Want to know Testking 400 101 pdf Exam practice test features? Want to lear more about Cisco CCIE Routing and Switching (v5.0) certification experience? Study 100% Correct Cisco 400 101 vce answers to Regenerate 400 101 dumps questions at Testking. Gat a success with an absolute guarantee to pass Cisco 400 101 ccie (CCIE Routing and Switching (v5.0)) test on your first attempt.
Q201. Refer to the exhibit.
Why is the OSPF state in 2WAY/DROTHER?
A. This is the expected output when the interface Ethernet0/0 of R1 is configured with OSPF Priority 0.
B. There is a duplicate router ID.
C. There is an MTU mismatch.
D. There is an OSPF timer (hello/dead) mismatch.
E. This is the expected output when R1 is the DR.
Answer: A
Explanation:
Sometimes it is desirable for a router to be configured so that it is not eligible to become the DR or BDR. You can do this by setting the OSPF priority to zero with the ip ospf priority priority# interface subcommand. If two OSPF neighbors both have their OSPF interface priority set to zero, they establish two-way adjacency instead of full adjacency.
Reference: http://www.cisco.com/c/en/us/support/docs/ip/open-shortest-path-first-ospf/13683-11.html
Q202. DRAG DROP
Drag and drop the IGMPv2 timer on the left to its default value on the right.
Answer:
Q203. Which three EIGRP packet types are valid? (Choose three.)
A. open
B. notification
C. keep-alive
D. hello
E. query
F. reply
Answer: D,E,F
Explanation:
EIGRP uses the following packet types: hello and acknowledgment, update, and query and reply.
Hello packets are multicast for neighbor discovery/recovery and do not require acknowledgment. An acknowledgment packet is a hello packet that has no data. Acknowledgment packets contain a nonzero acknowledgment number and always are sent by using a unicast address.
Update packets are used to convey reachability of destinations. When a new neighbor is discovered, unicast update packets are sent so that the neighbor can build up its topology table. In other cases, such as a link-cost change, updates are multicast. Updates always are transmitted reliably.
Query and reply packets are sent when a destination has no feasible successors. Query packets are always multicast. Reply packets are sent in response to query packets to instruct the originator not to recompute the route because feasible successors exist. Reply packets are unicast to the originator of the query. Both query and reply packets are transmitted reliably.
Reference: http://docwiki.cisco.com/wiki/Enhanced_Interior_Gateway_Routing_Protocol
Q204. Which two statements about class maps are true? (Choose two.)
A. As many as eight DSCP values can be included in a match dscp statement.
B. The default parameter on a class map with more than one match command is match-any.
C. The match class command can nest a class map within another class map.
D. A policy map can be used to designate a protocol within a class map.
Answer: A,C
Explanation:
Answer A.
Router(config-cmap)# match [ip] dscp dscp-value [dscp-value dscp-value dscp-value
dscp-value dscp-value dscp-value dscp-value]
(Optional) Identifies a specific IP differentiated service code point (DSCP) value as a match criterion. Up to eight DSCP values can be included in one match statement.
Answer C.
Router config-cmap)# match class-map class-name (Optional) Specifies the name of a traffic class to be used as a matching criterion (for nesting traffic class [nested class maps] within one another).
Reference: http://www.cisco.com/c/en/us/td/docs/ios/12_2/qos/configuration/guide/fqos_c/qcfmcli2.html
Q205. Which three features does GETVPN support to improve deployment and scalability? (Choose three.)
A. configuration of multiple key servers to work cooperatively
B. allowing traffic to be discarded until a group member registers successfully
C. local exceptions in the traffic classification ACL
D. GDOI protocol configuration between group members and the key server
E. redundant IPsec tunnels between group members and the key server
F. redundant multicast replication streaming through the use of a bypass tunnel
Answer: A,B,C
Q206. You are tasked with configuring a router on an OSPF domain to import routes from an EIGRP domain and summarize the routes to 192.168.64.0.
Which statement configures the summarized route and provides equal-path route redundancy?
A. area 32 range 192.168.64.0 255.255.192.0 cost 100
B. area 32 range 192.168.64.0 255.255.63.0 cost 100
C. area 32 range 192.168.64.0 255.255.64.0 cost 100
D. area 32 range 192.168.64.0 255.255.192.0 multi-path
Answer: A
Explanation:
area range
To consolidate and summarize routes at an area boundary, use the area range command in router configuration mode. To disable this function, use the no form of this command.
Syntax Description
area-id
Identifier of the area about which routes are to be summarized. It can be specified as either a decimal value or as an IP address.
ip-address
IP address.
mask
IP address mask.
advertise
(Optional) Sets the address range status to advertise and generates a Type 3 summary link-state advertisement (LSA).
not-advertise
(Optional) Sets the address range status to DoNotAdvertise. The Type 3 summary LSA is suppressed, and the component networks remain hidden from other networks.
cost cost
(Optional) Metric or cost for this summary route, which is used during OSPF SPF calculation to determine the shortest paths to the destination. The value can be 0 to 16777215.
Reference: http://www.cisco.com/c/en/us/td/docs/ios/12_2/iproute/command/reference/fiprrp_r/1rfospf. html#wp1017596
Q207. Refer to the exhibit.
What is wrong with the configuration of the tunnel interface of this DMVPN Phase II spoke router?
A. The interface MTU is too high.
B. The tunnel destination is missing.
C. The NHRP NHS IP address is wrong.
D. The tunnel mode is wrong.
Answer: D
Explanation:
By default, tunnel interfaces use GRE as the tunnel mode, but a DMVPN router needs to be configured for GRE multipoint by using the “tunnel mode gre multipoint” interface command.
Q208. Refer to the exhibit.
What is the PHB class on this flow?
A. EF
B. none
C. AF21
D. CS4
Answer: D
Explanation:
This command shows the TOS value in hex, which is 80 in this case. The following chart shows some common DSCP/PHB Class values:
Service
DSCP value
TOS value
Juniper Alias
TOS hexadecimal
DSCP - TOS Binary
Premium IP
46
184
ef
B8
101110 - 101110xx
LBE
8
32
cs1
20
001000 - 001000xx
DWS
32
128
cs4
80
100000 - 100000xx
Network control
48
192
cs6
c0
110000 - 110000xx
Network control 2
56
224
cs7
e0
111000 - 111000xx
Reference: http://www.tucny.com/Home/dscp-tos
Q209. Which three steps are necessary to enable SSH? (Choose three.)
A. generating an RSA or DSA cryptographic key
B. configuring the version of SSH
C. configuring a domain name
D. configuring VTY lines for use with SSH
E. configuring the port for SSH to listen for connections
F. generating an AES or SHA cryptographic key
Answer: A,C,D
Explanation:
Here are the steps:
1. Configure a hostname for the router using these commands.
yourname#configure terminal
Enter configuration commands, one per line. End with CNTL/Z.
yourname (config)#hostname LabRouter
LabRouter(config)#
2. Configure a domain name with the ip domain-name command followed by whatever you would like your domain name to be. I used CiscoLab.com.
LabRouter(config)#ip domain-name CiscoLab.com
3. We generate a certificate that will be used to encrypt the SSH packets using the crypto key generate rsa command.
Take note of the message that is displayed right after we enter this command. “The name for the keys will bE. LabRouter.CiscoLab.com” — it combines the hostname of the router along with the domain name we configured to get the name of the encryption key generated; this is why it was important for us to, first of all, configure a hostname then a domain name before we generated the keys.
Notice also that it asks us to choose a size of modulus for the key we’re about to generate.
The higher the modulus, the stronger the encryption of the key. For our example, we’ll use a modulus of 1024.
Q210. Which three statements about RIP timers are true? (Choose three.)
A. The default update timer is 30 seconds.
B. The default invalid timer is 180 seconds.
C. The default holddown timer is 180 seconds.
D. The default flush timer is 60 seconds.
E. The default scan timer is 60 seconds.
F. The default hello timer is 5 seconds.
Answer: A,B,C
Explanation:
The routing information protocol uses the following timers as part of its operation:
Update Timer
Invalid Timer
Flush Timer
Holddown Timer
Update Timer
The update timer controls the interval between two gratuitous Response Message. By default the value is 30 seconds. The response message is broadcast to all its RIP enabled interface.
Invalid Timer
The invalid timer specifies how long a routing entry can be in the routing table without being updated. This is also called as expiration Timer. By default, the value is 180 seconds. After the timer expires the hop count of the routing entry will be set to 16, marking the destination as unreachable.
Flush Timer
The flush timer controls the time between the route is invalidated or marked as unreachable and removal of entry from the routing table. By default the value is 240 seconds. This is 60 seconds longer than Invalid timer. So for 60 seconds the router will be advertising about this unreachable route to all its neighbors. This timer must be set to a higher value than the invalid timer.
Hold-down Timer
The hold-down timer is started per route entry, when the hop count is changing from lower value to higher value. This allows the route to get stabilized. During this time no update can be done to that routing entry. This is not part of the RFC 1058. This is Cisco's implementation. The default value of this timer is 180 seconds.
Reference: http://en.wikipedia.org/wiki/Routing_Information_Protocol#Timers