Exam Code: 400 101 ccie (Practice Exam Latest Test Questions VCE PDF)
Exam Name: CCIE Routing and Switching (v5.0)
Certification Provider: Cisco
Free Today! Guaranteed Training- Pass 400 101 vce Exam.

Q51. Which authentication types does OSPF support? 

A. null and clear text 

B. MD5 only 

C. MD5 and clear text 

D. null, clear text, and MD5 

E. clear text only 

Answer:


Q52. What is the function of the command ip pim autorp listener? 

A. It allows a border PIM sparse mode router to accept autorp information from another autonomous system. 

B. It allows the mapping agents to accept autorp information from the PIM rendezvous point. 

C. It allows the routers to flood the autorp information in a sparse-mode-only network. 

D. It allows a BSR to accept autorp information and translate it into BSR messages. 

Answer:

Explanation: 

To cause IP multicast traffic for the two Auto-RP groups 224.0.1.39 and 224.0.1.40 to be Protocol Independent Multicast (PIM) dense mode flooded across interfaces operating in PIM sparse mode, use the ip pim autorp listener command in global configuration mode. To disable this feature, use the no form of this command. 

Reference: http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/ipmulti/command/imc-cr-book/imc_i3.html#wp3085748429 


Q53. Which two statements about Inverse ARP are true? (Choose two.) 

A. It uses the same operation code as ARP. 

B. It uses the same packet format as ARP. 

C. It uses ARP stuffing. 

D. It supports static mapping. 

E. It translates Layer 2 addresses to Layer 3 addresses. 

F. It translates Layer 3 addresses to Layer 2 addresses. 

Answer: B,E 

Explanation: 

Inverse Address Resolution Protocol (Inverse ARP or InARP) is used to obtain Network Layer addresses (for example, IP addresses) of other nodes from Data Link Layer (Layer 2) addresses. It is primarily used in Frame Relay (DLCI) and ATM networks, in which Layer 2 addresses of virtual circuits are sometimes obtained from Layer 2 signaling, and the corresponding Layer 3 addresses must be available before those virtual circuits can be used. 

Since ARP translates Layer 3 addresses to Layer 2 addresses, InARP may be described as its inverse. In addition, InARP is implemented as a protocol extension to ARP: it uses the same packet format as ARP, but different operation codes. 

Reference: http://en.wikipedia.org/wiki/Address_Resolution_Protocol 


Q54. Which two statements about DHCP snooping are true? (Choose two.) 

A. It is implemented on a per-VLAN basis. 

B. It filters invalid DHCP messages. 

C. The binding database logs trusted and untrusted hosts with leased IP addresses. 

D. Interfaces are trusted by default. 

E. It uses the LFIB to validate requests from untrusted hosts. 

Answer: A,B 


Q55. Which statement about the spanning-tree portfast feature on the switch is true? 

A. If an interface is enabled for portfast receives BDPU, the port goes through the spanning-tree listening, learning, and forwarding states. 

B. If an interface is enabled for portfast receives BDPU, the port does not go through the spanning-tree listening, learning, and forwarding states. 

C. If an interface is enabled for portfast receives BDPU, the port is shut down immediately. 

D. If an interface is enabled for portfast receives BDPU, the port goes into the spanning-tree inconsistent state. 

Answer:


Q56. Which additional feature must be enabled on a switch to allow PIM snooping to function correctly? 

A. IGMP snooping 

B. port security 

C. storm control 

D. dynamic ARP inspection 

Answer:


Q57. Which two statements about HSRP are true? (Choose two.) 

A. Its virtual MAC is 0000.0C07.Acxx. 

B. Its multicast virtual MAC is 0000.5E00.01xx. 

C. Its default configuration allows for pre-emption. 

D. It supports tracking. 

E. It supports unique virtual MAC addresses. 

Answer: A,D 

Explanation: 

Default HSRP Configuration 

Feature 

Default Setting 

HSRP version 

Version 1 

HSRP groups 

None configured 

Standby group number 

Standby MAC address 

System assigned as: 0000.0c07.acXX, where XX is the HSRP group number 

Standby priority 

100 

Standby delay 

0 (no delay) 

Standby track interface priority 

10 

Standby hello time 

3 seconds 

Standby holdtime 

10 seconds 

. The standby track interface configuration command ties the router hot standby priority to the availability of its interfaces and is useful for tracking interfaces that are not configured for HSRP. When a tracked interface fails, the hot standby priority on the device on which tracking has been configured decreases by 10. If an interface is not tracked, its state changes do not affect the hot standby priority of the configured device. For each interface configured for hot standby, you can configure a separate list of interfaces to be tracked. 

. The standby track interface-priority interface configuration command specifies how much to decrement the hot standby priority when a tracked interface goes down. When the interface comes back up, the priority is incremented by the same amount. 

Reference: http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst3750x_3560x/software/release/1 2-2_55_se/configuration/guide/3750xscg/swhsrp.html 


Q58. DRAG DROP 

Drag and drop the Cisco IOS XE subpackage on the left to the function it performs on the right. 

Answer: 


Q59. Which VPN technology requires the use of an external key server? 

A. GETVPN 

B. GDOI 

C. SSL 

D. DMVPN 

E. IPsec F. L2TPv3 

Answer:

Explanation: 

A GETVPN deployment has primarily three components, Key Server (KS), Group Member (GM), and Group Domain of Interpretation (GDOI) protocol. GMs do encrypt/decrypt the traffic and KS distribute the encryption key to all the group members. The KS decides on one single data encryption key for a given life time. Since all GMs use the same key, any GM can decrypt the traffic encrypted by any other GM. GDOI protocol is used between the GM and KS for group key and group SA management. Minimum one KS is required for a GETVPN deployment. 

Reference: http://www.cisco.com/c/en/us/products/collateral/security/group-encrypted-transport-vpn/deployment_guide_c07_554713.html 


Q60. Refer to the exhibit. 

Which three statements about the output are true? (Choose three.) 

A. An mrouter port can be learned by receiving a PIM hello packet from a multicast router. 

B. This switch is configured as a multicast router. 

C. Gi2/0/1 is a trunk link that connects to a multicast router. 

D. An mrouter port is learned when a multicast data stream is received on that port from a multicast router. 

E. This switch is not configured as a multicast router. It is configured only for IGMP snooping. 

F. IGMP reports are received only on Gi2/0/1 and are never transmitted out Gi2/0/1 for VLANs 10 and 20. 

Answer: A,B,C 

Explanation: 

In this example, the switch has been configured as a multicast router since IGMP snooping has been enabled. All mrouters can learn about other mrouters by receiving a PIM hello packet from another multicast router. Also, since two different VLANs are being used by the same port of gi 2/0/1, it must be a trunk link that connects to another multicast router.