Q14. Which statement about the use of SDM templates in a Cisco switch is true?

A. SDM templates are used to configure system resources in the switch to optimize support for specific features, depending on how the switch is used in the network.

B. SDM templates are used to create Layer 3 interfaces (switch virtual interfaces) to permit hosts in one VLAN to communicate with hosts in another VLAN.

C. SDM templates are used to configure ACLs that protect networks and specific hosts from unnecessary or unwanted traffic.

D. SDM templates are used to configure a set of ACLs that allows the users to manage the flow of traffic handled by the route processor.

E. SDM templates are configured by accessing the switch using the web interface.

Answer: A

Q15. Your customer has asked you to come in and verify the operation of routers R1 and R2 which are configured to use HSRP. They have questions about how these two devices will perform in the event of a device failure.

Refer to the exhibit. If router R1 interface Etherne0/0 goes down and recovers, which of the statement regarding HSRP priority is true?

A. The interface will have the priority decremented by 40 for HSRP group 1.

B. The interface will have the priority decremented by 60 for HSRP group 1

C. The interface will have its current priority incremented by 40 for HSRP group 1

D. The interface will have its current priority incremented by 60 for HSRP group 1

E. The interface will default to the a priority of 100 for HSRP group 1

Answer: C

Q16. What SPAN configuration is required to enable on a switch?

A. A monitor VLAN is created for the SPAN traffic.

B. Configure a source and destination port

C. Disable VTP pruning on trunk links


Answer: B

Q17. an EtherChannel configured and one of the port was used as SPAN destination. What will be the result?

A. the etherchannel will not be operational because the port cannot be used as SPAN destination

B. etherchannel will discard the port used

C. the etherchannel will shutdown

Answer: B

Q18. Refer to the exhibit.

The network switches for two companies have been connected and manually configured for the required VLANs, but users in company A are not able to access network resources in company B when DTP is enabled. Which action resolves this problem?

A. Delete vlan.dat and ensure that the switch with lowest MAC address is the VTP server.

B. Disable DTP and document the VTP domain mismatch.

C. Manually force trunking with switchport mode trunk on both switches.

D. Enable the company B switch with the vtp mode server command.

Answer: C

Q19. A DHCP configured router is connected directly to a switch that has been provisioned with DHCP snooping. IP Source Guard with the ip verify source port-security command is configured under the interfaces that connect to all DHCP clients on the switch. However,

clients are not receiving an IP address via the DHCP server. Which option is the cause of this issue?

A. The DHCP server does not support information option 82.

B. The DHCP client interfaces have storm control configured.

C. Static DHCP bindings are not configured on the switch.

D. DHCP snooping must be enabled on all VLANs, even if they are not utilized for dynamic address allocation.

Answer: A

Q20. Refer to the exhibit.

Which option describes the reason for this message in a GLBP configuration?

A. Unavailable GLBP active forwarder

B. Incorrect GLBP IP address

C. HSRP configured on same interface as GLBP

D. Layer 2 loop

Answer: D

Q21. After port security is deployed throughout an enterprise campus, the network team has been overwhelmed with port reset requests. They decide to configure the network to automate the process of re-enabling user ports. Which command accomplishes this task?

A. switch(config)# errdisable recovery interval 180

B. switch(config)# errdisable recovery cause psecure-violation

C. switch(config)# switchport port-security protect

D. switch(config)# switchport port-security aging type inactivity

E. switch(config)# errdisable recovery cause security-violation

Answer: B

Q22. Which private VLAN access port belongs to the primary VLAN and can communicate with all interfaces, including the community and isolated host ports?

A. promiscuous port

B. isolated port

C. community port

D. trunk port

Answer: A

Q23. Which private VLAN can have only one VLAN and be a secondary VLAN that carries unidirectional traffic upstream from the hosts toward the promiscuous ports and the gateway?

A. isolated VLAN

B. primary VLAN

C. community VLAN

D. promiscuous VLAN

Answer: A

Q24. When a Layer 2 trunking EtherChannel is configured, which two attributes must match across the member ports? (Choose two)

A. Interface Description.

B. Spanning-tree cost.

C. spanning-tree priority

D. allowed VLANS

E. trunking mode.

Answer: B,C

