QUESTION 181
A large corporation is reviewing their cloud adoption strategies to ensure that they align with the way the users and customers are accessing the resources. The user base is not limited to a single region but is spread out across the globe, and in many cases the users are in many different remote locations. Internal systems, such as email, messaging and collaboration solutions, and threat response has already been migrated to the cloud. Considering the consumption model and scalability, which solution is appropriate for a long-term cloud adoption strategy?
A. IaaS
B. SaaS
C. private cloud
D. public cloud
Correct Answer: B
QUESTION 182
When a traditional network is transformed to a hierarchical network, the state information in the control plane is reduced so that changes in one area of the network do not result in changes in the routing table on devices half-way around the globe. What is a potential tradeoff in these cases?
A. increased routing table size
B. suboptimal use of available resources
C. vertical split of failure domains
D. horizontal split of failure domains
Correct Answer: B
QUESTION 183
Which interface between the controller and the networking device enables the two to communicate and allows the controller to program the data plane forwarding tables of the networking device?
A. northbound interface
B. application programming interface
C. controller interface
D. southbound interface
Correct Answer: D
QUESTION 184
The API of an SDN controller named CTL-A uses the HTTP POST method and the same URL for all resources. The JSON body of each message is used to get information for specific resources and operations. The API of a SDN controller named CTL-B uses HTTP CRUD methods and a uniform interface with different URLs for each resource. Which API type is used by each SDN controller?
A. CTL-A and CTL-B have a non-RESTful API.
B. CTL-B uses a RESTful API and CTL-A has an HTTP-based API.
C. CTL-A and CTL-B have a RESTful API.
D. CTL-A uses a RESTful API and CTL-B has an HTTP-based API.
Correct Answer: B
QUESTION 185
IntServ and DiffServ models are intended to standardize QoS. Conceptually, both models are competing, but in practice they often are more complementary. Therefore, these models are often co-deployed in network QoS implementations. Which decision by IntServ makes it practical on network links where bandwidth is at a premium?
A. IP precedence and its successor
B. dynamic services code points
C. per-plow admission control
D. per-hop behavior
Correct Answer: C
QUESTION 186
Which is a feature of EVPN?
A. EVPN can integrate Layer 3 services only over the same VPN.
B. PE that participate in the EVPN instances learn customer MAC routes in the data plane using the MP-BGP.
C. EVPN supports all-active multihoming and PE load-balancing using ECMP.
D. EVPN type 3 route refers to MAC/IP advertisement route.
Correct Answer: C
QUESTION 187
A business requirement is supplied to an architect from a car manufacturer stating their business model is changing to just-in-time manufacturing and a new network is required, the manufacturer does not produce all of the specific components in-house, which area should the architect focus on initially?
A. Low Latency Infrastructure
B. Zero Trust Networking
C. Automation
D. Modularity
Correct Answer: C
QUESTION 188
Company XYZ wants to implement an IPS device to detect and block well-known attacks against their network. They want a design solution where all packets that are forwarded to the network are checked against a signature database before being allowed through. This check must be done with the minimum effect on performance. Which design is recommended?
A. Deploy and IPS in front of the firewall in in-line mode.
B. Deploy an IPS in front of the firewall in promiscuous mode.
C. Deploy an IPS behind the firewall in promiscuous mode.
D. Deploy an IPS behind the firewall in in-line mode.
Correct Answer: D
QUESTION 189
Company XYZ is connecting multiple campus sites over a Metropolitan Area Network The company wants to revisit their design to comply with these requirements:
1. Government has mandated that the networks be lPv6-ready by the end of the year.
2. Maintain IPv4 and lPv6 transports.
3. Communication between non-IPv4 devices and IPv6 devices should be done based on lPv6 transport
Which two transition techniques could be included in the design to meet the customer’s requirements? (Choose two.)
A. dual stack
B. ISATAP tunneling
C. static NAT
D. NAT64
E. GRE tunneling
Correct Answer: BD
QUESTION 190
As a service provider is implementing Strong Access Control Measures, which two of the following PCI Data Security Standard requirements must be met? (Choose two.)
A. Restrict access to cardholder data to on a need-to-know basis.
B. Assign a unique ID to each person with computer access.
C. Encrypt transmission of cardholder data across open or public networks.
D. Protect stored cardholder data.
E. Each location must require validating PCI compliance if business has multiple locations.
Correct Answer: AB
QUESTION 191
A network uses an SDN architecture with switches and a centralized controller. What should be on the switches but not on the controller?
A. a northbound interface
B. a southbound interface
C. control plane functions
D. data plane functions
Correct Answer: D
QUESTION 192
Which security architecture component offers streamlined security operations, ease of use, and visibility across all network security elements, independent of location or form factor?
A. distributed enforcement
B. threat-centric protection
C. central command and control
D. integrated actionable intelligence
Correct Answer: C
QUESTION 193
lf the desire is to connect virtual network functions together to accommodate different types of network service connectivity, what must be deployed?
A. daisy chaining
B. switching
C. bridging
D. linking
E. service chaining
Correct Answer: E
QUESTION 194
Which component of the SDN architecture automatically ensures that application traffic is routed according to policies established by network administrators?
A. packet forwarding engine
B. SDN controller
C. northbound API
D. southbound API
Correct Answer: B
QUESTION 195
A customer migrates from a traditional Layer 2 data center network into a new SDN-based, spine-and-leaf VXLAN data center within the same location. Its applications cannot be readdressed, and the customer does not want to perform the migration in a single operation. How should the legacy network and new network be connected?
A. via a Layer 2 trunk and Layer 3 routed links to border leaf switches
B. via Layer 3 links to border leaf switches
C. via a Layer 2 trunk and Layer 3 routed links to spine switches
D. via a Layer 2 trunk to border leaf switches
Correct Answer: D
QUESTION 196
Company XYZ plans to run OSPF on a DMVPN network. They want to use spoke-to-spoke tunnels in the design. What is a drawback or concern in this type of design?
A. Manual configuration of the spokes with the appropriate priority will be needed.
B. There will be split-horizon issue at the hub.
C. Manual configuration of the spoke IP address on the hub will be needed.
D. Additional host routes will be inserted into the routing tables.
Correct Answer: A
QUESTION 197
Which layer of the SDN architecture orchestrates how the applications are given the resources available in the network?
A. control layer
B. orchestration layer
C. southbound API
D. northbound API
Correct Answer: A
QUESTION 198
The SD-WAN architecture is composed of separate orchestration, management, control, and data planes. Which activity happens at the orchestration plane?
A. decision-making process on where traffic flows
B. central configuration and monitoring
C. packet forwarding
D. automatic onboarding of the SD-WAN routers into the SD-WAN overlay
Correct Answer: D
QUESTION 199
Company XYZ is running SNMPv1 in their network and understands that it has some flaws. They want to change the security design to implement SNMPv3 in the network. Which network threat is SNMPv3 effective against?
A. DDoS attack
B. masquerade threats
C. brute force dictionary attack
D. man-in-the-middle attack
Correct Answer: B
QUESTION 200
Which action must be taken before new VoIP systems are implemented on a network to ensure that the network is ready to handle the traffic?
A. Evaluate bandwidth utilization and connection quality.
B. Enable special requirements such as direct DID lines on pickup.
C. Make recommendations to limit the size of the half-open session table on routers.
D. Check if anomaly detection is enabled for SIP and H.323 on Layer 3 devices.
Correct Answer: A
We use cookies to improve your experience, including essential cookies required for the website to function. By continuing, you agree to our use of cookies. Learn more.
We use cookies to help you navigate efficiently and perform certain functions. You will find detailed information about all cookies under each consent category below.
Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data.
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.
Advertisement cookies are used to provide visitors with customised advertisements based on the pages you visited previously and to analyse the effectiveness of the ad campaigns.
Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.