Free Implementing and Operating Cisco Service Provider Network Core Technologies 350-501 Exam Practice Test

A regional MPLS VPN provider operates m two regions and wants to provide MPLS L 3VPN service for a customer with two sites in these separate locations. The VPN provider approaches another organization to provide backbone carrier services so that the provider can connect to these two locations.Which statement about this scenario is true?

• When edge routers at different regional sites are connected over the global carrier backbone, MP-eBGP must run between the routers to exchange the customer VPNv4 routes
• When eBGP is used for label exchange using the send label option, MPLS-BGP forwarding is configured under the global ABC CSC PE-to CE interface
• When IGP is used for route exchange and LDP for label exchange, MPLS is enabled only on the VRF interface on the backbone-earner PE side.
• When BGP is used for both route and label exchange, the neighbor a.b.c.d send-lable command is used under the address family VPNv4 command mode.

What is the primary role of a BR router in a 6rd environment?

• It provides connectivity between end devices and the IPv4 network.
• It embeds the IPv4 address in the 2002::/16 prefix.
• It connects the CE routers with the IPv6 network.
• It provides IPv4-in-IPv6 encapsulation

How does Cisco DNA Center enhance network automation?

• It allows network administrators to quickly deploy Cisco Layer 2 devices without requiring STP and broadcast transport.
• It allows network administrators to reduce inconsistencies when they deploy and validate network configurations.
• It allows network administrators to reduce the number of VRFs in a multi customer environment by automatically implementing a single VLAN per customer.
• It allows network administrators to combine voice and data networks into a single topology without manual configuration.

How does an untrusted interface at the boundary of an administrative domain handle incoming packets?

• It remarks all values to a CoS of 0.
• It forwards only traffic with a DSCP value of 48.
• It translates the IP precedence value to the corresponding DSCP value.
• It drops all traffic ingressing the network.

How does Cisco MPLS TE use OSPF extensions to allow for optimized transit between a headend router and a destination router?

• Router LSAs share router link advertisements to each router within the MPLS environment so that tunnels can be built bidirectionally.
• ASBR Summary LSAs share OSPF domain information so that the two routers know how to reach each other during tunnel setup.
• Network LSAs share RSVP information to build the tunnel between the two routers.
• Opaque LSAs calculate and establish unidirectional tunnels that are set according to the network constraint.

A network engineer must configure a router for Flexible NetFlow IPFIX export. The IP address of the destination server is 172.17.12.1. The source address must be set to the Loopback0 IPv4 address and exported packets must be set to DSCP CS3. The TTL must be 64 and the transport protocol must be set to UDP with destination port 4739. Which configuration must the engineer apply to the router?

• configure terminal flow exporter EXPORTER-1 destination 172.17.12.1 source Loopback0 dscp 3 ttl 64 export-protocol netflow-v9 transport udp 4739 end
• configure terminal flow exporter EXPORTER-1 destination 172.17.12.1 source Loopback0 dscp 24 ttl 64 export-protocol ipfix end
• configure terminal flow exporter EXPORTER-1 destination 172.17.12.1 source Loopback0 dscp 24 ttl 64 export-protocol netflow-v9 transport udp 4739 end
• configure terminal flow exporter EXPORTER-1 destination 172.17.12.1 source Loopback0 dscp 3 ttl 64 export-protocol ipfix end

Which type of attack is a Protocol attack?

• HTTP flood
• TFTP flood
• SYN flood
• Slowlorls

A customer of an ISP requests support to setup a BGP routing policy. Which BGP attribute should be configured to choose specific BGP speakers as preferred exit points for the customer AS?

• highest local preference outbound
• lowest local preference inbound
• highest local preference inbound
• lowest multi-exit discriminator

What are two features of stateful NAT64?

• It provides 1: N translations, so it supports an unlimited number of endpoints
• It provides 1:1 translation so it supports a limited number of end points
• It requires the ipv6 hosts to use either DHCPv6 based address assignments or manual address assignments
• It uses address overloading
• It requires IPv4 translatable IPv6 address assignments

A network engineer is testing an automation platform that interacts with Cisco networking devices via NETCONF over SSH. In accordance with internal security requirements:NETCONF sessions are permitted only from trusted sources in the 172.16.20.0/24 subnet.CLI SSH access is permitted from any source.Which configuration must the engineer apply on R1?

• configure terminal hostname R1 ip domain-name mydomain.com crypto key generate rsa ip ssh version 1 access-list 1 permit 172.16.20.0 0.0.0.255 netconf ssh acl 1 line vty 0 4 transport input ssh end
• configure terminal hostname R1 ip domain-name mydomain.com crypto key generate rsa ip ssh version 2 access-list 1 permit 172.16.20.0 0.0.0.255 access-list 1 permit any netconf ssh line vty 0 4 access-class 1 in transport input ssh end
• configure terminal hostname R1 ip domain-name mydomain.com crypto key generate rsa ip ssh version 1 access-list 1 permit 172.16.20.0 0.0.0.255 access-list 2 permit any netconf ssh line vty 0 4 access-class 2 in transport input ssh end
• configure terminal hostname R1 ip domain-name mydomain.com crypto key generate rsa ip ssh version 2 access-list 1 permit 172.16.20.0 0.0.0.255 netconf ssh acl 1 line vty 0 4 transport input ssh end