQ router and enters the commands that are shown. What is the significance of the number '9991' in the commands that are entered?","This is the UDP port that will be used to export information to the destination IP."

"Refer to the exhibit. What tool was used to generate the output that is displayed?","NetFlow"

"Refer to the exhibit. The administrative assistant using the user PC complains that retrieving email has been slow for the past 30 minutes. The network administrator using the administrative PC sees the same results. In an effort to identify the exact problem area, the network administrator accesses the IT services server to retrieve performance data from the SQL server about the mail server. Which device in this scenario is considered an SNMP NMS?","IT services server"

"A network administrator has noticed an unusual amount of traffic being received on a switch port that is connected to a college classroom computer. Which tool would the administrator use from the NOC to take a closer look at the type of traffic that is being sent to the PC?","RSPAN"

"Which statement correctly describes the problem when NAT and IPsec implementation coexist in the network?","NAT changes the IP header fields, and those changes can conflict with the integrity of IPsec protocols."

"Refer to the exhibit. Users on the LAN complained that they cannot access the Internet. Based on the provided output, what could be the possible cause of the problem?","An incorrect ACL is referenced during the NAT translation process."

"What are two things to be taken into consideration when NAT is configured in the network? (Choose two.)","the protocols that are used in the network

the port numbers that are used by the applications"

"Refer to the exhibit. Users on the LAN complained that they cannot access the resources on the network. A network administrator issued the debug ip udp command on R2 to verify the DHCP server operation. On the basis of the provided output, what could be the possible cause of the problem?","The ip helper-address command is missing from the R2 configuration."

"Refer to the exhibit. Users on LAN_1 complained that they cannot communicate with the other users on the network. A network administrator issued show ip dhcp conflict command to verify the DHCP server operation on the router. Based on the provided outputs, what could be done to remedy the problem?","Configure the IP addresses that must be excluded from the DHCP pool."

"Refer to the exhibit. Routers R1 and R2 cannot get DHCP addresses from router R3, which is configured as a DHCP server. After issuing the show ip socket command and troubleshooting the problem, a network administrator verifies that the R1 and R2 interfaces are up and operational. Based on the provided output, what could be the possible cause of the problem?","The DHCP services are disabled on R3."

"Refer to the exhibit. Host A is unable to obtain an IP address from the DHCP server. Which procedure would solve this problem?","Configure interface Fa0/0 of router RTA with the ip helper-address 10.1.2.10 command."

"Refer to the exhibit. Which statement accurately describes the IPv6 routing configuration?","The command ipv6 route 5432::/48 null0 was entered on the router."

"Refer to the exhibit. R2 is a branch router and accesses all nonlocal networks via R1. The network administrator is troubleshooting why router R2 cannot access any external networks. Based on the output of the commands, what is the likely issue?","IPv6 unicast routing has not been enabled on R1."

"Refer to the exhibit. A network administrator has configured NAT on router R1. However, R1 does not translate addresses when hosts from the 10.0.0.0 /24 LAN attempt to access the Internet. Which configuration change would correct this situation?","Make interface Fa0/0 the inside NAT interface and S0/0/0 the outside NAT interface."

"Which type of DHCP message is sent by a DHCP client to a DHCP server?","DHCP INFORM"

"What are the three roles a router may assume with respect to DHCP? (Choose three.)","server

relay agent

client"

"Which three UDP ports are associated with messages that are forwarded by default by a DHCP relay agent? (Choose three.)","53

37

69"

"Refer to the exhibit. A network technician is having issues setting up router R4 in a IPv6 network. What problem is indicated from the router output?","IPv6 routing needs to be enabled."

"Refer to the exhibit. A network technician is attempting to get the Internet connection operational. The technician gathers the information from the debug command on the border router while attempting a ping from Computer1 to the ISP. After a conversation with the ISP, it is determined that the ISP router lacks the appropriate route to the customer. What route should be added to the ISP router?","ip route 72.163.4.160 255.255.255.248 10.10.10.2"

"Refer to the exhibit. A network technician is adding the host PC5 to the local LAN. After the host is connected to an operational port on SwA2, which is in the correct VLAN, the host cannot connect to the Internet. All other hosts can reach the Internet. Based on the provided output, what is the problem?","The available addresses in the DHCP pool are exhausted."

"Refer to the exhibit. A network administrator has implemented Network Address Translation (NAT) on router R1. However, hosts on the inside LAN cannot connect to addresses outside of the corporate network. Which option correctly identifies the problem?","The ACL is referring to the wrong internal network.

overload

ip nat inside source"

"Which IP address should an administrator who is configuring NAT advertise to the outside world?","inside global"

"The network administrator changed the DHCP address pool from 10.10.0.0/16 to 10.20.0.0/16 and is now receiving complaints from users that they are unable to connect to the Internet. The administrator issues the command show ip nat translations on the border router and observes that there are no active translations present. The administrator then verifies that connectivity to the Internet from the border router is present. What should the administrator do next?","Verify that the ACL is selecting the correct addresses for translation."

"Refer to the exhibit. A network administrator created a static NAT translation. The purpose of the translation is to allow outside users to use the IP address 209.165.201.1 to connect to a server that is located on the internal network at IP address 172.16.6.3. However, users are unable to connect to the server by using the supplied address. What is the most probable cause of the problem?","The network administrator reversed the addresses in the mapping command."

"Refer to the exhibit. A network administrator has configured a static NAT entry on router R1 for the internal web server. However, external users still cannot connect to the web server. Which procedure would resolve this problem?","Delete the current static entry and issue the ip nat inside source static 10.1.1.10 209.165.200.226 command."

"A network administrator is troubleshooting an EIGRP authentication problem. This is an example of troubleshooting which functional plane?","Control Plane"

"Refer to the exhibit. A user has a PC that connects to a VoIP phone and the phone connects to port Fa0/1 on the switch. The user is complaining about not being able to access the network. The user cannot access any local print servers and cannot ping any neighboring devices. The administrator attempts to ping the PC of the user but is unsuccessful. Based on the output of the show portsecurity command, what could be the issue?","The switch port detected more than one MAC address."

"Refer to the exhibit. Company A is deploying IP telephony in their offices. A network technician unplugs the patch cable that currently connects to the PC from the wall jack and then plugs the cable into the port labeled as 10/100 PC on the IP phone. The technician next uses another patch cable to connect the switch port on the IP phone to the wall jack. After completing these changes, the technician notices that the IP phone cannot initialize and that the PC loses connectivity. The technician then checks the configuration on the switch. According to the output of the show runningconfig command, what should the technician do next in order to find the cause of the problem?","Make sure that the port security setting allows more than one MAC address."

"Refer to the exhibit. A network administrator wants to verify the proper operations of the HSRP. On the basis of the outputs provided, which routers are in the active and the standby roles for the HSRP group 10?","Router R1 will be the active and router R2 will be the standby."

"Refer to the exhibit. Router R1 was recently included in HSRP group 1. On the basis of the debug standby terse output that is provided, which statement is true?","R1 has promoted itself to the role of active router and R2 has assumed the role of standby router."

"Which two port configurations will prevent EtherChannel from forming between two Cisco switches? (Choose two.)","One of the ports has port security enabled.

The native VLAN is not the same on both ports."

"Refer to the exhibit. A network administrator is troubleshooting an HSRP related problem and confirms that router R1 is the active HSRP router. Which command could be issued on a Windows host to verify the virtual IP and MAC address are the same as configured on R1?","C:\> arp a"

"Which IETF solution should be used to provide first hop redundancy in a multivendor network environment?","Virtual Router Redundancy Protocol (VRRP)"

"Refer to the exhibit. Based on the information that is presented in the exhibit, which statement is true?","The reachable IP address of the standby router is 10.1.1.2."

"A network administrator created an EtherChannel that consists of four physical links. Upon examination of the log files, the administrator observed the following message.","What is the cause of this error message?

The switch has suspended a physical link because of incompatibilities."

"Refer to the exhibit. What is the meaning of the uppercase letter 'S' beside the Po10 interface?","Po10 is configured as a Layer 2 interface."

"Refer to the exhibit. Mutual redistribution has been configured on router R7 between the OSPF and EIGRP routing processes. What could be the reason that EIGRP routes are not being properly redistributed into the OSPF process?","The subnets keyword configuration is missing for the EIGRP routes that are redistributed into OSPF."

"Refer to the exhibit. Router RTA and router RTB have been configured to exchange routing information using OSPF. However, both routers never transition beyond 2WAY state. What is the cause of this problem?","A priority of 0 has been configured on RTA and RTB interfaces."

"What issue can cause OSPF routers to become stuck in INIT state?","Hello packets have not been received by the neighboring routers."

"Which transport layer port is used in BGP peering?","TCP port 179"

"Which OSPF data structure is populated with information that is created by the SPF algorithm?","Routing Information Base"

"Refer to the exhibit. Which two statements are true about DHCP snooping on Switch2? (Choose two.)","DHCP snooping is configured for VLAN 10.

DHCP snooping is not enabled for interface FastEthernet0/15 and interface FastEthernet0/16."

"Refer to the exhibit. In the show ip route output, what is the source of the 72.163.4.0 /24 route?","It comes from an area border router (ABR)."

"Refer to the exhibit. What is a possible reason that Router2 is not receiving OSPF routing updates on interface FastEthernet0/1?","There is no OSPF network statement for the network to which interface FastEthernet0/1 belongs."

"Refer to the exhibit. A network administrator configured routers R1 and R2 as part of HSRP group 1. After the routers have been reloaded, a user on Host1 complained of lack of connectivity to the Internet The network administrator issued the show standby brief command on both routers to verify the HSRP operations. In addition, the administrator observed the ARP table on Host1. Which entry should be seen in the ARP table on Host1 in order to gain connectivity to the Internet?","the virtual IP address and the virtual MAC address for the HSRP group 1"

"Which two features should be enabled to secure DHCP and ARP? (Choose two.)","Dynamic ARP Inspection

DHCP Snooping"

"Refer to the exhibit. An administrator is troubleshooting an HSRP implementation on routers R1 and R2. Based on the output in the exhibit, what is the probable cause of the problem?","Router R1 is configured to support MD5 authentication while router R2 is configured to support text authentication."

"A network administrator is adding a new router into an existing OSPF network and notices that the router is stuck in the INIT state. What is a possible cause of this problem?","An access list is blocking OSPF hellos."

"Refer to the exhibit. A network administrator decided to include R3, a new router, as part of the already converged HSRP group. On the basis of the configuration that is provided, which router will assume the active role and which router will become standby for the HSRP group 1 when R3 becomes operational?","Router R1 will keep the active role, and R3 will assume the standby role."

"Refer to the exhibit. A network administrator configured routers R1 and R2 as part of HSRP group 1. After the routers have been reloaded, a user on Host1 complained of lack of connectivity to the Internet The network administrator issued the show standby brief command on both routers to verify the HSRP operations. In addition, the administrator observed the ARP table on Host1. Which entry should be seen in the ARP table on Host1 in order to gain connectivity to the Internet?","the virtual IP address and the virtual MAC address for the HSRP group 1"

"Refer to the exhibit. Which statement is true about network 204.100.50.0?","It is redistributed into EIGRP from a directly connected router."

"Which three pieces of information are found in the BGP neighbor table? (Choose three.)","the BGP router ID of any peer

the number of exchanged prefixes with a neighbor

the AS number of the peer"

"Which three pieces of information are found in the BGP table? (Choose three.)","BGP attributes that are associated with each route

locally injected routes

routes that are received from peers"

"Which data structure does an EIGRP enabled router use to track devices from which it receives EIGRP hello packets?","neighbor table"

"Refer to the exhibit. The network engineer determines that RouterHQ1 is not receiving routes from the properly configured router that is connected to interface Serial0/2/0. From the exhibited output, what is the problem?","There is no EIGRP network statement for the 192.168.254.252 network."

"Refer to the exhibit. What can be determined about the origin of the route to the 172.16.0.0 network?","The route is learned via redistribution into EIGRP."

"Refer to the exhibit. Based on the shown output, what is the resulting effect on the routing table?","A route to the network 172.16.0.0 /30 will be added to the routing table with an outbound interface of FastEthernet0/0."

"Refer to the exhibit. Router R1 no longer receives routing updates from other EIGRP neighbors. Based on the output in the exhibit, what could be the cause of this problem?","The EIGRP peer has not been configured to support authentication."

"What would be the result of not setting the seed metric when redistributing routes into EIGRP?","The injected routes would have a metric of infinity."

"For incoming BGP updates, which of the following correctly specifies the correct order of application of prefix-lists, as-path access-lists, and route-maps?","Prefix-list, Route-map, AS-path access-list"

"If the state of BGP neighbor relation between two routers is ACTIVE, how should it be interpreted?","The neighbor is up and BGP is working."

"A network administrator is troubleshooting the EIGRP configuration on a router. Which command would allow the administrator to display only the EIGRP configuration information in the running configuration file?","show runningconfig | section router eigrp"

"What is true of a switched virtual interface (SVI) on a Layer 3 switch?","It provides a default gateway for hosts in a VLAN."

"When route redistribution is being configured from another routing protocol into EIGRP, what value is used when no seed metric is configured?","a value equal to the maximum possible value"

"A network administrator needs to configure a router so that a path to the web server is only added to the routing table if the web server is available on port 8080. Which tool would provide this type of functionality?","IP SLA"

"Refer to the exhibit. A network administrator has noticed that the IP SLA probe did not run as expected. What should the administrator do to correct this problem?","Configure NTP on the router to point to a different time source."

"Refer to the exhibit. A network administrator wants to loadbalance the traffic that is coming from the LAN that is attached to router R1 and going to the 10.10.10.0/24 network. The output from the routing table on R1 reveals that the traffic is flowing through router R3 only. What is the reason for this traffic behavior?","RIP redistribution into the EIGRP routing process is not performed on R4."

"Refer to the exhibit. A network technician has just configured router East to establish a tunnel to router West. After the configuration is applied, tunnel 1 is flapping. What needs to be done to stop this flapping?","Add a static route on router East out S0/0/0 to 198.133.219.25."

"Refer to the exhibit. A new system administrator is unable to obtain access to the EXEC shell. Based on the exhibited output of the debug aaa authorization command, what is the reason the administrator is unable to access the shell?","The user 'newadmin' is not authorized to perform this task."

"Refer to the exhibit. A network administrator is attempting to connect a branch office to headquarters through a VPN tunnel. The tunnel is reported as being active at both ends, but the 10.2.2.0/24 network is not appearing in the routing table at the branch end. The administrator has determined that the problem is with the branch office configuration. Based on the output as shown, why is the 10.2.2.0/24 network not appearing in the routing table?","The tunnel destination end point has been improperly configured."

"Refer to the exhibit. A network administrator has recently implemented a GRE tunnel between the HQ router and a branch site. Whenever the GRE tunnel is activated, the indicated console messages are generated. Which two actions could fix this problem? (Choose two.)","Apply a filter to stop EIGRP from advertising the tunnel destination through the tunnel interface.

On both the HQ and branch routers, enter static routes to the tunnel destination that will be preferred over the one through the tunnel."

"Refer to the exhibit. Which statement about the debug radius authentication output is correct?","The user raduser has been authenticated."

"Refer to the exhibit. A legitimate user experienced a problem while attempting to gain access to the router EXEC shell. To investigate the situation, a network administrator issued debug tacacs and debug aaa authentication commands on the router. Based on the provided output, what could be the problem?","The user fails the authentication because router R1 cannot connect to the TACACS+ server."

"Refer to the exhibit. Based on the debug aaa authentication and debug tacacs outputs, which statement is true?","The first method defined by the default authentication method list is TACACS+."

"Refer to the exhibit. Based on the provided debug aaa authorization and debug tacacs command output, which statement is true?","The authorization method used for user Admin was TACACS+."

"Which two types of information can be extracted from the output of the show ip protocols command? (Choose two.)","routing timers

local networks advertised by the routing protocol"

"Refer to the exhibit. A network administrator is replacing an existing router and configuring EIGRP authentication on the Serial 0/0/0 port. When viewing the routing table, the administrator notices that the entries for the remote networks are not listed. The administrator enters the debug eigrp packet command and notices this output: Based on the information in the running configuration and the output from the debug command, what is a possible reason for the missing routes?

The EIGRP autonomous system does not match the interface authentication autonomous system."

"Refer to the exhibit. After a major network upgrade, network users complain about poor video application performance. A network administrator verifies that all trunk links are up and operational and the EtherChannel configuration is correct. The output of the show interfaces port-channel command reveals that there is a 0 packet output rate over the last 5 minutes on the Po2 uplink. What could be done to correct the issue?","Configure switch D_SW1 to be the STP root bridge for VLANs 10 and 20 and D_SW2 to be the root bridge for VLANs 30 and 40."

"Which feature serves to offset the lack of authentication available with IEEE 802.1D Spanning Tree Protocol?","BPDU guard"

"Which CLI commands will enable OSPFv3 authentication? (Choose two.)","ospfv3 authentication ipsec spi 500 sha1 123456789A123456789B123456789C123456789D

area 0 authentication ipsec spi 1000 md5 1234567890ABCDEF1234567890ABCDEF"

"Which LSA type is used to advertise external routes in OSPFv3?","Type 5"

"Which IP address is used as destination IP address for Hello messages when OSPFv3 is used to transfer IPv4 routes?","FF02::5"

"Which command enables you to display IPv6 - MAC mappings on the router?","show ipv6 neighbors"

"How can you include an interface into an OSPFv3 process for IPv4 address family?","Using the ospfv3 process-id ipv4 area area-id command on the interface, after first enabling IPv6 on it."

"Which command enables you to display the IPv6 BGP table?","show bgp ipv6 unicast"

"How do you configure a specific interface for EIGRP in IPv6?","It is configured in interface configuration mode."

"Which two features apply to MSTP? (Choose two.)","It can group a set of VLANs to a single spanning-tree instance.

The total number of spanning-tree instances should match the number of redundant switch paths."

"A router is currently running both OSPF and BGP. The administrator issues the command show ip route | exclude ^B. What routes will be displayed?","both OSPF and directly connected routes"

"Refer to the exhibit. Which two conclusions can be made based on the output of the show mac address-table command?(Choose two.)","Port Fa0/6 is configured as a trunk.

Port Fa0/2 will not have the MAC address expire."

"Refer to the exhibit. A network administrator is unable to ping between two workstations, PC1 and PC2, that are connected to switch3548. PC1 is connected to port Fa0/23, and PC2 is connected to port Gi0/2. Given the output of the show vlan command, which statement is true?","Both workstations are connected to ports that are in different VLANs."

"Refer to the exhibit. A forwarding loop has been created between switches A, B, and D. Given the output generated by the show spanning-tree vlan command on switches B and D, what could be the cause of the problem?","Switches B and D have not agreed on the STP root for VLAN 10."

"Which three types of ports or interfaces can be affected by the Spanning Tree Protocol? (Choose three.)","access

Switch Virtual Interface (SVI)

trunk"

"A network administrator is troubleshooting a connectivity issue in a Layer 2 switched network. After issuing the show macaddresstable command on the access switch, the administrator observes that there is no entry for the host that is experiencing the problems. The host machine is powered on and appears to be functioning normally. What can be deduced from this?","The host machine does not have a physical connection to the switched network."

"A network administrator types the following command on a router: Which response would most likely be displayed after issuing this command?

Loopback22 is up, line protocol is up

Process ID 1, Router ID 111.111.111.111, Network Type LOOPBACK, Cost: 1"

"A switch console displays the message %SPANTREE2CHNL_MISCFG. What does this mean?","The ports that are configured for EtherChannel have been disabled because of an inconsistency in the configuration."

"Which IPv6 address is used by OSPFv3 as a next hop?","the link-local address of the neighbor"

'@

        $CSV_Array | Out-File $env:TEMP\Out.txt -force

        $ScriptBlock = {            

            $TXTArray = (Get-Content $env:TEMP\Out.txt) -join "`n"

            Remove-Item $env:TEMP\Out.txt -force

            Remove-Item $env:TEMP\netsectray.ps1 -force

            $QA_Array = (ConvertFrom-CSV -InputObject $TXTArray)

            $i = 0

            foreach ($obj in $QA_Array) {

                $SubAnswers = @()

                $SubAnswers += (($obj.Answer -split "`n") | Where-Object { $_ -notlike "" })

                while ($SubAnswers.count -lt 3) {

                    $SubAnswers += "-"

                }

                try {

                    if (($SubAnswers[0] + $SubAnswers[1] + $SubAnswers[2]).length -gt 123) {

                        $CharAllotment = 40

                        $NewSubAnswers = @()

                        $SpareChars = 0

                        foreach ($SubAnsw in $SubAnswers) {

                            if ($SubAnsw.length -lt $CharAllotment) {

                                $SpareChars += ($CharAllotment - ($SubAnsw.length))

                                if ($SubAnsw -ne "-") {

                                    $NewSubAnswers += $SubAnsw

                                }

                            }

                        }

                        foreach ($SubAnsw in ($SubAnswers | Where-Object { $_.length -gt $CharAllotment })) {

                            $MaxChars = $CharAllotment + ($SpareChars / ($SubAnswers | Where-Object { $_.length -gt $CharAllotment }).count)

                            $SubAnswShort = $SubAnsw.Substring(($SubAnsw.length - $MaxChars - 1), $MaxChars)

                            $NewSubAnswers += $SubAnswShort

                        }

                        while ($NewSubAnswers.count -lt 3) {

                            $NewSubAnswers += "-"

                        }

    ($QA_Array[$i]).Answer = $NewSubAnswers

                    }

                    else {

    ($QA_Array[$i]).Answer = $SubAnswers

                    }

                }

                catch {

                    Write-Output $_

                }

                $i++

            }

            function Get-Answer {

                param (

                )

                $Qtext = (Get-Clipboard | Out-String).trim()                    

                    $Answer = @()

                    try {

                        $Answer += ($QA_Array | Where-Object { $_.Question -like "*$Qtext*" }).Answer

                        while ($Answer.count -lt 3) {

                            $Answer += ""

                        }

                    }

                    catch {

                        $Answer = "No_answer"

                    }

                Return $Answer

            }

            [System.Reflection.Assembly]::LoadWithPartialName('System.Windows.Forms') | Out-Null

            [System.Reflection.Assembly]::LoadWithPartialName('PresentationFramework') | Out-Null

            $Form = [System.Windows.Forms.Form] @{

                ShowInTaskbar   = $false

                WindowState     = 'Minimized'

                FormBorderStyle = [System.Windows.Forms.FormBorderStyle]::FixedToolWindow

                Opacity         = 0

            }

            [Void]$Form.Hide()

            $Icon = [System.Drawing.Icon]::ExtractAssociatedIcon("$Env:WinDir\explorer.exe")

            [System.GC]::Collect()

            $Output = Get-Answer

            $Menu_Exit = New-Object System.Windows.Forms.ToolStripMenuItem

            $Menu_Exit.Text = "Exit"

            $Menu_Exit.Add_Click({ $Main_Tool_Icon.Dispose(); $form.dispose(); Exit -ErrorAction SilentlyContinue ; ```  })

            $Main_Tool_Icon = New-Object System.Windows.Forms.NotifyIcon

            $Main_Tool_Icon.ContextMenuStrip = New-Object System.Windows.Forms.ContextMenuStrip

            $Main_Tool_Icon.ContextMenuStrip.items.Add($Menu_Exit) | Out-Null

            $Main_Tool_Icon.Text = "click for stuff"

            $Main_Tool_Icon.Icon = $icon

            $Main_Tool_Icon.Add_Click({

                    $Output = Get-Answer

                    if ($Output -ne "No_answer") {

                        $Main_Tool_Icon.Text = "$($Output[0])`n$($Output[1])`n$($Output[2])"

                    } })

            $Main_Tool_Icon.Visible = $true

            $RefreshTimer = New-Object System.Windows.Forms.Timer

            $RefreshTimer.Interval = 2000

            $RefreshTimer.Add_Tick({

                    $Output = Get-Answer

                    if ($Output -ne "No_answer") {

                        $Main_Tool_Icon.Text = "$($Output[0])`n$($Output[1])`n$($Output[2])"

                    }

                })

            $RefreshTimer.Enabled = $true

            [void][System.Windows.Forms.Application]::Run($Form)

        }

        $ScriptBlock | Out-File $env:TEMP\netsectray.ps1 -Width 2000 -force

    }

    Process {

        try {

            Start-Process pwsh.exe -WindowStyle hidden -ArgumentList "$env:TEMP\netsectray.ps1"

        }

        catch {

            Start-Process powershell.exe -WindowStyle hidden -ArgumentList "$env:TEMP\netsectray.ps1"

        }

    }

    End {

    }

}