200-125 Exam
Amazing ccna 200 125 pdf secrets
We provide real 200 125 ccna exam questions and answers braindumps in two formats. Download PDF & Practice Tests. Pass Cisco ccna 200 125 ebook Exam quickly & easily. The ccna 200 125 ebook PDF type is available for reading and printing. You can print more and practice many times. With the help of our Cisco ccna 200 125 pdf dumps pdf and vce product and material, you can easily pass the ccna 200 125 book exam.
P.S. Downloadable 200-125 testing material are available on Google Drive, GET MORE: https://drive.google.com/open?id=1tmPuPMdbI90mJvs8j7thMAwqkALcwK_i
New Cisco 200-125 Exam Dumps Collection (Question 6 - Question 15)
Q1. What can be done to secure the virtual terminal interfaces on a router? (Choose two.)
A. Administratively shut down the interface.
B. Physically secure the interface.
C. Create an access list and apply it to the virtual terminal interfaces with the access-group command.
D. Configure a virtual terminal password and login process.
E. Enter an access list and apply it to the virtual terminal interfaces using the access-class
command.
Answer: D,E
Explanation:
It is a waste to administratively shut down the interface. Moreover, someone can still access the virtual terminal interfaces via other interfaces ->
We cannot physically secure a virtual interface because it is u201cvirtualu201d ->.
To apply an access list to a virtual terminal interface we must use the u201caccess-classu201d command. The u201caccess-groupu201d command is only used to apply an access list to a physical interface -> C is not correct.
The most simple way to secure the virtual terminal interface is to configure a username & password to prevent unauthorized login.
Q2. Which IPv6 address is the all-router multicast group?
A. FF02::1
B. FF02::2
C. FF02::3
D. FF02::4
Answer: B
Explanation:
Well-known IPv6 multicast addresses:
Address Description ff02::1
All nodes on the local network segment
ff02::2
All routers on the local network segment
Q3. Scenario:
Refer to the topology. Your company has decided to connect the main office with three other remote branch offices using point-to-point serial links.
You are required to troubleshoot and resolve OSPF neighbor adjacency issues between the main office and the routers located in the remote branch offices.
An OSPF neighbor adjacency is not formed between R3 in the main office and R4 in the Branch1 office. What is causing the problem?
A. There is an area ID mismatch.
B. There is a Layer 2 issue; an encapsulation mismatch on serial links.
C. There is an OSPF hello and dead interval mismatch.
D. The R3 router ID is configured on R4.
Answer: A
Explanation:
A show running-config command on R3 and R4 shows that R4 is incorrectly configured for area 2:
Q4. What is the first 24 bits in a MAC address called?
A. NIC
B. BIA
C. OUI
D. VAI
Answer: C
Explanation:
An Organizationally Unique Identifier (OUI) is a 24-bit number that uniquely identifies a vendor, manufacturer, or other organization globally or worldwide.
They are used as the first 24 nits of the MAC address to uniquely identify a particular piece of equipment.
Q5. Which Cisco Catalyst feature automatically disables the port in an operational PortFast upon receipt of a BPDU?
A. BackboneFast
B. UplinkFast
C. Root Guard
D. BPDU Guard
E. BPDU Filter
Answer: D
Explanation:
We only enable PortFast feature on access ports (ports connected to end stations). But if someone does not know he can accidentally plug that port to another switch and a loop may occur when BPDUs are being transmitted and received on these ports.
With BPDU Guard, when a PortFast receives a BPDU, it will be shut down to prevent a loop.
Q6. Refer to the exhibit.
An administrator pings the default gateway at 10.10.10.1 and sees the output as shown. At which OSI layer is the problem?
A. data link layer
B. application layer
C. access layer
D. session layer
E. network layer
Answer: E
Explanation:
The command ping uses ICMP protocol, which is a network layer protocol used to propagate control message between host and router. The command ping is often used to verify the network connectivity, so it works at the network layer.
Q7. Refer to the exhibit.
Which rule does the DHCP server use when there is an IP address conflict?
A. The address is removed from the pool until the conflict is resolved.
B. The address remains in the pool until the conflict is resolved.
C. Only the IP detected by Gratuitous ARP is removed from the pool.
D. Only the IP detected by Ping is removed from the pool.
E. The IP will be shown, even after the conflict is resolved.
Answer: A
Explanation:
An address conflict occurs when two hosts use the same IP address. During address assignment, DHCP checks for conflicts using ping and gratuitous ARP. If a conflict is detected, the address is removed from the pool. The address will not be assigned until the administrator resolves the conflict.
(Reference: http://www.cisco.com/en/US/docs/ios/12_1/iproute/configuration/guide/1cddhcp.html)
Q8. Which IPv6 address is valid?
A. 2001:0db8:0000:130F:0000:0000:08GC:140B
B. 2001:0db8:0:130H::87C:140B
C. 2031::130F::9C0:876A:130B
D. 2031:0:130F::9C0:876A:130B
Answer: D
Explanation:
An IPv6 address is represented as eight groups of four hexadecimal digits, each group representing 16 bits (two octets). The groups are separated by colons (:). An example of an IPv6 address is 2001:0db8:85a3:0000:0000:8a2e:0370:7334. The leading 0u2021s in a group can be collapsed using ::, but this can only be done once in an IP address.
Q9. Which two commands correctly verify whether port security has been configured on port FastEthernet 0/12 on a switch? (Choose two.)
A. SW1#show port-secure interface FastEthernet 0/12
B. SW1#show switchport port-secure interface FastEthernet 0/12
C. SW1#show running-config
D. SW1#show port-security interface FastEthernet 0/12
E. SW1#show switchport port-security interface FastEthernet 0/12
Answer: C,D
Explanation:
We can verify whether port security has been configured by using the u201cshow running- configu201d or u201cshow port-security interfaceu201d for more detail. An example of the output of u201cshow port-security interfaceu201d command is shown below:
Q10. Refer to the exhibit.
A network administrator is adding two new hosts to SwitchA. Which three values could be used for the configuration of these hosts? (Choose three.)
A. host A IP address: 192.168.1.79
B. host A IP address: 192.168.1.64
C. host A default gateway: 192.168.1.78
D. host B IP address: 192.168.1.128
E. host B default gateway: 192.168.1.129
F. host B IP address: 192.168.1.190
Answer: A,C,F
Explanation:
Itu2021s a u201crouter-on-a-sticku201d configuration. Which means each host in the VLAN must corresponds with the VLAN configured on the sub-interfaces.
VLAN 10 is configured on fa0/0.10 and VLAN 20 on fa0/0.20. So each hosts in VLAN 10 must use fa0/0.10 IP address as their default gateway, each hosts must also be in the same subnet as fa0/0.10 IP u2013 same with hosts in VLAN 20.
So find out the usable IP addresses on each sub-interfaces u2013 for 192.168.1.78 /27: 192.168.1.65 u2013 .94 and for 192.168.1.130 /26: 192.168.1.128 u2013 .190.
Host A (using port 6 u2013 VLAN 10) must use IP 192.168.1.79, default gateway 192.168.1.78. Host B (using port 9 u2013 VLAN 20) must use IP 192.168.1.190, default gateway 192.168.1.130.
100% Up to date Cisco 200-125 Questions & Answers shared by Allfreedumps, Get HERE: https://www.allfreedumps.com/200-125-dumps.html (New 890 Q&As)