QUESTION 21
Which of the following statements is correct about the differences between NSR and NSF?
A. Both NSR and NSF require the collaboration of neighboring routers.
B. NSR requires the collaboration of neighboring routers.
C. NSF requires the collaboration of neighboring routers.
D. NSF does not require the collaboration of neighboring routers.
Correct Answer: C
QUESTION 22
On the campus network shown, IPv6 is deployed for service tests. Four routers are deployed on the network, and these routers use OSPFv3 for network connectivity. Which of the following statements about LSAs generated by the OSPFV3 network is incorrect?

A. R1 generates Router-LSAs describing interface information and receives Router-LSAs generated by R2 and R3.
B. R2 functions as an area border router (ABR), generates Inter-Area-Prefix-LSAs that describe the IPV6 address prefix of area 1, and advertises these Inter-Area-Prefix-LSAs to R1 and R3.
C. R1 receives two Link-LSAs generated by R2. The two Link-LSAs describe information about the two links connected to R2.
D. The LSDB of R1 contains Network-LSAs generated by R3, indicating that R3 may be the DR on the local link.
Correct Answer: C
QUESTION 23
VXLAN works based on UDP encapsulation. It encapsulates Ethernet data frames into UDP packets, which is called MAC-in-UDP encapsulation.
A. TRUE
B. FALSE
Correct Answer: A
QUESTION 24
Which of the following types of authorization information can be delivered by a RADIUS server after a client passes 802.1X authentication?
A. MAC address
B. ACL
C. UCL group
D. VLAN ID
Correct Answer: BCD
QUESTION 25
Which of the following is not one of the three roles defined in policy association?
A. Authentication control point
B. Policy enforcement point
C. Authentication execution point
D. Terminal
Correct Answer: B
QUESTION 26
Users may fail to be authenticated due to the occurrence of some events during authentication. As such, you can configure an authentication event authorization policy that allows users to access specific network resources. Which of the following statements about authentication event authorization is incorrect?
A. Assume that no network access permission is configured for users who fail authentication or when the authentication server goes down. In this case, when users fail to be authenticated, they remain in pre-connection state and have network access permissions of pre-connection users.
B. Authorization for users who fail to be authenticated is also known as the escape function. The escape solutions vary according to the authentication modes. Some escape solutions are supported by all authentication modes, whereas others are supported only by specific authentication modes.
C. Authentication event authorization supports the following authorization parameters: VLAN, user group, and service scheme.
D. Authentication event authorization will be triggered when the authentication server goes is down or does not respond, or a user is in pre-connection state. However, it will not be triggered when authentication fails.
Correct Answer: D
QUESTION 27
As shown in the figure, SW1 and SW2 forward packets in symmetric IRB mode, and PC1 and Pc2 can communicate with each other. The destination MAC address of the inner data frame in the packet sent from VTEP1 to VTEP2 is MACÂ Â Â Â Â Â Â Â Â . (Use the MAC address identification shown in the figure. Enter only uppercase letters.)

Correct Answer: D
QUESTION 28
On a CloudCampus virtualized campus network, which of the following modes can be used by a fabric to connect to external networks?
A. Layer 2 shared egress
B. Layer 2 exclusive egress
C. Layer 3 exclusive egress
D. Layer 3 shared egress
Correct Answer: ACD
QUESTION 29
Which of the following statements about static VXLAN tunnel configuration are correct?
A. One NVE interface must be created for each BD. If there are multiple BDs, multiple NVE interfaces must be created.
B. One NVE interface must be created for each VXLAN tunnel, and the source and destination IP addresses must be specified for the NVE interface. Therefore, the number of NVE interfaces is the same as the number of VXLAN tunnels on the VTEP.
C. An NVE interface can be associated with multiple VNIs. Therefore, you can create one NVE interface when there are multiple BDs.
D. On an NVE interface, the destination address of a VXLAN tunnel is specified based on the address in the ingress replication list. You can create one NVE interface for multiple VXLAN tunnels.
Correct Answer: CD
QUESTION 30
Which of the following user logout modes are supported by 802.1X authentication?
A. An accounting server forces a user to log out.
B. An authentication server forces a user to log out.
C. A user logs out manually.
D. An access device forces a user to log out.
Correct Answer: BCD
QUESTION 31
Which of the following statements are correct about network deployment design for large or medium-sized virtualized campus network?
A. When DHCP Option 148 is used to deploy switches, the DHCP server needs to provide the TP address and port number of iMaster NCE-Campus to the switches.
B. An independent DHCP server needs to be planned on the network to allocate IP addresses to end users.
C. The service configurations for egress devices on the campus network are similar. It is recommended that the DHCP Option mode be used to implement plug-and-play for these devices.
D. Huawei CloudCampus Solution requires that devices are onboarded on iMaster NCE-Campus before service planning.
Correct Answer: ABD
QUESTION 32
Which of the following statements about BGP EVPN distributed gateways is correct in a scenario where VXLAN tunnels are dynamically established through BGP EVPN?
A. All VBDIF interfaces of a VTEP must be bound to the same VPN instance.
B. Hosts in different BDs cannot communicate with each other at Layer 2.
C. The VPN instances bound to the VBDIF interfaces of the BDs that need to communicate at Layer 3 must be configured with the same L3VNI.
D. When Type 2 routes are advertised between Layer 3 gateways, the routes must carry the L3VNI.
Correct Answer: B
QUESTION 33
iMaster NCE-Campus provides the terminal identification function to display the terminal type, operating system, and manufacturer information.
A. TRUE
B. FALSE
Correct Answer: A
QUESTION 34
Both SNMP and NETCONF can be used to manage network devices. Which of the following statements about the two protocols is correct?
A. When SNMP is used to manage Huawei switches, SNMP parameters must be manually configured for each switch by default.
B. Both SNMP and NETCONF manage objects through management information bases (MIBs) on network devices.
C. Both SNMP and NETCONF use the client/server architecture. The network management station (NMS) functions as the server, and the managed network devices function as clients.
D. When NETCONF is used Is to manage Huawei switches, NETCONF parameters must be manually configured for each switch by default.
Correct Answer: A
QUESTION 35
LLDP is a link layer discovery protocol defined in IEEE 802.1ab. Because it works at the data link layer, LLDP cannot obtain the management IP addresses of the device’s neighbors.
A. TRUE
B. FALSE
Correct Answer: B
QUESTION 36
Free mobility is deployed on a campus network through iMaster NCE-Campus. To enable policy enforcement point to obtain IP-security group entries, which of the following methods can be used?
A. iMaster NCE-Campus proactively pushes IP-security group entries to policy enforcement points regardless of the scenario.
B. If the policy enforcement point is not an authentication point, administrators need to configure IP-security group entry subscription on iMaster NCE-Campus, which then pushes IP-Group entries to the policy enforcement point.
C. Configure the authentication point as the policy enforcement point.
D. If the policy enforcement point is not an authentication point, the authentication point proactively pushes IP-security group entries to it.
Correct Answer: BC
QUESTION 37
In the following figure, a GRE tunnel is established between Ri and R2. If the ping -a 10.1.1.1 10.3.1.1 command is run on R1, which of the following statements is correct about the ICMP packet sent by GE0/0/1 of R1?

A. The packet will be encapsulated using GRE, and the source and destination IP addresses in the inner IP header are 10.1.1.1 and 10.0.12.2, respectively.
B. The packet will be encapsulated using GRE, and the source and destination IP addresses in the inner IP header are 10.1.1.1 and 10.3.1.1, respectively.
C. The packet will be encapsulated using GRE, and the source and destination IP addresses in the outer IP header are 10.0.12.1 and 10.0.12.2, respectively.
D. The packet will be encapsulated using GRE, and the source and destination IP addresses in the outer IP header are 10.0.12.1 and 10.3.1.1, respectively.
Correct Answer: BC
QUESTION 38
Which of the following channels are involved in Huawei SD-WAN Solution?
A. Data channel
B. Management channel
C. Orchestration channel
D. Control channel
Correct Answer: ABD
QUESTION 39
Which of the following is a data encryption algorithm?
A. SHA-256
B. SHA1
C. MD5
D. DES
Correct Answer: D
QUESTION 40
On the SD-WAN network shown in this figure, the HQ has two hub sites, which are co-sited with RRs. The total of number of sites in different areas is 350, including 220 dual-gateway sites and 130 single-gateway sites. As calculated,          BGP peer relationships need to be established for each RR. (Enter only digits.)

Correct Answer: 570
We use cookies to improve your experience, including essential cookies required for the website to function. By continuing, you agree to our use of cookies. Learn more.
We use cookies to help you navigate efficiently and perform certain functions. You will find detailed information about all cookies under each consent category below.
Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data.
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.
Advertisement cookies are used to provide visitors with customised advertisements based on the pages you visited previously and to analyse the effectiveness of the ad campaigns.
Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.