1

Which mechanism is used to create a floating static route?

administrative distance

cost

hop count

passive interface

2
IPSec operates at which layer of the OSI model?

application

network

datalink

transport

3
Which is true regarding Frame Relay LMI?

There are three LMI types standardized by ANSI, ITU-T, and Cisco.

Routers at each end of a Frame Relay virtual circuit must always use the same
LMI type.

The LMI type must be manually configured.

The only function of LMI is to verify the connection between the router and the
Frame
Relay switch.

4
Which statement identifies the IP address design for subinterfaces that
are configured for a Frame Relay network?

Multipoint configurations require the IP address of each subinterface on each

router to be
Cisco-Training.net
in its own subnet.

Multipoint configurations require IP addresses for each subinterface on each

router to be
a part of the same subnet.

Point-to-point configurations require IP addresses for each subinterface on each

router to
be a part of the same subnet.

Point-to-point configurations do not require IP addresses on each subinterface

on each router.

Multipoint configurations do not require IP addresses on each subinterface on

each router.

5
Which three algorithms can be used to encrypt user data in an IPSec VPN
framework? (Choose three.)

3DES

AES

Diffie-Hellman

DES

ESP

SHA

6
Which flag is set by a Frame Relay switch to inform the receiving station that
congestion was experienced?

BECN

DE

FECN

FCS
Cisco-Training.net
7
Refer to the exhibit. The complete configuration of a Frame Relay interface on
the Chicago router
is shown. How does the Chicago router know which DLCI is mapped to the IP
address of the
remote router?

DE

CIR

FECN

Inverse ARP

8
What statement correctly defines the purpose of the split horizon rule?

marks the route unreachable in a routing update that is sent to other routers

prevents routers from advertising a network through the interface from which
the update came

prevents routers from accepting higher cost routes to networks previously

marked as
inaccessible before the timer expires

limits the number of hops a packet can traverse through the network before it
should be discarded

9
Which PVC status suggests that the router recognizes the DLCI configured on
its interface as
being present on the Frame Relay switch, but the PVC associated with the DLCI
is not capable of
end-to-end communication?

active

deleted

Cisco-Training.net
inactive

idle

10
Refer to the exhibit. Which router command is used to associate a Layer 2
address with the
corresponding Layer 3 address?

Miller(config-if)#frame-relay map ip 172.16.150.1 110

Miller(config-if)#frame-relay map ip 172.16.150.1 112

Miller(config-if)#frame-relay map ip 172.16.150.2 110

Miller(config-if)#frame-relay map ip 172.16.150.2 112

11
A network administrator issued the command show frame-relay pvc. The
response from the
router shows the status of a PVC as deleted. What is the reason for this status?

The DLCI is using the wrong LMI type.

The DLCI is usable but has little activity.

The DLCI is programmed in the switch but the circuit is not usable.

The DLCI configured on the CPE device does not match the DLCI.

12
What is one benefit of using a network simulation software package?

The network design can be tested before it is actually implemented.

Simulation software packages are quickly updated to support new network

technologies
and devices.

Simulated devices have the same features as actual devices, allowing for
detection of all
potential problems.
Cisco-Training.net
Software packages can simulate all possible network traffic conditions, giving
an accurate
prediction of network performance.

13
What are two components a network designer considers when planning a VPN?
(Choose two.)

encryption algorithm for privacy and security

encapsulation protocol to use when creating the VPN tunnel

switching technology to optimize VPN WAN throughput

tunneling technology for guarding against data corruption

routing protocol on the gateway for optimum performance

14
When identifying VPN requirements for endpoint users, what care must be taken
to protect the
network when remote users log in from unsecured public locations?

Ensure that the user has VPN client software that allows access to all internal
resources.

Ensure that the VPN user traffic does not slow down internally sourced traffic
on the network.

Ensure that there are no obstacles to hamper the users from accessing all internal
resources.

Ensure that remote users can only access network resources that are appropriate
to their
job function.

15
Which two components are key elements when implementing a VPN? (Choose
two.)

concentration
Cisco-Training.net
encryption

prioritization

compression

encapsulation

16
What tool can help ease the configuration of VPN servers on routers?

Cisco SDM

PIX Firewall

Cisco VPN Concentrator

Cisco Adaptive Security Appliances

17
What is used to identify the path to the next frame-relay switch in a Frame Relay
network?

CIR

DLCI

FECN

BECN

18
Which two statements are true regarding VPN security? (Choose two.)

Users may only establish a VPN connection from secure locations and never
from public areas.

Users that connect to a network through a VPN do not have to log in to

resources on the network.

Users that connect to a network through a VPN are are considered trusted users
Cisco-Training.net
on the network.

Users may establish a VPN connection from unsecure locations such as airports
and hotel lobbies.

Users that connect to a network through a VPN should have access to all the
resources
on the network.

19
Refer to the exhibit. What is placed in the address field of a frame that will
travel from the Orlando
office to the DC office?

MAC address of the Orlando router

MAC address of the DC router

192.168.1.25

192.168.1.26

DLCI 100

DLCI 200

20
Two directly connected routers are able to ping each other through the
Serial 0/0/0 interfaces. A network administrator changes the encapsulation on
one router to PPP,
and the other is left at the default value. What statement would appear in the
output of the show
interfaces command issued on one of the routers?

Serial 0/0/0 is up, line protocol is up

Serial 0/0/0 is down, line protocol is down

Serial 0/0/0 is up, line protocol is down

Serial 0/0/0 is down, line protocol is up

Serial 0/0/0 is administratively down, line protocol is down

Cisco-Training.net
21
Refer to the exhibit. What statement is true about the configuration shown for
R2?

R2 is configured as the Frame Relay switch.

R2 is configured as the main site in a multipoint Frame Relay WAN prototype.

R2 is configured as the main site in a point-to-point Frame Relay WAN

prototype.

R2 is configured as a remote site in a multipoint Frame Relay WAN prototype.

R2 is configured as a remote site in a point-to-point Frame Relay WAN

prototype.

22
A company uses serial interfaces on its border router to connect to branch
offices
through WAN connections. The security policy dictates that the encapsulation
should use PPP
with authentication protocol CHAP. Which statement is true about the
configuration requirement of CHAP?

Both the username and password are case sensitive.

Neither the username nor the password is case sensitive.

The username is case sensitive but the password is not case sensitive.

The password is case sensitive but the username is not case sensitive.

23
Which two statements about split tunnels are true? (Choose two.)

Local LAN printing will use the VPN tunnel.

The traffic load on the VPN server is increased.

Traffic to the corporate network will be encrypted.

Cisco-Training.net
There is a reduced security risk to the corporate network.

All traffic travels across the VPN tunnel from client to server.

Traffic to public web sites and general Internet navigation is not encrypted.

24
An IP address has been assigned to the S0/0/0 interface of a new Cisco router.
The administrator wishes to quickly test basic connectivity with the serial
interface of an adjoining
Cisco router via the use of the default WAN protocol. Which WAN protocol
will be used for this test?

PPP

Frame Relay

DSL

HDLC

ATM

25
Which two statements about split tunnels are true? (Choose two.)

Local LAN printing will use the VPN tunnel.

The traffic load on the VPN server is increased.

Traffic to the corporate network will be encrypted.

There is a reduced security risk to the corporate network.

All traffic travels across the VPN tunnel from client to server.

Traffic to public web sites and general Internet navigation is not encrypted.

Cisco-Training.net