200-301 Dumps 2022 - New Cisco 200-301 Exam Questions
Free 200-301 braindumps download (200-301 exam dumps Free Updated)
Security Fundamentals
Some of the concepts that will be addressed by this topic include defining core security concepts, describing the elements of the security program, configuring device access using local passwords, and configuring & verifying remote access control lists. Plus, you will be taught how to work with WLAN by utilizing WPA2 PSK & the GUI and how to deploy Layer 2 security traits such as DHCP snooping, dynamic ARP inspection, and port security.
Exam Topics
The Cisco 200-301 test covers six subject areas and each of them has a list of abilities that the applicants must develop. The following are highlights of the modules that are included in this exam:
Network Fundamentals: The first domain measures the expertise of the candidates in the following processes:
- Describing virtualization fundamentals (virtual machines)
- Comparing the types of IPv6 address
- Verifying the IP options for Client Operating Systems (Linux, Windows, or Mac OS)
- Comparing cabling as well as physical interface types
- Setting and verifying IPv4 addressing & subnetting
- Explaining wireless principles
- Identifying cables and interfaces problems
Cisco CCNA 200-301 Practice Test Questions, Cisco CCNA 200-301 Exam Practice Test Questions
The Cisco 200-301 exam is a single test required for obtaining the Cisco Certified Network Associate (CCNA) certification. This certificate assists the professionals in validating their knowledge and skills in the IT fundamentals and serves as a springboard for launching their careers in the field.
NEW QUESTION 272
Which type of wireless encryption is used for WPA2 in preshared key mode?
- A. RC4
- B. TKIP with RC4
- C. AES-256
- D. AES-128
Answer: C
Explanation:
Explanation
We can see in this picture we have to type 64 hexadecimal characters (256 bit) for the WPA2 passphrase so we can deduce the encryption is AES-256, not AES-128.
https://www.cisco.com/c/en/us/support/docs/wireless-mobility/wireless-lan-wlan/67134-wpa2-config.html
NEW QUESTION 273
Refer to the exhibit.
Which outcome is expected when PC_A sends data to PC_B?
- A. The source MAC address is changed.
- B. The source and destination MAC addresses remain the same.
- C. The switch rewrites the source and destination MAC addresses with its own.
- D. The destination MAC address is replaced with ffff.ffff.ffff.
Answer: B
NEW QUESTION 274
Which output displays a JSON data representation?
- A. Option D
- B. Option C
- C. Option B
- D. Option A
Answer: A
Explanation:
JSON data is written as name/value pairs.
A name/value pair consists of a field name (in double quotes), followed by a colon, followed by a value:
"name":"Mark"
JSON can use arrays. Array values must be of type string, number, object, array, boolean or null.
For example:
{
"name":"John",
"age":30,
"cars":[ "Ford", "BMW", "Fiat" ]
}
JSON can have empty object like "taskId":{}
NEW QUESTION 275
Refer to the exhibit.
An engineer is configuring the router to provide static NAT for the webserver Drag and drop the configuration commands from the left onto the letters that correspond to its position in the configuration on the right.
Answer:
Explanation:
NEW QUESTION 276
Refer to the exhibit.
HostA cannot ping HostB.
Assuming routing is properly configured, what could be the cause of this problem?
- A. The Fa0/0 interface on RouterA is on a subnet that cannot be used
- B. The address of SwitchA is a subnet address
- C. HostA is not on the same subnet as its default gateway
- D. The Fa0/0 interface on RouterB is using a broadcast address
- E. The serial interfaces of the routers are not on the same subnet
Answer: E
NEW QUESTION 277
Refer to the exhibit.
If configuring a static default route on the router with the ip route 0.0.0.0 0.0.0.0 10.13.0.1 120 command how does the router respond?
- A. It immediately replaces the existing OSPF route in the routing table with the newly configured static route
- B. It starts sending traffic without a specific matching entry in the routing table to GigabitEthernetO/1
- C. It starts load-balancing traffic between the two default routes
- D. It ignores the new static route until the existing OSPF default route is removed
Answer: D
NEW QUESTION 278
Refer to the exhibit.
After running the code in the exhibit, which step reduces the amount of data that the NETCONF server returns to the NETCONF client, to only the interface's configuration?
- A. Create a JSON filter as a string and pass it to the get_config() method as an argument.
- B. Create an XML filter as a string and pass it to get_config() method as an argument.
- C. Use the Ixml library to parse the data returned by the NETCONF server for the interface's configuration.
- D. Use the JSON library to parse the data returned by the NETCONF server for the interface's configuration.
Answer: D
NEW QUESTION 279
Refer to the exhibit.
What does router R1 use as its OSPF router-ID?
- A. 192.168.0.1
- B. 10.10.1.10
- C. 10.10.10.20
- D. 172.16.15.10
Answer: D
NEW QUESTION 280
If a notice-level messaging is sent to a syslog server, which event has occurred?
- A. A routing instance has flapped
- B. A debug operation is running
- C. A network device has restarted
- D. An ARP inspection has failed
Answer: C
NEW QUESTION 281
DRAG DROP
Answer:
Explanation:
NEW QUESTION 282
How is the native VLAN secured in a network?
- A. separate from other VLANs within the administrative domain
- B. assign it as VLAN 1
- C. give it a value in the private VLAN range
- D. configure it as a different VLAN ID on each end of the link
Answer: D
NEW QUESTION 283
In which two ways does a password manager reduce the chance of a hacker stealing a users password?
(Choose two.)
- A. It encourages users to create stronger passwords.
- B. It stores the password repository on the local workstation with built-in antivirus and anti-malware functionality
- C. It uses an internal firewall to protect the password repository from unauthorized access.
- D. It protects against keystroke logging on a compromised device or web site.
- E. It automatically provides a second authentication factor that is unknown to the original user.
Answer: A,D
NEW QUESTION 284
An engineer requires a scratch interface to actively attempt to establish a trunk link with a neighbor switch. What command must be configured?
- A. switchport mode dynamic auto
- B. switchport mode trunk
- C. switchport mode dynamic desirable
- D. switchport nonegotiate
Answer: A
NEW QUESTION 285
What command is used to configure a switch as authoritative NTP server?
- A. switch (config)#ntp server 193.168.2.2
- B. switch (config)#ntp master 3
- C. switch (config)#ntp source 193.168.2.2
- D. switch (config)#ntp peer 193.168.2.2
Answer: B
NEW QUESTION 286
Three switches are connected to one anther via trunk ports.
Assuming the default switch configuration, which switch is elected as the root bridge for the spanning-tree instance of vlan 1?
- A. the switch with the lowest MAC address
- B. the switch witch the higest IP address
- C. the switch with the higest MAC address
- D. the switch with the lowest IP address
Answer: A
NEW QUESTION 287
Which technology can prevent client devices from arbitrarily connecting to the network without state remediation?
- A. 802.11n
- B. MAC Authentication Bypass
- C. IP Source Guard
- D. 802.1x
Answer: D
NEW QUESTION 288
Refer to the exhibit.
What is the effect of this configuration?
- A. Dynamic ARP inspection is disabled because the ARP ACL is missing
- B. The switch port interface trust state becomes untrusted
- C. The switch port remains down until it is configured to trust or untrust incoming packets Dynamic ARP inspection (DAI) is a security feature that validates ARP packets in a network. It intercepts, logs, and discards ARP packets with invalid IP-to-MAC address bindings. This capability protects the network from certain man-in-the-middle attacks. After enabling DAI, all ports become untrusted ports.
- D. The switch port remains administratively down until the interface is connected to another switch
Answer: B
NEW QUESTION 289
Refer to the Exhibit.
After the switch configuration the ping test fails between PC A and PC B Based on the output for switch 1.
which error must be corrected?
- A. All VLANs are not enabled on the trunk
- B. The PCs are m the incorrect VLAN
- C. Access mode is configured on the switch ports.
- D. There is a native VLAN mismatch
Answer: D
Explanation:
Explanation
From the output we see the native VLAN of Switch1 on Gi0/1 interface is VLAN 1 while that of Switch2 is VLAN 99 so there would be a native VLAN mismatch.
NEW QUESTION 290
What is the destination MAC address of a broadcast frame?
- A. 00:00:0c:ff:ff:ff
- B. 00:00:0c:07:ac:01
- C. ff:ff:ff:ff:ff:ff
- D. 43:2e:08:00:00:0c
- E. 00:00:0c:43:2e:08
Answer: C
NEW QUESTION 291
Refer to exhibit.
Which statement explains the configuration error message that is received?
- A. IT is a network IP address.
- B. It belongs to a private IP address range.
- C. The router does not support /28 mask.
- D. It is a broadcast IP address
Answer: D
NEW QUESTION 292
Refer to the exhibit.
A packet is being sent across router R1 to host 172.163.3.14. To which destination does the router send the packet?
- A. 207.165.200.250 via Serial/0/0/0
- B. 207.165.200.254 via Serial0/0/0
- C. 207.165.200.254 via Serial0/0/1
- D. 207.165.200.246 via Serial0/1/0
Answer: C
NEW QUESTION 293
......
Verified 200-301 dumps Q&As - Pass Guarantee Exam Dumps Test Engine: https://examtorrent.actual4test.com/200-301_examcollection.html