|
|
本帖最后由 haizi595610 于 2018-6-28 17:57 编辑
; f) w- R6 c) y- @ q6 _* f0 ~- q, v8 K( N g0 H" e
之前看了一下国外网友提供的信息,又更新了部分新题。由于我不知道怎么在原帖的基础上增加新的题目,所以只好在发一个单独的帖子了,不好意思哈,希望给大家提供帮助。请忽略之前的那个帖子,以这份为准。题目的相关答案我也没有,需要自己去好好研究。希望乔大大可以更新以下相关题目的答案。
h% x# M# p2 i! D L% O* I7 e- ~* f& g- @/ F
Q.1# K7 p4 J+ [! H- }) ^* S
Troubleshoot uRPF loose mode at client gateway router for networks that are not in the routing table. (Choose two)) P7 ]4 v. A: @6 ]( @
a. Dynamic routing is configured on the router a/ ^1 E i7 A
b. CEF is enabled on the router0 j& P# X5 S& }6 q9 o: e4 _
c. allow-default is configured for loose mode
3 a1 k* @* w# ~! Id. CFE is disabled on the router; ~! e I& ?! {1 V4 L
e. Static Routing is configured on the router
3 E5 |5 D6 h2 x5 `' v) X" H4 J4 y3 W& s. w7 i8 a& }
Q.2
! }1 b; A! [" Q! S! D+ eWhich two can use to protect & secure management plane from unwanted & unauthorized access ?% u% z) z" U8 [ I# C! \, K
a. Limit physical access to network devices7 J$ x- L R, O. i" k( p
b. Use RADIUS instead of TACACS+ for AAA
& K: G R0 n- b) |. v9 Vc. Create an ACL to permit Telnet access only6 x4 ^& z/ C x) X( d; e( M" x
d. Enable authentication for the routing protection
0 k8 X l6 F B }3 le. Use MPP to limit the interfaces on which management traffic can traverse the device3 o" X4 M! [8 B$ o4 ~# x! z& R
3 c% Z; }7 a$ _4 q5 cQ.3
- c8 V, k; a& y; h# N+ U) T" kWhich command enables authenticated login if a TACACS+ failure occurs ?. ^! K$ `9 B& a* X
a. aaa authentication login test group local tacacs+4 X0 n/ F/ L+ r+ g0 p
b. aaa authentication login test group tacacs+ local* ]2 p2 _/ d. ^- E. G
c. aaa authentication login test group radius local
" }8 R/ K; d, m7 M- s! @3 sd. aaa authentication ppp dialins group tacacs+ local
& j4 o q" X8 b3 t9 E3 J \0 ?/ q$ Y- P* O N8 x1 w3 a- b- f* v% \* q5 f; r
Q.4+ p) e3 Z @" e, T) t9 y
When your network experiences Cisco Discovery Protocol and LLDP issues, with which layer of the OSI model must you begin troubleshooting ?: i3 p8 @% S6 j9 U" _( b* e
a. datalink layer
$ u9 Z9 a4 Q2 R& _1 [4 h/ |1 Kb. physical layer! D8 }$ b, c( d5 ~- B
c. network layer
* Z8 l7 k( \4 H& fd. transport layer5 D: H" S+ {9 U+ q3 t) `' q1 A' \8 x
2 c6 X6 ^, A) b8 E
Q.53 P x, d' P' G5 a' F
Restrict access for device on management plane? (choose two)
2 T* F& V8 C2 V" O+ u# DA. enable Cisco Express Forward (CEF) globally* H3 B2 C1 p0 D6 g7 _. b% r
B. Add authentication for routing protocols+ q0 J- B- `6 u Z, m$ l0 G! p5 a) O I
C. Restrict physical access+ p) V. g+ f' o+ U2 o
D. Add ACLs for telnet
/ k+ e, l4 r( E" d2 I( F! ~2 W1 F$ n
Q.6& c) D( f, O9 s4 J( H, \& o
CDP and LLDP are not working properly, where do you start troubleshooting?
4 W' E' p" T( G. Q' d3 e- `A. Physical, o; H* T5 u( L2 O, V! T
B. Datalink: P4 a: o% D" n" y; H
C. Network
7 b# [( `+ }- i) o+ XD. Transport( Z! L9 G$ ]9 K% X5 d
' f' \ y4 H: z( b0 Q/ N' XQ7 GRE with IPsec tunnel are true (choose 2)# j$ Q1 l3 r' [1 m9 w& x1 G9 b, v6 L
a. The header overhead is reduced
+ z! u- {) F' f5 [b. using cryto map is 7 only way to encrypt a GRE Tunnel0 P& O! V; w, O# w" @
c. cryto map required an ACL allow protocol 47
/ q! I( e+ }5 l0 [; pd. support hub-and-spoke topologies only
% M7 z5 C! K! h5 r0 m$ E2 h& G# qe. Tunnel is first encapsulated, then just encryted
: n9 h* g3 {: e* ]
+ p! q1 j0 ~" o9 N/ O2 mQ8 About pass encrytion in CISCO IOS software is true" c$ F6 e( d3 _
a. encryted user type 7 password indicate hashed with MD5
0 c( X* e! x. f# X- qb. encryted user type 7 password indicate hashed with weak reversible) g2 g/ R! h; [% K* M% Z! y
c. you can choose to encrypt enable secret pass with weak reversible or MD5# |4 t, V# C" I* W, i" M
d. enable secret is more secure than enable pass, because secret store in configuration file type 77 R0 O3 m" c( y6 q6 e
7 v7 T5 r3 W2 o* a! k
Q9 One router and a computer (exhibit) 192.168.10.0/24* c! ]' C. }& n+ F) W# T
You receive timed out when you start to SSH the router. Which layer is the first that you are going to look into this matter?
- g$ h3 y( q2 e2 Z6 sA. Physical3 u) q% c3 L4 b w6 _* r
B. Datalink
) B, C, J% Y* W& `3 F" l! ~$ i( `% EC. Network3 Y& J: t+ z$ S, P( h
' k6 J8 [$ f, k ^7 T6 a
Q10 Give you an image, regardless Tunnel 1018 went down% ?7 f; E7 X; r8 w8 Q
a. Tunnel int is misconfigure- g# R6 s$ J9 |' W q3 D, l& W
b. PIM neighbor is misconfigure" F$ h/ c" f# y8 ]# O
c. route neighbor 10.111.254.213 was remove9 n8 ^+ P# D/ {/ J7 Z7 k
d. route flapping and instability
( r6 I8 N: P9 [) |0 d! K& be. tunnel destination using tunnel itself. p: X+ D6 p) e0 E5 `. `. G
7 S! \; t7 I0 X6 L2 HQ11 When your network experiences Cisco Discovery Protocol and LLDP issues, with which layer of the OSI model must you begin troubleshooting ?$ ~ L; i3 o% u0 C8 @* m
A. Physical layer
0 i/ M/ k1 I7 a: `+ ~B. Datalink layer
7 R. Y* V) e* bC. Network layer+ p6 _0 ]% x% o( P. f5 j
D. Transport layer
: ~' p. g/ h: P; M# ~+ u% e- V0 S! ]) H, V3 h/ p/ R
Q12 If you want to use GRE with IPSec which compatible with NAT traversal?, A+ [- O" j7 d8 e( n# U- J3 D% D
A. MD5 mode- g( {6 b$ d& c7 p* f
B. SHA mode H, l8 J0 _, \0 k! Y9 ^
C. IPsec Tunnel mode/ P) a+ }2 P& z; u3 N
D. Tunnel transport
1 u' ?$ e2 h% K6 g4 k* V
5 Z6 l7 y8 X! ^& r
4 Z. U3 ~4 Z: `# e& e1 U7 V" L! u; d2 w1 e! F" I" M3 F, @
" u. u) i" U$ k+ j+ X" V
|
评分
-
查看全部评分
|
简体中文
英语
日语
韩语
法语
西班牙语
越南语
泰语
阿拉伯语
俄语
葡萄牙语
德语
意大利语
希腊语
荷兰语
波兰语
保加利亚语
爱沙尼亚语
丹麦语
芬兰语
捷克语
罗马尼亚语
斯洛文尼亚语
瑞典语
匈牙利语
繁体中文
文言文
发表于 2018-6-28 17:54:50
置顶卡
喧嚣卡
变色卡
千斤顶
成长值: 37405
