Cisco 642-892

CISCO 642-892 Composite Exam

Practice Test
Version 2.2

Cisco 642-892: Practice Exam QUESTION NO: 1 Which two statements are true about IBGP neighbor relationships? (Choose two.) A. The BGP split-horizon rule specifies that routes learned via EBGP are never propagated to other IBGP peers. B. A full-mesh IBGP requires that neighbor relationships be established between all BGP enabled routers in the autonomous system. C. The BGP split horizon rule specifies that routes learned via IBGP are never propagated to other IBGP peers. D. An EGP or static routing is required between IBGP neighbors. E. IBGP neighbors must be in different autonomous systems. Answer: B,C

QUESTION NO: 2

Which three IP multicast group concepts are true? (Choose three.) A. If a packet is sent to a multicast group address, all members of the multicast group will receive it. B. A router must be a member of a multicast group to send to the group. C. If a packet is sent to a multicast group address, the multicast frame contains the source multicast address. D. A router must be a member of a multicast group to receive multicast data. E. A router does not have to be a member of a multicast group to send to the group. Answer: A,D,E

QUESTION NO: 3

Which two features or capabilities are valid options for both an Autonomous and a Lightweight WLAN solution? (Choose two) A. use of Cisco Secure Access Control Server (ACS) for security B. Cisco IOS software for configuration C. PoE capability D. use of a Cisco Wireless Location Appliance for location tracking E. Cisco Wireless Control System (WCS) for management Answer: A,C

"Pass Any Exam. Any Time." - www.actualtests.com

Ac

tua

lTe

sts

.co

m

2

Cisco 642-892: Practice Exam Explanation: Cisco Aironet access points provide secure manageable, high-performance, and reliable connectivity with exceptional range and performance. Lightweight access points operate in conjunction with Cisco wireless LAN controllers and the Wireless Control System (WCS). Standalone (autonomous) access points are managed by CiscoWorks Wireless LAN Solution Engine (WLSE) or CiscoWorks WLSE Express Cisco Aironet Access Points When originally deployed, the Cisco Aironet 350 Series Access Point was selected as the standard access point for both autonomous and lightweight solutions. The Cisco Aironet 350 Series was the most advanced, fully featured wireless access point available. It supported the 802.11b protocol standard (the most advanced at that time), which provides data rates of up to 11 Mbps. The Cisco Aironet 350 Series also supported inline Power over Ethernet (PoE), which greatly simplifies installation and reduces costs by eliminating the need for separate, dedicated power cabling to the main supply. Cisco Secure Access Control Server ( ACS) The Cisco Secure ACS is used as the standard AAA server for the global WLAN and for other recently introduced services such as 802.1x-based port authentication for wired Ethernet ports in public areas and Network Access Control (NAC), part of the Cisco Self-Defending Network security strategy. Pairs of Cisco Secure ACSs were deployed at strategic locations worldwide. The value of using a globally distributed AAA architecture instead of a single AAA server was highlighted by the WLAN deployment. Because of the greater load that a WLAN creates for AAA, due to authentications and reauthentications (as the client device roams from AP to AP), it was important to ensure that all users did not have to rely upon a single, centralized server. This would have introduced unacceptable delays for users in geographically remote areas. As such, at 13 different locations around the world, Cisco placed two ACS servers, in a load-balanced configuration, that served as AAA servers for that local geographical region. The ACS servers are fully integrated with the Cisco Active Directory domain structure, enabling a single sign-on (SSO) capability. Effectively, AD user credentials are used not only for access to their laptops and wired network but also to provide transparent authentication to the wireless network. SSO has greatly reduced the client impact for users and has helped ensure a common, user-friendly experience across platforms and transport media. Users need only remember their normal ID and password for access to their laptop, the wired network, and the wireless network, and they only have to enter their credentials once each session regardless of the transport medium they are using. Reference: http://www.wireless-center.net/Business-Wireless/Technology-Considerations.html

QUESTION NO: 4 Which statement is true concerning 6to4 tunneling?

"Pass Any Exam. Any Time." - www.actualtests.com

Ac

tua

lTe

sts

.co

m

3

Cisco 642-892: Practice Exam A. IPv4 traffic is encapsulated with an IPv6 header. B. The edge routers can use any locally configured IPv6 address. C. An edge router must use IPv6 address of 2002::/16 in its prefix. D. Hosts and routers inside a 6to4 site will need a special code. Answer: C Explanation: A 6to4 tunnel is an automatic IPv6 tunnel where a 6to4 border router in an isolated IPv6 network creates a tunnel to a 6to4 border router in another isolated IPv6 network over an IPv4 infrastructure. The tunnel destination is determined by the globally unique, 32-bit IPv4 address of the remote 6to4 border router that is concatenated to the prefix 2002: :/ 16. 6to4 tunnels are configured between 6to4 border routers or between 6to4 border routers and hosts. A 6to4 relay service is a 6to4 border router that offers traffic forwarding to the IPv6 Internet for remote 6to4 border routers. A 6to4 relay forwards packets that have a 2002: :/ 16 source prefix. Reference: IPv6: Providing IPv6 Services over an IPv4 Backbone Using Tunnels http://www.cisco.com/en/US/docs/ios/solutions_docs/ipv6/v6sertun.html

QUESTION NO: 5

A. In the lightweight access point solution, WLAN management is provided by the WLAN Solution Engine (WLSE). B. In the autonomous access point solution, control is provided by the WLAN controller. C. Cisco Aironet lightweight access points cannot be supported by the Cisco Unified Wireless Network. D. In the autonomous access point solution, control is provided by the Wireless Domain Services (WDS). E. In the lightweight access point solution, WLAN management is provided by the WLAN Control System (WCS). F. Cisco Aironet autonomous access points cannot be supported by the Cisco Unified Wireless Network. Answer: D,E Explanation: Part 1 Answer: There is a trend in the WLAN space toward centralized intelligence and control. In this new architecture, aWLAN controller system is used to create and enforce policies across many different lightweight access points.

"Pass Any Exam. Any Time." - www.actualtests.com

Ac

tua

lTe

Which two statements about WLAN components are true? (Choose two.)

sts

.co

m

4

Cisco 642-892: Practice Exam

Part 2 Answer: Q. Is Cisco SWAN WDS required for RF management when the Cisco SWAN autonomous access point solution is used? A. Yes. A WDS device is required for the Cisco SWAN autonomous access-point solution. For deployments that use access-point-based WDS, at least one Cisco SWAN WDS access point per subnet is required for RF management of that subnet. For deployments that use the switch-based WDS on the Cisco Catalyst 6500 Series WLSM, up to 300 access points per device across subnets can be supported by a single Cisco Catalyst 6500 Series WLSM. References: www.cisco.com/en/US/prod/collateral/wireless/ps5678/ps6306/prod_white_paper0900aecd802c18 ee_ns337_Networking_Solutions_White_Paper.html www.cisco.com/en/US/prod/collateral/netmgtsw/ps6380/ps6563/ps3915/prod_qas0900aecd80278 d08.html

QUESTION NO: 6 Refer to the exhibit. Which statement is true?

"Pass Any Exam. Any Time." - www.actualtests.com

Ac

tua

lTe

sts

.co

As more vendors migrate to a hierarchical design, and as larger networks are built using lightweight access points, there is a need for a standardized protocol that governs how lightweight access points communicate with WLAN systems. This is the role of the Internet Engineering Task Force's (IETF's) latest draft specification, Lightweight Access Point Protocol (LWAPP). With LWAPP, large multivendor wireless networks can be deployed with maximum capabilities and increased flexibility.

m

5

Cisco 642-892: Practice Exam A. IP traffic matching access list ABC is forwarded through VLANs 5-10. B. All VLAN traffic matching VLAN list 5-10 will be forwarded, and all traffic matching access list ABC is dropped. C. All VLAN traffic in VLANs 5-10 that match access list ABC will be forwarded, and all else will be dropped. D. IP traffic matching VLAN list 5-10 will be forwarded, and all other traffic will be dropped. Answer: C Explanation: VLAN maps, also known as VLAN ACLs or VACLs, can filter all traffic traversing a switch. VLAN maps can be configured on the switch to filter all packets that are routed into or out of a VLAN, or are bridged within a VLAN. VLAN maps are used strictly for security packet filtering. Unlike router ACLs, VLAN maps are not defined by direction (input or output). To create a VLAN map and apply it to one or more VLANs, perform these steps: Create the standard or extended IP ACLs or named MAC extended ACLs to be applied to the VLAN. This access-list will select the traffic that will be either forwarded or dropped by the access-map. Only traffic matching the 'permit' condition in an access-list will be passed to the access-map for further processing. Enter the vlan access-map access-map-name [ sequence ] global configuration command to create a VLAN ACL map entry. Each access-map can have multiple entries. The order of these entries is determined by the sequence . If no sequence number is entered, accessmap entries are added with sequence numbers in increments of 10. In access map configuration mode, optionally enter an action forward or action drop . The default is to forward traffic. Also enter the match command to specify an IP packet or a non-IP packet (with only a known MAC address), and to match the packet against one or more ACLs (standard or extended). Use the vlan filter access-map-name vlan-list vlan-list global configuration command to apply a VLAN map to one or more VLANs. A single access-map can be used on multiple VLANs.

QUESTION NO: 7

Refer to the exhibit. On the basis of the information provided in the exhibit, which two sets of procedures are best practices for Layer 2 and 3 failover alignment? (Choose two.)

"Pass Any Exam. Any Time." - www.actualtests.com

Ac

tua

lTe

sts

.co

m

6

HSRP router. C. Configure the D-SW1 switch as the active HSRP router and the STP root for all VLANs. Answer: C. Configure the D-SW2 switch as the standby HSRP router and backup STP root for all VLANs. another is elected as the standby HSRP router. or active. Configure the D-SW2 switch as the active HSRP router and the backup STP root for VLANs 12 and 120. Configure the D-SW1 switch as the active HSRP router and the backup STP root for VLANs 11 and 110. Configure the D-SW1 switch as the active HSRP router and the STP root for VLANs 11 and 110. Configure the D-SW1 switch as the standby HSRP router and backup STP root for all VLANs.actualtests. B. Configure the D-SW1 switch as the standby HSRP router and the backup STP root for VLANs 12 and 120.com 7 Ac tua lTe sts ." . each of the routers that provides redundancy for a given gateway address is assigned to a common HSRP group. F. Configure the D-SW2 switch as the active HSRP router and the STP root for all VLANs.www. and all the others remain in the listen HSRP state. E. Configure the D-SW2 switch as the standby HSRP router and the STP root for VLANs 12 and 120.co m . so they can remain aware of each "Pass Any Exam. One router is elected as the primary. The routers exchange HSRP hello messages at regular intervals. Configure the D-SW1 switch as the standby HSRP router and the STP root for VLANs 11 and 110.F Explanation: Basically. Configure the D-SW2 switch as the active HSRP router and the STP root for VLANs 12 and 120.Cisco 642-892: Practice Exam A. Any Time. D. Configure the D-SW2 switch as the standby HSRP router and the backup STP root for VLANs 11 and 110.

finally.) sts . Listen.B. paths for which the NEXT_HOP is inaccessible B. paths that are marked as not synchronized in the show ip bgp output C. paths from an external BGP (eBGP) neighbor if the local autonomous system (AS) appears in the AS_PATH F.Cisco 642-892: Practice Exam other's existence.www. Any Time." . This forces a router to listen for others in a group and see where it fits into the pecking order. the priority is 100. Use the following interface configuration command to allow preemption: Switch( config-if)# standby group preempt [delay seconds] QUESTION NO: 8 A. HSRP election is based on a priority value (0 to 255) that is configured on each router in the group.co m 8 . The HSRP state sequence is Disabled. By default. the router progresses through a series of states before becoming active. Assume all the routes for this prefix have the same attributes.com Ac tua lTe A router is running BGP and receives more than one route for a particular prefix.actualtests. use the following interface configuration command: Switch( config-if)# standby group priority priority When HSRP is configured on an interface. To set the priority. as well as that of the active router. the router with the highest IP address on the HSRP interface becomes the active router. paths that are marked as synchronized in the show ip bgp output Answer: A. The router with the highest priority value (255 is highest) becomes the active router for the group. Which three path features would be reasons be for the router to ignore some of the routes and not consider them as candidates for the best path? (Choose three. Standby. If all router priorities are equal or set to the default value. paths from an internal BGP (iBGP) neighbor if the local autonomous system (AS) appears in the AS_PATH E. Init. and. paths for which the NEXT_HOP is accessible D. You can configure a router to preempt or immediately take over the active role if its priority is the highest at any time. Speak.E QUESTION NO: 9 DRAG DROP Drop "Pass Any Exam. Active.

co m 9 .0.) A. What is the condition of the adapter? "Pass Any Exam.www. The network was learned via EBGP. The network was defined by a static route. The network was originated via redistribution of an interior gateway protocol into BGP." .Cisco 642-892: Practice Exam Answer: QUESTION NO: 10 What are the two reasons for the appearance of 0. The network was originated via a network or aggregate command.actualtests.0. Both the green status LED and the amber activity LED are blinking slowly. D. E.D QUESTION NO: 11 A Cisco Aironet Wireless LAN Adapter CB21AG is inserted into a PC cardbus slot.0 as the next hop for a network in the show ip bgp command output? (Choose two. The network was learned via IBGP. C. B. Answer: C.com Ac tua lTe sts . Any Time.

D. The adapter is associated to an access point or another client.cisco. The adapter is scanning for the wireless network for which it is configured. B. Any Time.www.actualtests. which statement is true? A. The adapter is transmitting or receiving data while associated to an access point or another client.com/en/US/products/hw/wireless/ps4555/products_installation_and_configuration _guide_chapter09186a00801f0d77.com Ac tua Reference: http://www. Wireless clients will attempt EAP authentication first. E. Wireless clients will first attempt to authenticate with MAC authentication and if this fails. EAP authentication will be attempted. C." .html lTe sts .co m 10 . The adapter is not receiving power. B. then MAC authentication. On the basis of the information displayed in the exhibit. QUESTION NO: 12 Refer to the exhibit. Answer: E Explanation: The client adapter shows messages through its two LEDs. The adapter is in power save mode. "Pass Any Exam.Cisco 642-892: Practice Exam A.

they attempt EAP authentication using the same server. but if it fails. If MAC authentication succeeds. they join the network. Wireless clients will first attempt to authenticate with MAC authentication and if this succeeds.Cisco 642-892: Practice Exam C.com 11 Ac tua Reference: Configuring Authentication Types http://www.co m . It indicates that the radio of the client adapter is disabled. Answer: A Explanation: The following example sets the authentication type for the SSID batman to open with a combination of MAC-address and EAP authentication. ap1100# configure terminal ap1100( config)# configure interface dot11radio 0 ap1100( config-if)# ssid batman ap1100( config-ssid)# authentication open mac adam alternate eap adam ap1100( config-ssid)# end QUESTION NO: 13 Refer to the exhibit. Any Time. The Aironet System Tray Utility (ASTU) has been enabled during the installation and the icon appears in the system tray area in the lower right of the desktop.cisco.www. D. A Cisco Aironet Wireless LAN Client Adapter has been installed and configured through the ADU on the PC. Wireless clients will be successfully authenticated only if both their MAC address and EAP key match. B." . Wireless clients will be successfully authenticated only if their WEP key is configured as "adam". EAP authentication will then be performed. E. but the user is not EAP authenticated.com/univercd/cc/td/doc/product/wireless/airo1100/accsspts/ap11icg/ivicgaut. Client devices using the batman SSID first attempt MAC-address authentication using a server named adam .htm lTe sts . What is the significance of the icon? A. It indicates that the client adapter is associated to an access point or another client. "Pass Any Exam.actualtests.

actualtests. D. QUESTION NO: 14 "Pass Any Exam. ASTU reads the client adapter status and updates the icon every 1 to 5 seconds. Answer: C Explanation: he appearance of the ASTU icon indicates the connection status of your client adapter. and that the signal strength is poor.com Ac tua lTe sts . depending on the value entered for the Refresh Interval on the Display Settings window." . that the user is authenticated if the client adapter is configured for EAP authentication. that the user is authenticated if the client adapter is configured for EAP authentication.Cisco 642-892: Practice Exam C. F. and that the signal strength is fair.co m 12 . It indicates that the client adapter is associated to an access point or another client. It indicates that the client adapter is associated to an access point or another client. E. that the user is authenticated if the client adapter is configured for EAP authentication. Any Time.www. and that the signal strength is excellent or good. It indicates that the client adapter is associated to an access point or another client. It indicates that the client adapter is not associated to an access point or another client.

showisis database D. Any Time. showisis topology C.com Ac Above is the output from show ip bgp neighbors command. while the "show isis database" shows LSP ID information. What is line 21 stating about the BGP connection? tua lTe sts ." .www. show is-is neighbors detail B. show clns neighbors detail Answer: D Explanation: The command " show CLNS neighbors" database gives you information about the known system ID's.Cisco 642-892: Practice Exam Which command lists the system IDs of all known IS-IS routers? A.co m 13 .actualtests. Here is a sample output from a router's IS-IS link-state database: Example: QUESTION NO: 15 "Pass Any Exam. show clns neighbors E.

B.actualtests.gif A. Any Time. Endpoint 1 is the only acceptable place to establish a trust boundary. the number of total TCP connections that the router has .co m 14 . Which statement is true about where trust boundaries should be established in a network? Exhibit: 55-1.com Ac tua QUESTION NO: 16 lTe Answer: C sts A." . Endpoint 3 is an acceptable place to establish a trust boundary. "Pass Any Exam.www.Cisco 642-892: Practice Exam Refer to the exhibit. the number of times the router has established a TCP connection D. Endpoints 1 and 2 are optimal places to establish a trust boundary. the number of consecutive TCP connections to the specified remote neighbor B. the number of neighbors that the router has C.

move it down to the distribution layer on a case-by-case basis. of traffic as close to the edge of the network as possible." . An integral part of the Cisco network design architecture has always been the classification. the IP phone is the edge of the managed network. Endpoint 1 is an acceptable place to establish a trust boundary. D.cisco. it is critical to make sure that the PC connected to the access port of the IP phone is not also classifying traffic.co m 15 . Endpoint 2 is the only acceptable place to establish a trust boundary. Cisco IP phones mark all VoIP traffic with CoS =5 and DSCP=46. meaning the IP phone will re-classify all traffic coming from the PC with CoS=0. If necessary. or coloring. Endpoint 1 is the optimal place to establish a trust boundary. References: www. However. Endpoints 2 and 3 are optimal places to establish a trust boundary.www. E.com/en/US/products/hw/video/ps1870/products_implementation_design_guide_chapte r09186a00808f10a7.com Ac tua lTe sts .Cisco 642-892: Practice Exam C. Endpoints 2 and 3 are acceptable places to establish a trust boundary. the IP phone can and should classify traffic flows. Try to maintain the trust boundary in the wiring closet. Answer: E Explanation: Trust Boundaries: When connected by a single cable.html www. What statement is true about the configuration on switch CAT1? "Pass Any Exam. The recommended method for ensuring this is to extend the trust boundary of the Ethernet switch to the IP phone and not beyond. F. Endpoint 2 is the optimal place to establish a trust boundary. Any Time.html QUESTION NO: 17 Refer to the exhibit. Endpoints 1 and 3 are acceptable places to establish a trust boundary. By default.cisco.com/en/US/products/sw/cscowork/ps2064/products_user_guide_chapter09186a00800 7ff73.actualtests. This advice conforms to the general guidelines for keeping the trust boundary as close to the source as possible. As such. but avoid moving it to the core of the network.

"Pass Any Exam.www. B. The configuration establishes policed DSCP on ports Fa0/11 and Fa0/12 with values ranging from 8 to 56. Security violation shutdown mode has been activated for ports Fa0/11 and Fa0/12. C.co m 16 .actualtests.d2b7 are connected to CAT1 ports Fa0/11 and Fa0/12.d1a7 and 0007.Cisco 642-892: Practice Exam A.8595." . respectively. Two IP phones with the MAC addresses of 0008. Any Time.8595.com Ac tua lTe sts .

Cisco 642-892: Practice Exam D.co m 17 . and port access will be limited to those four dynamically learned addresses. E. Answer: A Explanation: Port security is a feature supported on Cisco Catalyst switches that restricts a switch port to a specific set or number of MAC addresses.actualtests. The port will then provide access to frames from only those addresses. "Pass Any Exam. F. If. The configuration overrides 802.1p priorities on packets entering ports Fa0/11 and Fa0/12 with a value of 48. Port Security Implementation: QUESTION NO: 18 Refer to the exhibit. Any Time.www.com Ac tua lTe sts . Those addresses can be learned dynamically or configured statically. the port will allow any four MAC addresses to be learned dynamically. Untagged Port VLAN ID (PVID) frames will carry voice traffic on VLAN 40." . however. The configuration overrides the Quality of Service value in packets entering ports Fa0/11 and Fa0/12 with a value of 45. the number of addresses is limited to four but no specific MAC addresses are configured.

25. The following process summarizes how BGP chooses the best route on a Cisco router. prefer the route that the local router originated. It advertises the best MED.0." . it chooses the best path to reach a specific destination. F. D.Cisco 642-892: Practice Exam Answer: C Explanation: After BGP receives updates about different destinations from different autonomous systems.0. "Pass Any Exam. B. Any Time.) If multiple routes have the same local preference.25. It advertises the best AS-path. If none of the routes were locally originated.www.) If multiple routes have the same weight. If all origin codes are the same.0. What is the reason that router RT-3 chose router RT-1 as its best path to network 131. A locally originated route has a next hop of 0.0 in the BGP table. (The weight attribute is proprietary to Cisco and is local to the router only. E. (The local preference is used within an autonomous system. prefer the route with the highest local preference value. If the autonomous system path length is the same. C. prefer the route with the shortest autonomous system path. It advertises the best origin code.actualtests.0/16. prefer the lowest origin code (IGP < EGP < incomplete). It advertises a lower autonomous system.0/16 to router RT-3 via internal BGP. Prefer the route with the highest weight. lTe sts Router RT-1 and router RT-2 both advertise network 131.co m . It advertises the best local preference. .com 18 Ac tua A. It has a better router ID.0.

and ::/128 is the unspecified address.actualtests." . In a shared tree. if the router discovers an RP or you configure an RP statically. Prefer the route with the lowest neighbor BGP router ID value. ::/0 is the unicast address. unless the bgp always-compare-med command is enabled If the routes have the same MED.F Explanation: Sparse-mode routing protocols require the use of an Rendezvous Point (RP) and use shared trees . PIM sparse-dense mode acts as PIM dense mode if an RP is not known. If the BGP router IDs are the same. B. PIM sparse mode interfaces are always added to the multicast routing table in a router. and ::/128 is the multicast address. C. select the oldest route to minimize the effect of routes going up and down (flapping).) A. and ::/128 is the anycast address. the designated router. ::/0 is the default route. If synchronization is disabled and only internal paths remain. prefer the router with the lowest neighbor IP address. prefer external paths to internal paths. ::/0 is the unicast address. which then forwards the datagram to members of multicast groups. PIM sparse mode and PIM dense mode require an RP on the network. PIM sparse-dense mode and PIM dense mode require an RP on the network. However. . PIM dense mode interfaces are always added to the multicast routing table in a router. QUESTION NO: 20 What is the difference between the IPv6 addresses ::/0 and ::/128? A. For EBGP paths. prefer the path through the closest IGP neighbor. PIM sparse mode and PIM sparse-dense mode require an RP on the network. In PIM sparse-dense mode. F.C. QUESTION NO: 19 Which three statements are true about IP multicast configuration? (Choose three. The designated router encapsulates the datagram and unicasts it to an assigned RP router. (The MED is exchanged between autonomous systems. C. E.Cisco 642-892: Practice Exam prefer the path with the lowest MED. the router sends data using PIM dense mode. if an RP is not known for a group. Answer: B. sources forward multicast datagrams to a directly connected router.www. PIM sparse mode takes over. D.com Ac tua lTe sts .) The MED comparison is made only if the neighboring autonomous system is the same for all routes considered. B. Any Time.co m 19 . which means that the router prefers the shortest internal path within the autonomous system to reach the destination (the shortest path to the BGP next hop). "Pass Any Exam.

* IS-IS allows for the preempting of DRs. and ::/128 is the multicast address. * The backbone of an IS-IS network is designated by the type of routers in it instead of being "Pass Any Exam.draft-ietf-v6ops-rfc3330-for-ipv6-04.www. and ::/128 is the multicast address. ::/0 is the anycast address. When IS-IS is used strictly for the ISO CLNS environment. and ::/128 is the default address.ietf.com Ac tua lTe sts A.actualtests.org/html/draft-ietf-v6ops-rfc3330-for-ipv6-04 QUESTION NO: 21 Answer: B. they do have quite a few differences: * Whereas OSPF routers can be part of multiple areas. The boundaries of areas are on the network connections between routers for IS-IS. IS-IS distributes routing information for routing CLNP data for the ISO CLNS environment. Answer: A Explanation: : :/ 128 is the unspecified address (RFC4291).D.txt http://tools. does not require Hello packets to establish neighbor relationships F. all IS-IS intermediate systems form adjacencies with one another. Differences between IS-IS and OSPF. supports route tags D. As such. E. F.F Explanation: IS-IS is the dynamic link-state routing protocol for the OSI protocol stack. supports more routers in an area E. requires fewer neighbor relationships in a broadcast multiaccess network B. ::/0 is the anycast address. reiterating that each router is in only one area per routing process. : :/ 0 is the default unicast route address. while in the same environment.) 20 . where OSPF does not. it is referred to as ISO IS-IS. Reference: Special-Use IPv6 Addresses . Any Time." . * In OSPF. supports network layer protocols other than IP C. an IS-IS router belongs to only one area per routing process.co m Which three are benefits of IS-IS over OSPF? (Choose three. ::/0 is the unspecified address. Although IS-IS and OSPF share many common features. * IS-IS utilizes CLNS protocol data units (PDUs) to send information between routers instead of using IP packets.Cisco 642-892: Practice Exam D. produces fewer link state advertisements for a given network . * OSPF DROthers do not form adjacencies with other DROthers on broadcast multi-access networks. the boundaries of areas are set in the router. like OSPF does.

0. R1 is configured with the variance command. B.www. which three statements are true? (Choose three. in the case of OSPF). A manually configured IPv6 in IPv4 tunnel allows multiple IPv4 destinations.Cisco 642-892: Practice Exam designated by an area number (0. R1 is configured with the ip summary-address command.0 command.1. A manually configured IPv6 in IPv4 tunnel does not require dual-stack (IPv4 and IPv6) routers at the tunnel endpoints. B. Any Time. QUESTION NO: 23 A.co m Answer: A 21 . The router at 10. E. C. An automatic 6to4 tunnel does not require dual-stack (IPv4 and IPv6) routers at the tunnel endpoints.F "Pass Any Exam. A default route has been redistributed into the EIGRP autonomous system." . D.1. An automatic 6to4 tunnel allows multiple IPv4 destinations. C.2.) .0/16 was redistributed into EIGRP. The route to 10. F.0.2 is configured with the ip default-network 0.0.com Ac tua lTe sts Based on the exhibited output. QUESTION NO: 22 Which statement describes the difference between a manually configured IPv6 in IPv4 tunnel versus an automatic 6to4 tunnel? A. R1 is sourcing an external EIGRP route from Null0.C. D.actualtests. Answer: B.

"Pass Any Exam.67." .co m .0.2 lTe sts . its default local preference value will be changed via the use of the command bgp default local-preference 50. Which statement is true about how BGP would select the best path? A.actualtests. C. 10. ::10. ::0A43:0002 F.2:: D. D. then the router will prefer the route with the highest MED. Which three neighbor IP addresses are valid choices to use in the highlighted section of the exhibit? (Choose three. The router will prefer the route with the lower MED.67.67.Cisco 642-892: Practice Exam QUESTION NO: 24 Refer to the exhibit.www. Routers R1 and R2 are IPv6 BGP peers that have been configured to support a neighbor relationship over an IPv4 internetwork. To influence one route to bepreferred. Neither route was generated by the local router and both routes have the same default weight and local preference values. 10. Any Time. B.) Answer: A. 0:0:0:0:0:0:10.0.com 22 Ac tua A.0. If the command bgp always-compare-med has been given.E. 0A43:0002:: C.67.0. The router will prefer the shortest autonomous system path.2:0:0:0:0:0:0 E.F QUESTION NO: 25 A router has two paths to reach another network in a different autonomous system.2 B.

Prefer the path with the lowest multi-exit discriminator (MED). D.www.co m 23 . while the MED values are one of the last items looked at by BGP routers. then that route is identified as a feasible successor. Sparse mode uses reverse path forwarding (RPF) to prune off redundant flows.E QUESTION NO: 27 Identify three characteristics of EIGRP feasible successors? (Choose three. Prefer the path with the shortest AS_PATH. The following is a partial list of rules used by BGP to determine the best path. then the feasible successor can be used immediately without recalculating for a lost route.cisco. Any Time. lTe sts Which two multicast protocol statements are true? (Choose two." .shtml QUESTION NO: 26 Answer: D. B. If the advertised distance of the non-successor route is less than the feasible distance of best route. The primary use of sparse mode multicast is for test labs and router performance testing. C.) . C. Prefer the path that was locally originated via a network or aggregate BGP subcommand. Dense mode multicast uses a push model to flood traffic throughout the network and then prunes the unwanted traffic. and EGP is lower than INCOMPLETE. Local paths sourced by network or redistribute commands are preferred over local aggregates sourced by the aggregateaddress command. Note: WEIGHT is a Cisco-specific parameter. "Pass Any Exam. local to the router on which it's configured. B. If the successor becomes unavailable.) A. E. A feasible successor is selected by comparing the advertised distance of a non-successor route to the feasible distance of the best route.com/en/US/tech/tk365/technologies_tech_note09186a0080094431. Traffic will be load balanced between feasible successors with the same advertised distance. Sparse mode multicast uses a pull model to send multicast traffic to where it is requested. D. Note the following: Prefer the path with the lowest origin type: IGP is lower than EGP.com Ac tua A. Reference: http://www. Dense mode multicast requires explicit join messages from their members. Prefer the path with the highest LOCAL_PREF. or through redistribution from an IGP. Prefer the path with the highest WEIGHT.actualtests. The feasible successor can be found in the routing table.Cisco 642-892: Practice Exam Answer: A Explanation: The shortest AS path is the fourth item checked by BGP routers. E.

QUESTION NO: 28 Refer to the exhibit. Any Time. For each route. This prevents loops from occurring. This path with the best metric is entered into the routing table because this is the quickest way to get to that network. With the other possible routes to a particular network with larger metrics. called an Adjacency . Which configuration is reflected in the output that is displayed in the exhibit? "Pass Any Exam. the Reported Distance) must always be less than the metric (Feasible Distance) for the local router to reach that same network. What you should note here. the neighbor becomes a Feasible Successor for that route because it is one hop closer to the destination network. The Updates contain all the routes known by the sender. then this path is considered to be a Feasible Successor and is entered into the Topology table.e.com Ac tua lTe sts . is that the metric for a neighbor to reach a particular network (i. The Reported Distance for a particular route is compared with the Feasible Distance that it already has for that route. This is why routes that have Reported Distances larger than the Feasible Distance are not entered into the Topology table.B. If the receiving router has a Feasible Distance to a particular network and it receives an update from a neighbor with a lower advertised distance (Reported Distance) to that network.D Explanation: Once a neighbor relationship has been formed.www. so that they can never be considered as successors. The Successor for a particular route is the neighbor/peer with the lowest metric/distance to that network. up to 6 of them are entered into the Topology table thereby giving a number of next hop choices for the local router should the neighbor with the lowest metric fail. then the route with the lowest metric becomes the Feasible Distance (FD) to that network." . In this instance. If the Reported Distance is larger than the Feasible Distance then this route is not entered into the Topology Table as a Feasible Successor. the routers exchange routing update information and each router builds its own topology table. If the Reported Distance is smaller than the Feasible Distance.actualtests. since the route is likely to loop back through that local router. There may be a number of Feasible Successors in a meshed network environment. The Feasible Distance is the metric of a network advertised by the connected neighbor plus the cost of reaching that neighbor . then there is a Feasibility Condition . This way routing loops are avoided.Cisco 642-892: Practice Exam Answer: A. the receiving router also receives the Reported Distance (RD) to this network via other routers.co m 24 . If the receiving router sees several routes to a particular network with different metrics. The Reported Distance being the total metric along a path to a destination network as advertised by an upstream neighbor. the receiving router calculates a distance for that route based on the distance that is conveyed and the cost to that neighbor that advertised the particular route.

neighbor 192.28.28.30.1 route-map cisco in ! access-list 66 permit 10.0.www.0.0 0. "Pass Any Exam.255.28. neighbor 192.0. the route map must be applied to incoming updated from the 192.0.0.com 25 Ac tua lTe sts .0 0.actualtests.168.255 ! route-map cisco permit 10 match ip address 66 set local-preference 90 B.255.28.0.168.1 route-map cisco in ! access-list 66 permit 10.Cisco 642-892: Practice Exam A. Also." .30.0.1 route-map cisco out ! access-list 66 permit 10.1 peer since we are looking at the local BGP information that has been received by the peers.0/16 route has had its local preference modified to 90 from the default value of 100.0. neighbor 192.0 0.0 0.168.0.28. the 10.0. neighbor 192.0.255 ! route-map cisco permit 10 match ip address 66 set metric 90 Answer: A Explanation: In this example.255 ! route-map cisco permit 10 match ip address 66 set local-preference 90 C.255 ! route-map cisco permit 10 match ip address 66 set metric 90 D. as shown. Any Time.0.30.168.168.0.co m .1 route-map cisco out ! access-list 66 permit 10.

Call control signaling uses Real-Time Transport Protocol (RTP) packets that contain actual voice samples. should not exceed 75 percent of the total available bandwidth for each link. router RTB and RTC are not receiving each other's routes. and data. and data should not exceed 75% of the total capacity * Remote sites can use Cisco IOS as well as gateways based on the Skinny Gateway Protocol QUESTION NO: 30 Refer to the exhibit. and Layer 2 link header. interactive video.323 to set up. maintain.000 users maximum per site) * Cisco CallManager clusters are confined to a single campus and may not span the WAN * IP WAN as the primary voice path between sites." . video. A Voice over IP (VoIP) packet consists of the voice payload. Any Time. The voice carrier stream uses H. and data. video.Cisco 642-892: Practice Exam QUESTION NO: 29 Which statement is true about IP telephony calls? A. For voice. The Frame Relay network is configured with EIGRP.actualtests. RTP header.www.com 26 Ac tua lTe sts .164 address resolution * Cisco IOS gatekeeper for admission control to the IP WAN * Maximum of 100 sites interconnected across the IP WAN using hub and spoke topologies * Compressed voice calls supported across the IP WAN * Single WAN codec supported * DSP resources for conferencing and WAN transcoding at each site * Voice mail and unified messaging components at each site * Minimum bandwidth requirement for voice and data traffic is 56 kbps. voice and video integration. the bandwidth allocated to voice. and the entire network is in autonomous system 1. and tear down call endpoints. VOIP is the technology that uses Internet Protocol to transmit voice conversations over a data network such as an intranet or the Internet. D. The sum of bandwidth necessary for each major application. IP header. B. Answer: B Explanation: Voice over Internet Protocol (VOIP) is probably the most feasible among today's technologies for data. the minimum requirement is 768 kbps. The multisite IP WAN with distributed call processing has the following design characteristics: * Cisco CallManager or Cisco CallManager cluster at each location (10.co m . C. Router RTA is the hub router for routers RTB and RTC. with the PSTN as the secondary voice path * Transparent use of the PSTN if the IP WAN is unavailable * Cisco IOS gatekeeper for E. including voice. In each case. What is the solution? "Pass Any Exam. However. TCP header.

E.co m 27 . This behavior usually optimizes communications among multiple routing devices.com Ac tua A. In this example. Configure a distribute list on router RTA that allows it to advertise all routes to the spoke routers. with nonbroadcast networks (such as Frame Relay and SMDS) . Check and change the access lists on router RTA. routes received by RTB and RTC are not being sent back out the same serial interface on RTA. these packets are not sent for destinations for which this interface is the next hop. B. so they are not receiving each other's routes. situations can arise for which this behavior is less than ideal. This reduces the possibility of routing loops. Disabling Split horizons on interface S0/0 on RTA will fix this issue. Any Time.Cisco 642-892: Practice Exam Answer: C Explanation: Split horizon controls the sending of EIGRP update and query packets. Split horizon blocks route information from being advertised by a router out of any interface from which that information originated. Configure subinterfaces on the spoke routers and assign different IP address subnets for each subinterface. D.actualtests. you may want to disable split horizon. F. split horizon is enabled on all interfaces. lTe sts . "Pass Any Exam. By default. However. C. When split horizon is enabled on an interface." . Issue the no ip split horizon command on router RTA. Configure the auto summary command under router eigrp 1 on router RTA. particularly when links are broken. For these situations.www. Issue the no ip split horizon eigrp 1 command on router RTA.

"Pass Any Exam. What should be changed in the configuration to fix the problem? Explanation: You can configure a router to preempt or immediately take over the active role if its priority is the highest at any time.actualtests. Hot Standby Routing Protocol (HSRP) is configured on the network to provide network redundancy for the IP traffic. D. without delay. IPv4 does not provide a similar capability for hosts. You can use the delay keyword to force it to wait for seconds before becoming active. B. IPv6 allows a host to create its own IPv6 address that will allow it to communicate to other devices on a network configured via DHCP. The network administrator noticed that R2 does not became active when the R1 serial0 interface goes down. The Serial0 interface on router R1 should be configured with a decrement value of 20.www. R2 should be configured with a HSRP virtual address.Cisco 642-892: Practice Exam QUESTION NO: 31 Refer to the exhibit and the partial configuration on routers R1 and R2. sts .) A. QUESTION NO: 32 Which two statements are true about using IPv4 and IPv6 simultaneously on a network segment? (Choose two." . This is usually done if there are routing protocols that need time to converge. The Serial0 interface on router R2 should be configured with a decrement value of 20.co m . the router can preempt another immediately. IPv4 and IPv6 addresses can be simultaneously assigned to a host but not to a router interface. R2 should be configured with a standby priority of 100. B.com 28 Ac tua Answer: D lTe A. Any Time. C. Use the following interface configuration command to allow preemption: Switch( config-if)# standby group preempt [delay seconds] By default.

up to the latest version of DHCP. Which router configuration command can be given that will restrict router RTB from sharing its routing information with router RTA? "Pass Any Exam.E QUESTION NO: 34 Refer to the exhibit. While an IPv6 node may acquire address-related configuration settings via IPv6 stateless address autoconfiguration. D. 2001:d02::14::95 Answer: B. Host configuration options for IPv6 can be statically assigned only. 2001:0d02:::0014:0:0:0095 B.txt Which two reductions are the correct reductions of the IPv6 address 2001:0d02:0000:0000:0014:0000:0000:0095? (Choose two. such as DNS or NTP.ietf. 2001:0d02:::0014:::0095 D. Hosts can be configured to receive both IPv4 and IPv6 addresses via DHCP. 2001:d02:0:0:14::95 C.www. FF::0014:0:0:0095 E. E. such a node may wish to use stateless DHCPv6 [5] for other administratively configured options. That specification has been subsequently revised. 2001:d02::14:0:0:95 F.C Explanation: The original specification of the Dynamic Host Configuration Protocol (DHCP) was made with only IPv4 in minD.Cisco 642-892: Practice Exam C. With the arrival of IPv6. Any Time. IPv6 provides for more host IP addresses but IPv4 provides for more network addresses.org/rfc/rfc4477." .actualtests. a new DHCP specification for IPv6 has been designed and published as DHCPv6.co m 29 .) A. These protocols allow nodes to communicate via IPv4 or IPv6 (respectively) to retrieve configuration settings for operation in a managed environment. Reference: RFC 4477: Dynamic Host Configuration Protocol (DHCP): IPv4 and IPv6 Dual-Stack Issues http://www.com Ac tua lTe QUESTION NO: 33 sts . Answer: B. Host configuration options for IPv4 can be either statically assigned or assigned via DHCP.

the eigrp stub connected command on router RTB F.com 30 Ac tua Explanation: A router that is configured as a stub with the eigrp stub command shares connected and summary routing information with all neighbor routers by default. The receive-only keyword will restrict the router from sharing any of its routes with any other router in that EIGRP autonomous system.co m .actualtests. and the receive-only keyword will not permit any other option to be specified because it prevents any type of route from being sent. In this example.www. the eigrp stub receive-only command on router RTB E. and these options can be used in any combination except for the receive-only keyword. Any Time. the eigrp stub command on router RTA D. the "eigrp stub receive-only" command needs to be "Pass Any Exam. the eigrp stub receive-only command on router RTA C.Cisco 642-892: Practice Exam Answer: D receive-only connected static summary The eigrp stub command can be modified with several options." . the eigrp stub connected command on router RTA . Four optional keywords can be used with the eigrp stub command to modify this behavior: lTe sts A. the eigrp stub command on router RTB B.

In most cases. HSRP router number E. establishing separate autonomous systems D.com/en/US/products/sw/iosswrel/ps1829/products_feature_guide09186a0080087 026.cisco. route summarization Answer: D Explanation: EIGRP automatically summarizes routes at the classful boundary. configuring route filters C. use the following command: Router( config-router)# no auto-summary EIGRP also enables manual configuration of a prefix to use as a summary address. Reference: Building Cisco Multilayer Switched Networks (Cisco Press) page 268 sts .co m .The fact that the MAC address is for an HSRP virtual router is indicated in the next two bytes of the address.ac0a what does 07.com 31 Ac tua lTe Explanation: HSRP code (HSRP well-known virtual MAC address) .ac represent? A. Manual "Pass Any Exam. Reference: http://www.Cisco 642-892: Practice Exam placed on router Hub to prevent it from sending any route information to Hub. automatic summarization must be disabled for routing to work properly.actualtests. Any Time. To turn off auto-summarization. The HSRP code is always 07.ac numerical value. HSRP well-known virtual MAC address Answer: E QUESTION NO: 36 Which is the most effective technique to contain EIGRP queries? A. HSRP well-known physical MAC address C." . vendor code D.html QUESTION NO: 35 In the hardware address 0000. using a hierarchical addressing scheme B. auto summarization is a good thing. which always contains the 07.www. keeping the routing tables as compact as possible In the presence of discontiguous subnetworks.aC. HSRP group number B.0c07. The HSRP protocol uses a virtual MAC address. the boundary where the network address ends as defined by class-based addressing.

if nothing is configured. You should always try to do classification close to the edge of the network. the IP phone re-marks the Layer 2 CoS value to the new value (if configured on the access layer switch) or changes it to 0. Trust boundaries are used to determine which QoS mechanism will be applied to the traffic. In untrusted mode.www. The default is untrusted mode. the untrusted traffic will be marked with a new QoS value appropriate for the policy in place at the point where the traffic entered the campus network. you can force the scheduling of the packets into different queues. the IP phone passes all the data unchanged. you can define the trust boundaries in your network.com Ac tua lTe sts . At the trust boundaries. Trust boundaries are configured in the core of the network to provide the most efficient forwarding based upon QoS markings.Cisco 642-892: Practice Exam summary routes are configured on a per-interface basis. Setting the trust boundary at the IP phone means that you can accept all the IP phone markings into the network without modifications." . The interface that will propagate the route summary must first be selected and then defined with the ip summary-address eigrp command. which has the following syntax: Router( config-if)#ip summary-address eigrp autonomous-system-number ip-address mask administrative-distance QUESTION NO: 37 Which two statements are true about trust boundaries? (Choose two. Answer: A.C Explanation: The packets that enter your network or hardware can be marked into different classes.asp?p=385336&seqNum=2 QUESTION NO: 38 HOTSPOT "Pass Any Exam. for scalability.1Q/p) from the PC or any other device that is attached to the access port of the IP phone can be trusted or untrusted. Setting trust boundaries at the edge of the network allows intermediate hop devices to administer QoS policies without detailed packet identification. The packets that come from trusted devices are considered trusted because the trusted devices classify the packets correctly. D.co m 32 .actualtests. Defining trust boundaries is important in your network.) A. B.ciscopress. On an IP phone. which is the recommend method.com/articles/article. The packets that come from untrusted devices are considered untrusted because they might not classify the packets correctly. After you have marked the packets and defined the trust boundaries. Any Time. You can define some devices as trusted devices and some as untrusted devices. In trusted mode. the tagged data (802. C. Reference: http://www. These queues invoke at the time of congestion.

Cisco 642-892: Practice Exam Answer: "Pass Any Exam." . Any Time.co m 33 .com Ac tua lTe sts .www.actualtests.

Cisco 642-892: Practice Exam QUESTION NO: 39 In which three HSRP states do routers send hello messages? (Choose three. listen "Pass Any Exam. standby B. Any Time. learn C." .actualtests.) A.co Explanation: m .com 34 Ac tua lTe sts .www. speak D.

The standby router is then clear to assume the active role. the active router is presumed down. VRRP. Init. The master router is the one with the highest router "Pass Any Exam. GLBP allows automatic selection and simultaneous use of multiple available gateways. VRRP provides one redundant gateway address from a group of routers. VRRP The Virtual Router Redundancy Protocol (VRRP) is a standards-based alternative to HSRP. Any Time. GLBP allows for router load balancing of traffic from a network segment without the different host IP configurations required to achieve the same results with HSRP.com 35 Ac tua lTe sts .) A. Rather than having just one active router performing forwarding for the virtual router address. finally. The active router is called the master router .actualtests. Listen. This forces a router to listen for others in a group and see where it fits into the pecking order.C. GLBP To provide a virtual router. HSRP allows for multiple upstream active links being simultaneously used. defined in IETF standard RFC 2338.www. the next-highest priority router is allowed to become the new standby router. whereas GLBP does not. E.co QUESTION NO: 40 m . GLBP and VRRP allow for MD5 authentication. Speak.Cisco 642-892: Practice Exam E. the router progresses through a series of states before becoming active. multiple switches (routers) are assigned to a common GLBP group. Active. while all others are in the backup state . all routers in the group can participate and offer load balancing by forwarding a portion of the overall traffic. By default. Which two statements are true about HSRP. The HSRP state sequence is Disabled. Only the standby (second highest priority) router monitors the hello messages from the active router. B. Answer: C. 2. and GLBP? (Choose two. C. or 3 times the hello timer). Unlike HSRP and VRRP.D Explanation: 1. and. Standby. D. whereas HSRP does not. hellos are sent every 3 seconds.E Explanation: When HSRP is configured on an interface. GLBP allows for router load balancing of traffic from a network segment by utilizing the creation of multiple standby groups. If other routers are sitting in the Listen state. If hellos are missed for the duration of the holdtime timer (default 10 seconds." . active Answer: A. VRRP is so similar to HSRP that you need to learn only slightly different terminology and a couple of slight functional differences.

" . VRRP advertisements are sent at 1-second intervals. QUESTION NO: 41 HOTSPOT "Pass Any Exam.co m 36 . another is elected as the standby HSRP router. 3. all VRRP routers are configured to preempt the current master router. Any Time. RFC 2281 describes this protocol in more detail. The virtual router MAC address is of the form 0000. where xx is a two-digit hex VRRP group number. router priorities range from 1 to 254 (254 is the highest. HSRP router. The routers exchange HSRP hello messages at regular intervals.01 xx . as well as that of the active router. or active. if their priorities are greater.Cisco 642-892: Practice Exam priority in the VRRP group. HSRP HSRP is a Cisco-proprietary protocol developed to allow several routers (or multilayer switches) to appear as a single gateway address. Basically.5e00.com Ac tua lTe sts .www. and all the others remain in the listen HSRP state. Backup routers can optionally learn the advertisement interval from the master router. One router is elected as the primary. 100 is the default). VRRP has no mechanism for tracking interfaces to allow more capable routers to take over the master role. By default. VRRP group numbers range from 0 to 255. each of the routers that provides redundancy for a given gateway address is assigned to a common HSRP group.actualtests. so they can remain aware of each other's existence.

Any Time.co m 37 .www.com Ac tua lTe sts .actualtests." .Cisco 642-892: Practice Exam Answer: Explanation: "Pass Any Exam.

actualtests. The trailer contains a cyclic redundancy check (CRC) value to ensure the data integrity of the new encapsulated frame. ISL is sometimes referred to as double tagging . D. The source VLAN is identified with a 10-bit VLAN ID field in the header. A Catalyst switch cannot have ISL and IEEE 802. ISL adds a 26-byte header and a 4-byte trailer to the frame. Because tagging information is added at the beginning and end of each frame. Figure 6-3 shows how Ethernet frames are encapsulated and forwarded out a trunk link. C. although Cisco has included provisions to carry Token Ring. ISL trunking requires that native VLANs match.www. and ATM frames over Ethernet ISL. (A Frame-Type field in the ISL header indicates the source frame type." . ISL is primarily used for Ethernet media. Any Time.Cisco 642-892: Practice Exam QUESTION NO: 42 Which statement is true regarding the configuration of ISL trunks? A. FDDI. QUESTION NO: 43 "Pass Any Exam.1q trunks enabled.) When a frame is destined out a trunk link to another switch or router. ISL performs frame identification in Layer 2 by encapsulating each frame between a header and trailer. All Catalyst switches support ISL trunking. B. Any Cisco switch or router device configured for ISL can process and understand the ISL VLAN information. A Catalyst switch will report giants if one side is configured for ISL while the other side is not.com Ac tua lTe sts . Answer: B Explanation: The Inter-Switch Link (ISL) protocol is a Cisco proprietary method for preserving the source VLAN identification of frames passing over a trunk link.co m 38 .

Configure the net system-id and the network net-id commands under routerisis and enable ISIS on each interface with the ip router isis command. However. Any Time. D. EIGRP has been configured for load balancing across the three links. traffic destined for Network B from R1 is only load balanced over paths R1-R2-R5 and R1-R3-R5. B. "Pass Any Exam. Configure the net system-id command under routerisis and enable IS-IS on each interface with the ip router isis command. you must perform the following two tasks: Enable the IS-IS process and assign area Enable IS-IS for IP routing on an interface The sample configuration below configures an IS-IS router with the following parameters: Area 49. What is the cause of the problem? tua lTe sts .com/en/US/tech/tk365/technologies_configuration_example09186a0080093f38. C. EIGRP will not select path R1-R4-R5 for load balancing. Configure the network net-id command(s) and the is-type level-1-2 command under routerisis.cisco. On all routers in the network.co m .0001 Level 1 (L1) and Level 2 (L2) routers (this is the default unless otherwise specified) No optional parameters Running IS-IS for IP only Loopback interfaces (loopbacks are advertised by IS-IS. E.s html QUESTION NO: 44 A.com 39 Ac Refer to the exhibit. Configure the net system-id and the network net-id commands under routerisis.actualtests." . Configure the network net-id command(s) under routerisis and enable IS-IS on each interface with the ip router isis command.www.Cisco 642-892: Practice Exam What are the basic configuration steps to enable IS-IS? A. Answer: B Explanation: In order to enable IS-IS for IP on a Cisco router and have it exchange routing information with other IS-IS enabled routers. not IS-IS enabled) Reference: http://www. Because Router R4 is not a feasible successor.

Answer: A QUESTION NO: 45 Which statement is true about EBGP? A. EBGP neighbors do not need to physically be connected to each other. A static route can be used to form an adjacency between neighbors. Unlike interior routing protocols. The AP confirms authentication and registers the client. a static route can be used with the EBGP multihop command to establish a neighbor adjacency. B. What is the correct process order that the client and access point go through to create a connection? tua lTe Explanation: Only choice C is correct. The client evaluates the AP responses and selects the best AP. The client sends an authentication request to the AP.co m . and a valid TCP port 179 connection between the BGP routers. association request/response. The client then sends an association request "Pass Any Exam.com 40 Ac A client is searching for an access point (AP).actualtests. association request/response D. All that is needed is a path to the peer IP address. EIGRP will not select path R1-R4-R5 for load balancing unless the value of the variance parameter is increased. EBGP requires a full mesh. authentication request/response Answer: C Explanation: From the Cisco FAQ on Cisco Aironet Wireless Security: What steps does Open Authentication involve for a client to associate with the AP? The client sends a probe request to the APs. The APs send back probe responses. authentication request/response. C.www. An internal routing protocol can be used to reach an EBGP neighbor. Any Time. association request/response. The next hop does not change when BGP updates are exchanged between EBGP neighbors. C." . D. authentication request/response C. probe request/response. To reach a EBGP peer. association request/response. probe request/response. probe request/response B. Answer: B QUESTION NO: 46 A. probe request/response. Because the path has a different link type. authentication request/response. sts . EIGRP will not select path R1-R4-R5 for load balancing. D.Cisco 642-892: Practice Exam B. EIGRP will not select more than two links for unequal cost path load balancing.

all untagged traffic is sent according to the default CoS priority of the port. The voice VLAN feature is disabled by default.1P or 802. The AP confirms the association and registers the client. Reference: http://www. the CoS value is trusted for all 802.1q tagged traffic. The CoS value is trusted for 802.com/en/US/tech/tk722/tk809/technologies_q_and_a_item09186a00805e8297.1(13 )EA1 . E.1Q tagged traffic.sht ml QUESTION NO: 47 Which three statements are true about the voice VLAN feature on a Catalyst 2950 switch? (Choose three. The IP phone accepts the priority of all tagged and untagged traffic and sets the CoS value to 4.actualtests. F.1Q tagged traffic. Any Time.www. The default CoS value for incoming traffic is set to 0. The IP Phone overrides the priority of all incoming traffic (tagged and untagged) and sets the CoS value to 0.com Ac tua Explanation: Default Voice VLAN Configuration The voice VLAN feature is disabled by default.B.D In software releases earlier than Cisco IOS Release 12.1p or 802. and the IP Phone does not override the priority of the incoming traffic. How will interface FastEthernnet0/1 respond when an 802. D. Answer: A.html QUESTION NO: 48 Refer to the exhibit. When the voice VLAN feature is enabled. The default CoS value is 0 for incoming traffic. The CoS value is not trusted for 802. Reference: http://www.co m 41 .1_19_ea1/config uration/guide/swvoip. B." .com/en/US/docs/switches/lan/catalyst2950/software/release/12. When the voice VLAN feature is enabled. C.cisco.1P or 802.cisco.1x-enabled client connects to the port? "Pass Any Exam. all untagged traffic is sent according to the default CoS priority of the port. Note: lTe sts .Cisco 642-892: Practice Exam to the AP. PortFast is is automatically disabled when a voice VLAN is configured.) A.

Cisco 642-892: Practice Exam A. allowing only EAPOL frames to be sent and received through the port. Answer: B Explanation: The IEEE 802. Example: "Pass Any Exam.co m 42 . You control the port authorization state by using the dot1x port-control interface configuration command and these keywords: force-authorized : Disables 802. C. force-unauthorized : Causes the port to remain in the unauthorized state. The authentication server authenticates each workstation that is connected to a switch port before making available any services offered by the switch or the LAN. The switch will uniquely authorize the client by using the client MAC address. The switch will cause the port to remain in the unauthorized state. Any Time. Until the workstation is authenticated. This is the default setting. The authentication process begins when the link state of the port transitions from down to up (authenticator initiation) or when an EAPOL-start frame is received (supplicant initiation).www. The switch port will disable 802.1x access control allows only Extensible Authentication Protocol over LAN (EAPOL) traffic through the port to which the workstation is connected.1x-based authentication of the client.1x standard defines a port-based access control and authentication protocol that restricts unauthorized workstations from connecting to a LAN through publicly accessible switch ports. normal traffic can pass through the port. After authentication succeeds.1x port-based authentication and causes the port to begin in the unauthorized state." . The switch port will enable 802. 802. The switch uniquely identifies each client attempting to access the network by using the client MAC address. The port transmits and receives normal traffic without 802.1x port-based authentication and causes the port to transition to the authorized state without any authentication exchange required. D.com Ac tua lTe sts . ignoring all attempts by the client to authenticate. The switch requests the identity of the client and begins relaying authentication messages between the client and the authentication server. B.1x port-based authentication and cause the port to transition to the authorized state without any further authentication exchange. ignoring all attempts by the client to authenticate.1x port-based authentication and begin relaying authentication messages between the client and the authentication server.actualtests. auto : Enables 802. The switch cannot provide authentication services to the client through the interface.

Given the number of configuration steps involved. The CMU Multicast Server multicasts to hosts on multilayer switches 1-6. Any Time. The RPI Multicast Server only multicasts to hosts connected to multilayer switches 5 and 6. what is the most efficient way to configure the network while meeting the requirements for multicast data flow? lTe sts ." .www.co m 43 .actualtests.Cisco 642-892: Practice Exam QUESTION NO: 49 "Pass Any Exam.com Ac tua Refer to the network of Layer 3 switches in the exhibit.

Allow the switches to elect their own root for each multicast tree. Configure each switch with PIM sparse-dense mode. F. C. Leave each multicast server as the root of its own multicast tree. Configure each switch with PIM sparse mode and a separate instance of PIM dense mode.actualtests. Configure each switch with PIM dense mode." . Configure switch 3 as a rendezvous point for the RPI multicast stream. Specify switch 1 as the root for the RPI Multicast Server.co m 44 . Configure each switch with PIM sparse mode and a separate instance of PIM dense mode. E. Configure each switch with PIM sparse mode. Answer: A "Pass Any Exam.www.Cisco 642-892: Practice Exam A.com Ac tua lTe sts . D. Specify switch 2 as the root for the CMU Multicast Server. Configure each switch with PIM sparse mode and a separate instance of PIM dense mode. B. Any Time.

HSRP D.co m 45 . B. The advantage is that none of the clients have to be pointed toward a specific gateway address-they can all have the same default gateway set to the virtual router IP address." . QUESTION NO: 51 A.com Ac Refer to the exhibit. What additional configuration is required for the routers connected over the Frame Relay multipoint interfaces to compensate for a low-speed NBMA connection? tua lTe sts . Any Time. The load balancing is provided completely through the use of virtual router MAC addresses in ARP replies returned to the clients.www. "Pass Any Exam. As a client sends an ARP request looking for the virtual router address. IRDP B. GLBP C. EIGRP is enabled on all routers on the network. Configure the EIGRP hold time on all Frame Relay interfaces to 15 seconds.actualtests. VRRP Answer: B Explanation: To provide a virtual router.Cisco 642-892: Practice Exam QUESTION NO: 50 Which protocol allows for the automatic selection and simultaneous use of multiple available gateways as well as automatic failover between those gateways? A. multiple switches (routers) are assigned to a common GLBP group. GLBP sends back an ARP reply with the virtual MAC address of a selected router in the group. Rather than having just one active router performing forwarding for the virtual router address. The result is that all clients use the same gateway address but have differing MAC addresses for it. Configure the bandwidth on all EIGRP Frame Relay interfaces to the committed information rate (CIR). all routers in the group can participate and offer load balancing by forwarding a portion of the overall traffic.

gif A.com 46 Ac tua lTe sts . E. Any Time. Configure the EIGRP hold time on all Frame Relay interfaces to 180 seconds. at the access switch Answer: D Explanation: The example shown is a properly configured switch where the trust boundary is being set at the access port on the switch itself. at the IP phone B. at the distribution switch D. at the PC C. On basis of the configuration that is provided. Configure the EIGRP hello interval on all Frame Relay interfaces to 5 seconds.Cisco 642-892: Practice Exam C. The "mls qos trust cos" command enables QoS (Quality of Services ) based on COS (Class of service).www. The "switchport priority cos <priority>" value sets the priority values to frame coming from PC to switch port.actualtests. Configure the EIGRP hello interval on all Frame Relay interfaces to 60 seconds. D. Answer: D QUESTION NO: 52 Refer to the exhibit. where will the trust boundary be established in this network? Exhibit: 10-c. The "switchport voice vlan vlan-id dot1q" command enables voice VLAN on switch port and associated VLAN." . F. Configure the bandwidth on all EIGRP Frame Relay interfaces to the lowest CIR multiplied by the number of PVCs for the multipoint connection. "Pass Any Exam.co m .

3 masks i L1 10.4." .actualtests. R2# show ip route <output omitted> 10.200.1.com Ac tua lTe sts .0.0/24 [115/20] via 10.4.1.co m 47 .2.200. Serial1/0 "Pass Any Exam.3.www.13/32 [115/30] via 10.2. Any Time.0. What is the correct output of the command show ip route on router R2? A. Serial1/1 i L1 10.200.14/32 [115/20] via 10.1.Cisco 642-892: Practice Exam QUESTION NO: 53 Refer to the exhibit.1. 7 subnets.1.0/8 is variably subnetted.200. Serial1/0 i L2 10.0.

1.0. Serial1/1 i L1 10.0/24 [115/20] via 10.0/8 is variably subnetted.200.0/24 is directly connected.1.1. Serial1/1 i L1 10.0.2.4.Cisco 642-892: Practice Exam C 10.1.2.0. Serial1/1 i L1 10.www.200.3.0. Serial1/1 "Pass Any Exam.1.0.1.2.1.0.0/24 [115/20] via 10.2.co m 48 .0.0.14/32 [115/20] via 10.0/23 [115/10] via 0.13/32 [115/30] via 10.0/24 [115/20] via 10.1. Serial1/0 i su 10. 2 masks i L1 10.0/24 [115/20] via 10.0.1.4.2.1.0/24 is directly connected.2. 6 subnets.2.200.2.0/24 is directly connected. R2# show ip route <output omitted> 10.com Ac tua lTe sts .1.1.0/24 [115/20] via 10.0/24 is directly connected.1.1.1.1.2.0.1.1.1. Serial1/1 D.1.1.1.13/32 [115/30] via 10. Serial1/0 i L1 10.1.1.200. Serial1/0 C 10.1.200.1. 2 masks i L2 10. 2 masks i L1 10. Serial1/1 C 10. Serial1/1 C 10.0/24 is directly connected.200.0. 6 subnets.0/8 is variably subnetted.2.14/32 [115/20] via 10.4.0/24 is directly connected. 2.0/24 is directly connected. Serial1/1 B. Serial1/1 i L1 10.4.1.200. R2# show ip route <output omitted> 10.0.1.0/24 [115/20] via 10.1.1. Serial1/0 C 10.4.200.0.1. R2# show ip route <output omitted> 10.0. Serial1/0 [115/30] via 10.13/32 [115/30] via 10. Any Time. Serial1/1 C. 6 subnets.200. Serial1/1 E.14/32 [115/20] via 10. Serial1/1 i L2 10.0. Serial1/0 i L1 10.1.1.3. 6 subnets.13/32 [115/30] via 10.1.200.2.0/24 [115/20] via 10. Serial1/0 C 10.0.0/23 [115/20] via 10.1. Serial1/0 i L2 10.0.0. Serial1/0 i L2 10. Serial1/0 i L2 10. Serial1/0 i L1 10.1.14/32 [115/20] via 10.1.1.200. Serial1/1 i L2 10.1.1.4. 2 masks i L1 10.1.200.200.2." . Serial1/0 i L2 10.0. Serial1/0 i L2 10. Serial1/0 i L2 10.0.4.200.0.0/8 is variably subnetted.2.0.200. Null0 C 10.1.1.2.1.1.3.0/24 is directly connected.3.0/24 is directly connected. Serial1/1 C 10.1.1.1.0.200. R2# show ip route <output omitted> 10.0.0.0/24 [115/20] via 10.1.0.4.0/8 is variably subnetted.0/24 is directly connected.1.4.actualtests.1.

C. Another method used to prevent VLAN hopping is to prevent automatic trunk configuration. Enable BPD guard. updates.com/en/US/products/hw/switches/ps708/products_white_paper09186a00801315 9f. Disable CDP on ports where it is not necessary.cisco.co m 49 . debug eigrp packets Answer: C "Pass Any Exam.shtml QUESTION NO: 55 Which command displays statistics on EIGRP hello. E. unauthorized access can be thwarted through fundamental physical and logical barriers.Cisco 642-892: Practice Exam Answer: C QUESTION NO: 54 What two steps can be taken to help prevent VLAN hopping? (Choose two.www. Any Time. B. Hackers used 802. Implement port security.) A. show ip eigrp neighbors B." . if a switch port were configured as DTP auto and were to receive a fake DTP packet. show ip eigrp topology C. show ip eigrp traffic D. D. By not granting connectivity or by placing a device into a VLAN not in use. it might become a trunk port and it might start accepting traffic destined for any VLAN. and acknowledgments? A. Place unused ports in a common unrouted VLAN. Prevent automatic trunk configurations. or a separate unrouted VLAN. Answer: B. a malicious user could start communicating with other VLANs through that compromised port. For example. replies. queries. Reference: VLAN Security White Paper.E Explanation: To prevent VLAN hoping you should disable unused ports and put them in an unused VLAN. which are malicious schemes that allow a user on a VLAN to get unauthorized access to another VLAN.actualtests. Cisco Systems http://www.1Q and ISL tagging attacks. Therefore.com Ac tua lTe sts .

the administrator must provide DHCP and DNS servers on all subnets or use the Cisco IOS software helper address feature. RTA(config)# interface fastethernet0/1 RTA(config-if)# ip forward-protocol udp 69 C.2. Some clients might need to broadcast to locate a TACACS security server. clients might not reside on the same subnet as key servers. Cisco routers and other devices might use broadcasts to locate TFTP servers. an error is produced.1. Some clients are unable to make a connection without services such as DHCP. In a complex hierarchical network.10 D. RTA(config)# interface fastethernet0/1 RTA(config-if)# ip helper-address 10." . ASw1# copy tftp running-config lTe sts . by default.10/24. When possible.1. but routers. Running services such as DHCP or DNS on several computers creates overhead and administrative problems. For this reason.24 ASw1(config-if-range)# ip forward-protocol udp 69 B. a router can be configured to accept a broadcast request for a UDP service and then forward it as a unicast to a specific IP address "Pass Any Exam. whenever the copy running-config tftp command is issued with default options on switch ASw1. so the first option is not very appealing.10 E. do not forward client broadcasts beyond their subnet. ASw1(config)# interface range fastethernet 0/1 .1.co m . A network administrator consoles into the ASw1 switch and attempts to save the switch configuration to the TFTP server that is located at IP address 10. Such remote clients broadcast to locate these servers.actualtests.Cisco 642-892: Practice Exam QUESTION NO: 56 Refer to the exhibit. RTA(config)# interface fastethernet0/0 RTA(config-if)# ip forward-protocol udp 69 F. By using the ip helper-address command. Which configuration would correct this situation? Answer: C Explanation: DHCP is not the only critical service that uses broadcasts. Any Time.2.2. administrators use the ip helper-address command to relay broadcast requests for these key User Datagram Protocol (UDP) services. However.com 50 Ac tua A.www. RTA(config)# interface fastethernet0/0 RTA(config-if)# ip helper-address 10.

enables Etherchannel only D. auto.ciscopress.cisconet. For switches to which you want to form an EtherChannel. Ports can form an EtherChannel when they are in different channel modes as long as the modes are compatible.html QUESTION NO: 58 Which statement is true about IPv6? "Pass Any Exam. Auto: PAgP is running passively.actualtests. enables PAgP unconditionally m . PAgP packets are exchanged only between ports in auto and desirable mode. and desirable. There are four user-configurable channel modes: on. enables LACP unconditionally E.com/articles/article. This list provides examples: Reference: http://www. enables LACP only if a LACP device is detected C. On: PAgP will not run. Both the auto and desirable modes allow ports to negotiate with connected ports to determine if they can form a channel. trunking state." . Off: PAgP will not run.com/index.co A. The formation of a channel is desired. enables PAgP only if a PAgP device is detected B.Cisco 642-892: Practice Exam By default. The determination is based on criteria such as port speed. it is best to have both switches set to desirable mode. the ip helper-address command will forward these 8 UDP ports: Reference: http://www. The default mode of the channel is auto. Any Time. This gives the most robust behavior if one side or the other encounters error situations or is reset. it is not initiated. The channel is forced to remain down.php/EtherChannel/EtherChannel-configure-mode-withPAgP. off.asp?p=330807&seqNum=9 QUESTION NO: 57 Refer to the exhibit. What does the command channel-group 1 mode desirable do? Explanation: The PAgP modes are explained below. Ports configured in on or off mode do not exchange PAgP packets.www. The formation of a channel is desired and initiated. however.com 51 Ac tua lTe sts Answer: A.E . Desirable: PAgP is running actively. and native VLAN. The channel is forced to come up.

D. B.www.) Explanation: Since preemption has been configured. The local IP address of Router A is 10. Answer: A QUESTION NO: 59 Examine the router output above. When Ethernet 0/3 of RouterA comes back up. we know that when any router comes back up. B.actualtests." .com 52 Ac Answer: C. C. Which two items are correct? (Choose two. E.cisco.0.com/en/US/docs/switches/lan/catalyst3550/software/release/12. the priority will become 105. Any Time.html HSRP election is based on a priority value (0 to 255) that is configured on each router in the "Pass Any Exam.D tua A.0.co m . The local IP address of Router A is 10. lTe sts .Cisco 642-892: Practice Exam A. If fast0/2 were to come up as well.1.1. Reference: http://www. it will become the active router as long as it has a higher priority value. If the interface were to come up. the current priority shows it to be 95. Router A will assume the active state if its priority is the highest. If Ethernet 0/2 goesdown. Only one IPv6 address is assigned per node. it would now be 95 + 10 (which is the default value) so the total value would then become 105. In this example. C.20. Only one IPv6 address can be assigned to each interface.6. the standby router will take over. Each host can autoconfigure its address without the aid of a DHCP server.1_12c_ea1/confi guration/guide/swhsrp. it would then be 105 + 15 (special override as seen in the command) = 120.

com Ac tua lTe sts A.00.5 to an application running on a device with an Ethernet MAC address of 01.80 Answer: C QUESTION NO: 62 Refer to the exhibit.7d. finally. Init. The router with the highest priority value (255 is highest) becomes the active router for the group. Any Time. the router with the highest IP address on the HSRP interface becomes the active router.05 E. 01. the priority is 100. 01. Active.actualtests.ff. B. the router progresses through a series of states before becoming active.5e.00. Standby. If all router priorities are equal or set to the default value. OSPFv3 for IPv6 authentication is supported by SHA-1 authentication. OSPFv3 for IPv6 authentication is supported by IPv4 IPsec.7d.ff.ff. This forces a router to listen for others in a group and see where it fits into the pecking order. 01.f1. OSPFv3 for IPv6 authentication is supported by IPv6 IPsec. D. Which two statements are correct? (Choose two.8.7d.ff C.b2.08. QUESTION NO: 60 Answer: C QUESTION NO: 61 A network administrator assigns a multicast address of 239.255. Listen.80 B. Which Layer 2 multicast address will this device use? A. C. and.08. The HSRP state sequence is Disabled. To set the priority.co m How is authentication handled with OSPFv3? 53 .05 D." .0a.) "Pass Any Exam.Cisco 642-892: Practice Exam group.05. ff.5e.ff. Speak.f1.05. OSPFv3 for IPv6 authentication is supported by MD5 authentication.b2.7F. By default. 01.www.f1.80. .b2.05. use the following interface configuration command: Switch( config-if)# standby group priority priority When HSRP is configured on an interface.

Any Time.co m Answer: A. All the routes were redistributed into BGP from an IGP. Untagged ingress traffic will be marked with the default CoS value of the port.actualtests. D. D.B 54 . B.Cisco 642-892: Practice Exam A. All the routes were originated by BGP with the network command. QUESTION NO: 63 A.www. Answer: A Explanation: The "Switchport voice vlan vlan-id dot1q" command enables voice VLAN on switch port and associated VLAN. Ingress traffic from the host will be tagged with theCoS value of 5. Two routes will be installed in the routing table. C. E. B. Untagged ingress traffic will be dropped. All six routes will be installed in the routing table. Which statement is true about the configuration that is shown? . Four routes will be installed in the routing table. C. "Pass Any Exam. Tagged and untagged ingress traffic will be carried on VLAN 1.com Ac tua lTe sts Refer to the exhibit." .

to allow HTTPS access to the WLAN controller B. Three AS-path filters are applied to each BGP neighbor. Reference: Cisco Press BCMSN Portable command guide .) A.www. The peer group shortens the EBGP configuration.actualtests. to allow SSL access to the CLI of the WLAN controller Answer: C QUESTION NO: 65 Refer to the exhibit. the default CoS value of the port will be used. "Pass Any Exam. QUESTION NO: 64 For what purpose is the command config network webmode enable used? A. B. to allow HTTP access to the WLAN controller D. to allow SSH access to the CLI of the WLAN controller C. (Choose two.co m 55 . Since this has not been explicitly configured. Any Time.Cisco 642-892: Practice Exam The "mls qos trust cos" command enables QoS (Quality of Services ) based on COS (Class of service) The "switchport priority cos <priority>" value sets the priority values to frame coming from PC to switch port." . unsecured HTTP is not.com Ac tua lTe sts Explanation: (WLAN_Controller) >config network webmode enable This command Enables HTTP access to the WLAN controller Note: HTTPS access is enabled by default. Which two statements are true about the partial configuration that is provided.

QoS ensures that VoIP voice packets receive the preferential treatment they require. Voice traffic will require some form of QoS mechanisms in most networks. or suffer varying delay (otherwise known as jitter). VoIP can guarantee high-quality voice transmission only if the voice packets. are given priority over other kinds of network traffic. D. QoS provides better (and more predictable) network service by providing the following features: Supporting dedicated bandwidth Improving loss characteristics Avoiding and managing network congestion "Pass Any Exam. customers need to receive the same quality of voice transmission they receive with basic telephone services-meaning consistently high-quality voice transmissions. and jitter requirements. VoIP is extremely bandwidth. In general. For VoIP transmissions to be intelligible to the receiver. Because voice traffic volume cannot be calculated. E. Adding bandwidth to the data network is the primary solution to provide for the needs of voice traffic. for both the signaling and audio channel. The peer group shortens the IBGP configuration. E. Like other real-time applications. VoIP traffic must be guaranteed certain compensating bandwidth. B.com Ac tua lTe sts . voice packets should not be dropped. Voice traffic will require some form of QoS implementation only in congested networks. Answer: E Explanation: For VoIP to be a realistic replacement for standard public switched telephone network (PSTN) telephony services. Only the outgoing filters are applied to BGP updates." .actualtests. C.www.and delay-sensitive . excessively delayed.co m 56 . All the configured neighbors are in autonomous system 100. network bandwidth requirements must be determined from an existing installation. Any Time. Answer: C. For VoIP to be deployed so that users receive an acceptable level of voice quality. Network congestion must be totally eliminated to provide proper voice traffic performance. latency.D QUESTION NO: 66 Which statement is true about utilizing a data network for voice traffic? A.Cisco 642-892: Practice Exam C. D.

F. 6to4.E.co m 57 . and Intra-Site Automatic Tunnel Addressing Protocol (ISATAP) overlay tunneling mechanisms. Cisco IOS supports manual. Any Time.16. D.F tua lTe sts . C.www. B.com Ac Answer: B.com/en/US/docs/ios/solutions_docs/qos_solutions/QoSVoIP/QoSVoIP." .actualtests. There are currently five IPv6 overlay tunnel types.) A. Overlay tunneling encapsulates IPv6 packets in IPv4 packets for delivery across an IPv4 infrastructure. E. QUESTION NO: 68 For the accompanying router output. 4to6. generic routing encapsulation (GRE). generic routing encapsulation (GRE). IPv6-compatible.html QUESTION NO: 67 An IPv6 overlay tunnel is required to communicate with isolated IPv6 networks across an IPv4 infrastructure.cisco. which of the following statements describes the state that neighbor 172. Overlay tunnels can be configured between border routers or between a border router and a host capable of supporting IPv4 and IPv6. An manual overlay tunnel supports point-to-multipoint tunnels capable of carrying IPv6 and Connectionless Network Service (CLNS) packets.254. Cisco IOS supports manual. IPv4-compatible. and Multiprotocol Label Switching (MPLS) overlay tunneling mechanisms. Which three IPv6 overlay tunnel statements are true? (Choose three. Overlay tunnels can only be configured between border routers capable of supporting IPv4 and IPv6.Cisco 642-892: Practice Exam Shaping network traffic Setting traffic priorities across the network Reference: http://www.3 is in? "Pass Any Exam.

The router is listening on its server port for connection requests from the peer. B.Cisco 642-892: Practice Exam A. 802. C. Any Time. BGP can exchange routing information in this state. WPA/WPA2 Passphrase "Pass Any Exam. D.www.co m . WPA/WPA2/CCKM B. The router will not accept connections from the peer. The router has sent out an active TCP connection request to the peer.actualtests." .com 58 Ac tua lTe sts Refer to the exhibit. What radio button option on the Aironet Desktop Utility (ADU) Security tab includes the option of Advanced Encryption Standard (AES) and Extensible Authentication Protocol-Flexible Authentication via Secure Tunneling? .1x C. Answer: A QUESTION NO: 69 A.

Pre-Shared Key (Static WEP) Answer: A Explanation: EAP-FAST.Cisco 642-892: Practice Exam D. QUESTION NO: 70 Based on the show ip route isis output on R1.1X EAP mutual authentication.This authentication type (Flexible Authentication via Secure Tunneling) uses a threephased tunneled authentication process to provide advanced 802.1.html lTe sts .0. Any Time. WPA uses Temporal Key Integrity Protocol (TKIP) and message integrity check (MIC) for data protection while WPA2 uses the stronger Advanced Encryption Standard encryption algorithm using Counter Mode with Cipher Block Chaining Message Authentication Code Protocol (AESCCMP).www.1.0/23 route is a summary route.0/configuration/guide/winc h5kh. so WPA2 will be required to use AES. which statement is true? A. The i su 10.com 59 Ac tua Reference: http://www.co m .0." . The i su 10.0/23 route is a suppressed route.cisco. "Pass Any Exam.actualtests. B.com/en/US/docs/wireless/wlan_adapter/cb21ag/user/2.

F. 16 bytes. QUESTION NO: 71 Answer: C. An IPv6 header contains the header checksum field. The following displays the IPv6 header field in detail: IPv6 header: Version . the hop limit is decremented by 1. An IPv6 address is 128 bits long. 16 bits unsigned. Used for specifying special router handling from source to destination(s) for a sequence of packets. Payload Length . An IPv6 header contains the next header field. This route is automatically created within the router when IS-IS route summarization is configured. Internet traffic priority delivery value. 8 bits. "Pass Any Exam. This replaces the TTL field in the IPv4 header that was originally intended to be used as a time based hop limit. 20 bits.) 60 . When cleared to zero. An IPv6 header is 20 bits long.0/23 route is an IS-IS external route.F Explanation: All IPv6 addresses are 128 bits long to accommodate a far larger number of stations than what was possible with the 32 bit IPv4 addresses. The i su 10.www.actualtests. When the hop limit field reaches zero." . B. The values are compatible with those specified for the IPv4 protocol field. D.0.com Ac tua lTe sts A. The IPv6 address of the destination node. Specifies the next encapsulated protocol.0. 4 bits. Hop Limit .co m Which three are characteristics of IPv6? (Choose three.E. The R1 IS-IS router is an ASBR. .1. Flow Label . Destination address . E. Next Header . Traffic Class .1. Any Time. E. IPv6 version number. The R1 IS-IS router is an ABR that belongs to multiple IS-IS areas. the packet is discarded. 8 bits. F.0/23 prefix. Answer: B Explanation: The "su" in the routing table denotes an IS-IS summary null route. An IPv6 header contains the protocol field. The R1 IS-IS router is performing route aggregation and is suppressing the more specific 10.Cisco 642-892: Practice Exam C. The IPv6 address of the sending node. 16 bytes. 8 bits unsigned. Source address . For each router that forwards the packet. D. Specifies the length of the data in the packet. IPv6 routers send RA messages. the option is a hop-by-hop Jumbo payload. C.

E. Reference: http://www.networksorcery.html QUESTION NO: 73 A.1_12c_ea1/confi guration/guide/swvoip.com/en/US/docs/switches/lan/catalyst3550/software/release/12.www. If the search is not successful.D Explanation: This procedure for a LAP to register with a WLC is: The LAP issues a DHCP request to a DHCP server in order to get an IP address. Once an access point associates with a controller in LWAPP Layer 3 mode.actualtests." .1P or 802. unless an assignment was made previously with a static IP "Pass Any Exam. it receives an IP address from the controller. B.com 61 Ac tua Which two statements correctly describe the association process between a lightweight access point and a WLAN controller? (Choose two. Answer: B.) lTe sts . all untagged traffic is sent according to the default CoS priority of the port. An access point first searches for a controller in LWAPP Layer 2 mode. C. Any Time. When the voice VLAN feature is enabled.1P or 802.co m .cisco. An access point will search for a controller using a broadcast address if using LWAPP Layer 2 mode and a unicast address if using LWAPP Layer 3 mode. the access point then attempts to locate a controller in LWAPP Layer 3 mode. Answer: D Explanation: Default Voice VLAN Configuration: The voice VLAN feature is disabled by default.htm QUESTION NO: 72 What is the effect of enabling a voice VLAN on a Catalyst switch port? A. B.com/enp/protocol/ipv6. the access point must have been preconfigured with an IP address. the controller with the fewest associated access points is chosen to associate with.1Q tagged traffic. If multiple wireless controllers are detected by an access point. The CoS is trusted for 802. PortFast is disabled on the port. D.Cisco 642-892: Practice Exam Reference: http://www. The CoS value is not trusted for 802. D. In order to associate in Layer 3 mode. Untagged traffic is sent according to the default CoS priority of the port.1Q tagged traffic. C. Port security is automatically enabled on a voice VLAN port.

the LAP proceeds to step 3. and/or tertiary controllers have been configured for an AP. On a switched network with a small network diameter.www. If step 3 fails. If the LAP cannot find its primary controller or if the LWAPP join fails.co m . If the secondary WLC cannot be found or the LWAPP join fails. the LAP selects that WLC and send it an LWAPP join request.com/en/US/tech/tk722/tk809/technologies_tech_note09186a00806c9e51. The LAP uses this information to make a controller selection. D. Reference: http://www. or if the WLC or the LAP fails to receive an LWAPP discovery response to the Layer 2 LWAPP discovery message broadcast. the LAP examines the controller sysName field (from the LWAPP discovery responses) in an attempt to find the WLC that is configured as "primary". E. The LWAPP joins to those controllers have failed. max age) must be the same. These controllers cannot be found in the candidate list. or if the LAP or the WLC does not support Layer 2 LWAPP mode. If step 1 fails. The root bridge passes the timer information in BPDUs to all routers in the Layer 3 configuration. the LAP attempts a Layer 3 LWAPP WLC discovery. It will only consider the value of the STP timers contained in the BPDU it is receiving. If any STP timer value (hello.cisco. Any Time. the LAP resets and returns to step 1. and/or tertiary controller. the STP hello timer can be tuned to a lower value to decrease the load on the switch CPU. the LAP repeats the process for its tertiary controller. If the LAP cannot successfully join a WLC on the basis of the criteria in step 1 and step 2. it should at least be changed on theroot bridge and backup root bridge." . with use of these precedence rules: If the LAP has previously been configured with a primary. secondary. max age) needs to be changed. secondary. The LAP looks at the Master Controller flag field in the LWAPP discovery responses from the candidate WLCs if one of these items is true: No primary. it then sends an LWAPP join to the secondary controller.shtml QUESTION NO: 74 Which three statements about STP timers are true? (Choose three. forward delay. If the LAP does not support Layer 2 mode. their STPtimers value (hello. the LAP sends an LWAPP join request to that WLC. the LAP tries to match the secondary controller sysName to the LWAPP discovery responses. A switch is not concerned about its local configuration of the STPtimers values. forward delay. If the LAP finds a matching sysName for the primary controller. the LAP broadcasts an LWAPP discovery message in a Layer 2 LWAPP frame. To successfully exchange BPDUs between two switches. the LAP attempts to join the WLC that has the greatest excess capacity. "Pass Any Exam.actualtests. If Layer 2 LWAPP mode is supported on the LAP. B. Any WLC that is connected to the network and that is configured for Layer 2 LWAPP mode responds with a Layer 2 discovery response.) A. If the LAP finds a match. C.com 62 Ac tua lTe sts .Cisco 642-892: Practice Exam address. If a WLC is configured as a Master Controller.

1. QUESTION NO: 75 Refer to the exhibit.0/24 network? "Pass Any Exam.co m 63 . so Max Age is not considered in transitioning the port to Forwarding mode. Other bridges propagate BPDUs from the Root Bridge as they are received. or if the Root Bridges stop sending periodic BPDUs during this time. Recall that each port saves a copy of the best BPDU it has seen. 2 to 20 seconds is the range between the expected receipt of a BPDU and the expiration of the Max Age time.2. As long as the bridge receives a continuous stream of BPDUs every 2 seconds. The Forward Delay timer also controls the bridge table age-out period after a change in the active topology. if the device sending this best BPDU fails.C. If BPDUs stop arriving for the time interval ranging from 2 to 20 seconds because of a network disturbance. Forward Delay is the amount of time the bridge spends in the Listening and Learning states.com Ac tua lTe sts . the receiving bridge maintains a continuous copy of the BPDU values. Max Age is only an issue when the link failure is not on a directly connected link. The 802. forward delay. a mechanism must exist to allow other bridges to take over.Cisco 642-892: Practice Exam F.1D standard specifies a default value of 2 seconds. max age) are included in each BPDU. the default Max Age time. Max Age is the STP timer that controls how long a bridge stores a BPDU before discarding it. the timer will expire. This value controls Configuration BPDUs as the Root Bridge generates them. a maximum of three lost BPDUs. If the outage lasts for more than 20 seconds. This is a single value that controls both states.actualtests. The default value of 15 seconds was originally derived assuming a maximum network size of seven bridge hops. Any Time.www. the switch knows there will not be any BPDUs coming in on that link. When a failure occurs on a directly connected link. the bridge invalidates the saved BPDUs and begins looking for a new Root Port. STPtimers values (hello. However. Answer: B. What happens when the router stops receiving advertisements for the 10.F Explanation: STP operation is controlled by three timers." . The Hello Time is the amount of time between the sending of Configuration BPDUs. and a Hello Time of 2 seconds.

B Explanation: HSRP uses a priority scheme to determine which HSRP-configured router is to be the default active router. D.com 64 Ac tua lTe sts .www. To configure a router as the active router.0/24 will still be advertised but packets destined for it will be dropped when they reach this router. The summary route will remain in the table. Catalyst_A is load sharing traffic in VLAN 50.1." .11 even after Catalyst_A becomes available again.1 will have their traffic sent to 192.1. The summary route will be removed from the table.1. Answer: A QUESTION NO: 76 Refer to the exhibit. Hosts using the default gateway address of 192. D. The command standby 1 preempt was added to Catalyst_A.168. so if you configure just one router to have a higher priority.168. Answer: A. The more specific routes will be advertised from the table. that router will be the default active router.) A. Any Time. Which two statements are true about the output from the show standby vlan 50 command? (Choose two.actualtests. HSRP works by the exchange of multicast messages that advertise priority among HSRP"Pass Any Exam.1. C. you assign it a priority that is higher than the priority of all the other HSRP-configured routers. 10.2 will have their traffic sent to Catalyst_A.168. C.co m . B. B.Cisco 642-892: Practice Exam A. The default priority is 100.2. Hosts using the default gateway address of 192.

The router is prepared to assume packet-transfer functions if the active router fails.The router is sending and receiving hello messages. Both Host_A and Host_B acquire their IP addresses from the DHCP server connected to switch SW_A.www.A router that is the active router sends this message when it is about to shut down or when a router that has a higher priority sends a hello message. Dynamic ARP inspection (DAI) is enabled on switch SW_A only. When the active router fails to send a hello message within a configurable period of time. an HSRP router sends hello messages every three seconds." . QUESTION NO: 77 Refer to the exhibit. Listening .actualtests. The transition of packet. At any time.co Resign . Standby . HSRP-configured routers exchange three types of multicast messages: Hello . Speaking and listening .When a standby router assumes the function of the active router.com Ac tua lTe sts Active . . it sends a coup message.forwarding functions between routers is completely transparent to all hosts on the network. If you do not use the standby preempt command in the configuration for a router. the standby router with the highest priority becomes the active router. Coup . Any Time.The router is performing packet-transfer functions.The hello message conveys to other HSRP routers the router's HSRP priority and state information. HSRP-configured routers are in one of the following states: m 65 . The 1 indicates that this command applies to Hot Standby group 1.The router is receiving hello messages.Cisco 642-892: Practice Exam configured routers. By default. The standby preempt interface configuration command allows the router to become the active router when its priority is higher than all other HSRP-configured routers in this Hot Standby group. What would the outcome be if Host_B initiated an ARP spoof attack toward Host_A ? "Pass Any Exam. The configurations of both routers include this command so that each router can be the standby router for the other router. that router cannot become the active router.

" . B. sts .Cisco 642-892: Practice Exam Answer: B DAI is an ingress security feature. separate the domain with DAI checks from the one with no checking. Any Time.com 66 Ac Explanation: When configuring DAI. The spoof packets will be inspected at the ingress port of switch SW_A and will be permitted. D.www. "Pass Any Exam. DAI is not effective for hosts connected to routers that do not support DAI or that do not have this feature enabled.actualtests. The spoof packets will not be inspected at the ingress port of switch SW_A and will be dropped. Because man-in-the-middle attacks are limited to a single Layer 2 broadcast domain. it does not perform any egress checking.co m . follow these guidelines and restrictions: tua lTe A. The spoof packets will not be inspected at the ingress port of switch SW_A and will be permitted. C. Make sure to enable DHCP snooping to permit ARP packets that have dynamically assigned IP addresses. This action secures the ARP caches of hosts in the domain enabled for DAI. DAI depends on the entries in the DHCP snooping binding database to verify IP-to-MAC address bindings in incoming ARP requests and ARP responses. The spoof packets will be inspected at the ingress port of switch SW_A and will be dropped.

C.2SXF/configuration/guide/dynarp.html QUESTION NO: 78 Which three WLAN statements are true? (Choose three. The control traffic between the access point and the controller is encapsulated with the LWAPP. D.com Ac tua Answer: A.) A. and private VLAN ports. Explanation: The 802. all 802. Lightweight access points first search for a WLAN controller using LWAPP in Layer 2 mode. since SW_B does not have DAI enabled (bullet point 2 above) packets will not be inspected and they will be permitted. WLANs are designed to share the medium and can easily handle an increased demand of channel contention.11 are half-duplex/simplex in nature . Then the access point searches for a WLAN in Layer 3 mode. DAI is supported on access ports. Autosummarization is enabled on routers R2 and R3. A lightweight AP receives control and configuration from a WLAN controller to which it is associated. Lightweight APs need configuration and control information from a WLAN controller QUESTION NO: 79 Refer to the exhibit. Which two EIGRP routes will be seen in the routing table of router R3? (Choose two. Reference: http://www. C. F.actualtests. EIGRP is configured with the default configuration on all routers." . but it is disabled on router R1.11 standard specifies a Carrier Sense Multiple Access/Collision Avoidance (CSMA/CA) transmit-recieve environment. Another term for infrastructure mode is independent service set (IBSS).Cisco 642-892: Practice Exam When DHCP snooping is disabled or in non-DHCP environments. E. EtherChannel ports. The control traffic is encrypted via the Advanced Encryption Standard (AES). A WLAN client will operate in half-duplex mode.) "Pass Any Exam. In our example. B.com/en/US/docs/routers/7600/ios/12.co m 67 .E lTe sts . Therefore.www. trunk ports. The Aironet 1230 access point is an example of an access point that operates solely as a lightweight access point. Any Time. use ARP ACLs to permit or to deny packets. Ad hoc mode allows mobile clients to connect directly without an intermediate AP.cisco.

C.0/8 C.co A.0/24 m . The 128-bit IPv6 address makes the IPv6 header more complicated than an IPv4 header.0/24 B. 10.10. 10. DHCP clients connected to the FastEthernet0/1 interface are not receiving addresses.0/16 F. DHCP clients connected to the FastEthernet0/0 interface are working properly.16.com 68 Ac tua In a comparison of an IPv4 header with an IPv6 header.0. A network administrator has configured DHCP services on the router as shown.actualtests. B.0." . 172.Cisco 642-892: Practice Exam QUESTION NO: 80 A. F. an IPv6 header does not include one.10.0. Which two statements contain recommendations that will solve the problem? (Choose two. However. 172. 10. An IPv4 header includes a checksum. which three statements are true? (Choose three.0/24 E.) lTe sts Answer: C. E.0. Any Time. A router has to recompute the checksum of an IPv6 packet when decrementing the TTL.10.B.D QUESTION NO: 81 Refer to the exhibit.0/16 D.10.0.www. 172. D. An IPv6 header is half the size of an IPv4 header.) "Pass Any Exam. An IPv6 header has twice as many octets as an IPv4 header.F .16.16. Answer: A. An IPv6 header is simpler and more efficient than an IPv4 header.

D QUESTION NO: 82 When an IPv6 enabled host boots. Which two items are contained in the RA? (Choose two.com Ac tua A.0.0/24 should be configured.255.www.10. E. The ip helper-address 10.0.0/24 should be issued.255. IPv6 address for the host C. request for the local host IP address B." .0.) A.0. A second DHCP pool for network 10. C.0.1 command should be issued so that the address can be added to the FastEthernet0/0 configuration.10. lTe sts . prefixes for the link D. An ip dhcp excluded-address global configuration command for network 10.0 with a mask of 255. The ip helper-address 10. it sends a router solicitation (RS) message.10.0. Any Time.0. B.0.Cisco 642-892: Practice Exam Answer: B. The network shown in the output under the ip dhcp pool Central command should be changed to network 10. An IPv6 router responds with a router advertisement (RA). keepalive timers "Pass Any Exam.1 command should be issued so that the address can be added to the FastEthernet0/1 configuration.actualtests.co m 69 . D.

except the native VLAN. D. This network is running IS-IS. which are layer 3. Both switches must be in the same VTP domain.1Q trunk are not tagged with the VLAN number.actualtests.Max.com/warp/public/473/27.cisco. The encapsulation type on both ends of the trunk does not have to match.1Q trunking? sts .com 70 Ac tua A.Prefixes have a lifetime Preferred lifetime Valid lifetime Specifies if stateful or stateless autoconfiguration is to be used Plays a key role in site renumbering QUESTION NO: 83 Answer: A Explanation: A is correct because.The advertisement has a lifetime (= 0 if not a default router) Advertisement contains one or more prefixes . From the output on RTD.1Q trunking can only be configured on a Layer 2 port. Reference: http://www. Router Advertisements have the following attributes: Routers advertise periodically . time between advertisements can be in the range from 4 and 1800 seconds . C. Router RTC is inside Cloud#1. which two statements are true? (Choose two. In 802.www. 802. "frames from the native VLAN of an 802." .1Q trunking. lifetime of the prefix Answer: C.Cisco 642-892: Practice Exam E. the native VLAN is VLAN 1 but this can be effectively changed to a different VLAN and the trunk will still be functional.F Explanation: In IP Version 6.) "Pass Any Exam. Trunks can be established with router interfaces using sub-interfaces." By default. The native VLAN on both ends of the trunk must be VLAN 1. E. Any Time. B. all VLAN packets are tagged on the trunk link.co m . lTe Which statement is correct about 802.html QUESTION NO: 84 Refer to the exhibit. any route advertisements it has received F.

RTD will not transmit CLNS packets.C QUESTION NO: 85 Which EIGRP packet statement is true? A.0. Any Time. IP routing updates between RTC and RTD will be IP datagrams that are encapsulated by HDLC. D. Because it is running IS-IS in IP-only mode.co m 71 . The SNPA for RTE is the source data link address that is used to transmit frames to RTD. Update packets route reliable change information only to the affected routers. sts . hello packets are broadcast every 15 seconds for neighbor discovery. B. E.fd5f.com Ac tua lTe A.00.actualtests.10 using RTP. Reply packets are used to send routing updates.www. IP routing updates between RTC and RTD will be CLNS datagrams that are encapsulated by HDLC. C. F. Answer: A QUESTION NO: 86 "Pass Any Exam. D.0019. The NET for RTE will be 49.06b7. IP routing updates between RTC and RTD will be IP datagrams that are encapsulated by CLNS. On low-speed links.Cisco 642-892: Practice Exam Answer: A.0150. hello packets are broadcast every 5 seconds for neighbor discovery. C. On high-speed links. Reply packets are multicast to IP address 224. B.0." . E.

www.cisco. you can configure the switch port to which the telephone is connected to trust the CoS labels of all traffic received on that port.133. B. D. "Pass Any Exam.1Q header.com Ac Explanation: Configuring Trusted Boundary: In a typical network. The host is now establishing theCoS value and has effectively become the trust boundary. RTP will be used to negotiate aCoS value based upon bandwidth utilization on the link. you connect a Cisco IP Phone to a switch port.219. Traffic sent from the telephone to the switch is typically marked with a tag that uses the 802.actualtests. The switch will no longer tag incoming voice packets and will trust the distribution layer switch to set theCoS.Cisco 642-892: Practice Exam Refer to the exhibit. 72 .html tua lTe sts .com/en/US/docs/switches/lan/catalyst2940/software/release/12." . The switch is rewriting packets it receives from the IP phone and determining theCoS value. Any Time. Effectively the trust boundary has been moved to the IP phone. Indicate the reason Router RT-1 chooses this "best" path. The header contains the VLAN information and the CoS 3-bit field.co m A.1_19_ea1/config uration/guide/swqos. By using the "mls qos trust cos" interface configuration command. Router RT-1 chooses one path to network 198. E. C. For most Cisco IP Phone configurations.0/24. which determines the priority of the packet. the traffic sent from the telephone to the switch is trusted to ensure that voice traffic is properly prioritized over other types of traffic in the network. What is the effect on the trust boundary of configuring the command mls qos trust cos on the switch port that is connected to the IP phone? Answer: E QUESTION NO: 87 Refer to the exhibit. Reference: http://www.

unless the bgp always-compare-med command is enabled If the routes have the same MED. In making its decision about the best path. RT-1 gives precedence to the origin code.2. For EBGP paths. prefer the route that the local router originated. Prefer the route with the highest weight.0. prefer the path with the lowest MED.107. RT-1 gives precedence to the BGP MED values.254.) If multiple routes have the same local preference. prefer the route with the shortest autonomous system path.) If multiple routes have the same weight. If all origin codes are the same. If synchronization is disabled and only internal paths remain.255.0 in the BGP table.2 is lower than 128. (The MED is exchanged between autonomous systems. E.0.2. prefer the route with the highest local preference value. B. If the autonomous system path length is the same. F. which means that the router prefers the shortest internal path within the autonomous system to reach the destination (the shortest path to the BGP next hop). . select the oldest route to minimize the effect "Pass Any Exam.www. C.actualtests. (The weight attribute is proprietary to Cisco and is local to the router only.255.Cisco 642-892: Practice Exam Answer: D The following process summarizes how BGP chooses the best route on a Cisco router. In making its decision about the best path. prefer external paths to internal paths. lTe sts A.co m .107. RT-1 prefers internal BGP routes.2 is lower than 128. A locally originated route has a next hop of 0.2. RT-1 prefers the IGP metrics. If none of the routes were locally originated. prefer the path through the closest IGP neighbor.107. (The local preference is used within an autonomous system. D. it chooses the best path to reach a specific destination.) The MED comparison is made only if the neighboring autonomous system is the same for all routes considered." .com 73 Ac tua Explanation: After BGP receives updates about different destinations from different autonomous systems. Any Time. IP address 128.107. IP address 128. prefer the lowest origin code (IGP < EGP < incomplete). In making its decision about the best path.

E-B-A.co m . with respect to the metric. The variable n can take a value between 1 and 128. In addition. Traffic is also distributed among the links with unequal costs. Reference: http://www. E-B-A D. E-C-A and E-D-A B. The default is 1." .actualtests. Interior Gateway Routing Protocol (IGRP) and EIGRP also support unequal cost path load balancing. proportionately. Use the variance n command in order to instruct the router to include routes with a metric of less than n times the minimum metric route for that destination. which means equal cost load balancing. If the BGP router IDs are the same. Any Time. which path or paths would be chosen to route traffic to network X? Answer: D Explanation: Every routing protocol supports equal cost path load balancing.Cisco 642-892: Practice Exam of routes going up and down (flapping).com/en/US/tech/tk365/technologies_tech_note09186a008009437d. If the command variance 3 were added to RTE. Prefer the route with the lowest neighbor BGP router ID value. QUESTION NO: 88 Observe the exhibit. E-B-A and E-C-A lTe sts .com 74 Ac tua A. prefer the router with the lowest neighbor IP address. E-C-A and E-D-A C.www.shtml QUESTION NO: 89 Which two statements about 6to4 tunneling are accurate? (Choose two.cisco.) "Pass Any Exam.

Antenna power is a relative value reference to dBi. it immediately looks for a wireless LAN controller within the network. the term "gain" is often repeated but misunderstood. that standardizes the communications protocol between lightweight access points and WLAN systems such as controllers.actualtests. gain. E. Answer: B. E. encryption . F. This antenna exists as a mathematical concept used only as a known reference to measure antenna gain per dBi.com 75 Ac Explanation: DBi is a unit measuring the gain of an antenna. tua lTe sts . 2002::/48 is the address range specifically assigned to 6to4. C. Prepending 0x2002 with the IPv4 address creates an IPv6 address that is used in 6to4 tunneling. freeing up their computing resources to focus exclusively on wireless access instead offiltering and policy enforcement Enable centralized traffic handling.0. Answer: B. Characteristics of antennas are directionality.co m . Its goals are to: Reduce the amount of processing within access points. Prepending a reserved IPv6 code to the hexadecimal representation of 192. B.www. the LWAPP-enabled access "Pass Any Exam. using either a Layer 2 infrastructure oranIP-routed network When a Cisco LWAPP-enabled access point boots up.radiates equally in all directions. B. The WLAN Solution Engine (WLSE) is used to control lightweight access points. Power over Ethernet (PoE) is only available when a WLAN controller is integrated into the network. In electronics.168. Any Time. Each 6to4 site receives a /48 prefix in a 6to4 tunnel." . The reference level or dBi is the strength of the signal that would be transmitted by a non-directional isotropic antenna i.g 20 dBi but without respect to where the increase originated.) A. and polarization. Gain implies increase e.Cisco 642-892: Practice Exam A. switches. 6to4 is a manual tunnel method.1 facilitates 6to4 tunneling.E QUESTION NO: 90 Which three statements are true about implementing Cisco wireless LANs? (Choose three. authored by Cisco Systems.D LWAPP is a draft Internet Engineering Task Force (IETF) standard. One of the advantages of the lightweight WLAN solution is that the devices act independently. authentication. C. After it finds a wireless LAN controller. D.e. and policy enforcement for an entire WLAN system Provide a generic encapsulation and transport mechanism for multivendor access point interoperability.C. LWAPP allows encrypted communication between lightweight access points and WLAN controllers. D. and routers.

and 4-hour response contract. An antenna gives the wireless system three fundamental properties: gain.Use either inline power from Catalyst switch or power patch panel. redundant links. Direction is the shape of the transmission pattern.) A.D Explanation: When adding voice or video to an existing network. E. is usually a vertical polarized antenna.cisco. Auxiliary (or Voice) VLANs Cisco switches can be configured to dynamically place IP telephones into a VLAN separate from "Pass Any Exam. most VoIP phones use in-line power to get power through the same cable on which data is sent. Need uninterruptible power supply (UPS) with auto-restart. you should examine several things in advance to provide the high level of availability users expect in their phone system: What features are needed?. Answer: B.wireless-computer-networking. F. direction and polarization.www. Polarization is the physical orientation of the element on the antenna that actually emits the RF energy.co m . Auxiliary VLANs provide the ability to apply QoS to voice traffic without affecting the flow of data from the client PC. UPS. Maintain correct operating temperatures. May need generator backup. Electrical power for the IP phones. Gain is the amount of increase in energy that an antenna adds to a radio frequency (RF) signal. The increased costs of voice enabled networks are offset by increased worker productivity. B. For ease of implementation. An uptime of 99. C.999 percent is achieved using a 4-hour service response contract for system problems." .Power for IP phones. security for voice calls.com 76 Ac tua lTe sts .com/en/US/tech/tk722/tk809/technologies_tech_note09186a00807f34d3. Redundant hardware.actualtests. D. and proactive network management are data network standards that do not apply to voice networks. Gain is a measure of increase in power. network redundancy for high availability.shtml QUESTION NO: 91 What three statements are true for networks that are enabled for voice as well as data traffic? (Choose three. monitoring.com/dBi. and Quality of Service (QoS) settings. References: http://wireless-network.Cisco 642-892: Practice Exam point sends out encrypted "neighbor" messages. voice VLANs on the switches.htm http://www. for example. Any Time. An omnidirectional antenna.C. High availability networks must be created to avoid network congestion and overcome a lack of redundancy and poor engineering.

D. This is called an auxiliary VLAN or a voice VLAN.com 77 Ac tua lTe QUESTION NO: 93 sts . B.1Q/p headers) and security policies applied. Layer 3 mode packets are transmitted in TCP frames. C. but is not encrypted or otherwise secured between the LAP and "Pass Any Exam. Data traffic between an access point and a controller is encapsulated within LWAPP.www. IS-IS routers use ES-IS hellos (ESH) to establish and to maintain neighbor relationships.Cisco 642-892: Practice Exam the data VLANs. Reference: Cisco CCNP BCMSN Quick Reference Sheets. chapter 7. E. F. IS-IS is only capable of supporting IPv4 and CLNS. to have QoS (using 802.) A. Voice VLANs allow phones to be dynamically placed in a separate IP subnet from hosts. The data is encapsulated within LWAPP. page 53 QUESTION NO: 92 Which two statements about the IS-IS routing protocol are true? (Choose two. E.actualtests. IS-IS routers run the Bellman-Ford algorithm against their LSDBs to pick the best paths. IS-IS is capable of supporting IPv4 and IPv6. The control messages are authenticated and encrypted so that the LAP is securely controlled by only the WLC. Answer: B. VLAN tagging and QoS markings are applied at the access point. Answer: C." . Level 2 routers learn about paths both within areas and between areas. B. ? LWAPP control messages-Exchanges that are used to configure the LAP and manage its operation.E Which two statements correctly describe features of Lightweight Access Point Protocol (LWAPP)? (Choose two. Data traffic between an access point and a controller is encrypted within LWAPP. Level 1 routers learn about paths within the area of which they are a part.) A. ? LWAPP data-Packets to and from wireless clients associated with the LAP. C.co m . D. and makes troubleshooting easier.C Explanation: The LAP and WLC pair use the lightweight access point protocol (LWAPP) as the tunneling mechanism. Control traffic between an access point and a controller is encrypted within LWAPP. Any Time. They can do this even when the phone and PC are physically connected to the same switch port.

QUESTION NO: 94 Which two provide intra-area routing services? (Choose two.) A. closely equivalent to backbone routers in OSPF. Data traffic between Access Point( AP) and Controller is encapsulated with LWAPP. L1 ISs enable communication between ESs in an area. On the basis of the information that is presented in the exhibit.co m Answer: B. Any Time. L1/L2 IS E. analogous to an autonomous system (AS) in TCP/IP. closely equivalent to OSPF internal non-backbone routers. are responsible for routing to ESs inside an area. L1 routers are also referred to as station routers because they enable stations to communicate with each other and the rest of the network." .Cisco 642-892: Practice Exam WLC. closely equivalent to area border routers (ABRs) in OSPF. The following shows IS-IS within the domain as a two-level hierarchy: Level 1 (L1) ISs. Level 1 and Level 2 (L1L2) Intermediate ISs. L2 ES B. weaving their way through and between the Level 1 areas. route between areas and the backbone. Level 2 (L2) ISs. IS-IS does not share the concept of an Area 0 with OSPF. An IS-IS domain appears as a set of distinct areas interconnected by a chain of L2 routers. route between areas only. QUESTION NO: 95 Refer to the exhibit. L1 ES D. They inform other L1 routers that they are an exit point for the area.) "Pass Any Exam. L1 IS C. L2 IS Explanation: An IS-IS network is termed a domain.com 78 Ac tua lTe sts . A contiguous group of L1 routers defines an area.D . They participate in the L1 intra-area routing and the L2 inter-area routing. L1L2 routers support an L1 function to communicate with the other L1 routers in their area and maintain the L1 LSP information in an L1 LSPD. which defines the picture of the area itself and the exit points to neighboring areas. which two statements are true? (Choose two.actualtests. Router RTR is attempting to establish BGP neighbor relationships with routers RT1 and RT3. The L1 routers maintain the L1 linkstate PDU database (LSPD). They also support an L2 function to communicate with the rest of the backbone and maintain an L2 topology database separately from their L1 LSPD.www.

which statement is true? "Pass Any Exam.www.Cisco 642-892: Practice Exam Refer to the exhibit.D sts A.5 does not.5 has an incorrect password set. RTR has a BGP password set but neighbor 10. RTR has a BGP password set but neighbor 10.0.0.com Ac tua QUESTION NO: 96 lTe Answer: A. B. Neighbor 10. F.5 has a BGP password set but RTR does not.1 does not. RTR has a BGP password set but neighbor 10.co m 79 .0. Neighbor 10.0. On the basis of the information that is presented. C.0.1 has an incorrect password set.0. E. RTR has a BGP password set but neighbor 10.0.0.0. D. Routers R1 and R2 are running EIGRP and have converged.0. Any Time.0. .1 has a BGP password set but RTR does not." .0.actualtests.

C. the passive-interface command stops both outgoing and incoming routing updates." .cisco.co m . The command enables the suppression of routing updates over some interfaces while it allows updates to be exchanged normally over other interfaces. However. Any Time. With most routing protocols. but the outgoing updates will continue to be sent.Cisco 642-892: Practice Exam Answer: D Explanation: You can use the passive-interface command to control the advertisement of routing information. B. since the effect of the command causes the router to stop sending and receiving hello packets over an interface. All outgoing routing updates from router R1 to router R2 will be suppressed. Both outgoing and incoming routing updates on R1 will be stopped because of the passiveinterface Serial0/0 configuration statement. the passive-interface command restricts outgoing advertisements only. when used with Enhanced Interior Gateway Routing Protocol (EIGRP). but the inbound updates will continue to be received.com 80 Ac tua A. D. Reference: http://www. All incoming routing updates from R2 will be suppressed. the effect is slightly different. Both outgoing and incoming routing updates on R1 will be permitted because the distribute-list 20 out Serial0/0 command cannot be used with association with the outgoing interface. With EIGRP running on a network.www.actualtests.shtml QUESTION NO: 97 "Pass Any Exam. lTe sts .com/en/US/tech/tk365/technologies_tech_note09186a0080093f0a.

" . This interface is configured for access mode. Which two statements are true about this interface? (Choose two.actualtests. Any Time.D Explanation: In Exhibit. This interface is a member of VLAN1. B. This interface is a member of VLAN7. This interface is a dot1q trunk passing all configured VLANs. QUESTION NO: 98 Refer to the exhibit.com 81 Ac A. E. C. tua lTe sts . D.co m .) Answer: C. Which switch interface configuration command would automatically configure quality of service (QoS) for voice over IP (VoIP) within a QoS domain? "Pass Any Exam. Operation mode is in static access and Access mode VLAN is 7 so it means this port is operating on access mode as a member of VLAN 7.Cisco 642-892: Practice Exam Refer to the show interface Gi0/1 switchport command output shown in the exhibit. This interface is a member of a voice VLAN.www.

it automatically classifies traffic based on the traffic type and ingress packet label. B. D. Set the origin code to incomplete for all networks that are discovered via external BGP. (The default is that QoS is disabled. mls qos trust B.html#wp1231112 QUESTION NO: 99 What technique should be used on BGP edge routers to prevent a multi-homed autonomous system from becoming a transit system? A.com/en/US/docs/switches/lan/catalyst3750/software/release/12. regardless of the packet contents or size. Use an outgoing distribution list to filter all networks not originating from inside the autonomous system.2_40_se/configur ation/guide/swqos. Only advertise networks externally if they have been discovered via internal BGP. Auto-QoS makes assumptions about the network design. Reference: http://www. C. the switch can prioritize different traffic flows and appropriately use the ingress and egress queues instead of using the default QoS behavior. and sends it from a single queue.www. F. When you enable auto-QoS by using the auto "qos voip cisco-phone".com 82 Ac tua lTe sts . Advertise with a high MED value all networks that are discovered via external BGP. The switch uses the resulting classification to choose the appropriate egress queue. Remove the AS-Path information on all routes in the BGP table prior to advertising externally. switchport priority extend trust D. auto qos voip cisco-phone Answer: D Explanation: You can use the auto-QoS feature to simplify the deployment of existing QoS features. E. "Pass Any Exam. Set the no-export community attribute on all networks that are advertised externally. switchport priority extend cos 7 C.Cisco 642-892: Practice Exam A." . the "auto qos voip ciscosoftphone".actualtests. Any Time. the switch automatically generates a QoS configuration based on the traffic type and ingress packet label and applies the appropriate commands automatically. The switch then offers best-effort service to each packet.) When you enable auto-QoS. or the "auto qos voip trust" interface configuration command. and as a result.co m .cisco.

co m 83 . and prevent traffic destined for networks in another AS from going through your AS.www.11.actualtests.111 will be the active router because its HSRP priority is preferred over router 172.16. This will prevent the announcement of routes that originated from other Autonomous Systems. F.16.16.1 filter-list 1 out ! ip as-path access-list 1 permit ^$ In this example. C." . B. The preempt feature is not enabled on the 172.111 router. Router 172. The nonpreempt feature is enabled on the 172. D. The IP address 172.111 is the virtual HSRP router IP address.112 will be the active router because its HSRP priority is preferred over router 172. E.11.16.1.1. QUESTION NO: 100 What can be determined about the HSRP relationship from the displayed debug output? A. Router 172. the outgoing filter list says that all traffic not sourced from the local AS. Any Time. The IP address 172.112.11.16.11.112 router.16.11. should not be advertiseD.com Ac tua lTe sts .11.11. Answer: F "Pass Any Exam.111.11.16.112 is the virtual HSRP router IP address. odds are good that you will want to implement this kind of filter. This is useful real-world information to know and if you configure your network with BGP in a multi-homed environmet.Cisco 642-892: Practice Exam Answer: D Explanation: The minimum configuration that guarantees you won't become a transit AS is shown in the following example: router bgp 65000 neighbor 10.16.

G) state exists in every router. eigrp stub summary D. eigrp stub receive-only Answer: D QUESTION NO: 103 EIGRP is configured to run across serial interfaces. eigrp stub connected static C. C. Flooding of traffic only occurs in the beginning stages of routing. regardless of the presence of an RPF interface. QUESTION NO: 101 Which statement is true about Protocol Independent Multicast Dense Mode (PIM DM) multicast routing? A. The configurations of both routers include this command so that each router can be the standby router for the other router.com 84 Ac tua A network administrator would like to configure an EIGRP router as a stub router that advertises directly connected and summary routes only. PIM DM supports shared distribution trees. If you do not use the standby preempt command in the configuration for a router. eigrp stub connected B.Cisco 642-892: Practice Exam Explanation: The standby preempt interface configuration command allows the router to become the active router when its priority is higher than all other HSRP-configured routers in this Hot Standby group. "Pass Any Exam. EIGRP will not use any bandwidth value for route calculations. Afterwards. The (S. the administrator must re-enable the port to support multicast traffic. What will EIGRP assume about the speed of the serial links if the bandwidth command is not used? A. all necessary ports are pruned and multicast traffic is not sent across those interfaces. The 1 indicates that this command applies to Hot Standby group 1. that router cannot become the active router.actualtests. What command must the administrator issue to accomplish this? lTe sts ." . Answer: A QUESTION NO: 102 A. D.co m . If a port is pruned.www. Any Time. eigrp stub E. B.

EIGRP will assume that the link is the default speed of 768 kb/s. how will voice traffic from the phone and data traffic from the PC be handled by SW_1? "Pass Any Exam.com Ac A.actualtests. C.co m 85 . EIGRP will assume that the link is the default speed of 128 kb/s. Based upon the information that is given. C. E. only summary routes. tua lTe sts . OSPF has been configured on all routers in the network and Area 1 has been configured as a NSSA. Any Time. B. Only redistributed RIP routes will appear in Area 1. Which statement is true about the NSSA Area 1? Answer: A QUESTION NO: 105 Refer to the exhibit. Redistributed RIP and IGRP routes will appear in Area 1.Cisco 642-892: Practice Exam B. Only redistributed IGRP routes will appear in Area 1. D. EIGRP will assume that the bandwidth value is the actual speed of the interface. Answer: E QUESTION NO: 104 Refer to the exhibit. No redistributed routes can appear in Area 1. They will be advertised via type 7 LSAs. D." . They will be advertised via type 7 LSAs.www. EIGRP will assume the default speed of a T1 link. They will be advertised via type 5 LSAs.

By using the mls qos trust cos interface configuration command. The switch port will trust theCoS value of the ingress data traffic. The switch port will trust theCoS value of the ingress voice and data traffic that comes into the switch port. Data traffic will be marked at the switch port with the default CoS value. Any Time. The header contains the VLAN information and the CoS 3-bit field. which are listed below: Reference: http://www.actualtests.co A.www.1Q header. B. m 86 . After you enter the mls qos trust cos command. D.1_19_ea1/config uration/guide/swqos. The switch port will trust theCoS value of the ingress voice traffic.com/en/US/docs/switches/lan/catalyst2940/software/release/12. you connect a Cisco IP Phone to a switch port. For most Cisco IP Phone configurations. Traffic sent from the telephone to the switch is typically marked with a tag that uses the 802.cisco. The switch port will perform marking for the ingress voice and data traffic by using the defaultCoS value at the switch port. the traffic sent from the telephone to the switch is trusted to ensure that voice traffic is properly prioritized over other types of traffic in the network.Cisco 642-892: Practice Exam Answer: A Explanation: In a typical network. the DSCP values are changed according to the default values. C.com Ac tua lTe sts . you can configure the switch port to which the telephone is connected to trust the CoS labels of all traffic received on that port.html QUESTION NO: 106 "Pass Any Exam. Voice traffic will be marked at the switch port with the default CoS value." . which determines the priority of the packet.

The voice VLAN should be present and active on the switch for the IP phone to correctly communicate on the voice VLAN. The Port Fast feature is automatically enabled when voice VLAN is configured. lTe sts . Sticky secure MAC addresses cannot be used on a port when a voice VLAN is configured. Spanning tree PortFast cannot be configured on a port when a sticky secure MAC address is used.co m 87 .Cisco 642-892: Practice Exam Refer to the exhibit. the Port Fast feature is not automatically disabled." . The switch port must be configured as a trunk. What is the problem with this configuration? Answer: B Explanation: These are the voice VLAN configuration guidelines according to Cisco: You should configure voice VLAN on switch access ports. "Pass Any Exam. Spanning tree PortFast cannot be configured on a port where a voice VLAN is configured. When you disable voice VLAN.actualtests. C. D. B.com Ac tua A.www. Any Time.

cisco. B. Reference: http://www.html m .com 88 Ac tua lTe sts .www.actualtests. F. C. The IP address of the backup designated router (BDR) is FE80::205:5FFF:FED3:5808. E. the IP phone requires up to two MAC addresses. What two statements are true? (Choose two." . The address of the IP phone is learned on the voice VLAN.1_22_ea2/config uration/guide/swvoip. When the port is connected to a Cisco IP phone. The output was generated by the show ip interface command. This is the designated router (DR) on the FastEthernet 0/0 link. dynamic port security is automatically enabled on the voice VLAN. D. QUESTION NO: 107 Refer to the exhibit.co You cannot configure static secure or sticky secure MAC addresses on a voice VLAN. Any Time. You cannot configure port security on a per-VLAN basis. you must set the maximum allowed secure addresses on the port to at least two plus the maximum number of secure addresses allowed on the access VLAN.255 area 1 "Pass Any Exam.Cisco 642-892: Practice Exam When you enable port security on an interface that is also configured with a voice VLAN.0 0. OSPF version 2 has been enabled to support IPv6.) A. Interface FastEthernet 0/0 was configured with the ipv6 ospf 1 area 1 command. If any type of port security is enabled on the access VLAN. Connecting a PC to the IP phone requires additional MAC addresses. and it might or might not be learned on the access VLAN.0. The router was configured with the commands: router ospf 1 network 172.16.com/en/US/docs/switches/lan/catalyst2940/software/release/12.6.0.

Any Time." .E QUESTION NO: 109 What are three examples of call control signaling? (Choose three.actualtests. including the show ipv6 ospf [ process-id ] [ area-id ] interfacee [ interface ] command. UplinkFast must alsobe enabled. the interfaces are directly configured to specify that IPv6 networks are part of the OSPFv3 network. m 89 . B. all untagged traffic is sent according to the default CoS priority of the port. When voice VLANs are configured on a trunk link. C. Enabling voice VLANs enables the switch to forward frames with a specific 802. D.) sts QUESTION NO: 108 .729 C. Enabling voice VLANs enables the switch to create multiple queues for traffic that is entering a port. SIP "Pass Any Exam. G. instead of using the network area command to identify networks that are part of the OSPFv3 network. MGCP B. E.) A. Voice VLANs are configured to enable the switch to forward frames marked with the properCoS values over separate physical links. The configuration of OSPFv3 is not a subcommand mode of the router ospf command as it is in OSPFv2 configuration.Cisco 642-892: Practice Exam Answer: A.co There are several commonly used OSPFv3 show commands. The following describes the steps to configure OSPF for IPv6: A. For example.com Ac tua lTe Which two statements are true about the operation of voice VLANs on a Catalyst switch? (Choose two. Answer: C. When the voice VLAN feature is enabled.www.1P marking.C Explanation: OSPFv3 supports IPv6.

log. maintain. and SIP (Session Initiation Protocol) QUESTION NO: 110 What does the global configuration command ip arp inspection vlan 10-12. the interfaces running OSPF can be configured with multiple address prefixes. depending upon call endpoints. Examples are H.cisco. 11.C.E Explanation: Call Control Signaling: Packets belonging to one of several protocols-those used to set up.323 F. discards ARP packets with invalid IP-to-MAC address bindings on trusted ports D.www.com 90 Ac tua QUESTION NO: 111 lTe Answer: B sts A. intercepts.15 accomplish? A. validates outgoing ARP requests for interfaces configured on VLAN 10. B. and discard ARP packets with invalid MAC address to IP address bindings.711 E.com/en/US/docs/switches/lan/catalyst4500/12. This capability protects the network from certain "man-inthe-middle" attacks.co m In IPv6. Specific addresses can be selected using a route map. Media Gateway Control Protocol (MGCP). tear down. Any Time. or redirect a call. Specific addresses cannot be selected for importation into the OSPF process. or 15 C. Specific addresses can be selected using a prefix list. 12. Reference: http://www. logs. D. . Specific addresses can be selected using an ACL.1/20ew/configuration/guide/dynarp "Pass Any Exam.actualtests. C. intercepts all ARP requests and responses on trusted ports B.323." . DAI is a security feature that validates Address Resolution Protocol (ARP) packets in a network. H. and discards ARP packets with invalid IP-to-MAC address bindings Answer: D Explanation: The "ip arp inspection" command enables Dynamic ARP Inspection (DAI) for the specified VLANs. G.Cisco 642-892: Practice Exam D. DAI allows a network administrator to intercept. Which statement is true about the IPv6 addresses that can be included into the OSPF process? . RTP Answer: A.

C.html QUESTION NO: 112 Refer to the exhibit. D. HSRP reduces the router's priority by a configurable amount as soon as the interface goes down. B.Cisco 642-892: Practice Exam . the standby device will take over as active.actualtests. the new priority value for the switch would be 190. when fa1/1 on Switch_A goes down. lTe sts . 20 D. the decrement value for an interface is 10. m 91 . giving another router an opportunity to take over the active role.com Ac tua Explanation: HSRP has a mechanism for detecting link failures and swaying the election. 0 B. 1 C. If Switch_A had the highest prioritynumber. If port Fa1/1 on Switch_A goes down. Assume that Switch_A is active for the standby group and the standby device has only the default HSRP configuration." .co A.www. what metric value is assigned to the routes? A. When a specific interface is tracked. the priority will be decreased by 10 from 200 to 190. Any Time. QUESTION NO: 113 If no metric is specified for the routes being redistributed into IS-IS. it would not take over as active router. What conclusion is valid? Answer: D Switch( config-if)# standby group track type mod/num [decrementvalue] By default. If port Fa1/1 on Switch_A goes down. 10 "Pass Any Exam. it would take over the role of active for the HSRP group. If the current standby device were to have the higher priority value. So.

these commands can also be useful for troubleshooting problems with the IS-IS network: show ip protocols. You can specify the details for a particular route or a list of all routes in the routing table from a particular routing protocol process.com 92 Ac tua A.Displays the active IP routing protocols. IS-IS is not enabled. Address summarization is configured. The default administrative distance has been changed.co m ." . IS-IS is not redistributing any other routing protocols. On the basis of the output. and Serial 0/0/1 are taking part in Integrated IS-IS. and address summarization has not been configured. Example 6-3 is sample output from the show ip protocols command that displays information about IP routing being done by Integrated IS-IS. use the following commands.Cisco 642-892: Practice Exam Answer: A QUESTION NO: 114 Refer to the exhibit. IS-IS is running. E. and that the administrative "Pass Any Exam. show ip route [address [mask]] | [protocol [process-id]]. Three physical interfaces are taking part in integrated IS-IS.Displays the IP routing table. what two conclusions can be reached? (Choose two. B. There are two neighboring routers sendingIS-IS routing information. the interfaces on which they are active. Loopback 0.) Answer: A. D. lTe sts . and the networks for which they are routing. C.actualtests. it is not redistributing any other protocols.www.E Explanation: Verifying IS-IS Configuration To verify the IS-IS configuration and IP functionality of an Integrated IS-IS network. that there are two sources of routing information (the neighboring routers). Any Time. Example 6-3 also shows that interfaces FastEthernet 0/0. F.

cisco. a client adapter can only be configured and managed with the Microsoft Wireless Configuration Manager.co m 93 . it enables you to access status information about your client adapter and perform basic tasks.ibmpressbooks.com/en/US/docs/wireless/wlan_adapter/cb21ag/user/1. D. ASTU is accessible from an icon in the Windows system tray. You are using a laptop on an airplane and want to prevent the adapter's transmissions from potentially interfering with the operation of certain devices." . The Microsoft Wireless Configuration Manager can be configured to display the Aironet System Tray Utility (ASTU) icon in the Windows system tray. Example 6-3.com Ac tua lTe sts . C.) A. Reference: http://www. You might want to disable the client adapter's radio in the following situations: You are not transmitting data and want to conserve battery power. The ASTU icon appears only if a client adapter is installed in your computer and you did not disable ASTU during installation. Disabling the radio prevents the adapter from transmitting RF energy. Specifically. The Cisco Aironet Desktop Utility (ADU) and the Microsoft Wireless Configuration Manager can both be enabled at the same time to setup WLAN client cards. this option enables you to disable or enable the client adapter's radio.pdf QUESTION NO: 116 "Pass Any Exam. In a Windows XP environment. The Aironet Desktop Utility (ADU) can be used to enable or disable the adapter radio and to configure LEAP authentication with dynamic WEP. B. "show ip protocols" Command to Examine IS-IS: Reference : Authorized Self-Study Guide Building Scalable Cisco Internetworks (BSCI).com/1587052237/ch06lev1sec4 QUESTION NO: 115 Which two WLAN client utility statements are true? (Choose two. ASTU is an optional application that provides a small subset of the features available through ADU. Any Time. Answer: A.C Explanation: Enable/Disable Radio: On the ADU.0/configuration/guide/khic g1. making it easily accessible and convenient to use. Third Edition http://safari.actualtests.Cisco 642-892: Practice Exam distance of Integrated IS-IS is 115.www.

EIGRP will advertise the summary address out the interface with a metric equal to the minimum of all more specific routes.co m 94 .cisco. F. Manual route summarization is configured on the interface.actualtests. Based upon the information in the exhibit. On major network boundaries. The ip summary-address eigrp command generates a default route with an AD of 5. Manual route summarization is configured in router configuration mode when the router is configured for EIGRP routing.F Explanation: The purpose of route summarization is small routing tables. Manual route summarization can be configured on per interface basis.D. which statement is true? "Pass Any Exam. EIGRP will advertise the summary address out the interface with a metric equal to the minimum of all more specific routes. If there are any more specific routes in the routing table. the router immediately creates a route that point to null0 interface. You can configure a summary aggregate address for a specified interface. Reference: http://www. E. The ip summary-address eigrp command generates a default route with an AD of 90.www.com/en/US/docs/ios/12_0/np1/configuration/guide/1ceigrp. When manual summarization is configured. If automatic summarization is in effect. in which additional summarization can be performed.Cisco 642-892: Practice Exam Which three statements are true about EIGRP route summarization? (Choose three. Route summarization works in conjunction with the ip summary-address eigrp interface configuration command. When manual summarization is configured. Answer: B. C.com Ac tua lTe sts .) A." .html QUESTION NO: 117 Refer to the exhibit. smaller updates. Any Time. When summarization is configured on an interface. subnetworks are summarized to a single classful network and automatic route summarization is enabled by default. the router immediately creates a route pointing to null0. there usually is no need to configure network level summaries using the ip summary-address eigrp command. D. B.

C. B.www. tua lTe A.1.200.168.1 as unicast messages. R1 will forward all DHCP requests to both 192. R1 will forward DHCP requests to 192. if no response got from the first helper address then sends the request to second one. QUESTION NO: 118 HOTSPOT "Pass Any Exam.1 and 192. D. DHCP requests from the host will be rebroadcasted to R2. To complete this configuration. the R1 fa0/0 interface must be configured with the ip helperaddresses command. Relay agents receive DHCP messages and then generate a new DHCP message to send out on another interface. To complete this configuration. E. sts .168. R1 will then forward the requests to 192. Any Time.100. the R2 fa0/0 interface must be configured with the ip helperaddresses command.co m 95 .com Ac Explanation: A DHCP relay agent is any host that forwards DHCP packets between clients and servers.1.168." .Cisco 642-892: Practice Exam Answer: B The Cisco IOS DHCP relay agent is enabled on an interface only when the ip helper-address is configured. If multiple helper-addresses are configured.100. If there is no response.200. The agents forward requests and replies between clients and servers when they are not on the same physical subnet.168.actualtests. it tries to get response from first.

Cisco 642-892: Practice Exam Answer: Explanation: "Pass Any Exam." .co m 96 . Any Time.com Ac tua lTe sts .actualtests.www.

com Ac Explanation: Use APs in Repeater Mode You can configure APs to act as repeaters.create the same SSID on the repeater. C. the AP is not connected to the wired LAN.s html "Pass Any Exam. there must be a fifty percent overlap in coverage area with the root AP for the repeater mode to function. In APs with two radios. When you configure an AP as a repeater. and extends the range of the radio coverage area. !--. D. In this mode. The SSID of the root access point must be distinct from that of the repeater access point. Autonomous access points are required. The SSID of the root access point must be configured on the repeater access point. only one radio can be a repeater. Any Time. The advantage with the repeater mode in APs is that this mode helps to extend the radio coverage area of a WLAN in situations where connectivity to the wired LAN is not possible.actualtests. E. In this scenario.co m Answer: C. This enables Wireless Clients that reside away from the root AP to gain access to the WLAN network. Lightweight access points are required.E 97 . Also. the Ethernet port on that AP does not forward traffic. You must configure the other radio as a root radio. The recommended overlap of the access point on the wired LAN and the wireless repeater is 25%. the AP is placed within the radio range of the AP that is connected to the wired LAN (the root AP). You can configure either the 2. tua lTe sts .) A. the repeater AP associates with the root AP.cisco.Cisco 642-892: Practice Exam QUESTION NO: 119 What are three characteristics of the wireless repeater topology? (Choose three. The recommended overlap of the access point on the wired LAN and the wireless repeater is 50%. designate this SSID as an infrastructure SSID. Part of the configuration guide for setting up the wireless AP states: In the next step. Instead. Reference: http://www. !--.If you created an infrastructure SSID on the root AP. F." . B.com/en/US/products/hw/wireless/ps441/products_tech_note09186a00805190f1.D.www.4 GHz radio or the 5 GHz radio as a repeater.

com Ac tua lTe sts . The router with the highest priority value (255 is highest) becomes the active router for the group. B. QUESTION NO: 121 What are two rules for compacting IPv6 addresses? (Choose two. Any single. F. Answer: A. The trailing zeroes in any 16-bit segment do not have to be written.C QUESTION NO: 122 Refer to the exhibit. Any Time. Two zeroes in the middle of any 16-bit segment do not have to be written.Cisco 642-892: Practice Exam QUESTION NO: 120 Which two statements about HSRP priority are true? (Choose two. the standby group-number priority priority-value global configuration command must be used. E.C Explanation: HSRP election is based on a priority value (0 to 255) that is configured on each router in the group. the router with the lowest priority in an HSRP group would become the active router. When two routers in an HSRP standby group are configured with identical priorities. The no standby priority command assigns a priority of 100 to the router. D.) A. the router with the highest IP address on the HSRP interface becomes the active router.) A. continuous string of one or more 16-bit segments that consists of all zeroes can be represented with a double colon. Assuming that preempting has also been configured. Answer: B. What type of message will be used by the lightweight access point (LAP) in an attempt to locate the wireless LAN controller (WLC)? "Pass Any Exam. To assign the HSRP router priority in a standby group. the priority is 100.www. The leading zeroes in any 16-bit segment do not have to be written.actualtests. E." . the router with the highest configured IP address will become the active router. The default priority of a router is zero (0). If all router priorities are equal or set to the default value.co m 98 . C. D. By default. C. The maximum number of times a double colon can replace a 16-bit segment that consists of all zeroes is two. B. Every 16-bit segment segment that consists of all zeroes can be represented with a single colon.

The LAP will send out a DHCP request.16. The LAP will send out a DNS request. The LAP then sends out a discovery request to the local subnet.1.1. C. the DHCP server will provide the IP addresses for the LAP and the WLC. The LAP listens to neighbor messages that are sent over the air by the LAPs (in the 172.0/16. you have an LAP that is already registered with the WLC. B.1.www. D.0/24 subnet comes up. Any Time. When the new LAP in the 192. The LAP will send out a Layer 2 LWAPP discovery request to the WLC on the wireless network.co A.actualtests.Cisco 642-892: Practice Exam Answer: C Explanation: Here is an example. m ." . From the list of WLC IP addresses that the new LAPs learn from the neighbor "Pass Any Exam. The LAP will send out a Layer 3 LWAPP discovery request to the WLC on the wireless network.16. the LAP tries to use OTAP in order to discover WLCs.168.0/16 subnet) that are already registered and looks for WLC IP addresses.com 99 Ac tua lTe sts . in the subnet 172. In return. and OTAP is enabled on the WLC. Because in this scenario there is no WLC in the local subnet. the LAP looks for a DHCP server and gets an IP address (if no assignment was made previously with a static IP address). Assume that. the DNS server will provide the WLC domain name. In return.

the new LAPs send out a Layer 3 LWAPP discovery request to the WLCs .actualtests.0. as well as statistics on hello packets.com/en/US/tech/tk722/tk809/technologies_tech_note09186a00806c9e51.www.co m 100 . debug eigrp packets tua Which command will display EIGRP packets sent and received.1 . show ip eigrp interfaces B. updates. The WLCs that receive this discovery request respond with a Layer 3 LWAPP discovery response.shtml#t opic2 QUESTION NO: 123 Which type of IGMP message is sent when a network client wants to join a multicast group? A. Reference: http://www.cisco.com Ac A.Cisco 642-892: Practice Exam messages. debug ip eigrp C. host membership report C. replies. host membership notification B. show ip eigrp traffic D. Example: The following is sample output from the show ip eigrp traffic command: Router# show ip eigrp traffic IP-EIGRP Traffic Statistics for process 77 Hellos sent/received: 218/205 Updates sent/received: 7/23 "Pass Any Exam. queries. host membership query Answer: B QUESTION NO: 124 Answer: C Explanation: The show ip eigrp traffic command displays the number of Enhanced IGRP (EIGRP) packets sent and received. and acknowledgments? lTe sts Explanation: When a host wants to join a multicast group it sends an unsolicited Host Membership Report to the All-hosts Group Address 224. Any Time.0." . host membership status D.

The sending of summary routes will not be permitted. Answer: A. The eigrp stub command will automatically enable summarization of routes on R2." . B. Which two statements are true? (Choose two. C. or summary routes.com Ac tua lTe sts .) A.www. Any Time.co m 101 .html#wp1018815 QUESTION NO: 125 Refer to the exhibit. static.D "Pass Any Exam.com/en/US/products/sw/iosswrel/ps1828/products_command_reference_chapter 09186a00800ca5a9. Router R1 will advertise connected and summary routes only.actualtests. Router R1 is configured as a receive-only neighbor and will not send any connected.cisco. The eigrp stub command prevents all routes except a default route from being advertised to R1. D. E. Router R1 will advertise connected and static routes.Cisco 642-892: Practice Exam Queries sent/received: 2/0 Replies sent/received: 0/2 Acks sent/received: 21/14 Reference :http://www. F. The eigrp stub command prevents queries from being sent from R2 to R1.

html#wp1012967 lTe sts . The command spanning-tree guard root is configured on interface Gi0/0 on both switch S2 and S5. The host that responds first to the election query is designated.com/en/US/docs/ios/ipmulti/command/reference/imc_02. The global configuration command spanning-tree uplinkfast has been configured on both switch S2 and S5. The link between switch S4 and S5 fails. The host with the lowest MAC address on a segment is designated. the designated querier is the lowest IP-addressed multicast router on the subnet . the designated router is elected according to the multicast routing protocol that runs on the LAN. D. which has the address 224. indicating that the host wants to become a member of the group). The designated router for a LAN is the only router that sends IGMP host query messages: For IGMP Version 1.0." .cisco.co m 102 . Hosts respond with IGMP report messages indicating that they want to receive multicast packets for specific groups (that is. The first router to appear on a subnet is designated.actualtests.Cisco 642-892: Practice Exam QUESTION NO: 126 How is the designated querier elected in IGMPv2? A. B. Host query messages are addressed to the all-hosts multicast group.1. Reference: http://www. and has an IP time-to-live (TTL) value of 1.0. QUESTION NO: 127 Refer to the exhibit. Any Time. Answer: D Explanation: Multicast routers send host membership query messages (host query messages) to discover which multicast groups have members on the attached networks of the router. The router with the lowest IP address on a subnet is designated. C. If the router hears no queries for the timeout period (controlled by the ip igmp queriertimeout command).www. Will Host A be able to reach Host B? "Pass Any Exam.com Ac tua For IGMP Version 2. it becomes the querier.

co m A.com Ac tua lTe sts . Traffic will loop back and forth between switch S5 and S2. you can enable BPDU filtering on any port by using the spanning-tree bpdufilter enable interface configuration command without also enabling the Port Fast feature.actualtests. You should globally enable BPDU filtering on a switch so that hosts connected to these ports do not receive BPDUs.) "Pass Any Exam. or traffic will pass from switch S6 to S3 to S2 and dead-end. but the feature operates with some differences. Traffic will pass from switch S6 to S5 and dead-end at interface Gi 0/0. The ports still send a few BPDUs at link-up before the switch begins to filter outbound BPDUs. Any Time. Traffic can pass either from switch S6 to S3 to S2 to S1.Cisco 642-892: Practice Exam Answer: E Explanation: The BPDU filtering feature can be globally enabled on the switch or can be enabled per interface. Traffic will pass from switch S6 to S3 to S2 to S1. This command prevents ports that are in a Port Fast-operational state from sending or receiving BPDUs . At the global level. and BPDU filtering is disabled. At the interface level. Yes. from switch S6 to S5 to S2 to S1. Yes.www." . Which two statements are true about the required switch configurations to support a voice VLAN? (Choose two. Traffic willeither pass from switch S6 to to S5 and dead-end. C. No. QUESTION NO: 128 Refer to the exhibit. the port loses its Port Fast-operational status. you can enable BPDU filtering on Port Fast-enabled ports by using the spanning-tree portfast bpdufilter default global configuration command. 103 . or. If a BPDU is received on a Port Fast-enabled port. This command prevents the port from sending or receiving BPDUs. No. B. No. E. D.

com Ac Refer to the exhibit.www. B. 104 .Cisco 642-892: Practice Exam Answer: C. E. Any Time. 802. C. Static secure MAC addresses should be configured on voice vlan ports to prevent access by devices other than IP phones. CDP must be enabled on the switch port to allow configuration information to be passed to the IP phone. The Port Fast feature is automatically enabled when voice VLAN is configured. Which statement is true about the configuration? tua lTe Explanation: CDP (Cisco Discovery Protocol) must be enabled on switch port connected to IP Phone to recognize the IP Phone by switch and enable Port Fast to bring switch port directly from blocking to forwarding state.actualtests. CDP must be disabled on the switch port to prevent interference between CDP messages and voice traffic.co m A. Port security cannot be configured on a port that is configured for a voice vlan. the Port Fast feature is not automatically disabled. sts . D.1x authentication cannot be configured on a port configured for a voice vlan. When you disable voice VLAN.E QUESTION NO: 129 "Pass Any Exam. F." . Portfast must be enabled on the switch port.

Hosts in the 10.com Ac Answer: B tua A. Answer: C "Pass Any Exam. and then hosts will receive the settings from pool 2." . an 802. lTe sts . Hosts will receive IP settings from pool 1 until the addresses run out.actualtests. C. it assumes it is not authorized. Any Time.20. RADIUS is the only supported authentication server type. B. DHCP pool 0 needs to have the ip dhcp excluded-address command to exclude the default router and DNS servers. D. C. If a host initiates the authentication process and does not receive a response. Before transmitting data.1x host must determine the authorization state of the switch. Hosts belonging to DHCP pool 1 and pool 2 will retain their IP settings for 30 hours before they must renew.10.Cisco 642-892: Practice Exam QUESTION NO: 130 Which statement is true about 802.50 as its DNS server. Hosts are required to havea 802.0/24 subnet will use 10.1x port-based authentication? A.www.co m 105 .1x authentication client or utilize PPPoE. D.20.10. B.

Cisco 642-892: Practice Exam Explanation: The IEEE 802. Because the switch acts as the proxy. 802.actualtests. The authentication server validates the identity of the client and notifies the switch whether or not the client is authorized to access the LAN and switch services.com Ac tua lTe sts Refer to the exhibit. normal traffic can pass through the port. After authentication succeeds. Which statement is true? ." . The authentication server authenticates each workstation that is connected to a switch port before making available any services offered by the switch or the LAN. Until the workstation is authenticated.1x standard defines a port-based access control and authentication protocol that restricts unauthorized workstations from connecting to a LAN through publicly accessible switch ports. All multilayer switches are running PIM dense mode. the authentication service is transparent to the client. Recipient A and Recipient B are sending IGMPv2 join messages to their respective multilayer switches.1x access control allows only Extensible Authentication Protocol over LAN (EAPOL) traffic through the port to which the workstation is connected. Any Time. The RADIUS security system with Extensible Authentication Protocol (EAP) extensions is the only supported authentication server.co m 106 . Authentication server: Performs the actual authentication of the client. QUESTION NO: 131 "Pass Any Exam.www.

actualtests.3. Switches 3. and 5 will participate in the multicast tree once pruning has taken place.3. Switches 1.4. Switch 3 is the root of the multicast tree.www.com 107 Ac tua lTe sts . Switches 4 and 5 will participate in the multicast tree once pruning has taken place.Cisco 642-892: Practice Exam A. Switch 3 is the root of the multicast tree.co m . B. Any Time. The Multicast Server is the root of the multicast tree. F.3. and 5 will participate in the multicast tree once pruning has taken place. Switch 1 is the root of the multicast tree. Switches 1. and 5 will participate in the multicast tree once pruning has taken place. and 5 will participate in the multicast tree once pruning has taken place.4.4. C. Switches 1." . D. E. and 5 will participate in the multicast tree once pruning has taken place.4.4. Switches 1. Switch 1 is the root of the multicast tree. Answer: F "Pass Any Exam. The Multicast Server is the root of the multicast tree.

shtml http://www.cisco. RIPv2 B." . The use of the passive-interface command in EIGRP suppresses the exchange of hello packets between two routers. OSPF C.) "Pass Any Exam.shtml QUESTION NO: 133 Which three statements are true regarding the above diagram? (Choose three. but it also suppresses incoming routing updates. EIGRP D. References: http://www.cisco. The same is true for OSPF.) A. the effect is slightly different.com/en/US/tech/tk365/technologies_tech_note09186a0080093f0a.D Explanation: You can use the passive-interface command to control the advertisement of routing information. the passive-interface command restricts outgoing advertisements only. which results in the loss of their neighbor relationship.www. when used with Enhanced Interior Gateway Routing Protocol (EIGRP) and OSPF. However.actualtests. RIP Answer: A. such as RIP version 1 and 2.co m 108 .com Ac tua lTe sts . This stops not only routing updates from being advertised. which two routing protocols will continue to receive routing updates on an interface that is configured as passive? (Choose two. Any Time. To stop routers from becoming OSPF neighbors on a particular interface.com/en/US/tech/tk365/technologies_q_and_a_item09186a0080094704. With most routing protocols. issue the passive-interface command at the interface.Cisco 642-892: Practice Exam QUESTION NO: 132 When the passive-interface command is used on a router. The command enables the suppression of routing updates over some interfaces while it allows updates to be exchanged normally over other interfaces.

trunking is successfully negotiated. whichever is supported by both ends of the trunk.1Q mode. Cisco has implemented a proprietary.B. .1Q standard protocol.com Ac tua lTe sts A. or dynamic auto mode.) In the switchport mode command. Because of the passive negotiation behavior. B. negotiate (the default)-The encapsulation is negotiated to select either ISL or IEEE 802.D Explanation: You can manually configure trunk links on Catalyst switches for either ISL or 802. The corresponding switch port at the other end of the trunk should be similarly configured because negotiation is not allowed. If the far-end switch port is configured to trunk . The only exception is the native VLAN. as one of the following: isl . which is sent normally and not tagged at all." .co m 109 . The negotiation covers the encapsulation (ISL or 802. You should also manually configure the encapsulation mode. If both ends support both types. A trunk link will be formed. dynamic auto -The port converts the link into trunking mode.1Q) as well as whether the link becomes a trunk at all. ISL is favored. (The Catalyst 2950 switch does not support ISL encapsulation. the link "Pass Any Exam. E. dot1q -VLANs are tagged in each frame using the IEEE 802. The native VLAN for Switch B is vlan 1. you can set the trunking mode to any of the following: trunk This setting places the port in permanent trunking mode. DTP is not running on Switch A. dynamic desirable (the default)-The port actively attempts to convert the link into trunking mode. Any Time.www. In addition. trunking is negotiated.Cisco 642-892: Practice Exam Answer: A. DTP packets are sent from Switch B. You can configure the trunk encapsulation with the switchport trunk encapsulation command. Only VLANs 1-1001 will travel across the trunk link. dynamic desirable . If the far-end switch port is configured to trunk or dynamic desirable .VLANs are tagged by encapsulating each frame using the Cisco ISL protocol. point-to-point protocol called Dynamic Trunking Protocol (DTP) that negotiates a common trunking mode between two switches. C.1Q.actualtests. D.

.16.112 is preferred over the router with IP address 172.www. This address is used for all routing protocol and management traffic initiated by or destined to the router.112 is using default HSRP priority. Clients can point to that virtual router address as their default gateway. C.11. You can configure a router to preempt or immediately take over the active role if its priority is the highest at any time. The priority of the router with IP address 172. F.11.16. The router with IP address 172.) Answer: B. you can add the secondary keyword so that HSRP can provide a redundant secondary gateway address.11. D.111.11. Use the following interface configuration command to allow preemption: Switch( config-if)# standby group preempt [delay seconds] "Pass Any Exam.E Explanation: Each router in an HSRP group has its own unique IP address assigned to an interface. The final active router is the router with IP address 172.11. Based upon the debug output that is shown. E.D. which three statements about HSRP are true? (Choose three.16.111.111 haspreempt configured. You can assign the HSRP address with the following interface command: Switch( config-if)# standby group ip ip-address [secondary] When HSRP is used on an interface that has secondary IP addresses. knowing that a router always keeps that address active. that is kept alive by HSRP." . In addition.com 110 Ac tua lTe sts A.11.Cisco 642-892: Practice Exam never becomes a trunk if both ends of the link are left to the dynamic auto default.actualtests.16. each router has a common gateway IP address.16. Keep in mind that the actual interface address and the virtual (standby) address must be configured to be in the same IP subnet. This address is also referred to as the HSRP address or the standby address . the virtual router address. QUESTION NO: 134 Refer to the exhibit. The IP address 172. The router with IP address 172. The router with IP address 172.11.co m .112 has nonpreempt configured. Any Time.16.16. B.115 is the virtual HSRP IP address.

D. The RP is only seen in version 2 of Sparse-Dense mode.B QUESTION NO: 136 Refer to the exhibit. Reference: http://www. Point-to-Point links do not display DR information.actualtests. Any Time.com Ac Explanation: show ip pim interface: Use this command to display information about interfaces configured for PIM. without delay. and the designated router (DR) is correct (which is critical for PIM sparse mode). In addition.Cisco 642-892: Practice Exam By default. you can use this command to verify that the correct PIM mode (dense or sparse) is configured on the interface.cisco. B. Point-to-Point links do not display DR information.www. Multi-access segments (such as Ethernet. This is usually done if there are routing protocols that need time to converge. the router can preempt another immediately. FDDI ) elect a DR based on highest IP address. the neighbor count is correct.co A." . m 111 . Multiaccess segments elect a DR based on lowest IP address. multicast segments do not elect a DR. Multiaccess segments elect a DR based on highest IP address. You can use the delay keyword to force it to wait for seconds before becoming active. E.shtml tua lTe sts . What statement is true based upon the configuration in the exhibit? "Pass Any Exam.) Answer: A. Token Ring.com/en/US/tech/tk828/technologies_tech_note09186a0080093f21. QUESTION NO: 135 Refer to the exhibit. What are two important facts in interpreting the output of the show ip pim interface command? (Choose two. Multiaccess. C.

16. C. The control traffic between the client and the access point is encapsulated with the LWAPP. the interface cannot operate in dense mode. 112 . and mobility are handled by the access point." . In PIM-SM. D. The protocol is described in RFC 2362. depending on which mode the multicast group operates. An interface configured in sparse-dense mode is treated in either sparse mode or dense mode of operation.www. CGMP version 2 is being used.cisco. D. B.actualtests. A rendezvous point must be configured in order for the interface to operate in sparse mode. security.16.com/en/US/docs/ios/solutions_docs/ip_multicast/White_papers/rps. F. dense mode second. only network segments with active receivers that have explicitly requested multicast data will be forwarded the traffiC. The rendezvous point is IP address 172.html lTe sts .co m A. IGMP version 2 is being used. B. Authentication. If a multicast group has a known RP.Cisco 642-892: Practice Exam Answer: D QUESTION NO: 137 Which statement is true about the Lightweight Access Point Protocol (LWAPP)? A. If a rendezvous point is configured. Real-time frame exchange is accomplished within the access point. The switch will use sparse mode first. If a group has no known RP. the interface is treated in sparse mode.4. Answer: B Explanation: "Pass Any Exam. Any Time. Data traffic between the client and the access point is encapsulated with LWAPP.com Ac tua Explanation: A rendezvous point (RP) is required only in networks running Protocol Independent Multicast sparse mode (PIM-SM). C. E. Reference: Configuring a Rendezvous Point http://www. the interface is treated in dense mode and data will be flooded over this interface.

In particular. The serial 0/0/1 interface on the ISP router has been configured with the set metric 50 command. while authentication. C. "Pass Any Exam. The output was generated by entering the show ip bgp command on the SanJose1 router. it revolutionized the way WLAN deployments were managed with the concept of a "split MAC" the ability to separate the real-time aspects of the 802.www.11 protocol from most of its management aspects.actualtests.co m .) A.com/en/US/prod/collateral/wireless/ps5678/ps6306/prod_white_paper0900aecd8 02c18ee_ns337_Networking_Solutions_White_Paper. and mobility are handled by WLAN controllers. On the basis of the information in the exhibit.html QUESTION NO: 138 Refer to the exhibit." . Any Time.cisco.com 113 Ac tua lTe sts . security management.Cisco 642-892: Practice Exam When LWAPP was first introduced to the WLAN industry in 2002. Reference: http://www. The output was generated by entering the show ip bgp command on the ISP router. D. which two statements are true? (Choose two. The serial 0/0/1 interface on the ISP router has been configured with the set metric 75 command. real-time frame exchange and certain real-time portions of MAC management are accomplished within the access point. B.

The result is that new entries cannot be inserted because of the exhausted CAM table space. which causes flooding of regular data frames out all switch ports.actualtests. as this is the metric to the peer with IP address 192. Answer: F Explanation: A common Layer 2 or switch attack is MAC flooding. the command "show ip bgp" is required to display the contents of the actual BGP routing table. E. When traffic is sent from the ISP to autonomous system 64512." . C.www. B.com 114 Ac tua lTe sts . the traffic will be forwarded to SanJose2 because of the higher MED value of SanJose2. F. invalid source MAC addresses flood the switch and exhaustCAM table space. resulting in a switch's CAM table overflow. D.co QUESTION NO: 139 m . Frames with unique. F.Cisco 642-892: Practice Exam E. When traffic is sent from the ISP to autonomous system 64512. This attack can be launched for the malicious purpose of collecting a broad sample of traffic or as a denial of service (DoS) attack.C Explanation: The "show ip route bgp" command will display any BGP-learned routes that make it into the IP routing table. we know the serial 0/0/1 interface has been configured with a metric of 75. and traffic is subsequently flooded out all ports. The switch then forwards frames destined for the valid host to the attacking device. The attacking device crafts ARP replies intended for valid hosts. Any Time. and traffic is subsequently flooded out all ports. This output was seen on ISP because the local router ID is 192. the traffic will be forwarded to SanJose1 because of the lower MED value of SanJose1. Answer: B. Frames with unique. Which description correctly describes a MAC address flooding attack? A.2 (the other side of the serial 0/0/1 interface). The MAC address of the attacking device then becomes the source address found in the Layer 2 frames sent by the valid network device. invalid destination MAC addresses flood the switch and exhaustCAM table space. The attacking device spoofs a destination MAC address of a valid host currently in theCAM table.1 (ISP).168.1. Since we know that this output must have been seen by ISP. A switch's CAM tables are limited in size and therefore can contain only a limited number of "Pass Any Exam.168. The attacking device spoofs a source MAC address of a valid host currently in theCAM table. The MAC address of the attacking device then becomes the destination address found in the Layer 2 frames sent by the valid network device.100. The result is that new entries cannot be inserted because of the exhausted CAM table space. The switch then forwards frames destined for the valid host to the attacking device. The attacking device crafts ARP replies intended for valid hosts.

B. all wireless infrastructure devices (such as access points.actualtests. "Pass Any Exam. In ad hoc mode all client WEP keys within the wireless network must match each other. Then frames from those legitimate devices are unable to create CAM table entries as they power on. Any Time. If the attack is launched before the beginning of the day.Cisco 642-892: Practice Exam entries at any one time. If enough new entries are made before old ones expire. the CAM table would be full when the majority of devices are powered on. In infrastructure mode the client adapter WEP key must match the WEP key used by the access point. The client adapter WEP key should be generated by the authentication server and forwarded to the client adapter before the client adapter can establish communication with the wireless network. The client adapter WEP key should be generated by the AP and forwarded to the client adapter before the client adapter can establish communication with the wireless network.com Ac tua lTe sts . An intruding device can be connected to any switch port and capture traffic that is not normally seen on that port. the number of MAC addresses for which traffic will be flooded will be high. servers. Before the client adapter WEP key is generated.www. This has two adverse effects: The switch traffic forwarding is inefficient and voluminous. D.) must be properly configured for LEAP authentication. the switch must flood frames to that address out all ports. etc. A. Then. and any switch port will carry flooded frames from a large number of devices.co Refer to the exhibit. A network intruder can maliciously flood a switch with a large number of frames from a range of invalid source MAC addresses. What should be taken into consideration when using the Cisco Aironet Desktop Utility (ADU) to configure the static WEP keys on the wireless client adapter? m QUESTION NO: 140 115 . C." . If this represents a large number of network devices. when traffic arrives at the switch for a legitimate device that is located on one of the switch ports that was not able to create a CAM table entry. new valid entries will not be accepted.

Cisco 642-892: Practice Exam Answer: B Explanation: Your client adapter's WEP key must match the WEP key used by the access point (in infrastructure mode) or clients (in ad hoc mode) with which you are planning to communicate. Reference: http://www.cisco.com/en/US/docs/wireless/wlan_adapter/cb21ag/user/3.5/configuration/guide/wina pekh.html

QUESTION NO: 141 Refer to the exhibit.

On the basis of the configuration that is provided, how would the BGP updates that come from router R1 be replicated inside autonomous system 65200? A. All BGP updates that are received on router R2 will not be sent to routers R3 and R4. B. All BGP updates that are received on router R2 will be sent directly to router R5. C. All BGP updates that are received on router R2 will be sent to routers R3 and R4. Routers R3 and R4 will then forward those BGP updates to router R5. D. None of the BGP updates that are received on router R2 will ever be received by router R5.

"Pass Any Exam. Any Time." - www.actualtests.com

Ac

tua

lTe

sts

.co

m

116

Cisco 642-892: Practice Exam Answer: D

QUESTION NO: 142 Which statement is true about RSTP topology changes? A. Any loss of connectivity generates a TC BPDU. B. Only nonedge ports moving to the forwarding state generate a TC BPDU. C. If either an edge port or a nonedge port moves to a block state, then a TC BPDU is generated. D. Only nonedge ports moving to the blocking state generate a TC BPDU. E. Any change in the state of the port generates a TC BPDU. Answer: B Explanation: The IEEE 802.1D Spanning Tree Protocol was designed to keep a switched or bridged network loop free, with adjustments made to the network topology dynamically. A topology change typically takes 30 seconds, where a port moves from the Blocking state to the Forwarding state after two intervals of the Forward Delay timer. As technology has improved, 30 seconds has become an unbearable length of time to wait for a production network to failover or "heal" itself during a problem. Topology Changes and RSTP Recall that when an 802.1D switch detects a port state change (either up or down) , it signals the Root Bridge by sending topology change notification (TCN) BPDUs. The Root Bridge must then signal a topology change by sending out a TCN message that is relayed to all switches in the STP domain. RSTP detects a topology change only when a nonedge port transitions to the Forwarding state. This might seem odd because a link failure is not used as a trigger. RSTP uses all of its rapid convergence mechanisms to prevent bridging loops from forming. Therefore, topology changes are detected only so that bridging tables can be updated and corrected as hosts appear first on a failed port and then on a different functioning port. When a topology change is detected, a switch must propagate news of the change to other switches in the network so they can correct their bridging tables, too. This process is similar to the convergence and synchronization mechanism-topology change (TC) messages propagate through the network in an ever-expanding wave.

QUESTION NO: 143 Which command displays the IBGP and EBGP neighbors that are configured?

"Pass Any Exam. Any Time." - www.actualtests.com

Ac

tua

lTe

sts

.co

m

117

Cisco 642-892: Practice Exam A. show ip bgp peers B. show ip bgp summary C. show ip bgp paths D. show ip bgp Answer: B Explanation: The "show ip bgp summary" command displays the summary of all BGP connections.

QUESTION NO: 144 Refer to the exhibit. Given the output of a debug ip mrouting command, which two statements are true? (Choose two.)

A. Multicast route to 224.69.15.0 B. 24 will be out Ethernet 0. C. 24 was added to the mroute table and created by a source directly connected to the router. D. This router received an IGMP host report from a group member or a PIM join message. E. The reverse path forwarding (RPF) for the route 224.2.0.1 failed to find the interface on which the multicast packet was received. F. 16 was added to the mroute table and created by a source directly connected to the router. G. Multicast route to 10.16.0.0 H. The route to 224.69.15.0 Answer: D,G Explanation: The following is sample output from the debug ip mrouting command: Router# debug ip mrouting 224.2.0.1 MRT: Delete (10.0.0.0/8, 224.2.0.1) MRT: Delete (10.4.0.0/16, 224.2.0.1) MRT: Delete (10.6.0.0/16, 224.2.0.1) MRT: Delete (10.9.0.0/16, 224.2.0.1) MRT: Delete (10.16.0.0/16, 224.2.0.1) MRT: Create (*, 224.2.0.1), if_input NULL "Pass Any Exam. Any Time." - www.actualtests.com 118

Ac

tua

lTe

sts

.co

m

Cisco 642-892: Practice Exam MRT: Create (224.69.15.0/24, 225.2.2.4), if_input Ethernet0, RPF nbr 224.69.61.15 MRT: Create (224.69.39.0/24, 225.2.2.4), if_input Ethernet1, RPF nbr 0.0.0.0 MRT: Create (10.0.0.0/8, 224.2.0.1), if_input Ethernet1, RPF nbr 224.0.0.0 MRT: Create (10.4.0.0/16, 224.2.0.1), if_input Ethernet1, RPF nbr 224.0.0.0 MRT: Create (10.6.0.0/16, 224.2.0.1), if_input Ethernet1, RPF nbr 224.0.0.0 MRT: Create (10.9.0.0/16, 224.2.0.1), if_input Ethernet1, RPF nbr 224.0.0.0 MRT: Create (10.16.0.0/16, 224.2.0.1), if_input Ethernet1, RPF nbr 224.0.0.0 The following lines show that multicast IP routes were deleted from the routing table: MRT: Delete (10.0.0.0/8, 224.2.0.1) MRT: Delete (10.4.0.0/16, 224.2.0.1) MRT: Delete (10.6.0.0/16, 224.2.0.1) The (*, G) entries are generally created by receipt of an Internet Group Management Protocol (IGMP) host report from a group member on the directly connected LAN or by a Protocol Independent Multicast (PIM) join message (in sparse mode) that this router receives from a router that is sending joins toward the RP. This router will in turn send a join toward the Route Processor (RP) that creates the shared tree (or RP tree). MRT: Create (*, 224.2.0.1), if_input NULL The following lines are an example of creating an (S, G) entry that shows that an IP multicast packet (mpacket) was received on Ethernet interface 0. The second line shows a route being created for a source that is on a directly connected LAN. The RPF means "Reverse Path Forwarding," whereby the router looks up the source address of the multicast packet in the unicast routing table and determines which interface will be used to send a packet to that source. MRT: Create (224.69.15.0/24, 225.2.2.4), if_input Ethernet0, RPF nbr 224.69.61.15 MRT: Create (224.69.39.0/24, 225.2.2.4), if_input Ethernet1, RPF nbr 224.0.0.0 The following lines show that multicast IP routes were added to the routing table. Note the 224.0.0.0 as the RPF, which means the route was created by a source that is directly connected to this router. MRT: Create (10.9.0.0/16, 224.2.0.1), if_input Ethernet1, RPF nbr 224.0.0.0 MRT: Create (10.16.0.0/16, 224.2.0.1), if_input Ethernet1, RPF nbr 224.0.0.0 If the source is not directly connected, the neighbor address shown in these lines will be the address of the router that forwarded the packet to this router. The shortest path tree state maintained in routers consists of source (S), multicast address (G), outgoing interface (OIF), and incoming interface (IIF). The forwarding information is referred to as the multicast forwarding entry for (S, G). An entry for a shared tree can match packets from any source for its associated group if the packets come through the proper incoming interface as determined by the RPF lookup. Such an entry is denoted as (*, G). A (*, G) entry keeps the same information a (S, G) entry keeps, except that it saves the rendezvous point address in place of the source address in sparse mode or as "Pass Any Exam. Any Time." - www.actualtests.com 119

Ac

tua

lTe

sts

.co

m

Cisco 642-892: Practice Exam 24.0.0.0 in dense mode. Reference: http://www.cisco.com/en/US/docs/ios/12_2t/debug/command/reference/dbftipdv.html

QUESTION NO: 145 Which two statements about voice traffic are true? (Choose two.) A. Voice packets are typically around 60 to 120 bytes. B. For voice quality, packet loss should be less than 2 percent and delay should be no more than 250 ms. C. Voice packets are typically around 600 to 1200 bytes. D. For voice quality, packet loss should be less than 1 percent and delay should be no more than 150 ms. E. A typical voice call requires 17 kbps to 106 kbps of guaranteed priority bandwidth plus an additional 15 kbps per call for voice-control traffic. F. Voice packets are typically around 60 to 120 KB. Answer: D,E

Explanation: QoS Requirements for Voice: Voice calls, either one-to-one or on a conference connection capability, require the following: ? 150 ms of one-way latency from mouth to ear (per the ITU G.114 standard) ? 30 ms jitter ? 1 percent packet loss 17 to 106 kbps of guaranteed priority bandwidth per call (depending on the sampling rate, codec, and Layer 2 overhead) 150 bps (plus Layer 2 overhead) per phone of guaranteed bandwidth for voice control traffic The choice of codec has impacts in many areas. The most important is the capacity planning on the network, because the bandwidth consumed in different codecs varies. Reference: http://www.informit.com/content/images/1587051915/samplechapter/1587051915content.pdf

QUESTION NO: 146 Which two statements are true about the rendezvous point (RP) in a multicast network? (Choose two.) A. The multicast receivers must register with the RP to form the multicast distribution tree. B. To form the multicast distribution tree, the multicast sources register with and the receivers join the RP. "Pass Any Exam. Any Time." - www.actualtests.com 120

Ac

tua

lTe

sts

.co

m

Cisco 642-892: Practice Exam C. The multicast sources must register with the RP to form the multicast distribution tree. D. An RP is required only in networks running Protocol Independent Multicast sparse mode (PIM SM). E. An RP is required only in networks running Protocol Independent Multicast sparse-dense mode (PIM-SDM). F. An RP is required only in networks running Protocol Independent Multicast dense mode (PIM DM). Answer: B,D

QUESTION NO: 147 Which three IP multicast related statements are true? (Choose three.) A. Multicast addresses 224.0.0.0 through 224.0.0.255 are used for network protocols on local LAN segments. Because they are always transmitted with a Time to Live (TTL) of 1, they are never forwarded by a router. B. Multicast addresses 224.0.0.5 and 224.0.0.6 are limited scoped addresses that have been reserved for OSPF. C. Multicast addresses 224.0.1.0 through 238.255.255.255 are called globally scoped addresses. They are used to multicast data between organizations and across the Internet. D. Multicast addresses 239.0.0.0 through 239.255.255.255 are called limited scope addresses. They are constrained to a local group or organization. E. The multicast address 224.0.0.1 is a globally scoped address that has been reserved for the Network Time Protocol (NTP) by the IANA. Answer: A,C,D

Explanation: These addresses are never forwarded off the local subnet (regardless of TL, usually set to 1). 224.0.0.1: all hosts 224.0.0.2: all multicast routers (PIMv1, all routers due to transport inIGMPv1) 224.0.0.4: all DVMRP routers 224.0.0.5: all OSPF routers 224.0.0.6: all OSPF DR routers (DR: Designated Router) 224.0.0.9: all RIP2 routers 224.0.0.13: all PIMv2 routers 224.0.1.39: CISCORP-ANNOUNCE 224.0.1.40: CISCO-RP-DISCOVERY Global scope: 224.0.1.0 to 238.255.255.255 (allocated dynamically throuh Internet) Limited scope: 239.0.0.0 to 239.255.255.255 (reserved for use inside prvate domains) See http://www.iana.org/assignments/multicast-addresses for a complete lst.

QUESTION NO: 148 Refer to the exhibit. IP multicast for group address 224.1.1.1 has been enabled on all routers in the network. Hosts on Network A receive the multicast traffic. However, hosts on Network B do "Pass Any Exam. Any Time." - www.actualtests.com 121

Ac

tua

lTe

sts

.co

m

co m 122 . Which two conclusions can be drawn from the debug ip igmp output? (Choose two.com Ac tua A.actualtests. C. Any Time. Becauseof RPF failure. D. B.Cisco 642-892: Practice Exam not. Router R2 does not see the upstream router R1 as a PIM neighbor.) "Pass Any Exam." . QUESTION NO: 149 Refer to the exhibit. If there is RPF failure. lTe sts . Router R2 does not have an RP configured on the multicast network. what could be the cause of the problem? Answer: D Explanation: Multicast routing uses a mechanism called Reverse Path Forwarding (RPF) to prevent forwarding loops and to ensure the shortest path from the source to the receivers. the router does not forward the multicast packets to neighbor. On the basis of outputs provided. The multicast packets are sourced from a server with an unspecified IP address. Router R2 does not forward multicast packets to Network B.www.

It also receives IGMP report version 1 from host 192.1.0. Answer: B. E.0.40.40 on Ethernet1 12:32:56. D. if IGMP does not work.Cisco 642-892: Practice Exam A.1.4 seconds.065: IGMP: Send v2 Query on Ethernet1 to 224. C.1 The output above shows that the router sends an IGMP version 2 query out interface Ethernet 1 at multicast address 224.www. This output helps you discover whether the IGMP processes function.0.168. Reverse Path Forwarding (RPF) is enabled for 224.1 (Ethernet1) for 239. they are never delivered.1. B.0.9.255. R1# debug ip igmp 12:32:51.F Explanation: Use the debug ip igmp command to display IGMP packets received and transmitted. and 239. 224.917: IGMP: Starting old host present timer for 239.255.1.1.9.1.168.1 (All multicast systems on this subnet).4 seconds (randomly determined).40 for the next 9.168.1.065: IGMP: Send v2 Query on Ethernet1 to 224." .40 on Ethernet1 12:33:01. as well as IGMP-host related events. this means the packets are delivered intermittently (a few every three minutes).1 12:32:56.168.0.40 (you can use the show ip igmp interface command to determine this).0.40 12:33:51. "Pass Any Exam. Because it does not receive any report from another system for multicast group 224. The IP multicast groups are 224.1. The no form of this command disables debug output.909: IGMP: Received v1 Report from 192.1.0.9. which is directly connected to the interface Ethernet 1 for group 239.0. In PIM dense mode.1.065: IGMP: Send v2 Report for 224.0. Interface Ethernet 1 itself is a member of group 224.0. The router sent an IGMP version 2query out interface Ethernet1 at multicast address 224. the router process never discovers another host on the network that is configured to receive multicast packets.0.4. IP PIM RP mapping is static.0.40.1 on Ethernet1 12:33:01.9.1 12:32:51.0.4 seconds for 224. This debug output is useful when you verify that the router interface sends queries and to determine the query interval (in the above case.0.4 (Ethernet1) for 224. which is received by the router itself on Ethernet 1. which sets a report delay time of 9.0.069: IGMP: Received v2 Report from 192.255.0.168.0. Reverse Path Forwarding (RPF) is enabled for 192. it sends a version 2 report of its membership.1. 60 seconds).0. Any Time.1.9. F. You can also use the command to determine the version of IGMP used by the clients.0. In PIM sparse mode.0. In general.0. Router RTA received an IGMP report version 1 from host 192.069: IGMP: Set report delay time to 9.co m .com 123 Ac tua lTe sts .1.actualtests.255.

co m 124 . The user who is connected to interface FastEthernet 0/1 is on VLAN 10 and cannot access network resources. SW1(config)# vlan 10 SW1(config-vlan)# state active D. SW1(config)# interface fastethernet 0/1 SW1(config-if)# switchport mode access E.com Ac tua lTe sts . SW1(config)# interface fastethernet 0/1 SW1(config-if)# switchport mode access SW1(config-if)# switchport access vlan 10 C.com/en/US/tech/tk828/technologies_tech_note09186a0080093f21." .cisco.shtml QUESTION NO: 150 Refer to the exhibit. Any Time. which command sequence would correct the problem? A.actualtests. On the basis of the information in the exhibit. SW1(config)# vlan 10 SW1(config-vlan)# no shut "Pass Any Exam. SW1(config)# interface fastethernet 0/1 SW1(config-if)# no shut B.Cisco 642-892: Practice Exam Reference: Basic Multicast Troubleshooting Tools http://www.www.

1Q headers. "Pass Any Exam. password combinations.) A. B.1Q trunk.com 125 Ac tua lTe sts QUESTION NO: 152 . ? The trunk must have the attacker's access VLAN as its native VLAN. the following conditions must exist in the network configuration: ? The attacker is connected to an access switch port. ? The same switch must have an 802. D. E.actualtests.www. F. also consider the potential for an exploit called VLAN hopping. Implement port security.1Q tags so that the packet payloads ultimately appear on a totally different VLAN. E. Implement VLAN access maps. it means interface is in down state. Configure all frames with two 802. Configure VACLs. C.E What is one method that can be used to prevent VLAN hopping? A. Just bring into up state using no shutdown command QUESTION NO: 151 What are two methods of mitigating MAC address flooding attacks? (Choose two. For this exploit to work. Implement DHCP snooping. Answer: A.co m ." . all without the use of a router. Implement private VLANs. Any Time. D.Cisco 642-892: Practice Exam Answer: A Explanation: In Exhibit Operation Mode is down. B. Configure ACLs. C. Place unused ports in a common VLAN. an attacker positioned on one access VLAN can craft and send frames with spoofed 802. Enforce username Answer: C Explanation: When securing VLAN trunks. To prevent from VLAN hopping turn off Dynamic Trunking Protocol on all unused ports. Explicitly turn off Dynamic Trunking Protocol (DTP) on all unused ports. Here.

actualtests. the virtual MAC address supported by one of the routers in the group is returned.co m .Cisco 642-892: Practice Exam QUESTION NO: 153 Refer to the exhibit. Some of the concepts are the same as with HSRP/VRRP. DSw1 will reply with the MAC address of the next AVF.10. DSw1 will not reply.com 126 Ac tua A.1.10.1 Router DSW 2 will reply to DSW 1 as a Active Virtual Router. Because of the invalid timers that are configured. According to exhibit. One router is elected the active virtual gateway (AVG). In any event. F. B. Which MAC address it returns depends on which load-balancing algorithm it is configured to use. "Pass Any Exam. Any Time. The AVG answers all ARP requests for the virtual router address.10. DSw1 will reply with the IP address of the next AVF. The trick behind this load balancing lies in the GLBP group. When router DSW1 sends the ARP message to 10. lTe sts . C. E. Router DSW2 is the Active Virtual Gateway (AVG) router because it has highest IP address even having equal priority. or the highest IP address in the group. DSw2 will not reply. DSw2 will reply with the MAC address of the next AVF. if there is no highest priority. but the terminology is different and the behavior is much more dynamic and robust.10." . Which statement is true? Answer: B Explanation: The Gateway Load Balancing Protocol (GLBP) is a Cisco-proprietary protocol designed to overcome the limitations of existing redundant router protocols.www. Host A has sent an ARP message to the default gateway IP address 10. Because of the invalid timers that are configured. D. DSw2 will reply with the IP address of the next AVF. This router has the highest priority value.

all hosts in a particular multicast group C. Any Time.www.co FF01::1 (node-local scope all-nodes address) FF02::1 (link-local scope all-nodes address) m 127 .) "Pass Any Exam. all hosts in a local segment D. all routers in an autonomous system Answer: A Explanation: To identify all nodes for the node-local and link-local scopes." . all routers in a local segment B. link-local.Cisco 642-892: Practice Exam QUESTION NO: 154 What is the IPv6 address FF02::2 used for? A.com Ac tua lTe sts To identify all routers for the node-local. and site-local scopes.microsoft.mspx?mfr=true QUESTION NO: 155 Based on the exhibited output. the following multicast addresses are defined: FF01::2 (node-local scope all-routers address) FF02::2 (link-local scope all-routers address) FF05::2 (site-local scope all-routers address) Reference: http://technet2.actualtests. which three statements are true? (Choose three.com/windowsserver/en/library/8c07faf2-35b3-4f2a-920fd61ad76581ad1033. the following multicast addresses are defined: .

66 to reach the 192. Lightweight Access Point Protocol (LWAPP) D. Based on this. Access Control Server (ACS) C. the best path to the 192.168." .1. R1 is in AS 200. The second number is the EIGRP metric that this peer advertised.48/28 prefix. m 128 .168.com Ac Regarding the numbers specified in the parenthesis.168.66.Cisco 642-892: Practice Exam Answer: A. sts .F QUESTION NO: 156 Which three components are included in the Cisco autonomous WLAN solution? (Choose three.1. C. Any Time. 40512000 is the advertised distance (AD) via 192.48/28 destination is via 192.168.) A. Wireless Domain Services (WDS) E. Wireless Control System (WCS) B.168. tua lTe Explanation: The R1 router resides in AS 200. B. D.168. the first number is the EIGRP metric that represents the cost to the destination. R1 will load balance between three paths to reach the 192. F.B.48/28 prefix is via 192.1.1.actualtests.www.66.168. because the metric is less than the alternatives. The best path for R1 to reach the 192. All the routes are in the passive mode because R1 is in the query process for those routes. Wireless LAN Solution Engine (WLSE) F.1. All the routes are in the passive mode because these routes are in the hold-down state.co A. Wireless Services Module (WiSM) "Pass Any Exam. as displayed by the "IP EIGRP topology for process 200" output.1.1.48/28 prefix because all three paths have the same advertised distance (AD) of 40512000. E.

html QUESTION NO: 157 Answer: B Explanation: ICMP Internet Router Discovery Protocol (IRDP) uses Internet Control Message Protocol (ICMP) router advertisements and router solicitation messages to allow a host to discover the addresses of operational routers on the subnet.com/en/US/prod/collateral/netmgtsw/ps6380/ps6563/ps3915/ps6839/product_dat a_sheet0900aecd80410b92.D.actualtests. reduce operational complexity. IRDP C. and provide administrators visibility into the WLAN. Users can be defined and mapped to a user role centrally on Cisco Secure ACS. hosts can discover the real IP addresses of the default gateways. This allows administrators to automate deployment and simultaneously maintain control in rapidly expanding environments. HSRP. CiscoWorks WLSE provides comprehensive air/radio frequency (RF) and device-management capabilities in ways that simplify deployment. With this.com Ac A. As the management component of the Cisco Autonomous WLAN Solution.www. CiscoWorks WLSE provides an easy-to-use deployment wizard to specify the configuration criteria up front.html "Pass Any Exam. GLBP tua lTe Which protocol enables a group of routers to form a single virtual router and use the real IP address of a router as the gateway address? sts .com/en/US/docs/ios/ipapp/configuration/guide/ipapp_irdp_ps6350_TSD_Product s_Configuration_Guide_Chapter. and GLBP all require the use of a virtual IP address.cisco. The deployment wizard also simplifies and automates the setup of the Wireless Domain Services (WDS) that plays an important role in the Cisco Autonomous WLAN Solution for seamless mobility and RF aggregation services. Hosts then use this virtual IP address as their default gateways.Cisco 642-892: Practice Exam Answer: B. VRRP E. Reference: http://www. WLSE also enables centralized user administration by integrating with Cisco Secure ACS . HSRP B.E Explanation: CiscoWorks WLSE is a complete solution for managing Cisco Aironet autonomous WLAN networks. Proxy ARP D.co m 129 .cisco. VRRP. Reference: Configuring IRDP http://www." . Any Time.

Both OSPF and IS-IS are link-state protocols and therefore provide fast convergence. such as timers. consistent IP addressing structure is necessary when this type of hierarchical model is used. However. New additions to the protocol are easily implemented in OSPF but not with IS-IS. IS-IS LSP contains TLV fields and OSPF LSU contains the LSAs. can reside in a single area." . OSPF has more area types than does IS-IS. C. By tuning the timers. If there are many neighbors and adjacencies to consider. Because of this. IS-IS allows a more flexible approach to extending the backbone. the area borders lie on the links. There are more timers to adjust. Any Time. With IS-IS. Therefore. IS-IS is more efficient.Cisco 642-892: Practice Exam QUESTION NO: 158 Which three statements are correct about the differences in IS-IS and OSPF? (Choose three. However. and types of routers.com Ac tua lTe sts .actualtests. IS-IS is typically less CPU intensive than OSPF.C. so a compromise may have to be made.co m 130 .E Explanation: The configuration of OSPF is based on a central backbone. but also the mechanism by which IS-IS installs and withdraws prefixes is less intensive. IS-IS is more CPU-intensive than is OSPF. certain design constraints will inevitably exist. many more routers. With regard to CPU use and the processing of routing updates. A good. and reduce the amount of information that is carried in the backbone and advertised across the network. IS-IS will detect a failure quicker than OSPF and therefore should converge more rapidly. In comparison. The convergence time depends on a number of factors. and therefore finer granularity can be achieved. IS-IS also has a hierarchy with Level 1 and Level 2 routers. E. significantly fewer link-state PDUs (LSPs) are used. Answer: B.) A. It is used to summarize addresses into the backbone. this speed may be at the expense of stability. B. This process is less complex than with OSPF. up to 1000. The timers in IS-IS allow more tuning than OSPF. A network engineer should understand the implications of adjusting these timers.www. Not only are there fewer LSPs to process. as compared to OSPF LSAs. the convergence time depends on the processing power of the router. how is the attacker able to gather information? "Pass Any Exam. For greater fine tuning there are more IS-IS timers. Adding Level 2 routers can extend the backbone. Area 0. convergence time can be significantly decreased. with all other areas being physically attached to Area 0. D. This capability makes IS-IS more scalable than OSPF. Based on the default timers. number of nodes. QUESTION NO: 159 When an attacker is using switch spoofing to perform VLAN hopping.

C.pdf QUESTION NO: 160 Refer to the exhibit.actualtests. "Pass Any Exam." .Cisco 642-892: Practice Exam A.co m 131 . Answer: A Explanation: DTP should be disabled for all user ports on a switch. an attacker can connect and arbitrarily cause the port to start trunking and therefore pass all VLAN information. Reference: http://www. Any Time. The attacking station uses DTP to negotiate trunking with a switch port and captures all traffic that is allowed on the trunk B.com/en/US/solutions/ns340/ns517/ns224/ns376/net_design_guidance0900aecd8 00ebd1e.www. D. regardless of the VLAN to which the data belongs. The attacking station will generate frames with two 802.cisco.com Ac tua lTe sts . If the port is left with DTP auto-configured (default on many switches). The attacking station uses VTP to collect VLAN information that is sent out and then tags itself with the domain information in order to capture the data.1Q headers to cause the switch to forward the frames to a VLAN that would be inaccessible to the attacker through legitimate means. The attacking station tags itself with all usable VLANs to capture data that is passed through the switch.

C. Router B will become the master virtual router. When Router A recovers. and Router B is the backup virtual router. it will regain the master virtual router role. You can configure the priority of each backup virtual router with a value of 1 through 254. Priority also determines if a VRRP router functions as a backup virtual router and determines the order of ascendancy to becoming a master virtual router if the master virtual router fails.www. Router A will become the master virtual router. If preemption is disabled.5/addr_serv/configuration/guide/ic35vrrp. Router B is the master virtual router.Cisco 642-892: Practice Exam Which Virtual Router Redundancy Protocol (VRRP) statement is true about the roles of the master virtual router and the backup virtual router? A. Router B will become the master virtual router. using the vrrp priority command. Answer: D Explanation: An important aspect of the VRRP redundancy scheme is VRRP router priority. By default. D. Any Time.actualtests. If Routers B and C are both configured with the priority of 100. When Router B fails." . B. Router A is the master virtual router. an election process takes place to determine if backup virtual Routers B or C should take over. When Router A fails. For example. Router B is elected to become master virtual router because it has the higher priority. When Router A recovers. the backup virtual router that is elected to become master virtual router remains the master until the original master virtual router recovers and becomes master again. this router functions as a master virtual router. If Routers B and C are configured with the priorities of 101 and 100. When Router A fails.co m 132 . fails. and Router A is the backup virtual router. Router A will become the master virtual router.cisco. a preemptive scheme is enabled whereby a higher-priority backup virtual router that becomes available takes over for the backup virtual router that was elected to become master virtual router. the backup virtual router with the higher IP address is elected to become the master virtual router. respectively. it will regain the master virtual router role. and Router A is the backup virtual router. When Router B recovers.com Ac tua lTe sts . When Router B recovers. if Router A. Router A will maintain the role of master virtual router. You can disable this preemptive scheme using the no vrrp preempt command. the master virtual router in a LAN topology. Priority determines the role that each VRRP router plays and what happens if the master virtual router fails.htm l "Pass Any Exam. Router A is the master virtual router. Router B will maintain the role of master virtual router. Reference: http://www. Router B is the master virtual router. and Router B is the backup virtual router. When Router B fails. If a VRRP router owns the IP address of the virtual router and the IP address of the physical interface.com/en/US/docs/ios_xr_sw/iosxr_r3.

" .actualtests.www.com Ac tua lTe sts . Any Time.co m Answer: 133 .Cisco 642-892: Practice Exam QUESTION NO: 161 DRAG DROP Drop Explanation: QUESTION NO: 162 Why is BPDU guard an effective way to prevent an unauthorized rogue switch from altering the spanning-tree topology of a network? "Pass Any Exam.

) A. D. the device would be attached to the port and would run STP with a lower bridge priority than that of the current root bridge. "Pass Any Exam.www.com Ac tua lTe sts .Cisco 642-892: Practice Exam A. This is a simple form of a denial of service (DoS) attack on the network.com/en/US/tech/tk389/tk621/technologies_tech_note09186a008009482f. B. B. BPDU guard can guarantee proper selection of the root bridge. Any Time. Answer: A Explanation: As long as a port participates in STP. This configuration is referred to as a dual stack. D. BPDU guard can be utilized along with PortFast to shut down ports when a switch is connected to the port. BPDU guard can be utilized to prevent the switch from transmitting BPDUs and incorrectly altering the root bridge election. The devices behind the ports that have STP PortFast enabled are not able to influence the STP topology. some device can assume the root bridge function and affect active STP topology. it renders the network suboptimal. If another device assumes the root bridge function in this way. At the reception of BPDUs. The temporary introduction and subsequent removal of STP devices with low (0) bridge priority cause a permanent STP recalculation.actualtests. The STP PortFast BPDU guard enhancement allows network designers to enforce the STP domain borders and keep the active topology predictable." . C. To assume the root bridge function. then IPv6. the BPDU guard operation disables the port that has PortFast configured. The BPDU guard transitions the port into errdisable state. Which two statements are true about the router configuration? (Choose two. and if that fails.cisco. This configuration allows applications on the same segment to communicate via IPv4 or IPv6. This configuration is referred to as a dual-stack 6to4 tunnel. This configuration will attempt to route packets using IPv4 first. C.shtml QUESTION NO: 163 Refer to the exhibit. Reference: Spanning Tree PortFast BPDU Guard Enhancement http://www. BPDU guard can be used to prevent invalid BPDUs from propagating throughout the network.co m 134 . and a message appears on the console.

com 135 Ac tua QUESTION NO: 164 lTe Reference: http://www. All routers configured for HSRP load balancing must be configured with the same priority.shtml sts . Dual stack (Figure 1 below) runs both IPv4 and IPv6 protocol stacks on a router in parallel. Answer: C. AppleTalk. B.www. another is elected as the standby HSRP router. Routers configured for HSRP must belong to only one group per HSRP interface.Cisco 642-892: Practice Exam Answer: C.actualtests. The "Pass Any Exam.) A. each of the routers that provides redundancy for a given gateway address is assigned to a common HSRP group. Routers configured for HSRP can belong to multiple groups and multiple VLANs.co m . HSRP router. which often ran Internetwork Packet Exchange (IPX). As a transition strategy. or active. and all the others remain in the listen HSRP state. IP. E. and other protocols concurrently. and the IPv6 communication uses the IPv6 stack. Any Time.E Explanation: HSRP is a Cisco-proprietary protocol developed to allow several routers (or multilayer switches) to appear as a single gateway address. C. One router is elected as the primary. making it similar to the multiprotocol network environments of the past.D Explanation: This router demonstrates an example of an IPv6 Dual Stack configuration. dual stack is ideal for campus networks with a mixture of IPv4 and IPv6 applications. The IPv4 communication uses the IPv4 protocol stack. RFC 2281 describes this protocol in more detail. D.cisco. Load sharing with HSRP is achieved by creating HSRP groups on the HSRP routers. Load sharing with HSRP is achieved by creating multiple subinterfaces on the HSRP routers. Basically.com/en/US/products/ps6553/products_white_paper0900aecd805c54d0. Figure 1: Dual-Stack Example Which two statements are true about the Hot Standby Router Protocol (HSRP)? (Choose two." . The technique of deploying IPv6 using dual-stack backbones allows IPv4 and IPv6 applications to coexist in a dual IP layer routing backbone.

actualtests. However. QUESTION NO: 165 HOTSPOT Answer: "Pass Any Exam. HSRP Group 1 on interface VLAN 10 is unique from HSRP Group 1 on interface VLAN 11. you will quickly run out of group numbers. This is perfectly valid because the HSRP groups are only locally significant on an interface. If you have more than 16 VLANs. An alternative is to make the group number the same (that is.Cisco 642-892: Practice Exam routers exchange HSRP hello messages at regular intervals. Any Time. 1) for every VLAN interface. most Catalyst switches support only up to 16 unique HSRP group numbers.co m 136 .com Ac tua lTe sts . so they can remain aware of each other's existence. it can be handy to make the group number the same as the VLAN number. from 0 to 255. as well as that of the active router. An HSRP group can be assigned an arbitrary group number.www. If you configure HSRP groups on several VLAN interfaces." .

What configuration will isolate the servers from each other? sts . however. Any Time. The web servers WS_1 and WS_2 need to be accessed by external and internal users. For security reasons.co m 137 . C. The switch ports 3/1 and 3/2 and the ports connecting to the two firewalls will be defined as primary VLAN community ports. The switch ports 3/1 and 3/2 will be defined as secondary VLAN isolated ports.Cisco 642-892: Practice Exam QUESTION NO: 166 A. The servers do need. although they are located on the same subnet. to communicate with a database server located in the inside network. the servers should not communicate with each other. The ports connecting to the two firewalls will be defined as primary VLAN promiscuous ports." .www. The switch ports 3/1 and 3/2 will be defined as secondary VLAN community ports. The switch ports 3/1 and 3/2 and the ports connecting to the two firewalls will be defined as primary VLAN promiscuous ports. B. "Pass Any Exam.com Ac tua lTe Refer to the exhibit. D. The ports connecting to the two firewalls will be defined as primary VLAN promiscuous ports.actualtests.

99. Catalyst 6500/4500 switches implement PVLANs to keep some switch ports shared and some switch ports isolated. except for the promiscuous port. Traffic received from an isolated port is forwarded to only promiscuous ports. Community: Community ports communicate among themselves and with their promiscuous ports.co m 138 .168. PVLANs block all traffic to isolated ports. on a single Demilitarized Zone (DMZ) segment or VLAN. although all ports exist on the same VLAN. the IPv4 address 192. Answer: A. A port in a PVLAN can be one of three types: Isolated: An isolated port has complete Layer 2 separation from other ports within the same PVLAN.1 would be converted to the 2002:1315:4463:1::/64 IPv6 address.com Ac tua Which two statements are true about 6to4 tunnels? (Choose two. The 2950 and 3550 support "protected ports.168." . the first two bytes of the IPv6 address will be0x2002 and the next four bytes will be the hexadecimal equivalent of the IPv4 address.actualtests. or in isolated ports within their PVLAN.99. C.168. These interfaces are isolated at Layer 2 from all other interfaces in other communities. In a 6to4 tunnel. except the traffic from promiscuous ports. in addition to their own servers. given that all devices in the PVLAN will need to communicate with that port. B.) lTe sts . even though they may exist on the same Layer 3 segment and VLAN. the first two bytes of the IPv6 address will be locally derived and the next two bytes will be the hexadecimal equivalent of the IPv4 address. In a 6to4 tunnel. D. the IPv4 address 192. it becomes necessary to provide traffic isolation between devices. including the community and isolated ports. Any Time.C QUESTION NO: 168 HOTSPOT "Pass Any Exam. The default gateway for the segment would likely be hosted on a promiscuous port. In a 6to4 tunnel.Cisco 642-892: Practice Exam Answer: C Explanation: Service providers often have devices from multiple clients.www. In a 6to4 tunnel.99. QUESTION NO: 167 A. As security issues proliferate.1 would be converted to the 2002:c0a8:6301::/48 IPv6 address. the IPv4 address 192. In a 6to4 tunnel. E.1 would be converted to the 2002:c0a8:6301::/16 IPv6 address. Promiscuous: A promiscuous port can communicate with all ports within the PVLAN." which are functionality similar to PVLANs on a perswitch basis.

" .www.co m 139 . Any Time.com Ac tua lTe sts .actualtests.Cisco 642-892: Practice Exam Answer: "Pass Any Exam.

MAC spoofing. in conjunction with ARP snooping.actualtests. C. Packets arriving on trusted interfaces bypass all DAI "Pass Any Exam. Port scanners are the most effective defense against dynamic ARP inspection.co m . F.com 140 Ac tua Which statement is true about Layer 2 security threats? lTe sts . B. is the most effective counter-measure against reconnaissance attacks that use dynamic ARP inspection (DAI) to determine vulnerable attack points. E." . Any Time. DHCP snooping sends unauthorized replies to DHCP queries. D. ARP spoofing can be used to redirect traffic to counter dynamic ARP inspection. MAC spoofing attacks allow an attacking device to receive frames intended for a different network host. Answer: D Explanation: DAI is a security feature that intercepts and verifies IP-to-MAC address bindings and discards invalid ARP packets. Dynamic ARP inspection in conjunction with ARP spoofing can be used to counter DHCP snooping attacks. It associates a trust state with each interface on the switch. DAI uses the DHCP snooping database to validate bindings.www.Cisco 642-892: Practice Exam QUESTION NO: 169 A.

In addition. all ports on the switch connected to host are configured as untrusted. QUESTION NO: 170 Refer to the exhibit.com 141 Ac Answer: D. transport layer issues D. VRRP misconfiguration B.co m . Use the ip arp inspection trust interface command to configure the trust settings. spanning tree issues C. Any Time. it will rate-limit incoming ARP packets to prevent DoS attacks. HSRP misconfiguration lTe sts . This address is used for all routing protocol and management traffic initiated by or destined to the router. "Pass Any Exam. each router has a common gateway IP address. When the switch is configured for DAI. and switch ports are considered trusted. and those arriving on untrusted interfaces undergo the DAI validation process.) Explanation: Each router in an HSRP group has its own unique IP address assigned to an interface. you can add the secondary keyword so that HSRP can provide a redundant secondary gateway address. knowing that a router always keeps that address active. This address is also referred to as the HSRP address or the standby address . physical layer issues E. You can assign the HSRP address with the following interface command: Switch( config-if)# standby group ip ip-address [secondary] When HSRP is used on an interface that has secondary IP addresses." . Clients can point to that virtual router address as their default gateway. Which two problems are the most likely cause of the exhibited output? (Choose two. Keep in mind that the actual interface address and the virtual (standby) address must be configured to be in the same IP subnet.E tua A. In a typical network.Cisco 642-892: Practice Exam validation checks. the virtual router address that is kept alive by HSRP.actualtests.www.

router R1 will not be able to ping routers R2 and R3. router R1 will not be able to ping routers R2 and R3. router R1 will not be able to ping routers R2 and R3. Because the key strings do not match.com Ac tua A.actualtests. B. On the basis of the output provided. B. D. Because the key chain names do not match. Router R1 will be able to ping routers R2 and R3.co m 142 . lTe sts .Cisco 642-892: Practice Exam QUESTION NO: 171 Refer to the exhibit. Because authentication is misconfigured on interfaces Gi0/0 and Gi0/1 on router R2. C.) A.www. IGMP snooping runs on Layer 3 routers." . which statement is true? Answer: E Explanation: This is a valid example of EIGRP MD5 authentication. Because autosummarization needs to be turned on for EIGRP on all routers. router R1 will not be able to ping routers R2 andR3 . Any Time. Since the networks lie in different network boundaries. EIGRP is configured on all routers in the network. QUESTION NO: 172 Which three statements are true about the Internet Group Management Protocol (IGMP)? (Choose three. summarization will not be an issue. "Pass Any Exam. IGMP is used to register individual hosts with a multicast group. E.

php?n=IT. F.D. Host B and Host F are sending IGMPv2 join messages to their respective multilayer switches." . Which statement is true? sts .0.0.actualtests. destination address of 224. All multilayer switches are running PIM sparse mode.com Ac tua lTe Refer to the exhibit. IGMP version 3 enables a multicast receiving host to specify to the router which sources it should forward traffic from.2. sparse mode. IGMP is a multicast routing protocol that makes packet-forwarding decisions independent of other routing protocols such as EIGRP. Answer: B.com/index. a destination address of 224.0. E. and a TTL value of 1 Reference: http://wilcagre.www. D.E Explanation: IGMP ( Internet Group Management Protocol ) .the router with the lowest IP on a subnet is designated querier IGMPv3 .IPMulticast QUESTION NO: 173 "Pass Any Exam.Cisco 642-892: Practice Exam C. IGMP messages are IP datagrams with a protocol value of 2.is used to register individual hosts with a multicast group IGMPv2. There are three IGMP modes: dense mode. Any Time.co m 143 . and a TTL value of 1. and sparse-dense mode.0.enables a multicast receiving host to specify to the router which sources it should forward traffic from (source filtering) IGMP Messages are IP datagrams with a protocol value of 2.2.

supports demand circuit routing E. tua lTe sts . forms adjacencies with all neighbors "Pass Any Exam." .com 144 Ac A.www.co m . three layers of hierarchical routing C. 2. Switch 1 is the rendezvous of the multicast tree. provides for network scalability by allowing the network to be separated into areas D.actualtests. C. The multicast server is the rendezvous point of the multicast tree. B.Cisco 642-892: Practice Exam Answer: B QUESTION NO: 174 Which two are characteristics of the IS-IS protocol but not OSPF? (Choose two. provides routing support for multiple network layer protocols F. Any Time. D. Switches 1.) A. Switches 2 and 6 will participate in the multicast tree once pruning has taken place. 3. and 6 will participate in the multicast tree once prune has taken place. utilizes SPF algorithm B.

D. C. * IS-IS allows for the preempting of DRs. Although IS-IS and OSPF share many common features. all IS-IS intermediate systems form adjacencies with one another. the boundaries of areas are set in the router.) lTe sts . Answer: B. The BGP neighbor is referencing an incorrect autonomous system number in its neighbor statement. The IBGP neighbor is not directly connected.actualtests. By default.co m . The boundaries of areas are on the network connections between routers for IS-IS. The EBGP neighbor ebgp-multihop option is set to the default value. like OSPF does.F Explanation: IS-IS is the dynamic link-state routing protocol for the OSI protocol stack. BGP uses neighbor statements that specify the AS number of the BGP peer. B.F Explanation: BGP uses TCP port 179 to establish and maintain neighbor relationships.com 145 Ac tua Which three conditions can cause BGP neighbor establishment to fail? (Choose three. If it is the same "Pass Any Exam.www. Any Time. * OSPF DROthers do not form adjacencies with other DROthers on broadcast multi-access networks. it is referred to as ISO IS-IS. so the EBGP peer must be directly connected in order for the local BGP router to know how to reach the EBGP peer. reiterating that each router is in only one area per routing process. F. Differences between IS-IS and OSPF. BGP synchronization is enabled in a transit autonomous system with fully-meshed IBGP neighbors. while in the same environment. As such.Cisco 642-892: Practice Exam Answer: E. EBGP multi-hop is not enabled. so any access lists or firewalls must permit this port for BGP to function. in the case of OSPF). * In OSPF. QUESTION NO: 175 A. When IS-IS is used strictly for the ISO CLNS environment." .E. * IS-IS utilizes CLNS protocol data units (PDUs) to send information between routers instead of using IP packets. IS-IS distributes routing information for routing CLNP data for the ISO CLNS environment. * The backbone of an IS-IS network is designated by the type of routers in it instead of being designated by an area number (0. where OSPF does not. E. an IS-IS router belongs to only one area per routing process. The BGP update interval is different between the two BGP neighbors. There is an access list blocking all TCP traffic between the two BGP neighbors. they do have quite a few differences: * Whereas OSPF routers can be part of multiple areas.

802. Adaptive Wireless Path (AWP) E.co m .com 146 Ac tua lTe sts . Lightweight Access Point Protocol (LWAPP) C. This enables each AP to identify its neighbors and intelligently choose the optimal path to the wired network by calculating the cost of each path in terms of signal strength and the number "Pass Any Exam. the AP will determine whether a better path exists and will route traffic through a more optimal node. If a link is degraded. Intelligent wireless routing is provided by the patent-pending Adaptive Wireless Path (AWP) protocol. Either way. or the BGP peers will not become neighbors. then the BGP router knows that IBGP is useD. WLAN Quality of Service (WQoS) D.www. Any Time. QUESTION NO: 176 Refer to the exhibit.Cisco 642-892: Practice Exam number as the local BGP router process. then EBGP is useD." .actualtests.1Q WLAN trunking protocol Answer: D Explanation: Mesh networks are scalable outdoor networks that continuously communicate with each other to determine link paths. Layer 2 Roaming (IAPP) B. Which protocol establishes an optimal path to the root in a wireless mesh network? A. If the AS number for the specified peer is different. the specified neighbor must be configured correctly.

" .co m 147 .actualtests. Chapter 18 http://safari. Reference: Authorized Self-Study Guide Building Cisco Multilayer Switched Networks (BCMSN).www.oreilly.com/1587052733/ch18lev1sec5 QUESTION NO: 177 HOTSPOT Answer: "Pass Any Exam. Any Time.Cisco 642-892: Practice Exam of hops required to get to a controller.com Ac tua lTe sts .

" .Cisco 642-892: Practice Exam QUESTION NO: 178 HOTSPOT "Pass Any Exam.com Ac tua lTe sts .actualtests.co m 148 .www. Any Time.

However." .1. study the exhibit below carefully. IP multicast for group address 224.1. what could cause this problem? "Pass Any Exam.www.1 has been enabled on all routers in the network.co m . Any Time. hosts on Network B do not.com 149 Ac tua lTe sts . Based on the outputs provided in the exhibit.actualtests. Hosts on Network A receive the multicast traffic.Cisco 642-892: Practice Exam Answer: QUESTION NO: 179 You work as a network technician.

co m 150 . Router CK2 does not forward multicast packets to Network B. C. Becauseof RPF failure. D.Cisco 642-892: Practice Exam Answer: C QUESTION NO: 180 Look at the following exhibit carefully then select a command which can generate a default route on CK-R2 to reach all other networks except CK-R1? "Pass Any Exam. Router CK2 does not have an RP configured on the multicast network.www. The multicast packets are sourced from a server with an unspecified IP address. Any Time. Router CK2 does not see the upstream router CK1 as a PIM neighbor.actualtests." .com Ac tua A. B. lTe sts .

255.1 255.0 0.0 s0/0/0 C.0 255.1.255. The area 0 NBMA cloud is configured as more than one subnet.com 151 Ac tua interface serial 0 ip address 10.255.www. OSPF neighbor statements are not necessary.1.2.0 0. area 0 "Pass Any Exam.co m Answer: A ." .0.255. D. The router is restricted to a hub and spoke topology. Answer: A.actualtests.0 192.1.0. ip route 10.0.168.1.0. B.255 area 0 lTe sts What can be drawn from the following partial configuration on Router A? (Choose two.2 B. ip route 0. DR/BDR elections do not take place.2 QUESTION NO: 181 A.0 s0/0/0 D.0.168.0. ip route 0.) A.0.0 encapsulation frame-relay ip ospf network point-to-multipoint router ospf 7 network 10.0 192.0 255.2.0.Cisco 642-892: Practice Exam A.) . Any Time.0.255.D QUESTION NO: 182 An ABR (area border router) will inject a default route into which two types of areas? (Choose two. NSSA B. ip route 192.1. C.168.0 255.255.255.0.255.

lTe sts .D "Pass Any Exam. uses a default IOS metric of 10 on each interface D." .D QUESTION NO: 183 Which item is the correct description of the repeater access point deployed in this wireless network? Answer: C QUESTION NO: 184 Select three attributes applied to IS-IS instead of OSPF? (Choose three. encapsulates PDUs directly into a data-link frame B. The repeater access point will deploy a different SSID than the SSID configured on the parent access point.www. stub Answer: C.Cisco 642-892: Practice Exam C. B.com Ac tua A.actualtests. The repeater access point reduces the throughput in half because it receives and then retransmits each packet on the same channel. Any Time. The repeater access point needs a 10 percent channel overlap with channel of the root access point.C. C.co m 152 . The repeater access point will apply a different WEP encryption method than the WEP encryption that is enabled on the parent access point. totally stubby D.) A. D. runs PRC (Partial Route Calculations) to calculate IP reachability information Answer: A. uses stubby areas to improve network scalability C.

co m . VMPS server lookup B.actualtests. easy to configure C. According to the information displayed. Any Time. D. are in the same subnet. which description is correct when trying to ping from host to host? A." . The ping command will be successful without any further configuration changes. The two hosts should be in the same VLAN in order to ping successfully. B. Answer: D QUESTION NO: 187 Which description regarding OSPF Network LSAs is correct? "Pass Any Exam.com 153 Ac tua lTe sts . ease ofadds. A trunk port should be configured on the link between CK-SW1 and CK-SW2 to ping successfully.www. which belong to different VLANs. C.Cisco 642-892: Practice Exam QUESTION NO: 185 Static VLAN membership is perhaps the most widely used method because of the relatively small administration overhead and security it provides. Which feature is of a static VLAN membership assignment? A. A Layer 3 device is a must in order for the ping command to be successful. based on MAC address of the connected device Answer: B QUESTION NO: 186 Study the following graphic carefully Host1 and Host2. moves. and changes D.

D. the VLAN is distributed through all switches in the domain. They include all attached routers including the DR itself. STP root status C. Answer: B QUESTION NO: 188 VLAN Trunk Protocol (VTP) reduces administration in a switched network. a Catalyst switch will advertise what VTP information on its trunk ports? A. while the spokes are CK-RTA and CK-RTB. configuration revision number Answer: C. They are originated by every router in the OPSF network.Cisco 642-892: Practice Exam A.co m 154 . In order to route traffic to the 11. C.11. This reduces the need to configure the same VLAN everywhere. Any Time. When you configure a new VLAN on one VTP server. the cost of the link. interfaces. They include all routers on the link. They are originated by the DR on every multi-access network. They are originated by Area Border Router and are sent into a single area to advertise an Autonomous System Border Router." . No virtual circuits exist between the spoke locations.com Ac In the following provided network. B.11.0/24 network from CK-RTA successfully. They are originated by Area Border Routers and are sent into a single area to advertise destinations outside that area. management domain D.D QUESTION NO: 189 "Pass Any Exam. and any known neighbor on the link. negotiation status B.actualtests. While using VTP.www. what is necessary? tua lTe sts . the hub router is CK-RTC.

This is the default behavior on this topology.10.www. The neighbor 10. . Any Time. The neighbor 10. C. which configuration command need to be added? tua lTe sts A.10. CK-R4(config)# ip default-network 10.10. in oraer to advertise a aerault route to CK-R4"s neighbors.1 next-hop-self command on CK-RTA. The neighbor 10.10.0.1 next-hop-self command on CK-RTB.10.0." . an routers are conrigurea witn EteRP. B. Nothing is required. CK-R4(config-router)# default-information originate "Pass Any Exam. D.10.1 next-hop-self command on CK-RTC.Cisco 642-892: Practice Exam Answer: C QUESTION NO: 190 A.0 B.co m 155 .actualtests.com Ac in tne network presented in tne following exnmit.

Only VLANs 1-1001 will travel across the trunk link. Any Time.0.0. In routing updates. show ip route ospf B.Cisco 642-892: Practice Exam C. It maintains a table of IP networks or 'prefixes' which designate network reachability among autonomous systems (AS).1 Answer: A QUESTION NO: 191 The Border Gateway Protocol (BGP) is the core routing protocol of the Internet.0 10.0.1 D. D.0. local preference D. next hop C.0 0.0.1.www. C.0.co m .1. show ip ospf database nssa-external D.0 10." . A trunk link will be formed. which BGP feature will not be advertised to o its neighboring routers? A.) A. The native VLAN for CK-B is vlan 1.0. "Pass Any Exam. weight B. show ip ospf database summary C.0. The topology database contains information from all of the Link State Advertisement packets that have been received for an area. DTP packets are sent from CK-B.com 156 Ac A. B. CK-R4(config)# ip route 0. origin Answer: A QUESTION NO: 192 Answer: D QUESTION NO: 193 Which three descriptions are correct concerning the diagram below? (Choose three.1. In the OSPF topology database.1. CK-R4(config)# ip route 10. show ip ospf database external tua A Link State Advertisement (LSA) is an OSPF data packet containing link-state and routing information that's shared among OSPF routers.actualtests. which of the following commands can show the Type 5 LSAs? lTe sts .0 255.

Voice VLANs can be applied on all Cisco switches." .co m . D. which BGP feature will be first used to determine the best path? A. Answer: A. Voice VLANs permit IP phones to be moved around without worrying about subnets. AS-path Answer: C QUESTION NO: 197 "Pass Any Exam.C. which one can show the times of performing the OSPF algorithm? .D QUESTION NO: 194 The voice VLAN feature enables access ports to carry IP voice traffic from an IP phone. show ip protocol sts Refer to the following commands. Using voice VLANs makes it easier for network administrators to identify and troubleshoot network problems. Voice VLANs permit logically combining voice and data packets. show ip ospf D. weight D. show ip ospf interface C. Which two options best describe voice VLANs? A.www. B. C. Any Time.Cisco 642-892: Practice Exam Answer: A. origin B.com 157 Ac tua lTe A.D QUESTION NO: 195 Answer: C QUESTION NO: 196 During selecting the BGP path on a Cisco router. next-hop C. show ip ospf database B.actualtests.

The switches deployed at this layer must be able to handle connecting individual desktop devices to the internetwork. C. The K-values of the metric must be the same on both routers. C.com Ac A.co m 158 . This is where users gain access to the internetwork. B.C QUESTION NO: 198 Which two statements correctly describe the distribution layer switches? (Choose two. D. Any Time. A summary of the contents of the neighbor database B. Answer: B. The distribution layer is the aggregation point for multiple access switches. The holddown timer must be the same. D. Answer: A. A summary of the topology database when a change is made in a summary route C." .www. "Pass Any Exam.actualtests. Authentication must be enabled.Cisco 642-892: Practice Exam Which two statements are correct for EIGRP to form a neighbor relationship? (Choose two) A. C. B.D QUESTION NO: 199 Answer: D QUESTION NO: 200 Which two descriptions are correct about the STP blocked state of a port? (Choose two) A. The process taken D.) A. Frames are sent or received on the blocked port. D. No frames are transmitted or received on the blocked port. The autonomous system number must be the same on both routers. BPDUs are still received on the blocked port. A summary of EIGRP activity tua What will the debug ip eigrp summary command display? lTe sts . B. The distribution layer can participate in MLS and handle a router processor. BPDUs are sent and received on the blocked port.

com Ac tua lTe sts . CK1 will reply with the MAC address of the next AVF. The status of the links between neighbors Answer: D QUESTION NO: 202 A.10. CK2 will reply with the MAC address of the next AVF Answer: D QUESTION NO: 203 "Pass Any Exam. The feasible distance between neighbors B.Cisco 642-892: Practice Exam Answer: A. The administrative distance C.co On the basis of the exhibit below Host CK has sent an ARP message to the default gateway IP address 10. Any Time. The metric of neighbors D.10 description is correct? m 159 . CK2 will reply with the IP address of the next AVF." . B. Because of the invalid timers that are configured. D.actualtests. C.C QUESTION NO: 201 Which of the following information is contained in the neighbor table? A.www. CK2 will not reply.

actualtests. Unfortunately." .www. DHCP server Answer: B. Static C. Using the output of "show spanning-tree" command on switch SW-C and the provided physical topology. debug ip eigrp D. Any Time. you will be required to identify the spanning-tree topology for the switch block. debug ip eigrp events B. debug ip eigrp traffic Answer: B QUESTION NO: 205 "Pass Any Exam. For baseline purpose. Dynamic D. The game service network had recently added an additional switch block with multiple VLANs configured.co m 160 . VTP database B. answer the following questions: tua lTe sts . debug ip eigrp packets C. system administrators neglected to document the spanning-tree topology during configuration.Cisco 642-892: Practice Exam Which two ways can an administrator configure VLAN memberships? (Choose two.) A.com Ac Online Incorporated is an internet game provider.C QUESTION NO: 204 Which of the following commands can be used to show that EIGRP is able to contact neighbors? A.

actualtests." .Cisco 642-892: Practice Exam "Pass Any Exam.com Ac tua lTe sts .www. Any Time.co m 161 .

system administrators neglected to document the spanning-tree topology during configuration.db03.Cisco 642-892: Practice Exam Which bridge ID belongs to switch SW-B? A. 32768.65db. 32769. Any Time.34f5. Unfortunately.www.com 162 Ac tua lTe sts ." .000d.0380 Answer: A QUESTION NO: 206 Online Incorporated is an internet game provide.0380 C. 32815.co m .bd03. For baseline purpose.0138 B.000d.actualtests.000d. The game service network had recently added an additional switch block with multiple VLANs configured. you "Pass Any Exam.0102 D. 24623.000f.

Cisco 642-892: Practice Exam will be required to identify the spanning-tree topology for the switch block.actualtests. answer the following questions: "Pass Any Exam. Any Time.www. Using the output of??? Show spanning-tree??? Command on switch SW-C and the provided physical topology." .co m 163 .com Ac tua lTe sts .

listening Answer: A QUESTION NO: 207 Online Incorporated is an internet game provide. blocking B. The game service network had recently added an additional switch block with multiple VLANs configured. discarding C. learning D. Unfortunately." .co m . system administrators neglected to document the spanning-tree topology during configuration. you will be required to identify the spanning-tree topology for the switch block. For baseline purpose.com 164 Ac tua lTe sts .actualtests.www. Any Time. Using the output of "Pass Any Exam.Cisco 642-892: Practice Exam Which port state is interface FaO/2 of switch SVV-B in for VLANs 1 and 106? A.

Any Time.co m 165 .Cisco 642-892: Practice Exam "show spanning-tree" command on switch SW-C and the provided physical topology. answer the following questions: "Pass Any Exam.actualtests." .com Ac tua lTe sts .www.

1D Answer: A QUESTION NO: 208 Online Incorporated is an internet game provide. system administrators neglected to document the spanning-tree topology during configuration. STP/IEEE802. For baseline purpose. PVRST C.com 166 Ac tua lTe sts .actualtests. Unfortunately. PVST+ B.co m . you will be required to identify the spanning-tree topology for the switch block. MSTP/IEEE 802. Any Time. The game service network had recently added an additional switch block with multiple VLANs configured.1s D." .www. Using the output of "Pass Any Exam.Cisco 642-892: Practice Exam Which Spanning tree Protocol has been implemented on switch SW-B? A.

Cisco 642-892: Practice Exam Show spanning-tree??? Command on switch SW-C and the provided physical topology.www. answer the following questions: "Pass Any Exam.actualtests.com Ac tua lTe sts . Any Time.co m 167 ." .

actualtests.co m . nondesignated port Answer: B QUESTION NO: 209 Which statement accurately describes BPDUs? A. B. BPDUs are used to send configuration messages by using multicast frames. BPDUs are used to set the bridge ID of a switch. Any Time." .com 168 Ac tua lTe sts . "Pass Any Exam.www.Cisco 642-892: Practice Exam Which port role has interface FaO/2 of switch SVV-A adopted for VLAN 47? A. root port D. designated port C. alternate port B.

Point-to-multipoint D. An adjacency is when another router has received an LSA from another area. D. Any Time. An adjacency is the state that two neighbors can achieve after they have synchronized their OSPF databases.Cisco 642-892: Practice Exam C. for example Frame Relay.co m 169 .3u C. are considered adjacent to each other. 8023z lTe Which Cisco standard encapsulates a frame and even adds a new FCS field? sts . C.www. The areas are adjacent.actualtests.1Q D. B. Routers connected across a WAN but not directly connected. BPDUs are used to set the cost of STP links. 802. Answer: B QUESTION NO: 211 Answer: A QUESTION NO: 212 Which type of OSPF network can a workaround used to account for the lack of multicast and broadcast support inherent in the default behavior of Cisco router interfaces in a nonbroadcast environment? A." .com Ac tua A. Answer: B QUESTION NO: 210 What is an adjacency in OSPF? A. An adjacent router is one that has received a hello packet from a neighbor. 802. Nonbroadcast multi-access B. BPDUs are used to send configuration messages by using IP packets. Point-to-point "Pass Any Exam. Broadcast multi-access C. ISL B. D.

com 170 Ac QUESTION NO: 215 tua Answer: B lTe sts .Cisco 642-892: Practice Exam Answer: C QUESTION NO: 213 When a frame is received on an interface and the destination hardware address is unknown or not in the filter table. C. B. what does a switch do? A. determining the IP address and OSPF parameters How to determine the root port on a switch? A.co m . it shows that the election of the DR is in progress D. The root bridge broadcasts the bridge ID. That this is a point-to-multipoint interface and is waiting to connect to the WAN cloud B. Floods the network with the frame looking for the device D. By sending and receiving BPDUs between switches. D. and the receiving bridge determines what interface this broadcast was received on and makes this interface the root port." . Seen only on broadcast links. The switch determines the highest cost of a link to the root bridge. Forwards the switch to the first available link C.actualtests. what is the meaning? A. That an interface is coming online. Drops the frame Answer: C QUESTION NO: 214 When an interface shows that it is in the init state. Sends back a message to the originating station asking for a name resolution B. Answer: B QUESTION NO: 216 "Pass Any Exam.www. That a router sees a hello packet from a neighbor but the packet does not contain its own router ID C. The fastest BPDU transfer rate on an interface becomes the root port. The switch determines the lowest cost of a link to the root bridge. Any Time.

No additional commands required B." . CK-C must be the DR. Router(config-subif)# ip ospf network non-broadcast Answer: A QUESTION NO: 217 Which two statements are true if this topology were configured with the NBMA OSPF network type? (Choose two) A. There are four adjacencies. G. B. CK-D must be the DR Answer: A.co m 171 .C "Pass Any Exam. Any Time. Any router may be the DR. Router(config-subif)# ip ospf network point-to-point C Router(config-subif)# ip ospf network point-to-multipoint non-broadcast D. F.com Ac tua lTe sts . C. There are three adjacencies.actualtests. CK-8 must be the DR.www. Router(config-subif)# ip ospf network point-to-multipoint E. E. CK-A must be the DR. D.Cisco 642-892: Practice Exam Which command can be used to set up a newly created point-to-point subinterface to use the OSPF point-to-point network type? A.

except the interface from which the LSA was received. forcing the next-hop address C.D QUESTION NO: 221 If a router has an OSPF priority set to 0. Any Time. Answer: A QUESTION NO: 220 In order to advertise internal networks to external ISPs through BGP. which two approaches. B.Cisco 642-892: Practice Exam QUESTION NO: 218 Which description is correct about VTP? A. what will an internal OSPF router do? A. C. disabling synchronization D." . B. The LSA is dropped and a message is sent to the transmitting router. and if the LSA is valid. VTP is on by default with a domain name of Cisco on all Cisco switches. If you change the VTP version on one switch. you must change the version on all switches.com Ac tua lTe sts . defining routes via the network statement Answer: A. what does it mean? "Pass Any Exam. using aggregate routes B. can be used? A. All switches are VTP clients by default C.co m 172 . The LSA is flooded immediately out of all the OSPF interfaces. D. in the event that a received LSA is not found in the topological database.www. D.actualtests. Answer: A QUESTION NO: 219 When learning a new route. The LSA is placed in the topological database and an acknowledgement is sent to the transmitting router. Changing the VTP version on one switch changes all switches in a domain. it is entered into the topology database. The sequence numbers are checked.

Answer: C QUESTION NO: 223 Which command will you use when you want to set up an interface to use a DR. Refer to the following methods.www. Router(config-if)# ip ospf network broadcast B. It has the highest priority. Proxy ARP allows multiple routers to respond to ARP requests from clients. Router(config-if)# ip ospf network point-to-point C Router(config-if)# ip ospf network point-to-multipoint non-broadcast D.co m . D.Cisco 642-892: Practice Exam A. but do not want to have to manually identify neighbors? A. Clients need to have different default gateway IP addresses coded. Multiple AVG designated routers respond to ARP requests. It can become neither a DR nor a BDR." . what can be drawn from the output of the debug command on VRRP router? "Pass Any Exam. B. while allowing packet load sharing between a group of redundant routers. The AVG assigns different virtual MAC addresses. Router(config-if)# ip ospf network point-to-multipoint Answer: A QUESTION NO: 224 On the basis of the following exhibit.com 173 Ac tua lTe sts . C. C. Any Time. A router with the OSPF priority set to 0 is one that cannot participate in the election of a DR. A router with the OSPF priority set to 0 is one that cannot participate in the election of a DR. A router with the OSPF priority set to 0 is one that will switch OSPF packets before it does anything else. but it can become a BDR.actualtests. D. which one could enable GLBP to forward traffic from a LAN segment through multiple routers simultaneously? A. Answer: B QUESTION NO: 222 Gateway Load Balancing Protocol (GLBP) protects data traffic from a failed router or circuit. like Hot Standby Router Protocol (HSRP) and Virtual Router Redundancy Protocol (VRRP). A router with the OSPF priority set to 0 is one that can participate in the election of a DR. B.

C." . . which areas will have default routes automatically transmitted to the routers in the respective areas? A.co m 174 .Cisco 642-892: Practice Exam Answer: D QUESTION NO: 225 Study the following configuration. VRRP is not active on CK-RTA. CK-RTB has a different IP address coded for VRRP group 1 than CK-RTA.www.actualtests. Neither area C. CK-RTB does not have VRRP active. Any Time. Area 2 D. D. Both areas Answer: D "Pass Any Exam.com Ac tua lTe sts A. CK-RTA does not have VRRP preempt active. B. Area 3 B.

0 255. the command show ip route on CK-RTA displays the CK-RTB individual networks and its summary route.actualtests. But.www. Create a route map allowing only the summary address. set mac mac-address C.24. B. set vlan mac-address mac-address Answer: A "Pass Any Exam. lTe sts . mac-address mac_address B.com Ac tua A. Which of the following items can make sure that the summary route appears in the CK-RTA routing table? Answer: B QUESTION NO: 227 Which one of the following commands can be used to set a virtual hardware address on a VLAN interface? A.Cisco 642-892: Practice Exam QUESTION NO: 226 Study the following configuration and exhibit seriously. Add the keyword summary-only to the aggregate-address command.co m 175 . D. Clear the four network statements and leave only the aggregate-address statement in the BGP configuration. Any Time. CK-RTB is using the command aggregateaddress to summarize its networks from AS 64100.255.168. C.252.0 pointing to the null0 interface. Increase a static route with a prefix of 192." . config mac slot/port mac-address D.

Any Time.co m A.actualtests. Port Aggregation Protocol (PAgP) B.0 255.16." .96. Backbone Router Answer: B. area 0 range 172.0. Common Spanning Tree (CST) C.0 255.96.255.0 D.0 0. summary-address 172.255. Virtual Link Router B.63.16. which of the following should be configured on CK-RTA? Answer: A QUESTION NO: 229 Which item provides a separate instance of Spanning Tree Protocol for every VLAN? A.0 B.C "Pass Any Exam.0 C.224.96.16. Per-VLAN Spanning Tree (PVST) Answer: D QUESTION NO: 230 Which OSPF router types are allowed inside a not-so-stubby area?(Choose two) A. area 1 range 172. Spanning Tree Algorithm (STA) D.0 255.255.96.www.com Ac tua lTe sts . in order to summarize all routes from area 0 to area 1. Area Border Router C.Cisco 642-892: Practice Exam QUESTION NO: 228 According to the following graphic. summary-address 172.0.16.224. Autonomous System Border Router D.255 176 .

" . What is the CK-RTC status? "Pass Any Exam.com Ac tua Which two options will be taken into consideration when you need to have inter-VLAN communication and you have only an external router? (Choose two.www. all routers are reloaded simultaneously. One router interface for every single VLAN C.co A.) lTe sts . One router interface into one switch port running a trunking protocol QUESTION NO: 233 DR (Designated Router) is for environments where many routers on the same network such as Ethernet.Cisco 642-892: Practice Exam QUESTION NO: 231 Where will the trust boundary be established in this network based on the configuration provided in the exhibit? Answer: C QUESTION NO: 232 A. at the IP Phone B. at the distribution switch CK-S2 m 177 . In the following presented network. and DR is selected as expected. One router interface for every switch in the internetwork D. Any Time. attheCK-PC C. Two router interfaces for every switch in the internetwork B. at the access switch CK-S1 D.actualtests.

Which statement explains the reason that this feature is such an important enhancement to earlier routing protocols? A. FULL/DR .co m . FULL/DROTHER C.Cisco 642-892: Practice Exam Answer: C A BGP attribute. "Pass Any Exam." . weight B. or path attribute.actualtests.com 178 Ac tua QUESTION NO: 234 lTe sts A. next-hop D. FULL/BDR D. origin C. Which of the following is a Cisco proprietary BGP path attribute? A. AS-path Answer: A QUESTION NO: 235 One of the main features of OSPF is Multiple areas. The use of multiple areas allows for the use of prioritization. is a metric used to describe the characteristics of a BGP path.www. Any Time. 2WAY/DR B.

Only statically assigned VLAN ports B. Dynamically and statically assigned VLAN ports Answer: A QUESTION NO: 237 "Pass Any Exam. allowing the network to scale to larger sizes. do you know how CK-R5 will handle the hello packets sent by CK-R2 in OSPF area 5? sts .www.actualtests. when divided into areas.com Ac tua lTe According to the displayed configuration in the exhibit below. C.co m 179 . with minimum communication between the areas.Cisco 642-892: Practice Exam B." . Any Time. Ports using different duplex types C. It is easier to implement security. The network domain. allows for the use of both IANA classful addressing and private addressing. D. All computation is kept within the area. Dynamically assigned VLAN ports D. Answer: B QUESTION NO: 236 Which of the following items can PAgP form a bundle from? A.

B. The Hello packets will be dropped and no adjacency will be built between routers CK-R2 and CK-R5. tua lTe sts . D. Any Time.www.Cisco 642-892: Practice Exam Answer: C QUESTION NO: 238 Which three statements correctly describe PVST+? (Choose three.co m 180 ." . It is set on a port-by-port basis. C. The Hello packets are to be exchanged and adjacency are to be established between routers CK-R2 and CK-R5. It is a Cisco proprietary protocol. It adds checking mechanisms to make sure there are no configuration problems on trucked ports and VLAN IDs across switches. The Hello packets are to be exchanged but the routers CK-R2 and CK-R5 would be neighbors only.com Ac A. B. "Pass Any Exam. C.) A. The Hello packets are to be discarded but the routers CK-R2 and CK-R5 will be neighbors.actualtests.

C. B.co m 181 . what will happen? (Choose three. It enables Cisco switches to support the IEEE 802. Answer: A. Level 2 routers must be placed contiguously.www. Any Time. The map prohibits the redistribution of all type 2 external OSPF routes with tag 6 set.B.com Ac tua lTe sts .actualtests. Answer: A.Cisco 642-892: Practice Exam D. Level 2 routers can send updates between routing areas.D QUESTION NO: 240 Which two statements are correct concerning Level 2 routers?(choose two) A.) A.D QUESTION NO: 239 When using the route map presented in the following exhibit. The map allows the redistribution of all type 1 external OSPF routes. C. All routes that do no match clauses 10 and 20 of the route map are redistributed with their tags set to D.1Q standard. B. "Pass Any Exam." . The map prohibits the redistribution of all external OSPF routes with tag 6 set.

Level 2 routers are similar to OSPF stub routers.co m 182 . When a trunk port is configured. which of the following should both interfaces agree on?(choose two) sts . it begins marking frames as they exit the port to indicate which VLAN each frame is associated with. 1518 Bytes C. If a trunk link is configured with IEEE 802.actualtests. 1522 Bytes Answer: D QUESTION NO: 242 Answer: A.B QUESTION NO: 243 On the basis of the output provided below. Answer: A. C. Any Time." . Hello timers. Both must be configured at the same level of routing (1 or 2). The system ID must be unique. in order to create a default route into the OSPF domain. both must be in the same area. tua lTe For an IS-IS adjacency to be formed and maintained. which command sequence should be added to CK-R1? "Pass Any Exam. 1548 Bytes B. which of the following will be the maximum Ethernet frame size? A. Level 2 routers must be in the same area.1Q encapsulation.B QUESTION NO: 241 A trunk link is the other type of Layer 2 port supported on Cisco switches. D. If Level 1. D.com Ac A.www. 1500 Bytes D.Cisco 642-892: Practice Exam C. B.

ip default-network sts . which configuration command should be used? "Pass Any Exam.www.C. default-router C.Cisco 642-892: Practice Exam Answer: C QUESTION NO: 244 A.co m . ip default-gateway B." .) tua lTe A. Any Time. default-information originate always D.D QUESTION NO: 245 If RTA wants to advertise all local interfaces over OSPF. Path cost D. Port priority Answer: B. Port cost C.com 183 Ac Which three options can be used by STP to determine the best path to the root bridge? (Choose three. STP protocol B.actualtests.

VTP reduces administration in a switched network.actualtests.D QUESTION NO: 248 For the following configuration tasks.0.0.co m 184 . RTA(config)# router ospf 1 RTA(config-router)# redistribute static D. The sequence number of the LSPs Answer: B.0 0.B QUESTION NO: 247 A.com Ac What will the command show isis database display?(choose three) tua lTe sts .C. a trunk port C. RTA(config)# router ospf 1 RTA(config-router)# network 0. The root of the SPF tree B.0. and renaming of VLANs on a network-wide basis. RTA(config)# router ospf 1 RTA(config-router)# network 0. Whether an LSP has been fragmented D. RTA(config)# router ospf 1 RTA(config-router)# redistribute connected Answer: D QUESTION NO: 246 VLAN Trunking Protocol (VTP) is a Cisco proprietary Layer 2 messaging protocol that manages the addition.www. VTP information will be prevented from transmitting between switches by lacking which two? A. VLAN 1 B.0.) "Pass Any Exam. Any Time. The LSPs in the local database C.Cisco 642-892: Practice Exam A. a root VTP server D.0 C. VTP priority Answer: A.0 B.0." .0. which three are necessary to enable multicast Auto-RP? (Choose three. deletion.

C.co m 185 . C. D. It advertises the best origin code.com Ac tua lTe sts .0/16. Perform IP multicast routing. Why does router CK3 chose router CK1 as its best path to network 131. B. B. A.D QUESTION NO: 249 Observe the exhibit carefully.0.Cisco 642-892: Practice Exam A.25. Assign the RP Mapping Agent.0. Advertise RP/group associations.0/16 to router CK3 via internal BGP.www. Answer: D "Pass Any Exam.25. It advertises the best local preference. C. D. It advertises the best MED. Assign the default RP (for existing multicast networks). It has a better router ID." . Answer: B.actualtests. Both Routers CK1 and CK2 advertise network 131. Any Time.

actualtests.Cisco 642-892: Practice Exam QUESTION NO: 250 Observe the following exhibit seriously.www. The MLS-RP sends hello packets to the multicast address 01-00-OC-DD-DD-DD. Assume that you are a network technician.com Ac tua A. B. CK-Rl(config)# access-list 20 deny any CK-Rl(config)# router eigrp 1 CK-Rl(config-router)# distribute-list 20 out serial 0 D. MLS.SEs then record the hello packet information. CK-R2(config)# access-list 20 permit any CK-R2(config)# router eigrp 1 CK-R2(config-router)# distribute-list 20 in serial 0 lTe sts ." . "Pass Any Exam. MLS.RPs then record the hello packet information. The MLS-SE sends hello packets to the multicast address 01-00-OC-DD-DD-DD. MLS. CK-Rl(config)# access-list 20 permit any CK-Rl(config)# router eigrp 1 CK-Rl(config-router)# distribute-list 20 in serial 0 C.RPs then respond to these hello packets. the neighbor relationship has been built between CK-R1 and CK-R2 which are exchanging routing information. The MLS-SE sends hello packets to the multicast address 01-00-OC-DD-DD-DD.co m 186 . how will you design the network to make CK-R1 receive routing updates from CK-R2 without advertising any routes to CK-R2? Answer: C QUESTION NO: 251 Which statement is true regarding the MLSP discovery process? A. Any Time. CK-R2(config)# access-list 20 deny any CK-R2(config)# router eigrp 1 CK-R2(config-router)# distribute-list 20 out serial 0 B. C.

how to manage the traffic? "Pass Any Exam. the connectivity between Cisco IP phone access port and the workstation CK-PC has been established. The client data rate from CK-AP1 has been reduced. C.D QUESTION NO: 253 Look at the graphic below. Any Time. a wireless customer is moving towards CK-AP2 from right to left. MLS. The client has missed too many beacons from MS-API. why the wireless client will initiate roaming? Answer: A." . B. Answer: C QUESTION NO: 252 According to the following graphic. The maximum data retry count from CK-AP1 is exceeded.com Ac tua A.actualtests. lTe sts .co m 187 .Cisco 642-892: Practice Exam D. The MLS-RP sends hello packets to the multicast address 01-00-OC-DD-DD-DD.C. D. The client data rate from CK-AP2 has been increased.www.SEs then respond to these hello packets.

The IP phone access port would trust the priority of the frames received from the CK-PC. C. The switch port FaO/4 would neglect the priority of the frames received from the CK-PC. C. The route is not entered into the routing table. The switch port FaO/4 would trust the priority for the frames received from the CK-PC. The route is read into OSPF with a cost of 20 (type E2). B. Any Time. TCP retransmits "Pass Any Exam. cable. Which three features are of voice traffic in the campus network? A.actualtests. The route is entered with a cost of 0.Cisco 642-892: Practice Exam Answer: C QUESTION NO: 255 Voice traffic is random in nature and competes for a limited number of shared resources or voice channels. The route is entered with a cost of 20 (type 1) B.co A.www. D.com Ac A. The IP phone access port will override the priority of the frames received from the CK-PC. Much of today's voice traffic has migrated to wireless. internet and other media while the traditional Public Switched Telephone Network (PSTN) provides legacy voice connectivity. D. m 188 ." . tua Which action will be taken if no seed or default metric is configured for OSPF when redistributing EIGRP? lTe QUESTION NO: 254 sts Answer: A .

How to configure the routers in AS100 to forward traffic coming from AS200 to AS300? A.actualtests. D. UDP priority Answer: B. drop sensitive C.D QUESTION NO: 256 Within the Internet.com 189 Ac tua lTe sts . IBGP session should be established between CK-R1 and CK-R2 and CK-R2 and CK-R3. each router in AS100 is configured with IGP and routing updates are successfully exchanging between those routers. clearly defined routing policy to the Internet In the following diagram. IBGP speakers within autonomous 100 must be fully meshed. and the synchronization should be disabled.www.Cisco 642-892: Practice Exam B. and the synchronization must be enabled. Traffic from AS200 is unable to reach the destination AS300. C.co m . an Autonomous System (AS) is a collection of connected IP routing prefixes under the control of one or more network operators that presents a common. IBGP session should be established between routers CK-R1 and CK-R2 and CK-R2 and CKR3. B.C." . and the synchronization must be turned off. "Pass Any Exam. delay sensitive D. Any Time. and the synchronization must be disabled. IBGP speakers within autonomous 100 should be fully meshed. AS200 and AS300 have established EBGP sessions via their directly connected routers in AS 100.

showisis database C. it must be unique across all switches." . Any Time.actualtests. Answer: B QUESTION NO: 258 Which command displays whether the ATT bit has been set? A.co m . It is locally significant.com 190 Ac tua lTe sts . XTAG is a numerical value assigned by the MLS-SE to identify an MLS-RP. and what is its significance? A. It is a unique value throughout the layer 2 network. Incoming packets sourcing from 224. Incoming packets sourcing a MAC address associated with the MLS-RP Answer: A QUESTION NO: 260 "Pass Any Exam.0. The XTAG is the MLS-RP router ID and is used to uniquely identify the MLS-RP to the MLSSE.Cisco 642-892: Practice Exam Answer: D QUESTION NO: 257 What is the purpose of the XTAG. C. showisis hello packets Answer: B QUESTION NO: 259 Which of the following criteria qualify a packet as a candidate packet? A.0. Any AC address associated with the MLS-RP B. It must be unique throughout the VTP domain. XTAG is a numerical value assigned by the MLS-SE to identify an MLS-RP.www. Therefore. B. Outbound packets destined for a remote host C. D. The XTAG is the MLS-SE ID and is used to identify each MLS-SE in the layer 2 network. debugisis interface B.1 and destined for the MAC address of the MLS-SE D. debug dns interface D.

where it is used for a variety of reasons. Answer: C QUESTION NO: 261 Which method is to limit the scope of a multicast network? A.C. or not advertised to one's neighbors. initial Answer: A.actualtests. the router examines the access list to see if there is a match on any of the networks in the routing update. B. Do not advertise the route if it is matched by a deny statement. active D. Passive interface applied to border interfaces C." . If no match is found in the distribute list. TTL threshold setting on border interfaces D. Which three statements best describe route filtering? "Pass Any Exam. standby B. C. established C. Distribution lists within an IGP such as BGRP or OSPF Answer: C QUESTION NO: 262 A. RPF settings within the RP routers B.D QUESTION NO: 263 Route filtering is the process by which certain routes are not considered for inclusion in the local route database.com 191 Ac tua Hot Standby Router Protocol (HSRP) is a Cisco proprietary redundancy protocol for establishing a fault-tolerant default gateway. Route filtering is particularly important for BGP on the global Internet. If a filter is present. Which three of the following are possible HSRP router states on a LAN? lTe sts . Any Time. D. the implicit deny any at the end of the access list will cause the update to be dropped.Cisco 642-892: Practice Exam All the following descriptions are correct.www. Advertise the route if matched by a permit statement. which action will be taken first? A.co m .

After issuing the router rip and passive-interface s0/0 commands. D. hello messages are not sent out the specified interface. C. hello messages are not sent out the specified interface.actualtests.D QUESTION NO: 264 Study the exhibit carefully. but will receive routing updates on that interface.www.co m 192 . When using the passive-interface command with RIPv2. multicasts are sent out the specified interface. Answer: A.Cisco 642-892: Practice Exam A. B.com Ac tua lTe sts ." . Which Virtual Router Redundancy Protocol (VRRP) description is correct regarding the roles of the master virtual router and the backup virtual router? "Pass Any Exam. When you use the passive-interface command with OSPF. Any Time.C. When you use the passive-interface command with EIGRP. the s0/0 interface will not send any RIP updates.

D. Router CKB is the master virtual router. it will regain the master virtual router role.com Ac tua lTe A. When Router CKB recovers. and Router CKA is the backup virtual router. Summarized routes are unacceptable. Router CKA is the master virtual router. Router CKA is the master virtual router. and Router CKA is the backup virtual router.B "Pass Any Exam.) A.Cisco 642-892: Practice Exam A." . C. Only routes with lower administrative distances will be imported. which criteria activates an interface that is configured to use dense mode? (Choose two.www. Router CKB is the master virtual router. When Router CKB fails. Directly connected hosts B. Answer: B Answer: B QUESTION NO: 266 For the following items. Router CKA will become the master virtual router. and Router CKB is the backup virtual router. which description is true when redistributing routes from other routing protocols into OSPF? . They will appear in the OSPF routing table as type E2 routes. C. When Router CKA fails. and Router CKB is the backup virtual router. Router CKA will maintain the role of master virtual router. When Router CKA recovers.actualtests. When Router CKB recovers. When the interface receives a prune statement from a directly connected PIM router D. Router configured as a border router Answer: A. D. Router CKB will become the master virtual router. By default. Router CKB will become the master virtual router.co QUESTION NO: 265 m 193 . When Router CKA fails. B. Router CKA will become the master virtual router. When Router CKA recovers. sts Route redistribution (RR) has become an integral part of IP network design as the result of a growing need for disseminating certain routes across routing protocol boundaries. it will regain the master virtual router role. All imported routes are to be automatically summarized if possible. Directly connected PIM routers C. Any Time. Router CKB will maintain the role of master virtual router. When Router CKB fails. B.

Cisco 642-892: Practice Exam QUESTION NO: 267 Which feature is a must for the BGP update packet? A. Weight B. LOCAL. PREF C. AS_Path D. AGGREGATOR Answer: C

QUESTION NO: 268 What are the differences between PIM DM and PIM SM? (Choose three.) A. PIM DM assumes that all PIM neighbors have active members directly connected and initially forwards multicast data out every interface. B. PIM SM requires an explicit join from a router before the router is added to the shared tree. C. PIM DM is based on a source root tree distribution mechanism. D. PIM SM is based on bidirectional shared root tree distribution. Answer: A,B,C

QUESTION NO: 269

In which way will the following route map configuration effect on OSPF routes redistributed into EIGRP?

"Pass Any Exam. Any Time." - www.actualtests.com

Ac

tua

lTe

sts

.co

m

194

Cisco 642-892: Practice Exam

Answer: C

QUESTION NO: 270

"Pass Any Exam. Any Time." - www.actualtests.com

Ac

On the basis of the following presented exhibit, what will happen after configuring the neighbor 10.1.1.1 weight 200 BGP configuration command on router CK-A?

tua

lTe

sts

A. Routes matching prefix-list pfx are forward with EIGRP metric 20000 2000 255 1 1500. B. All routes are redistributed. C. Routes without a tag of 6 and not matching prefix-list pfx have their tag set to 8. D. Routes with a tag of 6 are redistributed unchanged.

.co

m

195

Cisco 642-892: Practice Exam A. CK-A will prefer the path through CK-B for network 172.20.0.0. B. Packets from CK-D will prefer the path through CK-C for networks advertised by CK-A . C CK-A will prefer the path through CK-C for network 172.20.0.0. D. Packets from CK-D will prefer the path through CK-B for networks advertised by CK-A . Answer: A

QUESTION NO: 271 On the basis of the following configuration, users can not communicate through the router. What should be changed to fix the configuration?

Answer: D

QUESTION NO: 272

As presented in the figure, OSPF has been configured over a FR network. Each PVC is active. But, CK-R1 and CK-R3 are unable to see all OSPF routes in their routing tables. The command show ip ospf neighbor is issued on CK-R2 to display the neighbors' status. How to fix the problem?

"Pass Any Exam. Any Time." - www.actualtests.com

Ac

tua

lTe

A. Illegal/inappropriate mask B. Pool is not applied C. Illegal IP address D. No default gateway in DHCP

sts

.co

m

196

Cisco 642-892: Practice Exam

Answer: D

QUESTION NO: 273

Which option will be used to search the bridging tables in a 3550 switch? A. Bridging database B. CAM C. TCAM D. DCAH Answer: C

QUESTION NO: 274 Intermediate system to intermediate system (IS-IS), is a protocol used by network devices (routers) to determine the best way to forward datagrams through a packet-switched network, a process called routing. Which three attributes are of the IS-IS routing protocol? A. link-state routing protocol B. operation is similar to BGP C. supports VLSM D. supports two routing levels within an autonomous system

"Pass Any Exam. Any Time." - www.actualtests.com

Ac

tua

lTe

sts

.co

A. The ip ospf network broadcast command need to be issued on each Frame Relay interface. B. The neighbor command needs to be issued under the OSPF routing process on all routers. C. The ip ospf priority value on the hub router needs to be set to 0. D. The ip ospf priority value on the spoke routers should be set to 0.

m

197

Cisco 642-892: Practice Exam Answer: A,C,D

QUESTION NO: 275 What is the meaning of the term non-blocking when referring to an Ethernet switch? A. The switch has more than one bus. B. The switch has sufficient capacity to forward without delay. C. The switch has dual power supplies. D. The switch has enhanced management to allow frames to pass through undelayed. Answer: B

QUESTION NO: 276

Answer: C

QUESTION NO: 277

Which statement is correct about DiffServe? A. Packets forwarded using DiffServe parameters B. Packets forwarded by each DiffServe router using per-hop forwarding according to TOS C. Packets marked and forwarded by each DiffServe router D. Packets following a predetermined path through the DiffServe cloud Answer: B

QUESTION NO: 278 Which description is true about the routers that utilize eBGP to communicate with each other?

"Pass Any Exam. Any Time." - www.actualtests.com

Ac

tua

lTe

A. dhow ip dhcp database B. show ip dhcp conflict C. show ip dhcp binding D. show ip dhcp pool

sts

.co

The following output is generated by which command? IP address Hardware address Lease expiration Type 172.16.1.11 00a0.9802.32de Feb 01 1998 12:00 AM Automatic

m

198

Cisco 642-892: Practice Exam A. Routers running different IGPs B. Routers within an autonomous system C. Routers in different autonomous systems D. Routers in different countries Answer: C

QUESTION NO: 279 You work as a network engineer. If a switch is running 'hybrid IOS,' what do you understand it to be using? A. IOS on the switch and CatOS on the router B. CatOS on the switch and IOS on the routing module C. Software that is a combination of CatOS and IOS D. Software that has commands from both operating systems running in tandem Answer: B

QUESTION NO: 280 Select three OSPF areas types. A. stub B. remote C. backbone D. ordinary or standard Answer: A,C,D

QUESTION NO: 281 Which queuing mechanisms will the 2950 switches support, running standard edition IOS software? (Choose three.) A. First in, first out queuing B. Low Latency Priority Queuing C. Weighted Round Robin Queuing D. Strict Priority Queuing Answer: A,C,D

"Pass Any Exam. Any Time." - www.actualtests.com

Ac

tua

lTe

sts

.co

m

199

Any Time.co A. B. which Catalyst switch interface command should be issued in order for the switch to instruct the phone to override the incoming CoS from the CK-PC before sending the packet to the switch? Answer: B QUESTION NO: 283 A. such as Ethernet Multicast. switchport priority extend cos 11 B. The first 23 bits of the multicast MAC address are 0x01-00-5E. This is a reserved value that indicates a multicast application. This is a reserved value that indicates a multicast application. as well as at the Internet Layer (OSI Layer 3) as IPv4 or IPv6 Multicast. Answer: B. Multicast addressing can be used in the Link Layer (OSI Layer 2). D." . The last 3 bytes (24 bits) of the multicast MAC address are 0x01-00-5E.Cisco 642-892: Practice Exam QUESTION NO: 282 Based on the graphic below.com Ac tua In computer networking a multicast address is an identifier for a group of hosts that have joined a multicast group. the host maps the last 23 bits of the IP address into the last 24 bits of the MAC address. Which two descriptions are correct regarding multicast addressing? lTe sts . This is a reserved value that indicates a multicast application. mis qos cos 2 D. C. The high-order bit is set to 0. mis qos cos 2 override m 200 .D QUESTION NO: 284 "Pass Any Exam.www. The first 3 bytes (24 bits) of the multicast MAC address are 0x01-00-5E. switchport priority extend cos 2 C. To calculate the Layer 2 multicast address.actualtests.

17.10.Cisco 642-892: Practice Exam Which one of the following commands is used to display the non-configured entries in a CAM table on a 2950 series switch? A. which IP is used for the source address of BGP traffic in the absence of the command update-source? "Pass Any Exam. Show Bridge dynamic D. B. with one drop threshold.0 tua lTe sts . The port has two queues but a single timer. show cam C. The port has two configurable queues.16. show cam dynamic B. Under the router igrp mode add redistribute eigrp 123 C. what does that mean? A. Answer: D QUESTION NO: 287 Given the following items.0 No auto-summary i Router igrp 123 Network 172. C. Under the router eigrp mode add redistribute igrp 123 subnets B.10. Answer: A QUESTION NO: 286 A.0 Network 172. None.0. The port has the option of one or two configurable queues. D.0. can you tell me which command can redistribute IGRP into EIGRP? Router eigrp 123 Network 10. BGRP and IGRP are automatically redistributed in this instance.actualtests. show dynamic cam Answer: A QUESTION NO: 285 When a show port capabilities command on a 4000 series router shows that a port is type 2qlt. Any Time.www. The port has one configurable queue with two drop thresholds." .com Ac According to the following output.co m 201 . Under the router eigrp mode add redistribute igrp 123 D.

168.0 C.i. 0.co m 202 .50 Answer: D QUESTION NO: 290 "Pass Any Exam. Derived from the AS D.1 C.1.com Ac tua lTe Study the following figure carefully.www. A queuing mechanism where each queue is of configurable length and is serviced using strict priority B.168.0 to CK-RTC? sts .2.actualtests. 192. which address is to be listed as the next-hop address when CK-RTB passes BGP advertisements from CK-RTA about network 192.0.168. A queuing mechanism where each queue is of different length and is serviced in priority of size Answer: B QUESTION NO: 289 A.1.1.i. Router ID B.2 D. 192. Any Time.Cisco 642-892: Practice Exam A.1." . A queuing mechanism where each queue is the same length and is serviced in turn D. Output interface Answer: D QUESTION NO: 288 Which statement is correct about Weighted Round Robin Queuing? A. A queuing mechanism where each queue is of configurable length and is serviced in turn C. io.49 B. 10.0.

actualtests. hsrp address 192.168.168. BGP prefers the highest value C. Your BGP neighbor B.com Ac tua lTe sts .168. C.co m 203 . VLANs should be localized to a switch.200 D.1.200 standby B. Any Time.1.Cisco 642-892: Practice Exam Which interface command sets the standby IP address on VLAN1 interface to 192. It is proprietary B.200 Answer: C QUESTION NO: 291 Which of the following is BGP next hop (by default) set to? A.168. Default value is zero Answer: B "Pass Any Exam. The first router in the AS Answer: C QUESTION NO: 292 In the process of designing VLAN. Routing should always be performed at the distribution layer. Answer: B." . The first router in the advertising AS D.www.200 C.1. standby 1 ip 192.200? A.1. Routing will not be implemented between VLANs located on separate switches. VLANs will be localized to a single switch unless utilizing voice VLANs. ip address 192.168. Only used outside an AS D. standby 1 ip address 192. D.D QUESTION NO: 293 Which statement is correct concerning the BGP local-preference attribute? A. The local router C.1. B. which two recommended practices are correct? A.

200 C. Any Time.0/24? Answer: C QUESTION NO: 295 "Pass Any Exam. 150 D.Cisco 642-892: Practice Exam QUESTION NO: 294 Given the following route map.168. 0 m 204 . 100 B.com Ac Voice over Internet Protocol (VoIP) is a general term for a family of transmission technologies for delivery of voice communications over IP networks such as the Internet or other packet-switched networks.actualtests.co A.www." .26. Which of the following describes the order while placing a VoIP call I from IP phone CKP1 to IP phone CK-P2? tua lTe sts . what will be the local-preference for 192.

IP phone CK-P1 alerts the CK-CCM of off-hook state. CK-CCM routes call to PSTN or IP phone CK-P2. CK-CCM instructs IP phone CK-P1 to provide diaitone. CK-CCM instructs IP phone CK-P1 to provide diaitone. while another router will be more preferred? A. IP phone CK-P1 alerts the CK-CCM of off-hook state. IP phone CK-P1 passes digits to CK-CCM. like Hot Standby Router Protocol (HSRP) and Virtual Router Redundancy Protocol (VRRP). glbp group load-balancing round-robin "Pass Any Exam.com Ac A. CK-CCM routes call to PSTN or IP phone CK-P2. IP phone CK-P1 passes digits to CK-CCM. RTP traffic is exchanged between IP phone CK-P1 and IP phone CK-P2. D. RTP traffic is exchanged between IP phone CK-P1 and IP phone CK-P2.www. while allowing packet load sharing between a group of redundant routers. RTP traffic is exchanged between IP phone CK-P1 and IP phone CK-P2. IP phone CK-P1 alerts the CK-CCM of off-hook state. CK-CCM instructs IP phone CK-P1 to provide dialtone. CK-CCM instructs IP phone CK-P1 to provide diaitone. RTP traffic is exchanged between IP phone CK-P1 and IP phone CK-P2 tua lTe sts . Any Time. B. CK-CCM routes call to PSTN or IP phone CK-P2. Which method used by GLBP permits the AVG to prefer one GLBP router as the AVF over other GLBP routers until its tracked interface goes down. IP phone CK-P1 passes digits to CK-CCM. CK-CCM routes call to PSTN or IP phone CK-P2. IP phone CK-P1 passes digits to CK-CCM. C.actualtests.Cisco 642-892: Practice Exam Answer: D QUESTION NO: 296 Gateway Load Balancing Protocol (GLBP) protects data traffic from a failed router or circuit." . IP phone CK-P1 alerts the CK-CCM of off-hook state.co m 205 .

show igmp interface D. The transmitted signal from the CK-AP arrives at the CK-client at slightly different times resulting in phase shifting. B. Observe the following graphic seriously. the result is essentially zero signal or a dead spot in the WLAN. Multipath interference is less of an issue when using a DSSS technology because multipath is frequency selective. C. Any Time. glbp group load-balancing weighted Answer: D QUESTION NO: 297 Multipath interference is a phenomenon in the physics of waves whereby a wave from a source travels to a detector via two or more paths and. tua lTe sts . at the CK-client end. show multicast router B. Multipath interference is solved by using dual antennas. under the right condition the two (or more) components of the wave interfere. If signal 2 is dose to 360 degrees out of phase with signal1." . show multicast group C.Cisco 642-892: Practice Exam B. ip igmp snooping "Pass Any Exam. D.www. glbp group load-balancing host-dependent D. the signal transmitted from the CK-AP is reflected off a wall resulting in multipath interference.com Ac A. Which description is correct? Answer: D QUESTION NO: 298 Which command will display the multicast groups? A. no glbp group load-balancing C.co m 206 .actualtests.

Cisco 642-892: Practice Exam Answer: B

QUESTION NO: 299 Which function is implemented with extension headers? A. Fragmentation B. Checksum C Flow labels D. TCP Answer: A

QUESTION NO: 300

Answer: A,D

QUESTION NO: 301

A mobile IPv6 binding is an association between which of the following?(choose two) A. Home address B. Prefix C. Correspondent nodes D. Care-of address Answer: A,D

QUESTION NO: 302 Which item is supported by OSPFv3 instead of OSPFv2?

"Pass Any Exam. Any Time." - www.actualtests.com

Ac

tua

lTe

A. DR and BDR elections will occur. B. All routers must be configured in a fully meshed topology with all other routers. C. DR and BDR elections will not occur. D. The neighbor command is required to build adjacencies.

sts

.co

Which two of the following are correct after enabling OSPF across an NBMA network and issuing the command ip ospf network nonbroadcast?

m

207

Cisco 642-892: Practice Exam A. NBMA networks B. NSSAs C. Multiple OSPF processes D. 128-bit prefixes Answer: D

QUESTION NO: 303 In order to enable IPv6 routing on a Cisco router, which command will necessarily be used? A. ipv6 routing B. ipv6 unicast-routing C. None, IPv6 routing is enabled by default. D. ipv6 address Answer: B

Which statement best describes Dual stack? A. Running IPv4 and IPv6 at the same time B. Passing IPv6 through UDP C. Process interception D. Translating IPv4 traffic to IPv6 Answer: A

QUESTION NO: 305

6to4 is a system that allows IPv6 packets to be transmitted over an IPv4 network (generally the IPv4 internet) without the need to configure explicit tunnels. How is a 6-to-4 tunnel different than a manually configured tunnel? A. It is not a dual-stack solution. B. It uses NAT-PT. C. Automatic tunnel creation. D. IPv6 addresses are embedded in IPv4 addresses. Answer: C

"Pass Any Exam. Any Time." - www.actualtests.com

Ac

tua

lTe

sts

QUESTION NO: 304

.co

m

208

Cisco 642-892: Practice Exam

QUESTION NO: 306 An administrator would like to configure a switch over a virtual terminal connection from locations outside of the local LAN. Which of the following are required in order for the switch to be configured from a remote location? (Choose two.) A. The switch must be configured with an IP address, subnet mask, and default gateway. B. The switch must be connected to a router over a VLAN trunk. C. The switch must be reachable through a port connected to its management VLAN. D. The switch console port must be connected to the Ethernet LAN. Answer: A,C

QUESTION NO: 307

A. The command establishes a static route. B. The command invokes a dynamic routing protocol for 192.168.12.0. C. Traffic for network 192.168.12.0 is forwarded to 172.16.12.1. D. Traffic for all networks is forwarded to 172.16.12.1. Answer: A,C

QUESTION NO: 308

"Pass Any Exam. Any Time." - www.actualtests.com

Ac

tua

lTe

sts

The network administrator of the CK-A router adds the following command to the router configuration: ip route 192.168.12.0 255.255.255.0 172.16.12.1. What are the results of adding this command? (Choose two.)

.co

m

209

Cisco 642-892: Practice Exam The network administrator has found the following problem. The remote networks 172.16.10.0, 172.16.20.0, and 172.16.30.0 are accessed through the Central router's serial 0/0. No users are able to access 172.16.20.0. After reviewing the command output shown in the graphic, what is the most likely cause of the problem?

Answer: C

QUESTION NO: 309 Which command will provide you with information regarding the Layer 3 configuration of directly connected router interfaces? A. show ip interface B. show cdp neighbors C. show cdp neighbors detail D. show ip route

"Pass Any Exam. Any Time." - www.actualtests.com

Ac

A. no gateway of last resort on Central B. Centra!router's not receiving 172.16.20.0 update C. incorrect static route for 172.16.20.0 D. 172.16.20.0 not located in Central's routing table

tua

lTe

sts

.co

m

210

Cisco 642-892: Practice Exam Answer: C

QUESTION NO: 310 Observe the following commands, which two can correctly configure a router to perform OSPF and to add network 192.168.16.0/24 to OSPF area 0? (Choose two.) A. Router(config-router)# network 192.168.16.0 255.255.255.0 area 0 B. Router(config)# router ospf 1 C. Router(config-router)# network 192.168.16.0 0.0.0.255 0 D. Router(config-router)# network 192.168.16.0 0.0.0.255 area 0 Answer: B,D

QUESTION NO: 311

Configure a router with EIGRP as the only routing protocol. If there is no feasible successor route to a destination network and the successor route fails, how does EIGRP respond? A. It automatically forwards traffic to a fallback default route until a new successor route is found. B. It immediately sends its entire routing table to its neighbors. C. EIGRP sends a Hello packet to the DR to inform it of the route failure. D. It sends queries out to neighbors until a new successor route is found.

Which port of CK-Sw2 is receiving BPDUs according to the diagram presented in the network?

"Pass Any Exam. Any Time." - www.actualtests.com

Ac

QUESTION NO: 312

tua

Answer: D

lTe

sts

.co

m

211

Cisco 642-892: Practice Exam

Answer: D

QUESTION NO: 313

A. Core2(config)# line con 0 Core2(config-line)# password Cisco B. Core2(config)# interface vlan 1 Core2(config-if)#ip address 192.168.1.11 255.255.255.248 C. Core2(config)# line vty 0 4 Core2(config-line)# password Cisco D. Core2(config)# ip default-gateway 192.168.1.9 Answer: B,C,D

QUESTION NO: 314 "Pass Any Exam. Any Time." - www.actualtests.com 212

Ac

According to the following diagram, both the switches Core and Core2 are Catalyst 2950s. The addressing scheme for each company site is as follows: Router Ethernet port - 1st usable address Core - 2nd usable address Core2 - 3rd usable address For this network, which three commands need to be configured on Core2 to allow it to be managed remotely from any subnet on the network? (Choose three.)

tua

lTe

sts

.co

A. Fa 0/2 only B. Fa 0/3 only C. Fa 0/1 and Fa 0/2 only D. Fa 0/1 and Fa 0/3 only

m

0 network neighbors. sts .2.0 network neighbors: routes learned by CK-R2 and from the interface connected to the network 172. No routes learned by CK-R2 from the interface connected to the 172. Any Time.2.0 network will be advertised to neighbors on the 192.16. What do you think will be the result of the configuration? Answer: A QUESTION NO: 315 "Pass Any Exam.com Ac Look at the following exhibit. As to BGP operation in AS64192.0. B.0.16. Only the 172.0.168.0 network.16. except the 172. Presume an IGP is correctly operating inside AS64192.actualtests.co m 213 .Cisco 642-892: Practice Exam Look at the figure below: the two routers CK-R1 and CK-R2 share the routing information through EIGRP.www. The yellow colored is configuration for CK-R2. All networks will be advertised to the 192. C.168.168.16." .2.0 network neighbors.0 network.2.0.0 network will be advertised to the 192. Only such routes will be advertised to the 192.168.0. D. which two of the following statements are true? (Choose two) tua lTe A.

Cisco 642-892: Practice Exam Answer: C.www.1 remote-as 64192 D.com 214 Ac tua CK has configured EIGRP to operate over Frame Relay multipoint connections. AS_Path 4.actualtests.co A.33. PS4-RT2 used the BGP command update-source loopback 0 m . the CIR rate of the lowest speed connection C.33.168." . Weight 2. CK-RT2 used the BGP command neighbor 192. CK-RT2 used the BGP command neighbor 192.33.168.D QUESTION NO: 316 A. Originate route "Pass Any Exam.1 ebgp-multihop B. Any Time. CK-RT1 used the BGP command neighbor 192. What do you think the bandwidth command should be set to? lTe sts . MED 3. the CIR rate of the highest speed connection B. the number of circuits multiplies the CIR rate of the lowest speed connection Answer: D QUESTION NO: 317 Which is the right order of the BGP attributes used for determining a route? 1. the number of connections divides the sum of all the CIRs D.168.1 remote-as 64192 C.

1 IP address that applies to the id helper-address command needs.23. 1. 3. 5 Answer: B QUESTION NO: 318 With reference to the exhibit.168. Two connected EIGRP routers are found not becoming EIGRP neighbors. C.www. which statement is right about the router configuration shown? A. 2. 4. 4. 3 C.actualtests. 5. 3.Cisco 642-892: Practice Exam 5. D. Answer: B QUESTION NO: 319 You are troubleshooting an EIGRP connectivity problem. 2. Local preference A. Any DHCP requests received by this interface will be rebroadcasted by the router out to all addresses included in the ip helper-address commands.com Ac tua lTe sts . 1. What should you check next? "Pass Any Exam. Any UDP broadcasts received by this interface will be rebroadcasted by the router out to all addresses included in the ip helper-address commands. Any DHCP requests received by this interface will be unicasted by the router out to all addresses included in the ip helper-address commands. 1. 5. 4 D." . 2. This configuration will do nothing as it is also the 192. 3. 1. B. 4. 5. 2 B.co m 215 . Any Time. You attempt to ping between the two routers and succeed.

B. the OSPFv3 areasnetwork are allotted by the network wildcard area ID combination. the OSPFv3 areas interfaces are allotted by IPv6 OSPF process area ID combination Answer: D QUESTION NO: 321 "Pass Any Exam. Any Time. the OSPFv3 areas interfaces are allotted by the OSPFv3 area ID combination. In router configuration mode." .co m 216 . Confirm that EIGRP broadcast packets are not being dropped between the two routers with the show ip BGRP traffic command. In interface configuration mode. D. C.actualtests.www. D. Confirm that EIGRP is enabled for the proper networks on the local and neighboring router. In router configuration mode. C. Answer: A QUESTION NO: 320 During the implementation of 0SPFv3. Confirm that the EIGRP hello and hold timers match precisely. B. Confirm that EIGRP broadcast packets are not being dropped between the two routers with the show ip EIGRP peer command.Cisco 642-892: Practice Exam A. You employ Router CK-R1 as a relay device for auto configuration of switch CK-S1. Which configuration should you use? tua lTe sts . the OSPFv3 areas interfaces are allotted by the IPv6 OSPF interface area ID combination. which of the following description is right for the configuration of OSPF areas? A.com Ac Look at the following figure. In interface configuration mode.

0.0. CK-Sl(config)# interface fastethernet 0/1 CK-Sl(config-if)# ip helper-address 20.0.0.actualtests. Any Time.0.0.0.Cisco 642-892: Practice Exam A.0.1 B.0.0.0.1 C.com Ac tua lTe sts .0.2 CK-Rl(config-if)# ip helper-address 20.1 D.0.2 CK-R2(config)# interface fastethernet 0/0 CK-R2(config-if)# ip helper-address 20.0.1 CK-R2(config)# interface fastethernet 0/0 CK-R2(config-if)# ip helper-address 20.0.www.0.4 CK-Rl(config-if)# exit CK-Rl(config)# interface fastethernet 0/1 CK-Rl(config-if)# ip helper-address 10.1 CK-R3(config)# interface fastethernet 0/0 CK-R3(config-if)# ip helper-address 20.1 Answer: A "Pass Any Exam.3 CK-Rl(config-if)# ip helper-address 20.1 CK-R3(config)# interface fastethernet 0/0 CK-R3(config-if)# ip helper-address 20. CK-Rl(config)# interface fastethernet 0/0 CK-Rl(config-if)# ip helper-address 20.0.co m 217 .0." .0.1 CK-R4(config)# interface fastethernet 0/0 CK-R4(config-if)# ip helper-address 20.0.0.0.0.1 CK-R4(config)# interface fastethernet 0/0 CK-R4(config-i0# ip helper-address 20. CK-Rl(config)# interface fastethernet 0/0 CK-Rl(config-if)# ip helper-address 20.0.0. CK-Sl(config)# interface fastethernet 0/1 CK-Sl(config-if)# ip helper-address 10.0.

BGP packets between them could pass through CK-R2 or CK-R3. You are required to build a BGP neighbor relationship between routers CK-R1 and CK-R4.16. Configure BGP neighbor relationships between all interfaces on CK-R1 and CK-R4. Configure only one neighbor relationship between CK-Rl's 192. advertised successor Answer: C QUESTION NO: 324 "Pass Any Exam. sts . Which do you think is the simplest configuration that will allow for failover? Answer: B QUESTION NO: 323 Supposing that the primary path goes down. B.Cisco 642-892: Practice Exam QUESTION NO: 322 Look at the following figure. D.www. in order to reach a destination.168. C.10. administrative distance C. Configure loopback interfaces on CK-R1 and CK-R4 to supply BGP packets with the update source address.com Ac tua lTe A. Install a direct connection between CK-R1 and CK-R4.1.2 interface and CK-R4's 172. successor B.co m 218 . feasible successor D. Any Time.actualtests.2 interface. what will EIGRP use? A." .

D. The RP for this network is this router. MD5 authentication is necessary. Any Time. The multicast source is directly connected to this router. CGMP C.D QUESTION NO: 325 If you want to allow a switch to decide which ports to forward IP multicast messages to. choose two correct statements.com 219 Ac tua lTe sts A. The multicast source is connected to the serial 1/4 interface.co m . C.Cisco 642-892: Practice Exam Look at the following exhibit. "Pass Any Exam. IGMP snooping D. static assignment Answer: B.C." . Choose two correct statements regarding the PIM sparse mode network! (Choose two) Answer: A. (Choose two) A. IGMP B. B. . The multicast receiver is directly connected to this router.D QUESTION NO: 326 With regard to EIGRP neighbor router authentication.actualtests. what methods may be effective? (Choose three) A.www.

OSPFv3 establishes neighbor adjacencies by using IPv4 addresses. Answer: B. With MD5 authentication. lTe sts . OSPF C.com Ac Answer: A tua A. EIGRP Answer: C "Pass Any Exam.www.actualtests. is-is B. Any Time. CK-RT1 owns a subnet mask of 64 bits. RIP D.co m 220 . D. With authentication configured.D QUESTION NO: 327 Which statement is correct based upon the following output from the show command on CK-RT1? QUESTION NO: 328 After we have entered the passive-interface router configuration command. the key is sent across. the router verifies the source of each routing update packet that it receives from a neighboring router.Cisco 642-892: Practice Exam B. D. C. OSPFv3 establishes neighbor adjacencies by using global IPv6 addresses. but it is encrypted." . C. OSPFv3 establishes neighbor adjacencies by using Link-local addresses. Simple password or MD5 authentication may be used. B. which routing protocol will keep on receiving and processing routing updates from neighbors? A.

01-00-5e-7f-00-01 D.com Ac tua lTe sts .actualtests.255. 00-00-00-7f-00-01 Answer: C QUESTION NO: 330 Look at the following figure.1? A. What should be done to fulfill the IPv6 routing configurations shown? "Pass Any Exam.Cisco 642-892: Practice Exam QUESTION NO: 329 What is the MAC address that comes from the multicast address 239. Any Time.0. 10-00-ef-ff-OO-Ol C.www.co m 221 ." . Ol-Ol-ef-ff-00-01 B.

C. No possible successor will be selected as the advertised distance from CK-R2 is higher than the feasible distance. B.Cisco 642-892: Practice Exam A. B. CK-R2 will be the successor and will be placed in the routing table. you add the command metric weights 0 0 1 0 0 to the EIGRP process. Which router will be the successor of the CK-R1 and possible successor of Network A? Answer: C QUESTION NO: 332 What is the difference between the configuration of a totally stubby area and that of a stub area? A.com Ac A. "Pass Any Exam.co m 222 . CK-R2 will be the successor and will be placed in the routing table. D. C C.actualtests. Interface authentication must be configured. In order that only the delay metric is used in the path calculations. IPv4 addresses must be applied to the interfaces. The no-summary command should be included on the ABR within the totally stubby area.www. The totally stubby area requires the no-summary command on all routers. Any Time. CK-R4 becomes the possible successor for Network A. B. C. You have just configured EIGRP on all routers in the network. tua lTe sts . CK-R4 will be the successor for Network A and will be placed in the routing table." . The totally stubby area requires the totally stubby command on all routers. IP unicast routing should be enabled. CK-R2 becomes the possible successor for Network A. No possible successor will be selected as the reported distance from CK-R4 is lower than the possible distance. Answer: A QUESTION NO: 331 Look at the following exhibit. CK-R4 will be the successor for Network A and will be included in the routing table. The no-summary command should be included on the ASBR within the totally stubby area. D. D. The routing processes must be configured with an area ID.

RTA will drop all RP announcements it receives if the TTL field is greater than 31. Any Time.Cisco 642-892: Practice Exam Answer: D QUESTION NO: 333 The IP multicast global configuration command ip pim send-rp-announce loopback0 scope 31 group-list 5 issued on multicast router RTA. B. B. RTA will forward RP announcements provided they are within the scope of 31. D. What are the two results? (Choose two) A. Only the path that is the feasible successor should be used. Active B.actualtests. D.com 223 Ac tua lTe A.www. Answer: A. RTA will originate RP announcements for multicast groups that match access-list 5. RTA will originate RP announcements with TTL set to 31.D QUESTION NO: 334 Answer: D QUESTION NO: 335 What is the meaning of the default value of the EIGRP variance command of 1? A. Update C.co m . SIA sts From the show ip eigrp topology command output. C. Load balancing is disabled on this router." . C. Query D. The router only performs equal-cost load balancing on all paths that have a metric greater than 1. Answer: D QUESTION NO: 336 "Pass Any Exam. The router performs equal-cost load balancing. which code is the indication of a convergence problem for the associated network? .

Answer: A. what address is applied for DR and BDR identification on CK-R1? A. the sequential 1/1 address D.com Ac tua lTe sts . B. the sequential 2/0 address Answer: A "Pass Any Exam. and the WLAN controller handles those items which are not time sensitive. The Cisco Aironet AP handles real-time portions of the LWAPP protocol." .) A.actualtests.co m 224 . Virtual MAC architecture allows the splitting of the 802.www. an arbitrarily generated internal address C. A Cisco Aironet solution contains intelligent Cisco Aironet access points (APs) and Cisco Catalyst switches. D.D QUESTION NO: 337 Look at the partial configurations in the following figure.Cisco 642-892: Practice Exam Which two statements best describe Aironet enterprise solution? (Choose two. A Cisco Aironet AP handles the transmission of beacon frames and also handles responses to probe-request frames from clients. Any Time.11 protocol between the Cisco Aironet AP and a LAN switch. the configured router-id address B. C.

Configure next-hop-self on CK-B C. which two configuration options could be utilized.Cisco 642-892: Practice Exam QUESTION NO: 338 The following exhibit shows ipv6 route output. 160 B.16. 140 C. "Pass Any Exam.0.com Ac tua lTe Look at the figure below: CK-F is advertising the 172.0 network is available to all of CK-B's IBGP peers.www. Make sure that synchronization is off. D. independently? (Choose two) sts . What would the metric be for a summary route that summarizes all three OSPFv3 routes displayed? Answer: D QUESTION NO: 339 A.0. 100 225 .actualtests." . In order that the path to the 172. Configure next-hop-self on all IBGP peers. Any Time. 120 D.0 network to CK-B through EBGP.co m A. B. Redistribute BGP into the IGP routing protocol.16.

Any Time.Cisco 642-892: Practice Exam Answer: B. Source Filtering C. Group Joins Answer: A.actualtests.co Stub areas are areas through which or into which AS external advertisements are not flooded. The area should not be a backbone area.com Ac QUESTION NO: 342 tua Answer: A.D lTe A. could Area 1 allow redistributed RIP routes from OSPF Area 2? And why? "Pass Any Exam. D. C. An OSPF stub area has no external routes in it.B. Prohibit autonomous system border routers. Group-specific queries B. sts .C QUESTION NO: 341 Observe the following graphic carefully. so you cannot redistribute from another protocol into a stub area. B. Which three items are limitations for OSPF stub areas? m 226 ." . Interarea routes are suppressed. Prohibit virtual links.D QUESTION NO: 340 Which two advantages are of IGMP v2 over IGMPvl ?(choose two) A.www. Group Leaves D.

Answer: B QUESTION NO: 344 HOTSPOT s "Pass Any Exam.1. D.1.1. B.com Ac tua Observe the following exhibit carefully the interfaces addresses on CK-RA are 192. Because Area 1 is an NSSA. C. and there is network activity.2 and 10. redistributed RIP routes will not be allowed. Answer: A QUESTION NO: 343 Why are LED 0 and LED 1 on an Aironet card blinking alternately? A.16. C.1. but there is no network activity.2.16.co m 227 . Because NSSA will drop type 7 LSAs. Which command can be issued to configure CK-RB with RIPv2? lTe sts . The Aironet card is looking for a network association.168.Cisco 642-892: Practice Exam A. RIP routes will be allowed in Area 1 only if they are first redistributed into EIGRP.actualtests. Redistributed RIP routes are allowed in Area 1 because they are changed into type 5 LSAs in Area 0 and passed on into Area 1.1 and 172. The Aironet card is joined to a network." .1. CK-RA serial link is used to connect the two routers.1. Any Time. B. redistributed RIP routes will not be allowed in Area 1.www. The Aironet card is joined to a network. The Aironet card is in power save mode. while the interfaces addresses on CK-RB are 172. D.

com 228 Ac tua lTe sts . Access point sends probe response.www. Any Time.co m ." . Client sends probe request.actualtests. 4. Client sends probe request. B. 2. 1. Client initiates association. "Pass Any Exam. Access point sends probe response. 3. 1. Access point adds client MAC address to association table. 2.Cisco 642-892: Practice Exam Answer: QUESTION NO: 345 Which one of the following items gives the correct sequence of the association between a wireless client and a wireless access point? A. 5. Access point accepts association.

www. 3.11 data processing and management protocols and the functionality of access point between the WLAN controller and the access point." . Access point accepts association. 1. 5. quality of service (QoS).5. QUESTION NO: 346 Answer: B. and mobility.3. Traffic only passes on VLAN1 and all switches are working. B.C. Observe the following exhibit carefully the lightweight wireless architecture uses split MAC method to split the 802. 1. Access point initiates association. 5. lTe VTP is short for VLAN Trunking Protocol. TEST1 is configured as a VTP server with the domain name main1. 2. D. Client adds access point MAC address to association table. "Pass Any Exam. Access point accepts association. 2. A switch called Test1 was added to the network just before this malfunction appeared. Client initiates association. Access point sends probe request.co m Answer: A 229 . Your customer's network is operating VTP with a domain named main1. VLANs 1. Client accepts association. Access point adds client MAC address to association table. Client sends probe response. Access point sends probe request. TEST1 has a higher VTP configuration revision than the current VTP revision.4. 4. C. D. 3. TEST1 has a lower VTP configuration revision than the current VTP revision. 5.2. C. intrusion prevention. TEST1 is configured with only VLAN1. such as security policies. Any Time.10.Cisco 642-892: Practice Exam 3. All of a sudden. 4.D QUESTION NO: 347 Cisco Wireless LAN Controllers are responsible for system wide wireless LAN functions. 4. Access point adds client MAC address to association table. What is the problem with Test1? sts . Client initiates association.com Ac tua A. Choose three functionalities that are handled by the WLAN controller. RF management. On this network.actualtests. the entire network goes down. Client sends probe response.20 are active.

D E. 802. Any Time.actualtests. C D. A B.C. E F. 802.11 association and re-association (mobility) D.D QUESTION NO: 348 A.11 frame translation and bridging Answer: B. F "Pass Any Exam.Cisco 642-892: Practice Exam A. which two Ethernet segments should be configured as trunk links? . 802. B C. Now you are tasked to configure the switches and router in this network so that the hosts in VLAN3 and VLAN4 could communicate with the server in VLAN2. According to the exhibit. the response to Probe Request frames from clients B.www.11 authentication C.co m .com 230 Ac tua lTe sts You are a network technician of your company." .

D.com Ac tua The Border Gateway Protocol (BGP) is the core routing protocol of the Internet. BGP are operating on CK-RTA and CKRT8. Any Time. Typical use of a wireless repeater is to add one when your computer is too far away from any of the buildings' other wireless access points. Look at the following graphic seriously. Answer: A. B. The SSID of the root access point must be configured on the repeater access point.actualtests. A 15 . It maintains a table of IP networks or 'prefixes' which designate network reach ability among autonomous systems (AS). but the session is active.C QUESTION NO: 350 "Pass Any Exam." .Cisco 642-892: Practice Exam Answer: C.F QUESTION NO: 349 A wireless repeater is a computer networking device which acts as a repeater between a wireless router and computers. C. which command should be increased? lTe sts .co m 231 . The repeater access point should use a different channel from what the root access point uses to avoid interference. it will then extend the range of the local wireless network. A wireless repeater is an access point not connecting to the wired LAN.25 percent overlap is needed for this topology between a wired access point and the wireless repeater. In order to establish BGP session.www. If setting up properly. Which two descriptions are correct with regard to a wireless repeater topology? A.

255 s0/1 B.com Ac tua A.1 255. neighbor 10.www.255.10.10. no synchronization C. ip route 10.10. Any Time.10.co m 232 .1 next-hop-self lTe sts .0 D.Cisco 642-892: Practice Exam Answer: A QUESTION NO: 351 According to the information presented in the following exhibit.255.10. network 10.10.255 s0/0 ip route 10.255.10. can you tell me the reason that the trust state of interface FastEthernet 0/3 displays "not trusted"? "Pass Any Exam.actualtests.1 255.10." .255.

co m 233 .Cisco 642-892: Practice Exam "Pass Any Exam.www.actualtests." .com Ac tua lTe sts . Any Time.

D. There is not a Cisco Phone attached to the interface. ToS has not been configured." .co m 234 .Cisco 642-892: Practice Exam According to the diagram displayed below. DSCP map needs to be configured for VOIP. sts . which address can summarize the presented networks successfully? "Pass Any Exam.actualtests. Any Time.www. The command mis qos needs to be turned on in global configuration mode.com Ac QUESTION NO: 352 tua Answer: D lTe A. B. C.

192.0/20 C. 192.0/24 B.168.12. 192. Recently." .8. which access list can achieve this goal? "Pass Any Exam.co m 235 .168.0. When grouped with the eO interface on the CKl router. 192.168. you have designed an access list to block the Accounting Department HTTP traffic from reaching the HR server which is attached to the CK2 router. Any Time.0/20 .www.actualtests.Cisco 642-892: Practice Exam Answer: C QUESTION NO: 353 Assume that you are a network technician of your company.0/21 D.8.168.com Ac tua lTe sts A.

252 0.255 eq 80 permit ip any any B.16.0 0.0 statement is missing mask 255.252 0.0.www. It maintains a table of IP networks or 'prefixes' which designate network reachability among autonomous systems (AS).0 172.0. The auto-summary configuration is missing.com Ac tua The Border Gateway Protocol (BGP) is the core routing protocol of the Internet.0 statement is missing mask 255. The network 192.16.0.2.1.168.0.255.0 statement is missing mask 0.0. permit ip any any deny tcp 172. The network 192." .252 0.0.0.17.0 i ip route 192.16.16.1 remote-as 65111 neighbor 172.0.16.0.0.0.0 eq 80 C.0.255 172.0.0 route is not being advertised in this network.168.0 172.0.0.0.17.0. Look at the following presented BGP configuration commands from the advertising router seriously.16.0. The network 10.0.17.168.17. D.0.17. it is found that the 192.Cisco 642-892: Practice Exam Answer: D QUESTION NO: 354 router bgp 65111 neighbor 172. Why? lTe sts . Answer: A "Pass Any Exam.0.17.0.255.0 null0 A.0 eq 80 permit ip any any m 236 .0 0.16.16.0.0.17.0.0. Any Time.255 172.actualtests.0 255.252 0.168.255.0 0. deny tcp 172.255 eq 80 D.0.0 0.co A.168.16.0.16.255.0 network 10. permit ip any any deny tcp 172.17.0.0 B. deny tcp 172.0. C.0.1 remote-as 65112 network 192.

1." .Cisco 642-892: Practice Exam QUESTION NO: 355 Which two of the following descriptions are correct according to the displayed output of the command show ip bgp summary? (Choose two. The router is trying to create a BGP peering session with the 10. The BGP session to the 10.3.3 neighbor.2 neighbor.3 neighbor is created.) Answer: A. The BGP session to the 10.) "Pass Any Exam.com Ac tua lTe QUESTION NO: 356 sts .2.1. B. C. m 237 . can you tell me why VLAN updates from switch CK-P2S1 are not applied to switch CK-P1S1? (Choose three.www. Any Time.1 neighbor.1 neighbor is established. but the router received no BGP routing updates from the 10.3.2. D.D On the basis of the following exhibit.1.3.1.3.actualtests. The router is attempting to establish a BGP peering session with the 10.co A.

co m 238 .com Ac Answer: B.Cisco 642-892: Practice Exam QUESTION NO: 357 OSPF is a link-state routing protocol that calls for the sending of link-state advertisements (LSAs) to all other routers within the same hierarchical area. Any Time.actualtests. But." . C. In the network provided in the following exhibit. The passwords do not match. The VTP domains are different. B.C.www. How to solve this problem? "Pass Any Exam. router CK-R1 can't receive a default route to router CK-R2 as expected. each router is configured with OSPF. D. lTe sts . The MD5 digests do not match. Switch CK-P1S1 is in transparent mode.D tua A.

0.0. AS-path B.Cisco 642-892: Practice Exam Answer: B QUESTION NO: 358 A routing loop is a common problem with various types of networks.0. Add the ip route 5.0 255.0." . Which BGP feature can prevent routing loops? A. the path to a particular destination forms a loop.actualtests. Remove the default informationoriginate configuration command from router CK-R2 and place it on router CK-R1 sts . B.0 0.www. Add the area 1 stub command on routers CK-R1. Add the always keyword to the default-information originate configuration command on router CK-R2.co m 239 . C.0 command to router CK-R2.255. They are formed when an error occurs in the operation of the routing algorithm. origin Answer: A "Pass Any Exam. D.com Ac tua lTe A. Any Time.255. in a group of nodes. local preference D. weight C. and as a result. particularly computer networks.

www. C. Destination IPaddress 224. In the following diagram. a trunk link interconnects switch CK-A_SW and switch CK-D_SW.actualtests.0. VRRP relies on TCP to open a connection and to maintain that connection using TCP keepalives.co m QUESTION NO: 360 240 .0.18 with IP Protocol ID 112. VRRP messages are directly encapsulated into the Ethernet data field using type code 0x112. it is very efficient and highly recommended that it runs in full-duplex mode. How to manage the traffic from the switch CK-A_SW based on the presented configuration? . Answer: C "Pass Any Exam.com Ac tua lTe sts A trunk is typically a point-to-point connection between two switches." . Any Time. D. How to exchange VRRP messages between routers sharing a common LAN segment? A. B.Cisco 642-892: Practice Exam QUESTION NO: 359 Virtual Router Redundancy Protocol (VRRP) is a non-proprietary redundancy protocol designed to increase the availability of the default gateway servicing hosts on the same subnet. Unicast IP addresses with UDP port ID 112.

Any Time. The trunk port FaO/1 on switch CK-D_SW would trust allCoS values on the frames received on the CK-A_SW switch pott Fa0/4.co m 241 . B. The trunk port Fa0/1 on switch CK-D_SW will trust allCoS values on the frames coming from port Fa0/1 on CK-A_SW. "Pass Any Exam. C. Answer: C QUESTION NO: 361 A. The traffic from Hostl is dropped because of the disruption of the load balancing feature configured for the glbp group. The trunk port FaO/1 on switch CK-A_SW would trust allCoS values on the frames from the IP phone.www. B. The trunk port FaO/1 on switch CK-D_SW would trust allCoS values on the frames received on the IP phone port. D.actualtests. The traffic originating from Host2 is transmitted through router CK-R2 with no disruption." .Cisco 642-892: Practice Exam A. The traffic coming from Hostl and Host2 is forwarded through router CK-R2 with no disruption.com Ac tua lTe sts .

Hostl forwards an ARP request to resolve the MAC address for the new virtual gateway. C. The traffic originating from both hosts is temporarily interrupted when the switchover to make CK-R2 active occurs. Answer: A QUESTION NO: 362 Refer to the following IPv6 addresses.Cisco 642-892: Practice Exam C. lTe What will happen after redistributing other routing protocol routes into OSPF? sts ." . 2001:::0DB8:0:0:417A B.co m 242 . misconfigure the metric-type option in the redistribute command to type-1. Any Time.www. which one could correctly compress the IPv6 unicast address 2001:0:0:0:0DB8:0:0:417A? A.com Ac tua A. miss the tag option in the redistribute command. 2001:0DB8:417A C. 2001::0DB8::417A D. miss the subnet option in the redistribute command. 2001::DB8:0:0:417A Answer: D QUESTION NO: 363 Answer: B QUESTION NO: 364 Which option is correct according to the provided exhibit? "Pass Any Exam. miss the metric option in the redistribute command. B. The traffic originating from Host2 is transmitted through router CK-R2 with no disruption. D.actualtests. D.

Cisco 642-892: Practice Exam Answer: D QUESTION NO: 365 A.16.0.0. type 5 AS External LSA "Pass Any Exam. type 4 ASBR Summary LSA E. B. D.0/8 network is not in the routing table on CK-RB." . Traffic from the 172. CK-RB will not advertise the 10.0. Any Time.0.0/8 network because it is blocked by the ACL.0. type 3 Network Summary LSA D.0.actualtests. C.0.0/8 network is not advertised by CK-RB because the network statement for the 10. Look at the exhibit below seriously.co m A. The RIPv2 routes are redistributed into the OSPF domain on router CK-R5. type 1 Router LSA B. in this network.www.com 243 Ac tua lTe Alex is a network technician of his company.0. The 10. The 10.0.0/16 network is blocked by the ACL.Which two LSAs types are to be generated by router CK-R5? sts .0/8 network is missing from CK-RB. type 2 Network LSA C. . he has configured each router with OSPF and configured Area 5 as an NSSA area.

) lTe sts . B.www.F QUESTION NO: 366 Which two descriptions regarding voice VLANs are correct? (Choose two.D QUESTION NO: 368 DRAG DROP Drag the port states to their correct description "Pass Any Exam. Answer: C. Any Time.co m 244 .0. OSPF sends summaries of individual link-state entries every 30 minutes to ensure LSDB synchronization. Answer: C.com Ac tua Open Shortest Path First (OSPF) is a routing protocol developed for Internet Protocol (IP) networks by the Interior Gateway Protocol (IGP) working group of the Internet Engineering Task Force (IETF). C. Voice VLANs are configured using the switchport voice vlan vlan-ID interface configuration command. D. D. OSPF sends updates every 10 seconds.6 multicast address. the router that detected the change creates a link-state advertisement (LSA) and propagates it to all OSPF devices using the 224. Voice VLANs offer a trunking interface between an IP phone and an access port on a switch to allow traffic from multiple devices connected to the port. OSPF sends triggered updates when a network change occurs. Enabling Voice VLAN on a switch port will automatically configure the port to trust the incomingCoS markings.D QUESTION NO: 367 A.Cisco 642-892: Practice Exam F. B.0." . C. Access ports configured with voice VLANs may ormay not override the CoS value that is received from an IP phone. Which two statements best describe the OSPF link-state routing protocol? (Choose two.) A. type 7 NSSA External LSA Answer: A.actualtests. When a link state is changed.

actualtests." .com Ac tua lTe sts Explanation: .Cisco 642-892: Practice Exam Answer: QUESTION NO: 369 Regarding the following exhibit. Any Time.www. In order to increase the network security. which security policy should be applied to the Guest group users? "Pass Any Exam. the wireless LAN can be accessed by all the three different wireless groups of users.co m 245 .

Cisco 642-892: Practice Exam A. LEAP authentication Answer: C QUESTION NO: 370 When redistributing routes from other protocols. RIP B. which three interface commands should be used in order for the switch port to support a connected Cisco phone and to trust the CoS values received on the port? (Choose three.C. switchport priority extend cos_value B.) A. mls qos trust device cisco-phone D. IS-IS C.co m .com 246 Ac tua lTe sts . switchport voice vlan vlan-id Answer: B. a metric will be required by which two routing protocols? (Choose two. Any Time.actualtests.D "Pass Any Exam.www. EIGRP D. open authentication with WEP plus MAC authentication B.) A.C QUESTION NO: 371 When CDP finds out that a Cisco phone is attached. primary SSID with open or no WEP authentication D. static WEP and MAC authentication C C. mls qos trust cos C. BGP Answer: A." .

GLBP messages are directly encapsulated into the Ethernet data field using type code 3222. CK-R4. CK-R4. CK-R5.actualtests. CK-R6. CK-R3. CK-R6 C. CK-R7 B. D. CK-R7 Answer: D "Pass Any Exam." . C.www. B.com Ac tua lTe sts . CK-R3. CK-R3. CK-R2. CK-R6 D. CK-R2.Cisco 642-892: Practice Exam QUESTION NO: 372 How to exchange GLBP messages between routers sharing a common LAN segment? A. GLBP messages are multicast to UDP port ID 3222. CK-R4. Answer: A QUESTION NO: 373 According to the following graphic. Routers inform clients with GLBP messages and use ARP messages to exchange information about first-hop redundancy. GLBP relies on TCP to open a connection and to maintain that connection using TCP keepalives. CK-R6. Any Time. the IS-IS backbone is composed by which routers? A. CK-R3.co m 247 .

www. CiscoWorks Wireless LAN Solution Engine can be used for management with the Lightweight WLAN Solution. Both CK-1 and CK-3 are using the default OSPF router priority." .) A. V C. B. . D.co m . CK-3 is the DR because it has a higher OSPF router priority.actualtests. CK-3 is the DR because it has a lower OSPF router ID. C C. TACACS+ can only be used for authentication with the Cisco Lightweight WLAN solution. Any Time. can you tell me which of the following descriptions is correct? Answer: A QUESTION NO: 375 The Autonomous WLAN solution and the Lightweight WLAN solution can be distinguished in which two respects? (Choose two. Answer: B QUESTION NO: 376 IGMP (Group Management Protocol) snooping is designed to prevent hosts on a local network from receiving traffic for a multicast group they have not explicitly joined. D. B. According to the output presented of the show ip ospf neighbor command.Cisco 642-892: Practice Exam QUESTION NO: 374 The routers CK-1 and CK-3 are OSPF neighbors over the Ethernet 0/0 connection. Which two statements "Pass Any Exam. CK-1 is the DR because it has a higher OSPF router priority. Cisco Wireless LAN Controller is used to configure the access points in the Lightweight WLAN solution.com 248 Ac tua lTe sts A. CiscoWorks Wireless LAN Solution Engine can be used for management with the Autonomous WLAN Solution.

D.unless GigabitEthernet1/0/1 on the backup device has also failed. is a medium sized company.www.Currently all interfaces are up. IGMP snooping is enabled with the ip multicast-routing global configuration command." .co m . Answer: C.VLAN 102 and VLAN 105. B.DSW2(Distribution Switch 2)is the primary device for VLAN 103 and VLAN 104.A failure of GigabitEthernet1/0/1 on the primary device should block the primary device from being the active device.) A.distribution and core) switches that provide LAN connectivity from user PCs to corporate servers.com 249 Ac tua lTe sts .Use the running configurations and the available show commands to investigate and respond to the following "Pass Any Exam. IGMP snooping examines IGMP join/leave messages so that multicast traffic is forwarded only to hosts that sent an IGMP message toward the router. The distribution switches are configured to use HSRP to provide a high availability solution as follows: DSW1(Distribution Switch 1)is the primary device for VLAN 101. Any Time. Troubleshooting has identified several issues. IGMP snooping and Cisco Group Membership Protocol (CGMP) can be used simultaneously on a switch.Cisco 642-892: Practice Exam best describe IGMP snooping? (Choose two.Inc. C. IGMP snooping is an IP multicast constraining mechanism for Layer 2 switches.D QUESTION NO: 377 Ferris Plastics.with enterprise network(access.actualtests.

The DSW1'S decrement value should be configured with a value from 5 to 15. sts .co m 250 .it became necessary to shut down GigabitEthernet1/0/1 on DSW1. The DSW1'S decrement value should be configured with a value from 200 to less than 205.DSW2(Distribution Switch 2)is the primary device for VLAN 103 and VLAN 104. "Pass Any Exam.You have determined that there is an issue with the decrement value in the track command in VLAN 102's HSRP group.distribution and core) switches that provide LAN connectivity from user PCs to corporate servers. B. F. The left Vlan102 is console1 of DS1.Cisco 642-892: Practice Exam question. is a medium sized company. The distribution switches are configured to use HSRP to provide a high availability solution as follows: DSW1(Distribution Switch 1)is the primary device for VLAN 101. Priority value is 200. Answer: C Explanation: QUESTION NO: 378 Ferris Plastics.actualtests. E.Inc.During this time.All other interfaces were up.A failure of GigabitEthernet1/0/1 on the primary device should block the primary device from being the active device. Because 200 . The DSW1'S decrement value should be configured with a value from 9 to 15. The DSW1'S decrement value should be greater than 190 and less 200. DSW1 remained the active device for VLAN 102`s HSRP group.unless GigabitEthernet1/0/1 on the backup device has also failed. C. Any Time.www. The DSW1'S decrement value should be configured with a value from 11 to 18. During rutine maintenance.com Ac tua lTe Use "show run" command to show." .VLAN 102 and VLAN 105. we should decrement value in the track command from 11 to 18.11 = 189 < 190 ( priority of Vlan102 on DS2 ). D.What needs to be done to make the group function properly? A.with enterprise network(access. The DSW1'S decrement value should be configured with a value from 195 to less than 205.

D.com Ac tua During routine maintenance.after GigabitEthernet1/0/1 on DSW1 was reactivated. Enable preempt in DSW1's VLAN 101 HSRP group. Decrease the decrement value in the track command for DSW1's VLAN 101 HSRP group to a value less than the value in the track command for DSW2's VLAN 101 HSRP group. Decrease DSW'1 priority value for VLAN 101's HSRP group to a value that is less than the . Disable preempt in DSW2's VLAN 101 HSRP group.priority value configured on DSW2's HSRP group for VLAN 101. Any Time. .co m 251 .www.However.Currently all interfaces are up. Answer: A Explanation: "Pass Any Exam. C. lTe sts Troubleshooting has identified several issues.Cisco 642-892: Practice Exam What needs to be done to make the group for VLAN 101 function properly? A.Dsw1 did not become the active device as desired.GigabitEthernet1/0/1 on DSW1 was shut down." .All other interfaces were up. DSW2 became the active HSRP deveice for VLAN101 as desired.actualtests. B.Use the running configurations and the available show commands to investigate and respond to the following question.

Troubleshooting has identified several issues.Currently all interfaces are up.A failure of GigabitEthernet1/0/1 on the primary device should block the primary device from being the active device." .DSW2(Distribution Switch 2)is the primary device for VLAN 103 and VLAN 104.Inc.with enterprise network(access.distribution and core) switches that provide LAN connectivity from user PCs to corporate servers. If not this command. The distribution switches are configured to use HSRP to provide a high availability solution as follows: DSW1(Distribution Switch 1)is the primary device for VLAN 101. DSW2 has not become the active device for VLAN 103's HSRP group even though all interfaces are active. it never become active device. is a medium sized company.com Ac tua lTe sts .Cisco 642-892: Practice Exam A is correct. We need enable preempt to after it reactive . it will be active device. All other answers is incorrect. Any Time.As related to VLAN 103`s HSRP group.what can be done to make the group function properly? "Pass Any Exam.unless GigabitEthernet1/0/1 on the backup device has also failed.actualtests.Use the running configurations and the available show commands to investigate and respond to the following question.co m 252 .VLAN 102 and VLAN 105. QUESTION NO: 379 Ferris Plastics.www. Because Vlan101 on DS1 ( left ) disable preempt.

Cisco 642-892: Practice Exam A. On DSW2. On DSW2.com 253 Ac tua lTe sts . The distribution switches are configured to use HSRP to provide a high availability solution as follows: DSW1(Distribution Switch 1)is the primary device for VLAN 101. On DSW1. increase the priority value to a value greater 241 and less than 249. Troubleshooting has identified several issues.with enterprise network(access.VLAN 102 and VLAN 105.Currently all interfaces are up." .distribution and core) switches that provide LAN connectivity from user PCs to corporate servers.co m .DSW2(Distribution Switch 2)is the primary device for VLAN 103 and VLAN 104. decrease the priority value to a value less than 190 and greater 150.Inc.A failure of GigabitEthernet1/0/1 on the primary device should block the primary device from being the active device. C.www. Any Time. is a medium sized company. Answer: C QUESTION NO: 380 Ferris Plastics. D.actualtests. B.what will be the current priority value of the VLAN "Pass Any Exam. If GigabitEthernet1/0/1 on DSW1 is shut down. increase the decrement valus in the track command to a value greater than 10 and less than 50. disable preempt. On DSW1.unless GigabitEthernet1/0/1 on the backup device has also failed.Use the running configurations and the available show commands to investigate and respond to the following question.

DSW2(Distribution Switch 2)is the primary device for VLAN 103 and VLAN 104.55 = 95.actualtests.unless GigabitEthernet1/0/1 on the backup device has also failed. 95 B.co m 254 .Inc. lTe sts .distribution and core) switches that provide LAN connectivity from user PCs to corporate servers.VLAN 102 and VLAN 105. "Pass Any Exam. QUESTION NO: 381 The distribution switches are configured to use HSRP to provide a high availability solution as follows: DSW1(Distribution Switch 1)is the primary device for VLAN 101.A failure of GigabitEthernet1/0/1 on the primary device should block the primary device from being the active device. So. Any Time." .com Ac tua Ferris Plastics. 100 C. 150 D.with enterprise network(access.Cisco 642-892: Practice Exam 105`s HSRP group on router DSW1? A. if shutdown interface G1/0/1 -> 150 . is a medium sized company.www. Track is 55. 200 Answer: A Explanation: Priority is configured 150.

200 lTe What is the configured priority value of VLAN 105`s HSRP group on DSW2? sts Troubleshooting has identified several issues.actualtests.Use the running configurations and the available show commands to investigate and respond to the following question. "Pass Any Exam.com 255 Ac Answer: B tua A." . . 150 D. 50 B.Currently all interfaces are up. Very easy to see priority of Vlan105 is 100.co m . Any Time. 100 C.Cisco 642-892: Practice Exam Explanation: Use "show stantby brieft" command on console2 .www.

VLAN 102 and VLAN 105.Currently all interfaces are up.A failure of GigabitEthernet1/0/1 on the primary device should block the primary device from being the active device." .Cisco 642-892: Practice Exam QUESTION NO: 382 Ferris Plastics. B.Use the running configurations and the available show commands to investigate and respond to the following question.co m .As related to VLAN 104`s HSRP group.actualtests. "Pass Any Exam.Inc.www. The distribution switches are configured to use HSRP to provide a high availability solution as follows: DSW1(Distribution Switch 1)is the primary device for VLAN 101. Any Time. During routine maintenance.DSW1 became the active device for VLAN 104`s HSRP group.com 256 Ac tua lTe sts .distribution and core) switches that provide LAN connectivity from user PCs to corporate servers. On DSW1.During this time.DSW2(Distribution Switch 2)is the primary device for VLAN 103 and VLAN 104. Troubleshooting has identified several issues.disable preempt.All other interfaces were up.unless GigabitEthernet1/0/1 on the backup device has also failed. On DSW2.what can to be done to make the group function properly? A.it became necessary to shut down GigabitEthernet1/0/1 on DSW1 and DSW2. decrease the priority value to a value less than 150.with enterprise network(access. is a medium sized company.

D. D.10.0/19 will be permitted.www. Which statement is true? A.actualtests. Which statement is true about the 6. In this question. disable the track command.0/24 prefix? "Pass Any Exam. On DSW1. you will make Vlan104's HSRP group fail function.0/19 will be permitted. Vlan104 (right ) : 200 . On DSW1. Vlan104 (left ) : 150 . It can not become active device when G1/0/1 on DS2 fail .10. C.155 = 145. Router RAR1 will send only route 10. Router RAR1 will accept only route 10. If increase the decrement in the track value to a value greater than 6 ( > or = 6). 257 . G0/1/0 on DS1 & DS2 is shutdown.0.6 = 144. By do that. Only traffic going to 10." . Any Time.10.1 = 149.0. Only traffic with a destination from 10.6. Result is priority 144 < 145 ( vlan104 on DS2 is active).Cisco 642-892: Practice Exam C. increase the decrement value in the track command to a value greater than 6.10.0/19 to its BGP neighbor.0. Result is priority 149 > 145 ( Vlan104 on DS1 is active).com Ac tua lTe sts . B.co m We should NOT disable preempt on DS1.6. Answer: C Explanation: QUESTION NO: 383 Refer to the exhibit.0/19 from its BGP neighbor.0. Vlan104 (left ) : 150 . Answer: A QUESTION NO: 384 Refer to the exhibit. Example: if we are disable preempt on DS1.

" .1 has been reserved for the Network Time Protocol (NTP) by the IANA.13 and 224. Because they would map to overlapping IP multicast MAC addresses.3 is not being advertised to other BGP neighbors. Multicast addresses 224. The route 10. Answer: C. D.E. C.10. D.23.1 and 238.5 and 224.6.255 are always forwarded because they are transmitted with Time to Live (TTL) greater than 1. multicast addresses 224.1.www. C.0 through 239.0/24 path and has the default local preference.0. B. The administratively scoped multicast addresses 239.0.1.0.255. Multicast addresses 224.6.0. Multicast address 224. The command neighbor send-community is configured on BGP neighbor 10.0.23.10.F QUESTION NO: 386 Which command enables OSPF for IPv6? A.3. that path is more preferred. Answer: B Which three IP multicast address related statements are true? (Choose three.0. F.co QUESTION NO: 385 m 258 .0.0. E.1.0.0.1 could not be used together. Any Time.Cisco 642-892: Practice Exam A.0/24 is learned by an IBGP peer.com Ac tua lTe sts .) A. Route 6.6.6 are source multicast addresses for OSPF routers.actualtests. router ospf ipv6 process-id "Pass Any Exam.255 are similar in purpose to RFC 1918 private unicast addresses. ipv6 ospf process-id C. router ospf process-id B.6.0 through 224. ipv6 router ospf process-id D.22 are reserved link-local addresses used by PIMv2 and IGMPv3.1. B.0.0.0. Multicast addresses 224.255.0.0.0. If another path advertises the 6.

actualtests. show ipv6 ospf interface D. What IOS command produces this output? Refer to the exhibit. Which statement is true about a voice VLAN? A. Any Time. D. Physically the voice network and the data network are separate. End user intervention is necessary to place the phone into the proper VLAN.www. "Pass Any Exam. E. show ip ospf interface C. B." . show ip ospf B.com Ac QUESTION NO: 388 tua Answer: D lTe A. The data VLAN must be configured as the native VLAN. show ipv6 ospf sts .co m 259 . The same security policy should be implemented for both voice and data traffic. C. The voice traffic will normally be on a different IP subnet than will the data traffic.Cisco 642-892: Practice Exam Answer: B QUESTION NO: 387 Refer to the output.

" . DSCP. the ATM cell loss priority (CLP) bit. B. the CoS value can be marked up in a way that results in the packet being dropped.If a frame is determined to be in excess of the predefined rate limit. B. The distribution layer. D. and ingress interface are Layer 2 characteristics that are set by the access layer as it passes traffic to the distribution layer. What is the effect when the switchport priority extend cos 3 command is configured on the switch port interface connected to the IP phone? Answer: C QUESTION NO: 390 A. IP precedence. The IP phone is enabled to override with aCoS value of 3 the existing CoS marking of the PC attached to the IP phone.co A. "Pass Any Exam. MAC address. C. or is "trusted" that it is entering the network with the appropriate tag. The distribution layer inspects a frame to see if it has exceeded a predefined rate of traffic within a certain time frame. IP address.www. Traffic is marked (or remarked) at Layers 2 and 3 by the access switch as it enters the network. the trust boundary has been moved to the PC attached to the IP phone. D. RTP will be used to negotiate aCoS value based upon bandwidth utilization on the link.com Ac tua In what three ways is QoS applied in the campus network? (Choose three. Layer 2/3 QoS tags are trusted from distribution layer switches and used to prioritize and queue the traffic as it traverses the core.) lTe sts . Effectively.Cisco 642-892: Practice Exam Answer: B QUESTION NO: 389 Refer to the exhibit. m 260 . which is typically a fixed number internal to the switch. Multiprotocol Label Switching (MPLS). The switch will no longer tag incoming voice packets and will extend the trust boundary to the distribution layer switch. The computer is now establishing theCoS value and has effectively become the trust boundary. QoS group. The access layer is the initial point at which traffic enters the network. E. Any Time. the Frame Relay discard eligible (DE) bit. No traffic marking occurs at the core layer. E. and ingress interface are established by the voice submodule (distribution layer) as traffic passes to the core layer. strips these off.actualtests. once it has made a switching decision to the core layer. C.

Any Time.www.) sts QUESTION NO: 392 . If Router A becomes unavailable.E. Which three statements accurately describe this GLBP topology? (Choose three. Router A is responsible for answering ARP requests sent to the virtual IP address. When set to Layer 3. LWAPP encrypts control traffic between the AP and the controller." . LWAPP encrypts user traffic witha x. Answer: A.Cisco 642-892: Practice Exam F. Priority access into the core is provided based on Layer 3 QoS tags. Traffic inbound from the access layer to the distribution layer can be trusted or reset depending upon the ability of the access layer switches. Router B will forward packets sent to the virtual MAC address of Router A. B. A. LWAPP encrypts both control traffic and user data.actualtests.co Answer: A m . "Pass Any Exam.com 261 Ac tua lTe Refer to the exhibit. B. C. D.509 certificate using AES-CCMP. LWAPP uses a proprietary protocol to communicate with the Cisco Aironet APs.F QUESTION NO: 391 Which statement about the Lightweight Access Point Protocol (LWAPP) is true? A.

there would be two backup AVGs. encryption. Any Time. E.Cisco 642-892: Practice Exam C.actualtests. Router B will transition from blocking state to forwarding state when it becomes the AVG. distributed approach to authentication. reduction of processing in wireless controllers B. If another router were added to this GLBP group. WPA/WPA2/CCKM "Pass Any Exam.E QUESTION NO: 393 Which issue or set of issues does the Lightweight Access Point Protocol (LWAPP) address? A. and policy enforcement C.B. Answer: A.co Answer: D m 262 . and configuration A. which security option permits the configuration of host-based Extensible Authentication Protocol (EAP)? sts QUESTION NO: 394 . access point discovery. provides security by blocking communication between access points and wireless clients D. D." .www. Router A alternately responds to ARP requests with different virtual MAC addresses. When a profile is configured in the Aironet Desktop Utility.com Ac tua lTe Refer to the exhibit. F. Router B is in GLBP listen state. information exchange.

C.1x D.C. A device is trusted if it correctly declassifies packets.www.actualtests.com Ac tua A. A device is trusted if it correctly classifies packets. Any Time. F. classification should be done as close to the edge as possible. For scalability. Pre-Shared Key (Static WEP) Answer: C QUESTION NO: 395 Refer to the exhibit. WPA/WPA2 Passphrase C. Network trust boundaries are automatically configured in IOS version 12. lTe sts . 802. D.) Answer: A.3 and later. The outermost trusted devices represent the trust boundary.F QUESTION NO: 396 Refer to the exhibit." .Cisco 642-892: Practice Exam B. Classification and markingoccur using 802. Will Host A be able to reach Host B? "Pass Any Exam. The command spanning-tree bpdufilter enable is configured on interface Fa0/1 on switch S6. E.co m 263 . B.1ab QoS bits before reaching the trust boundary. The link between switch S5 and S6 fails. Which three statements are true about trust boundaries in the campus network? (Choose three.

Configure all interfaces as DHCP snooping trusted interfaces. Configure the switch as a DHCP server.actualtests. Fifty percent of the traffic will successfully reach Host B. and enable data encryption. The Aironet Desktop Utility (ADU) can support only one wireless client adapter installed and used at a time. No. E.C "Pass Any Exam. Any Time.Cisco 642-892: Practice Exam A. No. C. the settings for the wireless client adapter are changed only after a reboot. No. C. D. Traffic will loop back and forth between switch S6 and Host A. C. Answer: E QUESTION NO: 397 Which two statements about the Cisco Aironet Desktop Utility (ADU) are true? (Choose two. B. Yes. D. B. When the user selects a different profile in the Aironet Desktop Utility (ADU)." .) A. F. E.www. Traffic will loop back and forth between switches S2 and S3. Answer: A. and fifty percent will dead-end at switch S3 because of a partial spanning-tree loop. E. Traffic will pass from switch S6 to S2 to S1.co m 264 . Answer: A. The Aironet Desktop Utility (ADU) can be used to establish the association between the client adapter and the access point. B. D. The Aironet Desktop Utility (ADU) and the Microsoft Wireless Configuration Manager can be used at the same time to configure the wireless client adapter.) A.C QUESTION NO: 398 What are three required steps to configure DHCP snooping on a switch? (Choose three. Configure the switch to insert and remove DHCP relay information (option-82 field) in forwarded DHCP request messages. Configure DHCP snooping on a VLAN or range of VLANs. manage authentication to the wireless network. Configure DHCP snooping on an interface.com Ac tua lTe sts . Traffic will pass from switch S6 to S2 and dead-end at S2. The Aironet Desktop Utility (ADU) profile manager feature can create and manage only one profile for the wireless client adapter. Configure DHCP snooping globally.B.

D. Voice packets are very sensitive to delay and jitter. fragmentation. Answer: C. Any Time. Voice packets are encapsulated in TCP segments to allow for proper sequencing during delivery. removes all UDLD configurations from interfaces that were enabled per-port sts . removes all UDLD configurations from interfaces that were globally enabled D. C. Layer 3 addressing and distribution D.www. resets all UDLD enabled ports that have been shutdown C." . allows an UDLD port to automatically reset when it has been shutdown B.Cisco 642-892: Practice Exam QUESTION NO: 399 Which two statements are true about voice packets in a LAN? (Choose two. B. packet encapsulation. Because a packet loss involves a small amount of data.) A.) A.actualtests.co m 265 . E.D QUESTION NO: 400 What does the command udld reset accomplish? Answer: B QUESTION NO: 401 Which two types of activities does the Lightweight Access Point Protocol (LWAPP) define? (Choose two.com Ac tua lTe A. SNMP monitoring services Answer: A. Voice carrier stream utilizes Real-Time Transport Protocol (RTP) to carry the audio/media portion of VoIP communication. voice traffic is less affected by packet losses than traditional data traffic is. access point certification and software control B. compression and Layer 3 address mapping C. and formatting E.D QUESTION NO: 402 "Pass Any Exam. Voice traffic data flow involves large volumes of large packets.

Trust boundaries are points in the network where Layer 2 CoS markings are converted to Layer 3 DSCP or IP precedence markings. C. D.www. Voice VLANs are used on trunk links to eliminate the need for QoS CoS markings. Trust boundaries are a point in the network where QoS functionality begins and ends. Voice VLANs can be configured to forward existingCoS priorities or override them.F "Pass Any Exam. sts .Cisco 642-892: Practice Exam Which statement about the Lightweight Access Point Protocol (LWAPP) protocol is true? A. Answer: D. LWAPP advertises its WDS capability and participates in electing the best WDS device for the wireless LAN. Voice VLANs can be configured on Layer 2 ports only. Trust boundaries determine whether certain types of traffic can pass. B. F. Trust boundaries are a point in the network where decisions about CoS markings on incoming packets are made. The processing of 802. C. LWAPP aggregates radio management forward information and sends it to a wireless LAN solution engine.com Ac tua lTe A. Answer: A QUESTION NO: 403 Which statement describes the function of a trust boundary? Answer: B QUESTION NO: 404 Which two statements about voice VLANs are correct? (Choose two. B. B.11 data and management protocols and access point capabilities is distributed between a lightweight access point and a centralized WLAN controller. D. D. LWAPP authenticates all access points in the subnet and establishes a secure communication channel with each of them.) A. C." .actualtests. Voice VLANs eliminate the need for QoS configuration.co m 266 . E. Voice VLANs are mainly used between access layer switches and distribution layer switches. Voice VLANs are mainly used to reduce the number of access switch ports that are used in the network. Any Time.

C. security management. D. Voice traffic is more sensitive to packet loss than TCP network traffic is. LWAPP increases the amount of processing within the APs.com Ac tua lTe sts . Answer: B. An AP that has been upgraded from an autonomous AP to lightweight AP will only function in conjunction with a Cisco Wireless LAN controller.) A.) 267 . Answer: A.www. B. C. Which two Lightweight Access Point statements are true? (Choose two.Cisco 642-892: Practice Exam QUESTION NO: 405 Which two statements are true about network voice traffic? (Choose two. D. WLAN controllers provide a single point of management. Autonomous APs receive control and configuration information from a WLAN controller. B.D QUESTION NO: 406 A.F QUESTION NO: 407 "Pass Any Exam.actualtests. E. Any Time. Voice traffic is affected more by link speed than FTP traffic is.co m Refer to the exhibit. E. enabling them to support filtering and policy enforcement features." . F. Lightweight APs require local configurations using local management. Voice streams involve larger packet sizes than most TCP network traffic involves. Real time events such as authentication. Voice traffic requires QOS mechanisms only in heavily loaded network segments. Voice traffic is affected more by packet delays than FTP traffic is. and mobility are handled by the lightweight AP.

I. J. F. Implement private VLANs (PVLANs) to carry only DHCP traffic. Which option correctly sequences the order in which a lightweight access point associates with the WLAN controller? Answer: B QUESTION NO: 408 A. F. D. B. J. D. H E. Answer: D QUESTION NO: 409 Which two codecs are supported by Cisco VoIP equipment? "Pass Any Exam. C. D. I. E. B.com Ac tua An attacker is launching a DoS attack with a public domain hacking tool that is used to exhaust the IP address space available from the DHCP servers for a period of time.Cisco 642-892: Practice Exam Refer to the exhibit. D. D. D. D. Configure DHCP snooping only on ports that connect trusted DHCP servers. I. H D.www. E. A B. Any Time. C. A m 268 . Implement private VLANs (PVLANs) to carry only user traffic.co A. H F. I.actualtests. I. F. B. C." . J. G. G. F. Configure DHCP spoofing on all ports that connect untrusted clients. A C. I. C. E. E. Configure only trusted interfaces with root guard. G. Configure only untrusted interfaces with root guard. B. Which procedure would best defend against this type of attack? lTe sts .

" . G. accounting F. and other promiscuous ports in the same VLAN. mobility "Pass Any Exam. analog and digital voice E. G.com 269 Ac A.711 and G. routing and switching C.739 D.701 and G. and other promiscuous ports in the same VLAN. Any Time. VLAN 200 carries traffic from promiscuous ports to isolated. and other promiscuous ports in the same VLAN. VLAN 200 carries traffic from promiscuous ports to isolated.729 C. VLAN 202 carries traffic from promiscuous ports to isolated. tua lTe sts .actualtests.co m . community. community. community. VLAN 202 carries traffic from promiscuous ports to isolated. D. G. B. VLAN 200 carries traffic from isolated ports to a promiscuous port.Cisco 642-892: Practice Exam A. C.www.721 and G.749 Answer: B QUESTION NO: 410 Refer to the exhibit. VLAN 202 carries traffic between community ports and to promiscuous ports.719 B. security B.) A. G. VLAN 202 carries traffic from isolated ports to a promiscuous port. VLAN 200 carries traffic between community ports and to promiscuous ports.731 and G. VLAN and QoS D. What can be concluded about VLANs 200 and 202? Answer: B QUESTION NO: 411 Which three features are part of the Cisco Compatible Extensions program? (Choose three. community. and other promiscuous ports in the same VLAN.

Any Time. C. to provide Cisco engineers with the opportunity to certify that any wireless devices that are made by third parties are compatible with Cisco wireless products C. E.actualtests. B.) A.co m 270 .D QUESTION NO: 414 "Pass Any Exam. to provide access to proprietary Cisco IOS software code in order to expand the number of vendors writing wireless code B. to provide third parties with Cisco hardware in order to encourage the development of radical innovation in the area of wireless Answer: C QUESTION NO: 413 Refer to the exhibit. The default configuration of the IP phone is to pass traffic from the host without changing theCoS value.www. to provide customers with a broad range of WLAN client devices that have been tested for interoperability with Cisco Aironet innovations D." . By default. The IP phone can only tag voice traffic with a Layer 2 CoS value in the voice VLAN. The IP phone can be configured to pass traffic from the host without changing the CoS value. The IP phone can tag voice traffic in the access or voice VLAN with a Layer 2 CoS value. Which two statements are true about how the IP phone can be configured to perform CoS markings? (Choose two. the IP phone tags traffic from the host with the default CoS value of 5.C.com Ac tua lTe sts .Cisco 642-892: Practice Exam Answer: A. Answer: A. D.F QUESTION NO: 412 What is the objective of the Cisco Compatible Extensions program? A.

and Fa3/1. How do the switch ports handle the DHCP messages? Answer: C QUESTION NO: 415 Refer to the exhibit. .co m 271 . C. Ports Fa2/1 and Fa2/2 respond to DHCP requests only. DHCP snooping is enabled for selected VLANs to provide security on the network." . Fa2/2. Ports Fa2/1 and Fa2/2 are eligible to source all DHCP messages and respond to DHCP requests. All three ports. B.com Ac tua lTe sts A. D. Fa2/1. Port Fa3/1 is eligible to source all DHCP messages and respond to DHCP requests.) "Pass Any Exam. Port Fa3/1 is eligible to source all DHCP messages. are eligible to source all DHCP messages and respond to DHCP requests. What two statements are true about the IS-IS configuration? (Choose two.www.Cisco 642-892: Practice Exam Refer to the exhibit. Any Time. Port Fa3/1 can source DHCP request only. Ports Fa2/1 and Fa2/2 source DHCP requests only.actualtests.

The router is in area 49. E.) lTe sts .0002. The router acts as a Level 1-2 router. C.actualtests." .D QUESTION NO: 416 "Pass Any Exam. B.0004.Cisco 642-892: Practice Exam Answer: C. The router has a system ID of 0003. Which two statements about the IS-IS configurations of router R1 and router R2 are correct? (Choose two.www. m 272 .com Ac tua Refer to the exhibit. D. CLNS routing is enabled for the router.co A. The network service access point selector (NSEL) byte has a value of 0. Any Time.0001.

www.com Ac tua lTe sts . E. F. The IP address can be assigned to a host until the host usurps the assigned value using its own dynamic override mechanism. The network entity titles (NETs) that are configured on L1 and L2 are incompatible. The IP address can be assigned as a random hash value of the burned-in-address of the lowest-numbered LAN interface on the router. C.co m 273 . Router R1 sends only Level 1 hellos out the interface that is connected to R2. B. The IP address can be assigned to a host for a limited time or until the host explicitly releases the address.C.) "Pass Any Exam.) A. The IP address can be automatically assigned to a host." . Any Time. The IS-IS Level 2 metric that is assigned on the serial interface of router R2 is over three times the default value. F.Cisco 642-892: Practice Exam A. The IP address can be assigned from configured pools in a reverse lexicographical order. Router R2 has the same metric value assigned for Level 1 and Level 2 on the serial interface. The network administrator can assign a specific IP address to a specific host MAC address.actualtests.E QUESTION NO: 418 Refer to the exhibit. Answer: A. B. C. Router R1 is configured as a Level 1-2 router. What two conclusions can be made based on the DHCP configuration? (Choose two. Answer: A. E. Router R2 sends only Level 2 hellos out the interface that is connected to R1. D. D.B QUESTION NO: 417 Which three options are supported as address allocation mechanisms for DHCP on Cisco routers? (Choose three.

The configured domain name is propagated to the DHCP clients.co A. C. D. The second DNS server configured will never be queried.com 274 Ac tua lTe QUESTION NO: 419 sts Answer: B.1. Additional DHCP options will be imported from another DHCP server. The DHCP clients learn the excluded address ranges that area configured.www." . The IP address of the default router is used for DHCP relay. "Pass Any Exam. Any Time. The first IP address assigned by DHCP is 172.E .Cisco 642-892: Practice Exam Refer to the exhibit. B.16.0. E. Which statement is true about the router configuration that is shown? A. m .actualtests.

20. It is not the DR or BDR for the local segment. Redistribution was performed into a totally stubby area. Static routes were redistributed into an ASBR. D. C. C. then it will supply addresses from pool 2. Redistribution was performed into an NSSA area. E. C.101. B. Any Time.72. Summarization was performed on an ASBR connected to a totally stubby area.20.1? A. Which two options would cause RTR-38 to choose next hop 172.72. It is the DR for the local segment.20. Additional DCHP option information needs to be imported from another DHCP server.1 for network 192.1 for the remaining "Pass Any Exam. Answer: D QUESTION NO: 422 Refer to the exhibit. E. . RTR-38 has two possible paths to reach the indicated networks but only chooses next hop 172. It has an OSPF priority of 1 on the attached interface.www. Answer: C QUESTION NO: 420 Refer to the exhibit.73. It is the BDR for the local segment. D." . It is not running OSPF. Which statement is true about the router with ID 10.co m . B. F.Cisco 642-892: Practice Exam B. E.actualtests.com 275 Ac The show ip route command generated routes flagged as O N2 and O N1.168. If the router hands out all the addresses in pool 1.0.1. D. Which option best describes how these routes were created? tua QUESTION NO: 421 lTe Answer: F sts A. Summarization was performed on an ASBR connected to a NSSA area. The DHCP server pools need to be bound to an interface to operate. It has a loopback that is configured. This configuration will provide IP configuration information to two different subnets.64.0 but still use next hop 172.

1 weight 200. Also.1 apply a route map that advertises a MED of 200 for network 192. Any Time. D.actualtests. Answer: D QUESTION NO: 424 "Pass Any Exam.101. Interface NULL 0 is likely shutdown.101.101.73." . On RTR-38 apply the command neighbor 172. E.1 weight 200.32. C. C.20.0 to RTR-38.32. On RTR-38 apply the command neighbor 172. the BGP command aggregate-address 172. The BGP command no synchronization is missing. F.73.1 apply a route map that advertises a MED of 200 for network 192.168.168. .20. The BGP command no auto-summary is missing.0.72.20. However.73.F QUESTION NO: 423 A. F.com Ac During BGP configuration on a router that has peered with other BGP speakers.0/22 do not exist in the BGP table. B.0 to RTR-38. On RTR-38 apply a route map to neighbor 172.168.72.32.20. D.0 255.20.255.Cisco 642-892: Practice Exam networks? (Choose two) Answer: A.0. the peers do not receive this aggregate network in BGP advertisements. On RTR-38 apply a route map to neighbor 172. B.20.0 is issued.101.1 incoming that changes the localpreference to 200 for all networks accept 192.co m 276 .1 incoming that changes the localpreference to 200 for network 192. On BGP neighbor router 172. The IGP running on this router does not have network 172. The next hop IP address must be a loopback address.0.www.0.73. the router does not have this aggregate network in its BGP table.0.252. E. On BGP neighbor router 172.168.0/22 installed. Subnets of 172. Which option indicates a possible reason this command did not cause the router to advertise the aggregate network to its peers? tua lTe sts A.

D. The router's fa0/0 interface will be assigned the reserved address of 20.0." .1.16. Which statement is correct regarding the partial configuration shown? Answer: D QUESTION NO: 425 A.Cisco 642-892: Practice Exam Refer to the exhibit.1.0/8 network except 20. Which statement is correct regarding the result of the configuration shown? lTe sts .0. m .0.0.0.co A.168. The router will import its DHCP options from a configuration file on a TFTP server.168. C. The router will add the DHCP option parameters it learns from another server into its DHCP server database. B. The router will prefer the next hop of 172. Any Time.0 network are being received from all three neighbors.1 for packets destined for the 192. The router's fa0/0 interface will be assigned any address from the 20.com 277 Ac tua Refer to the exhibit.2.www.actualtests.1.0 network. Routing updates for the 192.0.2. "Pass Any Exam.

168.1 for packets except those destined for the 192. spanning-tree portfast bpdufilter default Answer: E QUESTION NO: 427 A.26. The router will advertise the 192. spanning-tree bpdufilter enable C. Any Time. When any port receives a BPDU.0 network. spanning-tree portfast bpduguard default D.1.168.actualtests. spanning-tree bpduguard enable E. "Pass Any Exam.30.1.1. Answer: B QUESTION NO: 426 Which spanning-tree command would cause a PortFast-enabled interface to lose its PortFastoperational status and disable BPDU filtering if it receives BPDUs? A. The router will advertise the 192.1.1. The router will prefer the next hop of 172.0 network." .1 for packets destined for the 192.1.1.26.26.1.1. D.0 network only to 172. spanning-tree portfast bpduguard default D.168.1.Cisco 642-892: Practice Exam B. The router will prefer the next hop of 172. spanning-tree bpdufilter enable E. spanning-tree guard root Answer: B QUESTION NO: 428 Which statement correctly describes the results of the Ethernet switch global configuration command spanning-tree loopguard default? A. spanning-tree portfast bpdufilter default B. spanning-tree bpduguard enable C. E.com 278 Ac tua Which spanning-tree command would essentially disable spanning tree on an interface and make that interface susceptible to spanning-tree loops? lTe sts . it is put it in the error-disabled state.co m . spanning-tree guard root B.168.www. C.0 network only to 172.

Prevents alternate or root ports from becoming designated ports because of a failure that leads to a unidirectional link. Detects indirect link failures and starts the spanning-tree reconfiguration sooner.com 279 Ac Which three statements are true about routed ports on a multilayer switch? (Choose three) tua lTe sts . Loop Guard D. C. B.www. F. Fast Link Pulse bursts F. Prevents interfaces that are in a PortFast-operational state from sending or receiving BPDUs. A routed port is only associated with one VLAN. Answer: E QUESTION NO: 429 Which optional feature of an Ethernet switch disables a port on a point-to-point link if the port does not receive traffic while Layer 1 status is up? A. D. D. UplinkFast C. A routed port is a virtual interface on the multilayer switch.C. A routed port is a physical interface on the multilayer switch. UDLD aggressive mode E.F QUESTION NO: 431 Which three statements are true about CEF? (Choose three. A routed port can be configured with routing protocols. BackboneFast B. C. Any Time.Cisco 642-892: Practice Exam B. E. Answer: B." .) "Pass Any Exam. F. A routed port will take an IP address assignment. E. A routed port can support VLAN subinterfaces. Provides fast convergence after a direct link failure where a root port transitions to the forwarding state immediately without going through the listening and learning states. An interface is moved directly to the spanning-tree forwarding state without waiting for the standard forwardtime delay.actualtests. Link Control Word Answer: D QUESTION NO: 430 A.co m .

E QUESTION NO: 432 Refer to the exhibit. VLAN 1 needs the no shutdown command. F. packets are dropped.actualtests. When the adjacency table is full. When the CEF TCAM table is full. CEF IP destination prefixes are stored in the TCAM table. a CEF TCAM table entry points to the Layer 3 engine to redirect the adjacency. Answer: B QUESTION NO: 433 "Pass Any Exam. The FIB lookup is based on the Layer 3 destination address prefix (shortest match). Trunking needs to be enabled on Fa0/1. E. The native VLAN is wrong. IP routing needs to be enabled on the switch.www. from the least specific to the most specific entry. B.com Ac tua lTe sts . Any Time.co m 280 . B. C. Answer: A. The adjacency table is derived from the ARP table. Why are users from VLAN 100 unable to ping users on VLAN 200? A. E. Encapsulation on the switch is wrong. C.B. The FIB table is derived from the IP routing table." . D. D.Cisco 642-892: Practice Exam A.

Native VLAN mismatch.actualtests. What problem is preventing users on VLAN 100 from pinging addresses on VLAN 200? Answer: F QUESTION NO: 434 Which three characteristics are true about voice traffic in the campus network? (Choose three. Subinterfaces should be created on Fa0/7 and Fa0/8 on DLS1. Any Time. delay insensitive Answer: B.co m 281 . C. B. greedy D.www.D. TCP retransmits B. D. drop sensitive E. lTe sts .Cisco 642-892: Practice Exam Refer to the exhibit. benign C.E "Pass Any Exam. No default route on DLS1. Encapsulation mismatch between switches. E. The ip routing command is missing on DLS1. F.) A. smooth F.com Ac tua A." . Trunking needs to be enabled.

DHCP snooping D. private VLANs E. sts . The Hello parameters on routers R1 and R2 do not match. what prevents R1 from establishing a full adjacency with R2? Answer: A QUESTION NO: 436 In the event that two devices need access to a common server.www.actualtests.co m 282 .Cisco 642-892: Practice Exam QUESTION NO: 435 Refer to the exhibit. E. B. dynamic ARP inspection C. Router R1 will only establish full adjacency with the DR and BDR on broadcast multiaccess networks." . Any Time. D. but they cannot communicate with each other. On the basis of the show ip ospf neighbor output. C. which security feature should be configured to mitigate attacks between these devices? A.com Ac tua lTe A. Router R2 has been elected as a DR for the broadcast multiaccess network in OSPF area 1. OSPF is configured on all routers in the network. Routers R1 and R2 are configured as stub routers for OSPF area 1 and OSPF area 2. Router R1 and R2 are configured for a virtual link between OSPF area 1 and OSPF area 2. port security B. BPDU guard Answer: D "Pass Any Exam.

Cisco 642-892: Practice Exam QUESTION NO: 437 Which statement best summarizes how DHCP snooping works? A. DHCP snooping validates the header information of all DHCP replies and only allows the reply through if it has a matching request in the DSRT. B. DHCP snooping validates all DHCP responses from all switch ports and only allows packets through if the destination port sent a DHCP request in the last 5 seconds. C. DHCP snooping validates all DHCP responses from all switch ports and only allows packets through if the destination port specifically sent a DHCP request. D. DHCP snooping determines which switch ports are trusted and can source all DHCP messages. Answer: D

QUESTION NO: 438

Answer: C

QUESTION NO: 439

Which two statements are true about port security? (Choose two.) A. With port security configured, four MAC addresses are allowed by default. B. Port security cannot be configured for ports supporting VoIP. C. With port security configured, only one MAC address is allowed by default. D. The network administrator must manually enter the MAC address for each device in order for the switch to allow connectivity. E. Port security can be configured for ports supporting VoIP. Answer: C,E

"Pass Any Exam. Any Time." - www.actualtests.com

Ac

tua

lTe

A. TACACS with LEAP extensions B. TACACS+ C. RADIUS with EAP extensions D. LDAP

sts

A network administrator would like to configure 802.1x port-based authentication, however, the client workstation is not 802.1x compliant. What is the only supported authentication server that can be used?

.co

m

283

Cisco 642-892: Practice Exam QUESTION NO: 440 A switch has been configured with PVLANs. With what type of PVLAN port should the default gateway be configured? A. Isolated B. Promiscuous C. Community D. Primary E. Trunk Answer: B

QUESTION NO: 441 What is the function of the Service Set Identifier (SSID) in the wireless LAN? A. The SSID should be configured on the client site only and provides data-privacy functions and authentication to the access point. B. The SSID must match on both the client and the access point. The SSID is advertised in plaintext in the access point beacon messages. C. The SSID must match on both the client and the access point and provides encryption keys for authentication to the access point. D. The SSID must match on both the client and the access point and provides MAC Address Authentication to authenticate the client to the access point. Answer: B

QUESTION NO: 442

Which statement is true about the data traffic between the access point and controller? A. The data traffic is switched at the access point before being sent to the WLAN controller where VLAN tagging and QoS are applied. B. The data traffic is encrypted with AES. C. The data traffic between the access point and controller is encrypted. D. The data traffic is encapsulated with LWAPP. Answer: D

QUESTION NO: 443 "Pass Any Exam. Any Time." - www.actualtests.com 284

Ac

tua

lTe

sts

.co

m

Cisco 642-892: Practice Exam Refer to the exhibit. If VLAN 21 does not exist before typing the commands, what is the result of the configuration applied on switch SW1?

A. A new VLAN 21 is created and port 0/8 is assigned to that VLAN. B. A new VLAN 21 is created, but no ports are assigned to that VLAN. C. No VLAN 21 is created and no ports are assigned to that VLAN. D. Configuration command vlan database should be used first to create the VLAN 21. Answer: A

QUESTION NO: 444

Refer to the exhibit. What happens when the switch SW2 is connected to the rest of the network in the VTP domain Lab_Network?

A. The recently introduced switch SW2 adds one more VLAN to the VLAN database in the VTP domain. B. The recently introduced switch SW2 creates a STP loop in the VTP domain. C. The recently introduced switch SW2 removes all configured VLANs throughout the VTP domain. D. The recently introduced switch SW2 switches over to VTP transparent mode in order to be included into the VTP domain. E. A trunk should be configured between the two switches in order to integrate SW2 into the VTP domain. Answer: C

QUESTION NO: 445

"Pass Any Exam. Any Time." - www.actualtests.com

Ac

tua

lTe

sts

.co

m

285

Cisco 642-892: Practice Exam What action should a network administrator take to enable VTP pruning on an entire management domain? A. enable VTP pruning on any client switch in the domain B. enable VTP pruning on every switch in the domain C. enable VTP pruning on any switch in the management domain D. enable VTP pruning on a VTP server in the management domain Answer: D

QUESTION NO: 446 How does VTP pruning enhance network bandwidth? A. by restricting unicast traffic to across VTP domains B. by reducing unnecessary flooding of traffic to inactive VLANs C. by limiting the spreading of VLAN information D. by disabling periodic VTP updates

A. IGMP B. IGMP snooping C. PIM-DM D. DVMRP E. MOSPF Answer: B

QUESTION NO: 448 Which well-defined routing protocol would a network administrator configure on multicast routers when member routers are widely dispersed? A. Distance Vector Multicast Routing Protocol (DVMRP) B. Protocol Independent Multicast Dense Mode (PIM-DM)

"Pass Any Exam. Any Time." - www.actualtests.com

Ac

tua

Which technology manages multicast traffic at Layer 2 by configuring Layer 2 LAN interfaces dynamically to forward multicast traffic only to those interfaces that want to receive it?

lTe

QUESTION NO: 447

sts

Answer: B

.co

m

286

Cisco 642-892: Practice Exam C. Multicast Open Shortest Path First (MOSPF) D. Protocol Independent Multicast Sparse Mode (PIM-SM) E. Core-Based Trees (CBT) Answer: D

QUESTION NO: 449 When building an IP multicast domain using PIM which mode assumes that other routers do not want to forward multicast packets for the group? A. PIM-DM B. PIM-SM C. PIM-RP D. CGMP E. IGMP snooping Answer: B

QUESTION NO: 450

Answer: B

QUESTION NO: 451 Which DTP switchport mode parameter sets the switch port to actively send and respond to DTP negotiation frames? A. access B. trunk C. no negotiate D. dynamic desirable E. dynamic auto "Pass Any Exam. Any Time." - www.actualtests.com 287

Ac

A. The interface is put into permanent trunking mode and negotiates to convert the link into a trunk link. B. The interface actively attempts to convert the link to a trunk link. C. The interface is put into permanent trunking mode but prevented from generating DTP frames. D. The interface is put into a passive mode, waiting to convert the link to a trunk link.

tua

lTe

Which statement describes Dynamic Trunking Protocol (DTP) mode 'desirable'?

sts

.co

m

Cisco 642-892: Practice Exam Answer: D

QUESTION NO: 452 Which of the following NSAP addresses is a private, locally administered address? A. 39.0f01.0002.0000.0c00.1111.00 B. 48.0f01.0002.0000.0c00.1111.00 C. 49.0004.30ac.0000.3090.c7df.00 D. 52.0f01.0002.0000.0c00.1111.00 Answer: C

QUESTION NO: 453

Answer: A,B

QUESTION NO: 454

IS-IS is often considered an alternative to OSPF in the IP world. Which two statements identify similarities between IS-IS and OSPF? (Choose two.) A. support for designated intermediate systems and backup designated intermediate systems B. support for multiple areas per router C. support for classless routing D. support for address summarization between areas E. support for both DIS adjacencies and neighbor adjacencies Answer: C,D

QUESTION NO: 455

"Pass Any Exam. Any Time." - www.actualtests.com

Ac

tua

lTe

A. forwarding information base B. adjacency tables C. neighbor tables D. caching tables E. route tables

sts

.co

Which two table types are CEF components? (Choose two.)

m

288

establishing a new DIS that will remain in place indefinitely. Any Time.1Q C. Answer: D QUESTION NO: 456 Which protocol inserts a four byte tag into the Ethernet frame and recalculates CRC value? A. establishing a new DIS until a router with a higher priority or MAC address establishes an adjacency. P1R3 has been configured with a nondefault IS-IS metric. "Pass Any Exam. P1R1 has been configured with a nondefault IS-IS metric. ISL Answer: B In reference to the P1R3 show isis route output." . VTP B. P1R3 is a level-2 only IS-IS router. P1R3 routing table should contain i L2 entries. The elected backup designated router takes the place of the DIS indefinitely without the necessity of a new election. B. P1R1 is a level-1 only IS-IS router. D.co m 289 . E. The elected backup designated router takes the place of the DIS temporarily without the necessity of a new election. B. 802. C.www.Cisco 642-892: Practice Exam In an IS-IS environment. F. C. what happens when the designated IS router crashes? A.com Ac tua QUESTION NO: 457 lTe sts . A new election process occurs immediately. until the original DIS comes back online. P1R1 is the exit point out of the area for P1R3. A new election process occurs immediately. which statement is true? A. D. DTP D.actualtests.

B. BGP requires redundant TCP sessions between iBGP peers.com Ac tua lTe sts . Any Time.actualtests. CLNP E. link-state summary F. A full mesh allows for optimal routing within the Transit AS. LSP C. complete SNP (CSNP) B.co m 290 . C. ISH Answer: A "Pass Any Exam. IIH B. Routes learned via iBGP are never propagated to other eBGP peers. CLNS D. database description packet (DDP) E. D. Routes learned via iBGP are never propagated to other iBGP peers." . partial SNP (PSNP) C. database query D. hello Answer: A QUESTION NO: 460 What does IS-IS use to establish and maintain neighbor relationships between IS's? A.Cisco 642-892: Practice Exam Answer: A QUESTION NO: 458 Why should iBGP sessions be fully meshed within a Transit AS? A.www. Answer: D QUESTION NO: 459 What is periodically sent by a DIS on a LAN to ensure that all adjacent neighbors' IS-IS link-state databases are synchronized? A. E. Routes learned via eBGP are never propagated to other iBGP peers.

membership query message B. D. E. The cost is based on the speed of the interface.E QUESTION NO: 463 Which enhancement was added to IGMP version 3? A.www. local preference C.co m . weight B. origin "Pass Any Exam. B.com 291 Ac tua lTe sts .actualtests. Enable CGMP. C. B. Answer: C.) A. Any Time. Answer: A QUESTION NO: 462 Which two tasks are required to configure PIM for IP multicast routing? (Choose two. destination filtering Answer: D QUESTION NO: 464 Which BGP attribute will not be advertised in routing updates to its neighboring routers? A. The cost is based on a composite of bandwidth and delay of the interface. Configure the TTL threshold. source filtering E.Cisco 642-892: Practice Exam QUESTION NO: 461 What is the default metric used on IS-IS routers for each interface? A. The cost is set to 10 for LAN interfaces and 20 for WAN interfaces. C. Enable PIM on an interface. Join a multicast group. leave group message D. membership report message C. D. The cost is set to 10 for all interfaces. Enable IP multicast routing." .

which portion is interpreted by IS-IS as the area? A.www. 39. 0001. show ip ospf neighbors C.1211.0c00.0001. 39. 0001 E. 39. Any Time. Answer: D QUESTION NO: 467 Given the NSAP.0102 D. next hop Answer: A QUESTION NO: 465 What are two Cisco IOS commands that can be used to view neighbor adjacencies? (Choose two.0100.com Ac tua lTe sts . 39 B. B. AS_path E.0100 C. They must be directly connected.D QUESTION NO: 466 Which statement is true about IBGP routers? A. show ip ospf database B.00.Cisco 642-892: Practice Exam D. They must be fully meshed.actualtests.1211 Answer: C "Pass Any Exam.0102. show ip ospf interfaces Answer: B. 0001.co m 292 . C.0100.0c00 F." . They can be in a different AS.) A.0c00. D. They do not need to be directly connected. show ip ospf protocols D.

RTA will redistribute the RIP routes into the NSSA as type 7 LSAs. fast switching. distributed CEF (dCEF).www. D. Any Time. CEF. process switching. process switching C. RTA will redistribute the RIP routes into the NSSA as type 5 LSAs. process switching. distributed CEF (dCEF). CEF E. RTA will redistribute the RIP routes into the NSSA as type 7 LSAs. distributed CEF (dCEF).co m 293 . CEF. fast switching "Pass Any Exam. distributed CEF (dCEF). distributed CEF (dCEF).Cisco 642-892: Practice Exam QUESTION NO: 468 Refer to the exhibit. RTA will not redistribute the RIP routes into the NSSA. CEF. lTe sts .com Ac tua A. fast switching. RTA will redistribute the RIP routes into the NSSA as type 5 LSAs. distributed CEF (dCEF). RTB will translate the type 7 LSAs into type 5 LSAs and flood them throughout the OSPF backbone. C.actualtests. E. fast switching. CEF. B. RTB will flood the type 7 LSAs throughout the backbone. RTB will translate the type 5 LSAs into type 7 LSAs and flood them throughout the OSPF backbone." . process switching B. process switching. fast switching F. RTB will flood the type 5 LSAs throughout the backbone. process switching. CEF D. fast switching. Which statement is true? Answer: A QUESTION NO: 469 Which option correctly identifies the Cisco IOS switching methods in descending order from the fastest method to the slowest method? A.

168. E.168.0. The number 003071506800 is the MAC address of the source IP address.199. B.com 294 Ac tua A.) A.C "Pass Any Exam.3 next hop IP address. An SVI is created for the default VLAN (VLAN1) to permit remote switch administration by default. Answer: B. An SVI is created by entering the no switchport command in interface configuration mode.) Answer: A. C. Multiple SVIs can be associated with a VLAN.0." . An administrator is verifying that a CEF FIB entry exists to destination network 192.199. There is an adjacency for the 192. SVI is another name for a routed port.168.www. The "valid cached adjacency" entry indicates that CEF will put all packets going to such an adjacency to the next best switching mode. F. The counters (0 packets.3 next hop IP address. D. D. The number 003071506800 is the MAC address of the 192.150. There is a valid CEF entry for the destination network 192.co m .Cisco 642-892: Practice Exam Answer: B QUESTION NO: 470 Refer to the exhibit.150.actualtests. B.E QUESTION NO: 471 Which two statements are true about a switched virtual interface (SVI)? (Choose two. lTe sts . Any Time.168. E.D. Given the output generated by the show ip cef and show adjacency detail commands. 0 bytes) indicate a problem with the 192.168. An SVI provides a default gateway for a VLAN.3 next hop IP address. which three statements are true? (Choose three. C.199.

SW1(config-if)# switchport trunk encapsulation dot1q SW1(config-if)# switchport mode dynamic auto SW1(config-if)# switchport trunk native DATA SW1(config-if)# switchport trunk allowed vlan add 1. SW1(config-if)# switchport trunk encapsulation dot1q SW1(config-if)# switchport mode dynamic desirable SW1(config-if)# switchport trunk native vlan DATA SW1(config-if)# switchport trunk allowed vlan 1. SW1(config-if)# switchport trunk encapsulation dot1q SW1(config-if)# switchport mode dynamic desirable "Pass Any Exam. C. Any Time.actualtests. Ensure that an interface has been configured with an IP address.10.20 B." (Output is omitted. Answer: B QUESTION NO: 473 A.) What should be done to correctly set up OSPF? A. The switchport output in Figure 1 displays the default settings of interface FastEthernet 0/13 on switch SW1. Ensure that IP classless is enabled. Figure 2 displays the desired interface settings. B.co Refer to the exhibit.com 295 Ac tua lTe sts .20 D.10.10." . D.20 C.www. SW1(config-if)# switchport trunk encapsulation dot1q SW1(config-if)# switchport mode trunk SW1(config-if)# switchport trunk native DATA SW1(config-if)# switchport trunk allowed vlan 1. Which command sequence would configure interface FastEthernet 0/13 as displayed in Figure 2? m . Ensure that the interfaces can ping their directly connected neighbors.Cisco 642-892: Practice Exam QUESTION NO: 472 An administrator types in the command router ospf 1 and receives the error message: "OSPF process 1 cannot start. Ensure that an interface has been configured with an IP address and is up.

co m 296 .10. 10." . to display ARP resolution packets C. Host A and Host B are connected to the Catalyst 3550 switch and have been assigned to their respective VLANs. to display CEF-based MLS lookups F. Host A is able to ping its default gateway. The rest of the 3550 configuration is the default configuration.www. but is unable to ping Host B.com Ac tua lTe sts .Cisco 642-892: Practice Exam SW1(config-if)# switchport trunk native vlan 10 SW1(config-if)# switchport trunk allowed vlan 1. SW1(config-if)# switchport trunk encapsulation dot1q SW1(config-if)# switchport mode dynamic desirable SW1(config-if)# switchport trunk native vlan 10 Answer: B QUESTION NO: 474 Refer to the exhibit. which statement is true? "Pass Any Exam. to display entries in the Forwarding Information Base (FIB) Answer: F QUESTION NO: 475 Refer to the exhibit.20 E. to display TCAM matches E.10. For what purpose is the command show ip cef used? A. to display ARP throttling D.actualtests.1. Any Time. Given the output displayed in the exhibit. to display rewritten IP unicast packets B.10.

" . VLANs 10 and 15 must be created in the VLAN database mode. F.www. The global config command ip routing must be configured on the SW1 switch. VTP must be configured to support interVLAN routing.) "Pass Any Exam. E. Any Time. D. On the basis of the output generated by the show commands. B.Cisco 642-892: Practice Exam Answer: D QUESTION NO: 476 Refer to the exhibit.com Ac tua A. C. A separate router is required to support interVLAN routing.co m 297 . HSRP must be configured on SW1.actualtests. lTe sts . which two statements are true? (Choose two. Interface VLAN 10 must be configured on the SW1 switch.

actualtests. There are no native VLANs configured on the trunk.co m . interface gigabitethernet 0/1 does not appear in the show vlan output. All interfaces on the switch have been configured as access ports. D. B.1q header. E. VLAN 1 will not be encapsulated with an 802. VLAN 2 will not be encapsulated with an 802.www.1q header. interface gigabitethernet 0/1 does not appear in the show vlan output. Because it has not been assigned to any VLAN. Answer: C." . Because it is configured as a trunk interface. Any Time.com 298 Ac tua lTe sts .E QUESTION NO: 477 What does the Catalyst switch interface configuration command switchport trunk native vlan 7 accomplish? "Pass Any Exam. C. F.Cisco 642-892: Practice Exam A.

Based upon the output of show vlan on switch CAT2.10. Hosts are able to ping each other but are unable to reach the servers.actualtests. that interfaces Fa0/13 and Fa0/14 are in VLAN 1 B. and the management VLAN is on VLAN10 (10. VLAN2.0). configures the interface to be a trunking port and causes traffic on VLAN 7 to be 802. that interfaces Fa0/13 and Fa0/14have a domain mismatch with another switch E. which configuration solution could rectify the problem? "Pass Any Exam.1. configures the trunking interface to send traffic from VLAN 7 untagged D. configures the trunking interface to forward traffic from VLAN 7 Answer: C QUESTION NO: 478 Refer to the exhibit.3. that interfaces Fa0/13 and Fa0/14 are trunk interfaces D.2.Cisco 642-892: Practice Exam A.1q tagged B. that interfaces Fa0/13 and Fa0/14 are down C.1. VLAN3.www." . On the basis of the exhibited output.1.co m 299 . and VLAN10 are configured on the switch D-SW1.0).0). causes the interface to apply ISL framing for traffic on VLAN 7 C. that interfaces Fa0/13 and Fa0/14have a duplex mismatch with another switch lTe sts . Host computers are on VLAN 2 (10. servers are on VLAN 3 (10.com Ac tua A. what can we conclude about interfaces Fa0/13 and Fa0/14? Answer: C QUESTION NO: 479 Refer to the exhibit. Any Time.

C.1 on each host.10.2 on each host.actualtests. Assign an IP address of 10.2.co m 300 .1.www.3. Enable IP routing on the switch D-SW1. .1.Cisco 642-892: Practice Exam Answer: C QUESTION NO: 480 Refer to the exhibit.1. D.1.1.1/24 to VLAN3. B. Any Time.1." . Configure a default route that points toward network 200. E.1 on each host. Which interface or interfaces on switch SW_A can have the port security feature enabled? "Pass Any Exam.0/24. Configure default gateways to IP address 200. Configure default gateways to IP address 10.1. F.com Ac tua lTe sts A. Configure default gateways to IP address 10.

com 301 Ac Refer to the exhibit. Ports 0/1.www. 0/3 and the trunk port 0/22 E. C. D. Ports 0/1 and 0/2 C. Ports 0/1.actualtests. 0/2 and 0/3 D.co m .1p priority tagging. 0/3. the trunk port 0/22 and the EtherChannel ports . The voice traffic cannot use 802. Any Time. B." .Cisco 642-892: Practice Exam Answer: C QUESTION NO: 481 A. The voice traffic cannot be forwarded to the distribution layer. Port 0/1 B. Which statement is true when voice traffic is forwarded on the same VLAN used by the data traffic? tua lTe sts A. "Pass Any Exam. 0/2. 0/2. Quality of service cannot be applied for the voice traffic. Port security cannot be enabled on the switch that is attached to the IP phone. The trunk port 0/22 and the EtherChannel ports F. Ports 0/1.

which router will take on the function of rendezvous point (RP) for the multicast network? "Pass Any Exam.E QUESTION NO: 484 Refer to the exhibit. C. D. a wildcard entry redirects traffic to the Layer 3 engine. The FIB lookup is based on the Layer 2 destination MAC address. link-state routing protocols which support VLSM. C.www. IS-IS is more efficient than OSPF in the use of CPU resources.co m 302 . All routers have Protocol Independent Multicast (PIM) enabled interfaces. B. IS-IS and OSPF are both Open Standard. The FIB is derived from the IP routing table and is optimized for maximum lookup throughput. OSPF is more scalable than IS-IS because of its ability to identify normal. and NSSA areas. When the FIB table is full. B. Any Time.) A. OSPF default timers permit more tuning than IS-IS does." . On the basis of the configuration provided on routers R1 and R2. E. Based on the default timers. OSPF detects a failure faster than IS-IS does. stub. Answer: A.actualtests. and it contains Layer 2 rewrite (MAC) information for the next hop. Answer: A QUESTION NO: 483 Which two statements are true about IS-IS routing? (Choose two.Cisco 642-892: Practice Exam Answer: D QUESTION NO: 482 Which statement is true about the Forward Information Base (FIB) table? A.com Ac tua lTe sts . D. The FIB table is derived from the Address Resolution Protocol table.

Answer: D QUESTION NO: 486 Many match statements could be used in a route map. None of them B.com Ac tua lTe QUESTION NO: 485 sts Answer: B . At least one "Pass Any Exam. none of the routers since they are not configured with static RP m 303 . The route table is cleared.Cisco 642-892: Practice Exam What does the command clear ipv6 ospf process accomplish? A. Any Time." . How many match statements must be matched for the set to be applied? A.co A. both routers R1 and R2 D. The OSPF adjacencies are cleared and initiated again. router R2 C. router R1 B. D. B. The shortest path first (SPF) algorithm is performed on the LSA database. The OSPF database is repopulated. At least 50 percent of the criteria D. Then the shortest path first (SPF) algorithm is performed. Then the OSPF neighbors are reformed. All the criteria C.actualtests. C.www.

Any Time.co m 304 .com Ac tua lTe sts .www.Cisco 642-892: Practice Exam Answer: B QUESTION NO: 487 DRAG DROP Place the BGP attributes in the correct order used for determining a route Answer: Explanation: "Pass Any Exam.actualtests." .

" . ::1 D. Many-to-one D.Cisco 642-892: Practice Exam QUESTION NO: 488 A NIC has a MAC address of 00-0F-66-81-19-A3 and discovers a routing prefix of 2001:0:1:5::/64. Many-to-many B.C.actualtests. 2001::1:5:20F:66FF:FE81:19A3 B.D QUESTION NO: 489 Multicasting supports applications that communicate A.www. FE80::20F:66FF:FE81:19A3 C. FF02::1 Answer: A. One-to-one Answer: B QUESTION NO: 490 Which is a difference between broadcasts and multicasts? "Pass Any Exam.com Ac tua lTe sts .B. Which IPv6 addresses are assigned to it? (choose four) A.co m 305 . One-to-many C. Any Time.

actualtests.Cisco 642-892: Practice Exam A. Because different interfaces support different MTUs C.www. Remotely gather traffic statistics. D. Remotely configure QoS options.D What is the reason that system buffers are made in so many different sizes? A. Answer: C QUESTION NO: 491 What can the Network Analysis Module on the 6500 series switches be used to do? (Choose two. D. Rebooting the local router C. clear ip bgp * B. Because the buffers can be used as particles to create larger buffers Answer: B QUESTION NO: 493 Which one of the following techniques allows policies to be reapplied without destroying the existing peering? (choose two) A.co m 306 . Multicasts are used by RIPv1. Any Time.) A. Answer: A.com Ac tua lTe sts QUESTION NO: 492 . clear ip bgp * soft out Answer: C. Multicasts are unidirectional. Multicasts are one-to-many. B. Multicasts are routable." . Because buffers have to be discarded once they are used B. C. clear ip bgp * soft in D. Because different systems allow different frames to be received D. Remotely change passwords. B. Remotely measure traffic parameters. C.D "Pass Any Exam.

Active Answer: C QUESTION NO: 495 Put the BGP connection strategies in order from lowest to highest based on likelihood to take the best path.B.Cisco 642-892: Practice Exam QUESTION NO: 494 Ideally.co A.com 307 Ac tua lTe sts .F QUESTION NO: 497 Which ports are forwarded by UDP by default? A. Any Time.www.B. Accept only default routes from all providers B. UDP 500 C. DNS (port 53) C. NetBIOS datagram service (port 138) Answer: A. TFTP (port 69) D. NTP (port 37) B. UDP 51 "Pass Any Exam.actualtests.E. Accept full routing updates from all providers m . NetBIOS name service (port 137) F. Idle B.D. UDP 666 B.C QUESTION NO: 496 Which UDP broadcasts will an IOS DHCP relay automatically forward? (choose six) A. TACACS (port 49) E. Established D." .(choose three) Answer: A. Open C. Accept some routes plus a default route from all providers C.C. what will be displayed by the output of the show ip bgp neighbors command? A.

A protocol allowing server load sharing C. which action will the route map take? A.co QUESTION NO: 499 m 308 . When it is connected to a VTP server or client Answer: D QUESTION NO: 500 When using route maps for redistribution when a statement is configured to deny and there is a match. Answer: B QUESTION NO: 501 "Pass Any Exam.Cisco 642-892: Practice Exam D. The route is not redistributed. An ICMP packet is sent to the sender. When it doesn??t use ISL or 802.com Ac tua lTe sts . The packet is dropped. Any Time.www. An alternative to HSRP D. D. Always C. When it uses ISL encapsulation D. The packet is sent to the normal routing process. A server redundancy protocol Answer: B When would you configure the VTP domain on an interface of an external router? A. UDP 67 Answer: D QUESTION NO: 498 Which statement accurately describes SLB? A.actualtests. An alternative to switching B. C.1Q encapsulation B. B." .

www.100. synchronization is turned off.100. and none of the default attributes have been changed except the local preference attribute on R4. what condition exists? "Pass Any Exam.0/24? A. R2 R1 because it has a lower local preference Answer: B QUESTION NO: 502 Refer to the exhibit. R2 R1 because it has the shortest AS-path D. R2 R3 R4 R5 because it has a higher local preference C. Any Time. On the basis of the information that is presented.actualtests. BGP is configured on all routers.Cisco 642-892: Practice Exam Refer to exhibit." .com Ac tua lTe sts . R2 R3 R4 R5 because it has a lower admin distance B. Which path will be preferred by R2 to reach the network 100.co m 309 .

C.actualtests. Devices connected to interfaces FastEthernet3/1 and FastEthernet3/2 are sending BPDUs with a superior root bridge parameter and no traffic is forwarded across the ports. no valid radio for ADU D. D. Answer: C QUESTION NO: 504 "Pass Any Exam. and brought back up. poor link status with AP C. authenticating with AP B. Once the inaccurate BPDUs have been stopped. the interfaces will need to be administratively shut down. Devices connected to interfaces FastEthernet3/1 and FastEthernet3/2 are sending BPDUs with a superior root bridge parameter. to resume normal operation. Interfaces FastEthernet3/1 and FastEthernet3/2 are candidates for becoming the STP root port.com Ac tua lTe sts . Any Time. What information can be derived from the output? A. Devices connected to interfaces FastEthernet3/1 and FastEthernet3/2 are sending BPDUs with a superior root bridge parameter and no traffic is forwarded across the ports. B. but neither can realize that role until BPDUs with a superior root bridge parameter are no longer received on at least one of the interfaces. the interfaces automatically recover and resume normal operation.but traffic is still forwarded across the ports.co m 310 .Cisco 642-892: Practice Exam A." .www. Once the inaccurate BPDUs have been stopped. no association to AP Answer: C QUESTION NO: 503 Refer to the exhibit.

C. Which statement is correct regarding the operation of NAT-PT between the IPv4 and IPv6 networks shown? "Pass Any Exam. B. Any Time. What will happen if the access point receives packets sent by the wireless client adapter that are not encrypted with the appropriate key? Answer: C QUESTION NO: 505 Refer to the exhibit.www. The wireless client adapter will be authenticated by the authentication server and the access point will deliver the packets to the intended receiver." .com Ac tua lTe A. Static WEP keys have been configured on all devices in the wireless LAN. D. The access point will discard the packets and never deliver them to the intended receiver.actualtests.Cisco 642-892: Practice Exam Refer to the exhibit. but the access point will deliver the packets to the intended receiver. The wireless client adapter will not be able to send any packets to the access point.co m 311 . sts . The wireless client adapter will not be authenticated by the authentication server.

GRE tunnel E. The host is statically configured with the IPv6-to-IPv4 address mapping. D. C.www. Any Time. Answer: B QUESTION NO: 506 Refer to the exhibit.co m 312 ." . NAT-PT C.com Ac tua lTe sts . Dual Stack B. The router will determine the IPv4 destination address.Cisco 642-892: Practice Exam A. Which interoperability technique implemented on the router would allow Host-1 to communicate with Host-2? A. B. Which two statements are correct regarding the routes to be redistributed into OSPF? (Choose two. ICMP can be used to determine the IPv6-to-IPv4 address mapping. The source IPv6 host can use DNS to determine the IPv6-to-IPv4 address mapping.) "Pass Any Exam. 6to4 tunnel D. ISATAP tunnel Answer: B QUESTION NO: 507 Refer to the exhibit.actualtests.

www. Which two statements are true? (Choose two. The network 172.10.) "Pass Any Exam.0.0 will be allowed and assigned a metric of 200. All networks except 10." .16.0. D.Cisco 642-892: Practice Exam Answer: A. C. E. sts .com Ac tua lTe A.D QUESTION NO: 508 Refer to the exhibit.0/24 will be allowed and assigned a metric of 200. The network 10.0/8 will be allowed and assigned a metric of 200.168.0/16 will be allowed and assigned a metric of 200.0 will be allowed and assigned a metric of 100.0.actualtests. B. Any Time.1.168.1.0. The network 192. The network 192.co m 313 .

"Pass Any Exam. This switch is the STP root bridge. D.www. Port Fa0/11 is facing away from the root bridge.actualtests.Cisco 642-892: Practice Exam Answer: B. A spanning-tree loop exists in this network.co A. This switch is not the STP root bridge. C. E. m 314 . Any Time. Port Fa0/11 is facing the root bridge. The default STP timers have been changed.E QUESTION NO: 509 Refer to the exhibit. B.com Ac tua lTe sts . F." .

" . area 0 stub no-summary on router R4 and area 5 stub no-summary on router R5 E. including the ports belonging to other VLANs. What type of attack is he likely to implement? A.co m 315 . area 5 stub no-summary on router R4 and area 5 stub on router R5 Answer: E QUESTION NO: 510 A hacker is interested in seeing traffic from all switch ports on the switch that he is connected to. VLAN hopping Answer: A "Pass Any Exam. area 5 stub no-summary on routers R4 and R5 D.actualtests. area 5 stub on routers R4 and R5 C. MAC address flooding B.com Ac tua lTe sts . ARP attack C.Cisco 642-892: Practice Exam What additional commands should be used to configure OSPF area 5 as a Totally Stubby area? A.www. DHCP attack E. spoofing attack D. Any Time. area 0 stub on routers R4 and R5 B.

C. R4. D. Any Time. P3/1 will be elected the nondesignated port. and only a default route for all other OSPF routes will be forwarded from R5 to area 1.D sts A. E. F. and R5 have OSPF enabled. . P3/2 will be elected the nondesignated port. B.www. DSW12 will be elected the root bridge. What should be configured on the routers in area 1 to ensure that all default summary routes and redistributed EIGRP routes will be forwarded from R6 to area 1. tua QUESTION NO: 512 lTe Answer: A.com Ac Refer to the exhibit.Cisco 642-892: Practice Exam QUESTION NO: 511 Given the above diagram and assuming that STP is enabled on all switch devices. ASW13 will be elected the root bridge. DSW11willbe elected the root bridge. which two statements are true? (Choose two. P2/2 will be elected the nondesignated port.actualtests. Routers R2." . R3.) A.co m 316 . R5(config-router)# area 1 stub R6(config-router)# area 1 stub "Pass Any Exam.

) A.com Ac tua lTe sts . Based on the exhibit. E. Any Time. All network links are FastEthernet. Disabling the Spanning Tree Protocol would improve network performance." .D "Pass Any Exam. Answer: B. Changing the bridge priority of S1 to 36864 would improve network performance.www. D. Front Line users have been complaining that they experience slower network performance when accessing the server farm than the Reception office experiences.Cisco 642-892: Practice Exam B. Changing the bridge priority of S1 to 4096 would improve network performance. R5(config-router)# area 1 nssa no-summary R6(config-router)# area 1 nssa Answer: D QUESTION NO: 513 Refer to the exhibit. R5(config-router)# area 1 stub no-summary R6(config-router)# area 1 stub C. Changing the bridge priority of S3 to 4096 would improve network performance. F.actualtests. Although there is complete connectivity throughout the network.co m 317 . Changing the bridge priority of S2 to 36864 would improve network performance. C. B. which two statements are true? (Choose two. R5(config-router)# area 1 nssa R6(config-router)# area 1 nssa D. Upgrading the link between S2 and S3 to Gigabit Ethernet would improve performance.

10. 229.1x be configured in order to connect a PC to a switch? . 229.7 D.co m 318 .138. 228.com Ac tua lTe A.138.7 F.Cisco 642-892: Practice Exam QUESTION NO: 514 Which two multicast IP addresses can be represented by the multicast MAC address 0100.actualtests. where must 802.10.7 B.10.7 E. switch port and client PC D.8 Answer: A. 229.) A.0A07? (Choose two.10.138. "Pass Any Exam.10. client PC only B. switch port and local router port sts When authentication is required. 228. switch port only C.www.11." .10.&#65288.VTP?InterVLAN Routing&#65289.8 C.10. Any Time. 228.E QUESTION NO: 515 Answer: C QUESTION NO: 516 Lab 1.5e0A.10.

162. Specific VLAN port assignments will be made as users are added to the access layer switches in the future. Configure the VTP information with the distribution layer switch as the VTP server 2. Configure VLANs on the distribution layer switch 4.1/24 192.64.www. tua lTe sts . Configure inter-VLAN routing on the distribution layer switch 5. Configure the VTP information with the access layer switch as a VTP client 3.1/24 These are your specific tasks: Explanation: Using show run for current configuration info ALswitch#conf t ALswitch( config)#vtp mode client ALswitch( config)#vtp domain CISCO ALswitch( config)#end ALswitch#copy run start DLswitch#conf t DLswitch( config)#vtp mode server "Pass Any Exam. All VLANs and VTP configurations are to completed in the global configuration To configure the switch click on the host icon that is connected to the switch be way of a serial console cable. 6.39.) m .co The information of the question VTP Domain name: CISCO (Please use the value that given in exam.200.actualtests." .Cisco 642-892: Practice Exam VLAN IDs 20 21 IP Addresses 172. Any Time.com 319 Ac 1.

46Radius key: radl23Authentication should be implemented as close to the host device possible.1 255.www.120.0/24 should be passed on VLAN 20.1X?VACL) For security reasons.120.Filtering should be implemented as close to the server farm as possible. You have been tasked with implementing the above access control as a pre-condition to installing the servers. it is necessary to restrict access to VLAN 20 in the following manner: Users connecting to ASWi's port must be authenticate before they are given access to the network.Devices on VLAN 20 are restricted to in the address range of 172.co m 320 .0 DLswitch( config-if)#int vlan 21 DLswitch( config-if)#ip add 192.255. show vlan.255. lTe Acme is a small shipping company that has an existing enterprise network comprised of 2 switches. show vtp status on DLswitch and ALswitch QUESTION NO: 517 Lab 2 (802." .255. show run. The Radius server and application servers will be installed at a future date. DSWl and ASW2.200.Cisco 642-892: Practice Exam DLswitch( config)#vtp domain CISCO DLswitch( config)#vlan 20 DLswitch( config-vlan)#vlan 21 DLswitch( config-vlan)#exit DLswitch( config)#int vlan 20 DLswitch( config-if)#ip add 172.162.Packets from devices in the address range of 172. "Pass Any Exam. Authentication is to be done via a Radius server:Radius server host: 172. VLAN 40 is a new VLAN that will be used to provide the shipping personnel access to the server.255. You must use the available IOS switch features.1 255.actualtests.Packets from devices in any other address range should be dropped on VLAN 20. Any Time.com Ac tua The topology diagram indicates their layer 2 mapping.120.39. sts .0/24.0 DLswitch( config-if)#exit DLswitch( config)#ip routing DLswitch( config)#end DLswitch#copy run start Validation &#65306.40.64.39.40.

actualtests.www.com Ac tua lTe sts ." . Any Time.Cisco 642-892: Practice Exam "Pass Any Exam.co m 321 .

Any Time.actualtests.com Ac tua lTe sts .www." .Cisco 642-892: Practice Exam "Pass Any Exam.co m 322 .

120.46 key rad123 ASWl( config)#aaa authentication dotlx default group radius ASWl( config)#dotlx system-auth-control ASWl( config)#int fastEthernet 0/1 ASWl( config-if)#switchport mode access ASWl( config-if)#switchport access vlan 20 ASWl( config-if)#dotlx port-control auto ASWl( config-if)#end ASWl#copyrun start DSWl#conft DSVVl( config)#ip access-list standard 10 DSWl( config-std-nacl)#permit 172.120.39. Currently OSPF is configured on all routers . You will know that you have corrected the fault when R4's loopback address (FEC0:4:4) can ping from R1 to R4 loopback addressSpecial Note: To gain the maximum number of points you must remove all incorrect or unneeded configuration statements related to this issue." .com Ac tua lTe sts . Any Time. You are tasked with identifying the cause of this fault and implementing the needed corrective actions that uses OSPF features and does no change the current area assignments.co m 323 .255 DSWl( config-std-nacl)#exit DSWl( config)#vlan access-map PASS 10 DSWl( config-access-map)#match ip address 10 DSWl( config-access-map)#action forward DSWl( config-access-map)#exit DSW1( config)#vlan filter PASS vlan-list 20 DSW1( config)#end DSWl#copyrun start QUESTION NO: 518 Lab 3.0 0.0.Cisco 642-892: Practice Exam Explanation: ASWl#conft ASWl( config)#aaa new-model ASWl( config)#radius-server host 172.40.www. R4's loopback address (FEC0:4:4) cannot be seen in Rl's IPv6 routine table.However.0. (OSPFV3 Virtual-Link) Acme is a small export company that has an existing enterprise network that is running IPv6 OSPFv3. "Pass Any Exam.actualtests.

com Ac tua lTe sts . Any Time.www." .co m 324 .Cisco 642-892: Practice Exam "Pass Any Exam.actualtests.

Any Time.com Ac tua lTe sts .www.co m 325 ." .Cisco 642-892: Practice Exam "Pass Any Exam.actualtests.

" .Cisco 642-892: Practice Exam "Pass Any Exam.co m 326 .actualtests.com Ac tua lTe sts . Any Time.www.

www." .Cisco 642-892: Practice Exam "Pass Any Exam.com Ac tua lTe sts .co m 327 .actualtests. Any Time.

Cisco 642-892: Practice Exam "Pass Any Exam. Any Time.www.com Ac tua lTe sts .co m 328 ." .actualtests.

com Ac tua lTe sts .www.Cisco 642-892: Practice Exam "Pass Any Exam." .actualtests.co m 329 . Any Time.

Cisco 642-892: Practice Exam "Pass Any Exam.actualtests.co m 330 ." . Any Time.com Ac tua lTe sts .www.

" .3 R2( config-router)#end R2#copy run start R3( config)#ipv6 router ospf 1 R3( config-router)#area 11 virtual-link 2.actualtests.2 R3( config-router)#no area 54 virtual-link 4.co m 331 .3.Cisco 642-892: Practice Exam R2( config)#ipv6 router ospf 1 R2( config-router)#area 11 virtual-link 3.com Ac tua lTe Explanation: Get current config by issuing show run sts .4 R3( config-router)#end R3#copy run start R4( config)#ipv6 router ospf 1 R4( config-router)#no area 54 virtual-link 3.3 R4( config-router)#end R4#copy run start Validation: Show run show ipv6 route on R1 and R4 ping ipv6 FECO :1 ::X(X is 4 or 1) "Pass Any Exam.4.2.2.4.3.www.3. Any Time.3.

with the enable secret password Cisco. No configuration changes will be possible on these routers. DSW2. C0RE. Your task is complicated by the fact that you only have full access to DSW1 With isolating the cause of these issues and implementing the appropriate solutions. However VLAN 40 is currently using gig 1/0/6 You have been tasked with isolating the cause of these issuer and implementing the appropriate solutions. Any Time.DSW1. No access is provided to ASW1 or ASW2.Cisco 642-892: Practice Exam QUESTION NO: 519 Lab.DSW1 is currently the root bridge for VLAN 20 .co m 332 . Only limited show command access is provided on CORE.actualtests.Traffic for VLAN 30 should be forwarding over the gig 1/0/6 trunk port between DSW1 and DSW2. "Pass Any Exam. However VLAN 30 is currently using gig 1/0/5Traffic for VLAN 40 should be forwarding over the gig 1/0/5 trunk port between DSW1 and DSW2. however . (STP) Acme is a small export company that has an existing enterprise network comprised of 5 switches. ASW1 and ASW2 the topology diagram indicates their desired per-VLAN spanning tree mapping.com Ac tua lTe sts . Your task is complicated by the fact that you only have full access to DSW1 ." . and DSW2 using the enable 2 level with a password of acme. Previous configuration attempts have resulted in the following issues: CORE should be the root bridge for VLAN 20 .www.

Cisco 642-892: Practice Exam "Pass Any Exam." .www.co m 333 . Any Time.com Ac tua lTe sts .actualtests.

co m 334 .com Ac tua lTe sts .actualtests. Any Time.www.Cisco 642-892: Practice Exam "Pass Any Exam." .

Cisco 642-892: Practice Exam QUESTION NO: 520 (EIGRP Stub?Manual Summary) "Pass Any Exam.actualtests.co m 335 . Any Time.www.com Ac tua Verification D DSW1# show spanning-tree vlan 20 DSW1# show spanning-tree vlan 40 DSW2# show spanningtree vlan 30 lTe Explanation: DSWl#conf t DSWl( config)#spanning-tree vlan 20 priority 61440 DSWl( config)#int g1/0/5 DSWl( config-if)#spanning-tree vlan 40 cost 1 DSWl( config-if)#no shut DSWl( config-if)#exit DSWl( config)#int g1/0/6 DSWl( config-if)#spanning-tree vlan 30 port-priority 64 DSWl( config-if)#no shut DSWl( config-if)#end DSWl#copy run start sts ." .

co m 336 .www.com Ac tua lTe sts .Cisco 642-892: Practice Exam "Pass Any Exam. Any Time.actualtests." .

Cisco 642-892: Practice Exam "Pass Any Exam.actualtests. Any Time." .www.co m 337 .com Ac tua lTe sts .

" .Cisco 642-892: Practice Exam "Pass Any Exam.com Ac tua lTe sts .actualtests. Any Time.co m 338 .www.

actualtests.com Ac tua lTe sts ." .Cisco 642-892: Practice Exam "Pass Any Exam.co m 339 .www. Any Time.

Cisco 642-892: Practice Exam "Pass Any Exam." .www. Any Time.actualtests.co m 340 .com Ac tua lTe sts .

Cisco 642-892: Practice Exam "Pass Any Exam.actualtests.www." .com Ac tua lTe sts . Any Time.co m 341 .

www." .actualtests.Cisco 642-892: Practice Exam "Pass Any Exam.com Ac tua lTe sts . Any Time.co m 342 .

www.0. Show ip route on R2.16. should exist R3 route (172.Cisco 642-892: Practice Exam R3#conf t R3( config)#router eigrp 123 R3( config-router)#no eigrp stub receive-only R3( config-router)#eigrp stub R3( config-router)#end R3#copy run start R4#conf t R4( config)#int s0/0 R4( config-if)#ip summary-address eigrp 123 10.16. show a summary route (NULL 10.0.0 subnet route.1. "Pass Any Exam.com 343 Ac tua lTe Explanation: show run for current config info sts . whether receiver the summary route from R4.co m . ping 172.1." . Show ip route on R4.0.0 R4( config-if)#no shut R4( config-if)#end R4#copy run start Validation: 1.0 ).0. should only exist 2 10.actualtests.0.0/8 in route) 3.0.0 255. Show ip route on R3.0.0.1 should success 2. Any Time.

&#65288.Cisco 642-892: Practice Exam QUESTION NO: 521 Lab 6. Any Time." . Explanation: show run for current config info Blockade#conf t Blockade( config)#router isis Blockade( config-router)#redistribut eigrp 100 level-1 metric 50 Blockade( config-router)#router eigrp 100 Blockade( config-router)#redistribut isis level-1 metric 512 10 255 1 1500 Blockade( config-router)#redistribut connected Blockade( config-router)#end Blockade#copy run start Validation: "Pass Any Exam.actualtests.co m .com 344 Ac tua lTe sts .EIGRP & ISIS Redistribution &#65289.www.

3 area 1 Portland ( config-router)# area 1 stub Portland ( config-router)# end Portland # copy run start Indianapolis # conf t Indianapolis ( config)# router ospf 1 Indianapolis ( config-router)# network 192.3. Any Time. 2. show ip route on Ballista and Oxybeles to make sure the redistribute route are received.5 0.com Ac tua lTe sts ." .6 0.3 area 1 Indianapolis ( config-router)# area 1 stub no-summary Indianapolis ( config-router)# end Indianapolis # copy run start QUESTION NO: 523 "Pass Any Exam.actualtests.3. successfuly ping looback0 on each route QUESTION NO: 522 LAB Explanation: Portland # conf t Portland ( config)# router ospf 1 Portland ( config-router)# network 192.Cisco 642-892: Practice Exam 1.168.0.co m 345 .www.0.168.0.0.

S( config)#interface range fa0/1 .The [Tab] key.Cisco 642-892: Practice Exam The CertKiller headquarter office for a book retailer is installing a temporary Catalyst 3550 in an IDF to connect 24 additional users. it is important to have the correct configuration prior to connecting to the production network.co m 346 .S( config-if-range)#exit CertKiller.S( config-if-range)#switchport mode access CertKiller. Because of errors that have been experienced on office computers. You will have to scroll this window and the problem statement window to view the entire problem. Also.S( config-if-range)#switchport access vlan 10 CertKiller." .com Ac tua Explanation: CertKiller-S#conf t CertKiller.www. "Pass Any Exam. It will be necessary to ensure that the switch does not participate in VTP but forwards VTP advertisements that are received on trunk ports.S( config)#vtp mode transparent CertKiller. To prevent network corruption. To configure the switch click on a host icon that is connected to a switch by a serial console cable(shown in the diagram as a curved solid black line).S( config)#interface range fa0/12 .actualtests. Any Time.24 CertKiller.S( config-if-range)#spanning-tree portfast CertKiller. configure the user ports(all FastEthernet ports) so that the ports are permanently nontrunking. all nontrunking interfaces should transition immediately to the forwarding state of Spanningree.24 CertKiller.S( config-if-range)#end CertKiller-S# copy run start lTe sts .

Sign up to vote on this title
UsefulNot useful