300-135 我校題目分享

a50716575

8 c% S! q" y/ \- k2 v

An engineer has set up a GRE tunnel betweenRouter A and Router C. Router A can reach Router C’s Loopback interface but thetunneled traffic is not passing. Which command provides the information neededto confirm end-to-end reachability?

A. show ip route connected

B. show ip interface brief

C. show ip route

D. show running-config

Answer: C

Explanation: “show ip route” should betyped on Router C to confirm whether Router C can reach Router A’s Loopbackinterface.

, G3 a2 t! L& _# [
5 Z/ [8 }% b+ |1 S8 N. L  A
1 ?! j1 ?4 l, G, ^! ?

Client A cannot reach Client B while otherusers from other spoke routers can reach Client B. Which command is configuredincorrectly?

A. tunnel source e0/1

B. ip nhrp network-id 12345

C. tunnel mode gre multipoint

D. ip nhrp shortcut

Answer: A

Explanation: “tunnel source e0/0” should betyped instead.

5 s% ]  G% ?/ T( b$ k/ Y
" {" D0 y2 X' H9 l8 W' [
' Y5 \, @2 a  A* B+ A  M% j

Drag the GRE tunnel interface state fromthe left onto the corresponding description on the right.

  j( ]) W7 v8 ]  E

, }! j3 Z6 A8 S1 }

up/up		The tunnel  is active but unable to pass traffic.
administratively  down/down		The tunnel  is in a transient state due to a misconfiguration.
up/down		The tunnel  is fully functional and passes traffic.
reset/down		The  shutdown command has been issued.

Answer:

		The tunnel  is active but unable to pass traffic.	up/down
		The tunnel  is in a transient state due to a misconfiguration.	reset/down
		The tunnel  is fully functional and passes traffic.	up/up
		The  shutdown command has been issued.	administratively  down/down

access-list 101 permit 89 any any

access-list 101 permit tcp any any eq 179

access-list 101 permit tcp any eq 179 any

access-list 101 permit gre any any

access-list 101 permit esp any any

access-list 101 deny ospf any any

access-list 101 permit tcp 10.1.1.00.0.0.255 172.16.1.0 0.0.0.255 eq ssh time-range TIME

access-list 101 permit tcp 10.1.1.00.0.0.255 172.16.1.0 0.0.0.255 eq telnet

access-list 101 permit udp 10.1.1.00.0.0.255 172.16.1.0 0.0.0.255 eq 500

access-list 101 permit udp 10.1.1.00.0.0.255 172.16.1.0 0.0.0.255 eq 4500

access-list 101 deny tcp any any eq 21

access-list 101 deny tcp any any eq 23

access-list 101 deny ip any any log

!

time-range TIME

periodic Monday Wednesday Friday 6:00 to 18:00

!

interface Ethernet0/0

  ipaddress 10.1.1.25 255.255.255.0

  ip access-group101 in

An engineer is planning to implement thisconfiguration. Which two routing protocols are allowed on interfaceEthernet0/0? (Choose two.)

A. OSPF

B. GRE

C. ESP

D. BGP

E. EIGRP

Answer: A, D

Explanation: OSPF and EIGRP do not use atransport protocol (i.e. UDP or TCP) but encapsulates its data directly in IPpackets using protocol number 89 and 88 respectively.

RIP uses UDP with port number 520.

BGP uses TCP with port number 179.

GRE and ESP are not routing protocols.

4 s$ B5 a# u$ g& p. Z# J6 P- a

version 15.2

servicepassword-encryption

servicecompress-config

!

hostname R1

!

boot-start-marker

boot-end-marker

!

enable secret 8$8$dyzsAmZjA3w.aY$YBZn8LBI6CK04ij5ZmqQ/88OrFdc3jzGb6v7SSQI0cw1OP

username adminprivilege 15 password 7 01040A4807085B821C

no aaa new-model

!

no ip http server

no ip httpsecure-server

!

ip ssh time-out 30

ip ssh version 2

!

snmp-server groupprivate v3 priv

!

line vty 0 4

timeout login response 30

login local

transport input ssh

Which section of the configuration is usinga reversible encryption method?

A. VTY

B. enable

C. SNMP

D. local authentication

Answer: D

Explanation: According to theconfiguration, the first five remote connections will use local database (i.e.username/password pair) for authentication.

The username/password pair uses the type 7password hash (i.e. 01040A4807085B821C) which is reversible. Reversible meansyou can compute the actual password from the password hash.

BGP: ses global 209.165.200.111 act Reset(Active open failed).

BGP: 209.165.200.111 active went fromActive to Idle

BGP: nbr global 209.165.200.111 Active openfailed - open timer running

BGP: 209.165.200.111 open failed:Connection timed out: remote host not responding

BGP: 209.165.200.111 Active open failed -tcb is not available, open active delayed 8192ms (35000ms max, 60% jitter)

BGP: ses global 209.165.200.111 act Reset(Active open failed).

%TCP-6-BADAUTH: Invalid MD5 digest from209.165.200.111(38480) to 209.165.200.222(179) tableid - 0

Which statement about the BGP session isvalid?

A. The BGP session is failing to come updue to a delayed remote device sending ACK TCP sessions back.

B. The BGP session is failing due to aneighbor authentication mismatch.

C. The BGP session is working properly asBGP reaches the active status.

D. The BGP session is failing due a TCPport failure.

Answer: B

Explanation:

If a router has a password configured for aneighbor, but the neighbor router does not, a message such as this is displayedwhile the routers attempt to establish a BGP session between them:

%TCP-6-BADAUTH: No MD5 digest from [peer’sIP address]:11003 to [local router’s IP address]:179

Similarly, if the two routers havedifferent passwords configured, a message such as this is displayed:

%TCP-6-BADAUTH: Invalid MD5 digest from[peer’s IP address]:11004 to [local router’s IP address]:179

Which feature allows a floating route to bequickly installed into the routing table when GRE communications are disrupted?

A. tracking objects

B. GRE keepalives

C. HSRPv2

D. IP SLA

Answer: A

0 T  Q; Z$ ^5 I1 _

2 ]. e% G+ [, K$ U# E

TM98700

popeye2008

多谢分享！

gzl1111

yyzt2011

根据答案，我对了一题半

夜半歌声

感谢分享，尤其是上面的第4题，非常有用，终于看到 这道题的正确 答案 了

kotc2018

jac19901112

感谢分享，多學習是件好事情

天若悬河

6666666666666666666

pop12033

; @( }& R; l0 \* N* ]7 r2 v感谢分享

xenolong

6666
5 y3 V. ?+ }* N0 q! y3 @- J" I

nlee01

謝謝分享

thegreek1

Congratulations

study099

谢谢

Lapot16

; r4 C' S8 q  Z0 p
Congratulations on passing !!!