Cisco 350-401 today updated questions - Verified by Cisco Experts

Implementing Cisco Enterprise Network Core Technologies (ENCOR) Questions and Answers

Question 1

When is the Design workflow used In Cisco DNA Center?

Options:

in a greenfield deployment, with no existing infrastructure

in a greenfield or brownfield deployment, to wipe out existing data

in a brownfield deployment, to modify configuration of existing devices in the network

in a brownfield deployment, to provision and onboard new network devices

Question 2

Refer to the exhibit.

Which command when applied to the Atlanta router reduces type 3 LSA flooding into the backbone area and summarizes the inter-area routes on the Dallas router?

Options:

Atlanta(config-route)#area 0 range 192.168.0.0 255.255.248.0

Atlanta(config-route)#area 0 range 192.168.0.0 255.255.252.0

Atlanta(config-route)#area 1 range 192.168.0.0 255.255.252.0

Atlanta(config-route)#area 1 range 192.168.0.0 255.255.248.0

Question 3

Drag and drop the characteristics from the left onto the routing protocols they describe on the right.

Options:

Question 4

Refer to the exhibit.

An engineer is troubleshooting an application running on Apple phones. The application Is receiving incorrect QoS markings. The systems administrator confirmed that ail configuration profiles are correct on the Apple devices. Which change on the WLC optimizes QoS for these devices?

Options:

Enable Fastlane

Set WMM to required

Change the QoS level to Platinum

Configure AVC Profiles

Question 5

Why is an AP joining a different WLC than the one specified through option 43?

Options:

The WLC is running a different software version.

The API is joining a primed WLC

The AP multicast traffic unable to reach the WLC through Layer 3.

The APs broadcast traffic is unable to reach the WLC through Layer 2.

Question 6

Refer to the exhibit.

An engineer must establish eBGP peering between router R3 and router R4. Both routers should use their loopback interfaces as the BGP router ID. Which configuration set accomplishes this task?

Options:

R3(config)#router bgp 200

R3(config-router)#neighbor 10.4.4.4 remote-as 100

R3(config-router)# neighbor 10.4.4.4 update-source Loopback0

R4(config)#router bgp 100

R4(config-router)#neighbor 10.3.3.3 remote-as 200

R4(config-router)#network 10.3.3.3 update-source Loopback0

R3(config)#router bgp 200

R3(config-router)#neighbor 10.24.24.4 remote-as 100

R3(config-router)#neighbor 10.24.24.4 update-source Loopback0

R4(config)#router bgp 100

R4(config-router)#neighbor 10.24.24.3 remote-as 200

R4(config-router)#neighbor 10.24.24.3 update-source Loopback0

R3(config)#router bgp 200

R3(config-router)#neighbor 10.4.4.4 remote-as 100

R3(config-router)#bgp router-id 10.3.3.3

R4(config)#router bgp 100

R4(config-router)#neighbor 10.3.3.3 remote-as 200

R4(config-router)#bgp router-id 10.4.4.4

R3(config)#router bgp 200

R3(config-router)#neighbor 10.24.24.4 remote-as 100

R3(config-router)#bgp router-id 10.3.3.3

R4(config)#router bgp 100

R4(config-router)#neighbor 10.24.24.3 remote-as 200

R4(config-router)#bgp router-id 10.4.4.4

Question 7

Refer to the exhibit.

What is the result when a technician adds the monitor session 1 destination remote vlan 223 command1?

Options:

The RSPAN VLAN is replaced by VLAN 223.

RSPAN traffic is sent to VLANs 222 and 223

An error is flagged for configuring two destinations.

RSPAN traffic is split between VLANs 222 and 223.

Question 8

Refer to the exhibit.

An engineer reconfigures the pot-channel between SW1 and SW2 from an access port to a trunk and immediately notices this error in SW1's log.

Which command set resolves this error?

Options:

Option A

Option B

Option C

Option D

Question 9

Refer to the exhibit.

How does the router handle traffic after the CoPP policy is configured on the router?

Options:

Traffic coming to R1 that does not match access list SNMP is dropped.

Traffic coming to R1 that matches access list SNMP is policed.

Traffic passing through R1 that matches access list SNMP is policed.

Traffic generated by R1 that matches access list SNMP is policed.

Question 10

Refer to the exhibit.

Which Python code snippet prints the descriptions of disabled interfaces only?

Options:

Option A

Option B

Option C

Option D

Question 11

How is a data modeling language used?

Options:

To enable data lo be easily structured, grouped, validated, and replicated

To represent finite and well-defined network elements that cannot be changed

To model the flows of unstructured data within the infrastructure

To provide human readability to scripting languages

Question 12

Which technology is used as the basis for the cisco sd-access data plane?

Options:

IPsec

LISP

VXLAN

802.1Q

Question 13

What is provided by the Stealthwatch component of the Cisco Cyber Threat Defense solution?

Options:

real-time threat management to stop DDoS attacks to the core and access networks

real-time awareness of users, devices and traffic on the network

malware control

dynamic threat control for web traffic

Question 14

Refer to the exhibit.

An engineer attempts to bundle interface Gi0/0 into the port channel, but it does not function as expected. Which action resolves the issue?

Options:

Configure channel-group 1 mode active on interface Gi0/0.

Configure no shutdown on interface Gi0/0

Enable fast LACP PDUs on interface Gi0/0.

Set LACP max-bundle to 2 on interface Port-channeM

Question 15

Which threat defence mechanism, when deployed at the network perimeter, protects against zero-day attacks?

Options:

intrusion prevention

stateful inspection

sandbox

SSL decryption

Question 16

An engineer must configure the strongest password authentication to locally authenticate on a router. Which configuration must be used?

Options:

Option A

Option B

Option C

Option D

Question 17

Refer to the exhibit. A network operator is attempting to configure an IS-IS adjacency between two routers, but the adjacency cannot be established. To troubleshoot the problem, the operator collects this debugging output. Which interfaces are misconfigured on these routers?

Options:

The peer router interface is configured as Level 1 only, and the R2 interface is configured as Level 2 only

The R2 interface is configured as Level 1 only, and the Peer router interface is configured as Level 2 only

The R2 interface is configured as point-to-point, and the peer router interface is configured as multipoint.

The peer router interface is configured as point-as-point, and the R2 interface is configured as multipoint.

Question 18

Which OSPF networks types are compatible and allow communication through the two peering devices?

Options:

broadcast to nonbroadcast

point-to-multipoint to nonbroadcast

broadcast to point-to-point

point-to-multipoint to broadcast

Question 19

An engineer must create an EEM applet that sends a syslog message in the event a change happens in the network due to trouble with an OSPF process. Which action should the engineer use?

Options:

action 1 syslog msg "OSPF ROUTING ERROR"

action 1 syslog send "OSPF ROUTING ERROR"

action 1 syslog pattern "OSPF ROUTING ERROR"

action 1syslog write "OSPF ROUTING ERROR"

Question 20

Drag and drop characteristics of PIM dense mode from the left to the right.

Options:

Question 21

Drag and drop the descriptions from the left onto the routing protocol they describe on the right.

Options:

Question 22

When firewall capabilities are considered, which feature is found only in Cisco next-generation firewalls?

Options:

malware protection

stateful inspection

traffic filtering

active/standby high availability

Question 23

An engineer creates the configuration below. Drag and drop the authentication methods from the left into the order of priority on the right. Not all options are used.

Options:

Question 24

Refer to the exhibit.

Which command set must be added to the configuration to analyze 50 packets out of every 100?

Options:

Option A

Option B

Option C

Option D

Question 25

Which two items are found in YANG data models? (Choose two.)

Options:

HTTP return codes

rpc statements

JSON schema

container statements

XML schema

Question 26

Refer to the exhibit.

After configuring HSRP an engineer enters the show standby command. Which two facts are derived from the output? (Choose two.)

Options:

The router with IP 10.10 1.3 is active because it has a higher IP address

If Fa0/0 is shut down, the HSRP priority on R2 becomes 80

R2 Fa1/0 regains the primary role when the link comes back up

R2 becomes the active router after the hold time expires.

R2 is using the default HSRP hello and hold timers.

Question 27

Refer to the exhibit.

An engineer is installing a new pair of routers in a redundant configuration. Which protocol ensures that traffic is not disrupted in the event of a hardware failure?

Options:

HSRPv1

GLBP

VRRP

HSRPv2

Question 28

Refer to the exhibit .

Which command must be configured for RESTCONF to operate on port 8888?

Options:

ip http port 8888

restconf port 8888

ip http restconf port 8888

restconf http port 8888

Question 29

Which benefit is realized by implementing SSO?

Options:

IP first-hop redundancy

communication between different nodes for cluster setup

physical link redundancy

minimal network downtime following an RP switchover

Question 30

What is an emulated machine that has dedicated compute memory, and storage resources and a fully installed operating system?

Options:

Container

Mainframe

Host

virtual machine

Question 31

Drag and drop the characteristics from the left onto the infrastructure deployment models on the right.

Options:

Question 32

What is the JSON syntax that is formed the data?

Options:

{'Name'';''Bob johnon';''Age': Sevenfive,''Alive'': true,''FavoriteFoods';[''Cereal';''Mustard';''Onions'}}

{'Name'':''Bob johnon':''Age': 75 ''Alive'': true,''Favorite Foods';[''Cereal';''Mustard';''Onions'}}

{'Name'':''Bob johnon':''Age: 75,''Alive: true, FavoriteFoods;[Cereal, Mustard';''Onions}}

{'Name'': 'Bob johnon','Age': 75,'Alive': true,''FavoriteFoods': 'Cereal';'Mustard','Onions'}}

Question 33

Which two characteristics apply to the endpoint security aspect of the Cisco Threat Defense architecture? (Choose two.)

Options:

detect and black ransomware in email attachments

outbound URL analysis and data transfer controls

user context analysis

blocking of fileless malware in real time

cloud-based analysis of threats

Question 34

A company requires a wireless solution to support its mam office and multiple branch locations. All sites have local Internet connections and a link to the main office lor corporate connectivity. The branch offices are managed centrally. Which solution should the company choose?

Options:

Cisco United Wireless Network

Cisco DNA Spaces

Cisco Catalyst switch with embedded controller

Cisco Mobility Express

Question 35

Refer to the exhibit. A network engineer checks connectivity between two routers. The engineer can ping the remote endpoint but cannot see an ARP entry. Why is there no ARP entry?

Options:

The ping command must be executed in the global routing table.

Interface FastEthernet0/0 Is configured in VRF CUST-A, so the ARP entry is also in that VRF.

When VRFs are used. ARP protocol must be enabled In each VRF.

When VRFs are used. ARP protocol is disabled in the global routing table.

Question 36

Which method displays text directly into the active console with a synchronous EEM applet policy?

Options:

event manager applet boom

event syslog pattern 'UP'

action 1.0 gets 'logging directly to console'

event manager applet boom

event syslog pattern 'UP'

action 1.0 syslog priority direct msg 'log directly to console'

event manager applet boom

event syslog pattern 'UP'

action 1.0 puts 'logging directly to console'

event manager applet boom

event syslog pattern 'UP'

action 1.0 string 'logging directly to console'

Question 37

Drag and drop the characteristics from the left onto the deployment types on the right.

Options:

Question 38

Refer to the exhibit.

Which command set must be applied on R1 to establish a BGP neighborship with R2 and to allow communication from R1 to reach the networks?

Options:

Option A

Option B

Option C

Option D

Question 39

Refer to the exhibit.

Object tracking has been configured for VRRP-enabled routers Edge-01 and Edge-02 Which commands cause Edge-02 to preempt Edge-01 in the event that interface G0/0 goes down on Edge-01?

Options:

Option A

Option B

Option C

Option D

Question 40

Refer to the exhibit.

What are two effect of this configuration? (Choose two.)

Options:

Inside source addresses are translated to the 209.165.201.0/27 subnet.

It establishes a one-to-one NAT translation.

The 10.1.1.0/27 subnet is assigned as the inside global address range.

The 209.165.201.0/27 subnet is assigned as the outside local address range.

The 10.1.1.0/27 subnet is assigned as the inside local addresses.

Question 41

An administrator is configuring NETCONF using the following XML string. What must the administrator end the request with?

Options:

]]>]]>

Question 42

Which protocol is implemented to establish secure control plane adjacencies between Cisco SD-WAN nodes?

Options:

IKF

TLS

IPsec

ESP

Question 43

Refer to the exhibit.

Which configuration must be applied to the HQ router to set up a GRE tunnel between the HQ and BR routers?

Options:

Option A

Option B

Option C

Option D

Question 44

Refer to the exhibit. Which python code parses the response and prints “18:32:21.474 UTC sun Mar 10 2019?

Options:

print(response['resut'][0||'simple_time']}

print(response[result']['body']['simple_time']}

print(response['body']['simple_time']}

print(response[jresult']['body']['simple_time']}

Question 45

Drag and drop the LISP components on the left to their descriptions on the right. Not all options are used.

Options:

Question 46

What is used to validate the authenticity of the client and is sent in HTTP requests as a JSON object?

Options:

SSH

HTTPS

JWT

TLS

Question 47

Reter to the exhibit.

An administrator troubleshoots intermittent connectivity from internal hosts to an external public server. Some internal hosts can connect to the server while others receive an ICMP Host Unreachable message and these hosts change over time. What is the cause of this issue?

Options:

The translator does not use aOdress overloading

The NAT ACL does not match alt internal hosts

The NAT ACL and NAT pool share the same name

The NAT pool netmask rs excessively wide

Question 48

Which resource is able to be shared among virtual machines deployed on the same physical server?

Options:

applications

disk

VM configuration file

operating system

Question 49

What is the purpose of an RP in PIM?

Options:

send join messages toward a multicast source SPT

ensure the shortest path from the multicast source to the receiver

receive IGMP joins from multicast receivers

secure the communication channel between the multicast sender and receiver

Question 50

What is a characteristics of traffic policing?

Options:

lacks support for marking or remarking

must be applied only to outgoing traffic

can be applied in both traffic directions

queues out-of-profile packets until the buffer is full

Question 51

Refer to the exhibit.

An engineer must configure an ERSPAN session with the remote end of the session 10.10.0.1. Which commands must be added to complete the configuration?

Options:

Option A

Option B

Option C

Option D

Question 52

What are the main components of Cisco TrustSec?

Options:

Cisco ISE and Enterprise Directory Services

Cisco ISE. network switches, firewalls, and routers

Cisco ISE and TACACS+

Cisco ASA and Cisco Firepower Threat Defense

Question 53

Refer to the exhibit.

How should the script be completed so that each device configuration is saved into a JSON-formatted file under the device name?

Options:

Option

Question 54

What is one main REST security design principle?

Options:

separation of privilege

password hashing

confidential algorithms

OAuth

Question 55

Refer to the exhibit.

What does the snippet of code achieve?

Options:

It creates a temporary connection to a Cisco Nexus device and retrieves a token to be used for API calls.

It opens a tunnel and encapsulates the login information, if the host key is correct.

It opens an ncclient connection to a Cisco Nexus device and maintains it for the duration of the context.

It creates an SSH connection using the SSH key that is stored, and the password is ignored.

Question 56

Refer to the exhibit.

The IP SLA is configured in a router. An engineer must configure an EEM applet to shut down the interface and bring it back up when there is a problem with the IP SLA. Which configuration should the engineer use?

Options:

event manager applet EEM_IP_SLA

event track 10 state down

event manager applet EEM_IP_SLA

event track 10 state unreachable

event manager applet EEM_IP_SLA

event sla 10 state unreachable

event manager applet EEM_IP_SLA

event sla 10 state down

Question 57

Refer to the exhibit.

Which troubleshooting a routing issue, an engineer issues a ping from S1 to S2. When two actions from the initial value of the TTL? (Choose two.)

Options:

The packet reaches R3, and the TTL expires

R2 replies with a TTL exceeded message

R3 replies with a TTL exceeded message.

The packet reaches R2 and the TTL expires

R1 replies with a TTL exceeded message

The packet reaches R1 and the TTL expires.

Question 58

An engineer is concerned with the deployment of new application that is sensitive to inter-packet delay variance. Which command configures the router to be the destination of jitter measurements?

Options:

Router(config)# ip sla responder udp-connect 172.29.139.134 5000

Router(config)# ip sla responder tcp-connect 172.29.139.134 5000

Router(config)# ip sla responder udp-echo 172.29.139.134 5000

Router(config)# ip sla responder tcp-echo 172.29.139.134 5000

Question 59

How does EIGRP differ from OSPF?

Options:

EIGRP is more prone to routing loops than OSPF

EIGRP supports equal or unequal path cost, and OSPF supports only equal path cost.

EIGRP has a full map of the topology, and OSPF only knows directly connected neighbors

EIGRP uses more CPU and memory than OSPF

Question 60

How is 802.11 traffic handled in a fabric-enabled SSID?

Options:

centrally switched back to WLC where the user traffic is mapped to a VXLAN on the WLC

converted by the AP into 802.3 and encapsulated into VXLAN

centrally switched back to WLC where the user traffic is mapped to a VLAN on the WLC

converted by the AP into 802.3 and encapsulated into a VLAN

Question 61

Which AP mode allows an engineer to scan configured channels for rogue access points?

Options:

sniffer

monitor

bridge

local

Question 62

Refer to the exhibit.

An engineer must modify the access control list EGRESS to allow all IP traffic from subnet 10.1.10.0/24 to 10.1.2.0/24. The access control list is applied in the outbound direction on router interface GigabitEthemet 0/1. Which configuration commands can the engineer use to allow this traffic without disrupting existing traffic flows?

Options:

Option A

Option B

Option C

Option D

Question 63

What is a fact about Cisco EAP-FAST?

Options:

It does not require a RADIUS server certificate.

It requires a client certificate.

It is an IETF standard.

It operates in transparent mode.

Question 64

What are two benefits of virtual switching when compared to hardware switching? (Choose two.)

Options:

increased MTU size

hardware independence

VM-level isolation

increased flexibility

extended 802.1Q VLAN range

Question 65

Refer to the exhibit Drag and drop the snippets into the RESTCONF request to form the request that returns this response Not all options are used

Options:

Question 66

Refer to the exhibit.

An engineer must ensure that all traffic leaving AS 200 will choose Link 2 as the exit point. Assuming that all BGP neighbor relationships have been formed and that the attributes have not been changed on any of the routers, which configuration accomplish task?

Options:

R4(config-router)bgp default local-preference 200

R3(config-router)neighbor 10.1.1.1 weight 200

R3(config-router)bgp default local-preference 200

R4(config-router)nighbor 10.2.2.2 weight 200

Question 67

Refer to the exhibit.

Which configuration allows Customer2 hosts to access the FTP server of Customer1 that has the IP address of 192.168.1.200?

Options:

ip route vrf Customerl 172.16.1.0 255.255.255.0 172.16.1.1 global

ip route vrf Customer 192.168.1.200 255.255.255.255 192.168.1.1 global

ip route 192.168.1.0 255.255.255.0 VlanlO

ip route 172.16.1.0 255.255.255.0 Vlan20

ip route vrf Customerl 172.16.1.0 255.255.255.0 172.16.1.1 Customer2

ip route vrf Customer 192.168.1.200 255.255.255.255 192.168.1.1 Customerl

ip route vrf Customerl 172.16.1.0 255.255.255.0 172.16.1.1 Customerl

ip route vrf Customer 192.168.1.200 255.255.255.255 192.168.1.1 Customer2

ip route vrf Customerl 172.16.1.1 255.255.255.255 172.16.1.1 global

ip route vrf Customer 192.168.1.200 255.255.255.0 192.168.1.1 global

ip route 192.168.1.0 255.255.255.0 VlanlO

ip route 172.16.1.0 255.255.255.0 Vlan20

Question 68

Refer to the exhibit. An engineer is configuring an EtherChannel between Switch1 and Switch2 and notices the console message on switch2. Based on the output, which action resolves this issue?

Options:

Configure less member ports on Switch2.

Configure the same port channel interface number on both switches

Configure the same EtherChannel protocol on both switches

Configure more member ports on Switch1.

Question 69

Refer to the exhibit. An engineer attempts to create a configuration to allow the Blue VRF to leak into the global routing table, but the configuration does not function as expected. Which action resolves this issue?

Options:

Change the access-list destination mask to a wildcard.

Change the source network that Is specified in access-list 101.

Change the route-map configuration to VRF_BLUE.

Change the access-list number in the route map

Question 70

What are two differences between the RIB and the FIB? (Choose two.)

Options:

The FIB is derived from the data plane, and the RIB is derived from the FIB.

The RIB is a database of routing prefixes, and the FIB is the Information used to choose the egress interface for each packet.

FIB is a database of routing prefixes, and the RIB is the information used to choose the egress interface for each packet.

The FIB is derived from the control plane, and the RIB is derived from the FIB.

The RIB is derived from the control plane, and the FIB is derived from the RIB.

Question 71

What is the centralized control policy in a Cisco SD-WAN deployment?

Options:

list of ordered statements that define user access policies

set of statements that defines how routing is performed

set of rules that governs nodes authentication within the cloud

list of enabled services for all nodes within the cloud

Question 72

Which LISP component is required for a LISP site to communicate with a non-LISP site?

Options:

ETR

ITR

Proxy ETR

Proxy ITR

Question 73

Refer to the exhibit.

An engineer is troubleshooting a connectivity issue and executes a traceoute. What does the result confirm?

Options:

The destination server reported it is too busy

The protocol is unreachable

The destination port is unreachable

The probe timed out

Question 74

What is used to perform OoS packet classification?

Options:

the Options field in the Layer 3 header

the Type field in the Layer 2 frame

the Flags field in the Layer 3 header

the TOS field in the Layer 3 header

Question 75

Which algorithms are used to secure REST API from brute attacks and minimize the impact?

Options:

SHA-512 and SHA-384

MD5 algorithm-128 and SHA-384

SHA-1, SHA-256, and SHA-512

PBKDF2, BCrypt, and SCrypt

Question 76

A network engineer is configuring Flexible Netflow and enters these commands

Sampler Netflow1

Mode random one-out-of 100

Interface fastethernet 1/0

Flow-sampler netflow1

Which are two results of implementing this feature instead of traditional Netflow? (Choose two.)

Options:

CPU and memory utilization are reduced.

Only the flows of top 100 talkers are exported

The data export flow is more secure.

The number of packets to be analyzed are reduced

The accuracy of the data to be analyzed is improved

Question 77

Which controller is capable of acting as a STUN server during the onboarding process of Edge devices?

Options:

vBond

vSmart

vManage

PNP server

Question 78

Where is radio resource management performed in a cisco SD-access wireless solution?

Options:

DNA Center

control plane node

wireless controller

Cisco CMX

Question 79

Refer to the exhibit. POSTMAN is showing an attempt to retrieve network device information from Cisco DNA Center API. What is the issue?

Options:

The URI string is incorrect

The token has expired.

Authentication has failed

The JSON payload contains the incorrect UUID

Question 80

When a wireless client roams between two different wireless controllers, a network connectivity outage is experience for a period of time. Which configuration issue would cause this problem?

Options:

Not all of the controllers in the mobility group are using the same mobility group name.

Not all of the controllers within the mobility group are using the same virtual interface IP address.

All of the controllers within the mobility group are using the same virtual interface IP address.

All of the controllers in the mobility group are using the same mobility group name.

Question 81

Drag and drop the characteristics from the left onto the routing protocols they describe on the right.

Options:

Question 82

How is traffic classified when using Cisco TrustSec technology?

Options:

with the VLAN

with the MAC address

with the IP address

with the security group tag

Question 83

What is the rose of the vSmart controller in a Cisco SD-WN environment?

Options:

it performs authentication and authorization

it manages the control plane.

it is the centralized network management system

it manages the data plane

Question 84

When a DNS host record is configured for a new Cisco AireOS WLC, which hostname must be added to allow APs to successfully discover the WLC?

Options:

CONTROLLER-CAPWAP-CISCO

CISCO-CONTROLLER-CAPWAP

CAPWAP-CISCO-CONTROLLER

CISCO-CAPWAP-CONTROLLER

Question 85

Reler to the exhibit The EtherChannel between SW1 and SW2 is not operational. Which a coon will resolve the issue?

Options:

Configure channel-group 1 mode active on GVO and G1 1 of SW2.

Configure twitchport trunk encapsulation dot1q on SW1 and SW2.

Configure channel-group 1 mode active on Gl'O and GM of SW1 .

Configure switchport mode dynamic desirable on SW1 and SW2

Question 86

By default, which virtual MAC address does HSRP group 41 use?

Options:

0c:5e:ac:07:0c:29

00:05:0c:07:ac:41

004:41:73:18:84:29

00:00:0c:07:ac:29

Question 87

A customer wants to connect a device to an autonomous Cisco AP configured as a WGB. The WGB is configured properly: however, it fails to associate to a CAPWAP- enabled AP. Which change must be applied in the advanced WLAN settings to resolve this issue?

Options:

Enable Aironet IE.

Enable passive client.

Disable AAA override.

Disable FlexConnect local switching.

Question 88

Which technology enables a redundant supervisor engine to take over when the primary supervisor engine fails?

Options:

NSF

graceful restart

SSO

FHRP

Question 89

An engineer is describing QoS to a client. Which two facts apply to traffic policing? (Choose two.)

Options:

Policing adapts to network congestion by queuing excess traffic

Policing should be performed as close to the destination as possible

Policing drops traffic that exceeds the defined rate

Policing typically delays the traffic, rather than drops it

Policing should be performed as close to the source as possible

Question 90

: 194

Refer to the exhibit.

Which type of antenna is shown on the radiation patterns?

Options:

Yagi

dipole

patch

omnidirectional

Question 91

Refer to the exhibit.

Both controllers are in the same mobility group. Which result occurs when client 1 roams between APs that are registered to different controllers in the same WLAN?

Options:

Client 1 contact controller B by using an EoIP tunnel.

CAPWAP tunnel is created between controller A and controller B.

Client 1 users an EoIP tunnel to contact controller A.

The client database entry moves from controller A to controller B.

Question 92

Simulation 07

Options:

Question 93

Which free application has the ability to make REST calls against Cisco DNA Center?

Options:

API Explorer

REST Explorer

Postman

Mozilla

Question 94

Which two methods are used to interconnect two Cisco SD-Access Fabric sites? (Choose two.)

Options:

SD-Access transit

fabric interconnect

wireless transit

IP-based transit

SAN transit

Question 95

Refer to the exhibit. A network administrator must configure router B to allow traffic only from network 10.1002.0 to networks outside of router 0. Which configuration must be applied?

Options:

Option A

Option B

Option C

Option D

Question 96

If AP power level is increased from 25 mW to 100 mW. what is the power difference in dBm?

Options:

6 dBm

14 dBm

17 dBm

20 dBm

Question 97

Which configuration filters out DOT1X messages in the format shown below from being sent toward Syslog server 10.15.20.33?

Options:

Option A

Option B

Option C

Option D

Question 98

Which IP SLA operation requires the IP SLA responder to be configured on the remote end?

Options:

TCP connect

ICMP echo

ICMP jitter

UDP jitter

Question 99

What does the statement print(format(0.8, '.0%')) display?

Options:

80%

.08%

8.8%

Question 100

Based on the router's API output in JSON format below, which Python code will display the value of the “hostname" key?

Options:

Option A

Option B

Option C

Option D

Question 101

Refer to the exhibit. An engineer must configure an ERSPAN tunnel that mirrors traffic from linux1 on Switch1 to Linux2 on Switch2. Which command must be added to the destination configuration to enable the ERSPAN tunnel?

Options:

(config-mon-erspan-dst-src)# origin ip address 172.16.10.10

(config-mon-erspan-dst-src)# erspan-id 172.16.10.10

(config-mon-erspan-dst-src)# no shut

(config-mon-erspan-dst-src)# erspan-id 110

Question 102

A switch is attached to router R1 on its gig 0/0 interface. Fort security reasons, you want to prevent R1 from sending OSPF hellos to the switch. Which command should be enabled to accomplish this?

Options:

R1(config-router)#ip ospf hello disable

R1(config-router)#ip ospf hello-interval 0

R1(config)#passive-interface Gig 0/0

R1(config-router)#passive-interface Gig 0/0

Question 103

Which two results occur if Cisco DNA Center loses connectivity to devices in the SD-Access fabric? (Choose two)

Options:

Cisco DNA Center is unable to collect monitoring data in Assurance.

All devices reload after detecting loss of connection to Cisco DNA Center.

Already connected users are unaffected, but new users cannot connect

Users lose connectivity.

User connectivity is unaffected.

Question 104

Which access control feature does MAB provide?

Options:

user access based on IP address

allows devices to bypass authenticate*

network access based on the physical address of a device

simultaneous user and device authentication

Question 105

An engineer applies this configuration to router R1. How does R1 respond when the user ‘cisco’ logs in?

Options:

It displays the startup conftg and then permits the user to execute commands

It places the user into EXEC mode and permits the user to execute any command

It displays the startup conflg and then terminates the session.

It places the user into EXEC mode but permits the user to execute only the show startup-config command

Question 106

Company policy restricts VLAN 10 to be allowed only on SW1 and SW2. All other VLANs can be on all three switches. An administrator has noticed that VLAN 10 has propagated to SW3. Which configuration corrects the issue?

Options:

SW1(config)#intgi1/1

SW1(config)#switchport trunk allowed vlan 1-9,11-4094

SW2(config)#intgi1/2

SW2(config)#switchport trunk allowed vlan 10

SW2(config)#int gi1/2

SW2(config)#switchport trunk allowed vlan 1-9,11-4094

SWl(config)#intgi1/1

SW1(config)#switchport trunk allowed vlan 10

Question 107

Refer to the exhibit. Which configuration is required to summarize the Area 2 networks that are advertised to Area 0?

Options:

Option A

Option B

Option C

Option D

Load More 350-401 Questions

Month End Sale Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 70percent

Cisco 350-401 Implementing Cisco Enterprise Network Core Technologies (ENCOR) Exam Practice Test

Implementing Cisco Enterprise Network Core Technologies (ENCOR) Questions and Answers

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer: