QUESTION 41
In a Cisco Catalyst SD-WAN solution, how is the health of a data plane tunnel monitored?
A. ARP probing
B. with IP SLA
C. with OMP
D. using BFD
Correct Answer: D
QUESTION 42
What is Cisco TrustSec?
A. technology that provides data encryption for data at rest
B. technology that provides link encryption for wired networks
C. technology that provides abstraction between the network topology and network security
D. zero-trust security framework
Correct Answer: C
QUESTION 43
Which two components function together in a Cisco SD-Access solution?
A. Cisco vSmart controller and Cisco Catalyst Center (formerly DNA Center)
B. Cisco ISE and Cisco Catalyst Center (formerly DNA Center)
C. Cisco campus fabric and Cisco vManage
D. Cisco vBond orchestrator and Cisco Catalyst Center (formerly DNA Center)
Correct Answer: B
QUESTION 44
Which benefit does Cisco Catalyst SD-WAN provide over a traditional WAN solution?
A. reduced training requirements
B. distributed control plane
C. distributed date plane
D. centralized operation and security policies
Correct Answer: D
QUESTION 45
Which data type does YANG support for reference values from a set of assigned names?
A. decimal64
B. enumeration
C. object
D. array
Correct Answer: B
QUESTION 46
What is a difference between OSPF and EIGRP?
A. OSPF is an advanced distance vector protocol. EIGRP is a link-state protocol.
B. OSPF uses the DUAL algorithm. EIGRP uses the SPF algorithm.
C. OSPF is a hybrid routing protocol. EIGRP is a link-state routing protocol.
D. OSPF uses an administrative distance of 110. EIGRP uses an administrative distance of 170.
Correct Answer: D
QUESTION 47
Which definition describes JWT in regard to REST API security?
A. an encrypted JSON token that is used for authentication
B. an encrypted JSON token that is used for authorization
C. an encoded JSON token that is used to securely exchange Information
D. an encoded JSON token that is used for authentication
Correct Answer: C
QUESTION 48
An engineer must protect their company against ransomware attacks. Which solution allows the engineer to block the execution stage and prevent file encryption?
A. Use Cisco AMP deployment with the Malicious Activity Protection engine enabled.
B. Use Cisco AMP deployment with the Exploit Prevention engine enabled.
C. Use Cisco Firepower and block traffic to TOR networks.
D. Use Cisco Firepower with Intrusion Policy and snort rules blocking SMB exploitation.
Correct Answer: A
QUESTION 49
Which two methods are used to assign security group tags to the user in a Cisco TrustSec architecture? (Choose two.)
A. web authentication
B. IEEE 802.1X
C. modular QoS
D. policy routing
E. DHCP
Correct Answer: AB
QUESTION 50
Which component does Cisco Threat Defense use to measure bandwidth, application performance, and utilization?
A. Advanced Malware Protection for Endpoints
B. TrustSec
C. NetFlow
D. Cisco Umbrella
Correct Answer: C
QUESTION 51
An engineer must create an EEM applet that sends a syslog message in the event a change happens in the network due to trouble with an OSPF process. Which
action should the engineer use?
event manager applet LogMessage
event routing network 172.30.197.0/24 type all
A. action 1 syslog msg “OSPF ROUTING ERROR”
B. action 1 syslog send “OSPF ROUTING ERROR”
C. action 1 syslog pattern “OSPF ROUTING ERROR”
D. action 1 syslog write “OSPF ROUTING ERROR”
Correct Answer: A
QUESTION 52
Which function is performed by vSmart in the Cisco SD-WAN architecture?
A. aggregation and distribution of VPN routing information
B. redistribution between OMP and other routing protocols
C. facilitation of NAT detection and traversal
D. execution of localized policies
Correct Answer: A
QUESTION 53
Which two protocols are used with YANG data models? (Choose two.)
A. RESTCONF
B. SSH
C. NETCONF
D. HTTPS
E. TLS
Correct Answer: AC
QUESTION 54
Which feature allows HSRP to failover from the active route processor to the standby route processor without loss of data or path change?
A. stateful switchover
B. preemption
C. IP SLA tracking
D. HSRP tracking
Correct Answer: A
QUESTION 55
Which technology is the Cisco SD-Access control plane based on?
A. VRF
B. LISP
C. CTS
D. SGT
Correct Answer: B
QUESTION 56
What is a consideration when designing a Cisco SD-Access underlay network?
A. The underlay switches provide endpoint physical connectivity for users.
B. End user subnets and endpoints are part of the underlay network.
C. It must support IPv4 and IPv6 underlay networks.
D. Static routing is a requirement.
Correct Answer: A
QUESTION 57
Which data is properly formatted with JSON?
A. {
“name”:”Peter”
“age”:”25″
“likesJson”:true
“characteristics”:[“small”,”strong”,18]
}
B. {
“name”: “Peter”,
“age”: “25”,
“likesJson”: true,
“characteristics”: [“small”,”strong”,”18],
}
C. {
“name”: “Peter”,
“age”: “25”,
“likesJson”: true,
“characteristics”: [“small”,”strong”,18]
}
D. {
“name”: Peter,
“age”: 25,
“likesJson”: true,
“characteristics”: [“small”,”strong”,”18],
}
Correct Answer: C
QUESTION 58
What is one method for achieving REST API security?
A. using a combination of XML encryption and XML signatures
B. using built-in protocols known as Web Services Security
C. using a MD5 hash to verify the integrity
D. using HTTPS and TLS encryption
Correct Answer: D
QUESTION 59
What are two characteristics of Cisco Catalyst Center (formerly DNA Center) and vManage northbound APIs? (Choose two.)
A. They exchange protobuf-formatted content.
B. They implement the RESTCONF protocol.
C. They exchange XML-formatted content.
D. They exchange JSON-formatted content
E. They implement the NETCONF protocol.
Correct Answer: BD
QUESTION 60
Which technique is used to protect end user devices and data from unknown file behavior?
A. file retrospection using continuous scan and analyses
B. phishing file quarantine using an internal environment to store attached files
C. file sandboxing using a protected environment to analyze and simulate the behavior of unknown files
D. crypto file ransomware protection using a file hash calculation
Correct Answer: C
We use cookies to improve your experience, including essential cookies required for the website to function. By continuing, you agree to our use of cookies. Learn more.
We use cookies to help you navigate efficiently and perform certain functions. You will find detailed information about all cookies under each consent category below.
Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data.
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.
Advertisement cookies are used to provide visitors with customised advertisements based on the pages you visited previously and to analyse the effectiveness of the ad campaigns.
Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.