Cisco ENCOR 350-401 Exam Questions and Answers – Page 3

The latest Cisco CCNP and CCIE Enterprise Core: Implementing and Operating Cisco Enterprise Network Core Technologies (ENCOR) 350-401 certification actual real practice exam question and answer (Q&A) dumps are available free, which are helpful for you to pass the Cisco CCNP and CCIE Enterprise Core: Implementing and Operating Cisco Enterprise Network Core Technologies (ENCOR) 350-401 exam and earn Cisco CCNP and CCIE Enterprise Core: Implementing and Operating Cisco Enterprise Network Core Technologies (ENCOR) 350-401 certification.

Cisco CCNP and CCIE Enterprise Core: Implementing and Operating Cisco Enterprise Network Core Technologies (ENCOR) 350-401 Exam Questions and Answers

Exam Question 201

You administer the network shown above.
You administer the network shown above. You issue the show running-config command on RouterA and receive the following partial output:
You administer the network shown above. You issue the show running-config command on RouterA and receive the following partial output.
Which of the following statements are true? (Select 2 choices.)

A. RouterA will not advertise any routes to RouterB.
B. RouterA will advertise only the route to 192.168.1.0/24 to RouterB.
C. RouterA will advertise the routes to 192.168.0.0/24 and 192.168.1.0/24 to RouterB.
D. RouterB will not advertise any routes to RouterD.
E. RouterB will advertise only the route to 192.168.0.0/24 to RouterD.
F. RouterB will advertise only the route to 192.168.1.0/24 to RouterD.
G. RouterB will advertise the routes to 192.168.0.0/24 and 192.168.1.0/24 to RouterD.
Correct Answer:
C. RouterA will advertise the routes to 192.168.0.0/24 and 192.168.1.0/24 to RouterB.
F. RouterB will advertise only the route to 192.168.1.0/24 to RouterD.
Answer Description:
RouterA will advertise the routes to 192.168.0.0/24 and 192.168.1.0/24 to RouterB, and RouterB will advertise only the route to 192.168.1.0/24 to RouterD. RouterB will advertise both routes to RouterC because RouterB and RouterC are in the same autonomous system (AS). The neighbor 10.1.1.2 routemap map1 out command applies route map map1 to modify outgoing routes from RouterA. Because the routemap map1 permit 20 command overrides the implicit deny rule for map1, the route map will not restrict which routes are advertised from RouterA to RouterB. Additionally, map1 is configured to only apply the noexport community attribute to routes that match access list 1. Routes that do not match access list 1 are advertised without the attribute. Because route map map1 is configured to apply the noexport community attribute to only the routes that pass access list 1, the noexport community attribute will affect only the route to 192.168.0.0/24.

The neighbor 10.1.1.2 remoteas 200 command specifies that RouterB, which is in AS 200, is an external Border Gateway Protocol (eBGP) neighbor of RouterA. The neighbor 10.1.1.2 sendcommunity command configures RouterA to send community attribute settings to RouterB. The community attribute is an optional, transitive Border Gateway Protocol (BGP) attribute that is not required to be supported by all BGP implementations. Additionally, BGP implementations that do not support the community attribute are not required to pass the attribute to other routers. By default, Cisco routers do not pass community attributes to BGP neighbors. The community attribute can be modified in a route map by issuing the set community command with one of the following four keywords:

  • no-advertise -prevents advertisements to any BGP peer
  • no-export-prevents advertisements to eBGP peers
  • loca-las -prevents advertising outside the AS, or in confederation scenarios, outside the sub-AS internetadvertises the route to any router

The set community no-export command configures the BGP community attribute to inform neighbor routers to not export the route to eBGP peers. Therefore, RouterB will not advertise the route to 192.168.0.0/24 outside of AS 200.

Because RouterD is in AS 300, RouterB will not advertise the 192.168.0.0/24 route to RouterD. RouterB will advertise both routes to RouterC, which is in AS 200. The community attribute does not modify how RouterA advertises the routes; it modifies how neighbor routers advertise the routes received from RouterA.

Exam Question 202

You issue the following commands on a router:

  • line console 0
  • exec-timeout 1 30

How long will the console session to the router remain established without input before the session is automatically disconnected? (Select the best answer.)

A. 30 seconds
B. 60 seconds
C. 90 seconds
D. 30 minutes
E. 60 minutes
F. 90 minutes
Correct Answer:
C. 90 seconds
Answer Description:
The console session to the router will remain established without input for 90 seconds before the session is automatically disconnected. The syntax of the exectimeoutcommand is exectimeoutminutes [seconds]. Therefore, the exectimeout 1 30command configures the router to automatically disconnect idle sessions after one minute and 30 seconds, which is equal to 90 seconds. If the exectimeout command has not been issued, an idle session will remain established for 10 minutes without input. Issuing the no exectimeout command or the exectimeout 0 0 command causes a session to never time out due to inactivity; therefore, the no exectimeout command does not restore the default setting of 10 minutes.

To configure an idle timeout of 30 seconds, you could issue the exectimeout 0 30command. To configure an idle timeout of 60 seconds, you could issue the exectimeout 1 command. To configure an idle timeout of 30 minutes, you could issue the exectimeout 30 command. To configure an idle timeout of 60 minutes, you could issue the exectimeout 60 command. To configure an idle timeout of 90 minutes, you could issue the exectimeout 90 command.

Exam Question 203

Two routers have been set up to establish a VPN tunnel. Both routers support GRE and IPSec, and both routers are configured with IPv4 and IPv6 addresses. You issue the tunnel mode auto command on both routers.
Which of the following statements is true? (Select the best answer.)

A. GRE will be used for the tunneling protocol, and IPv4 will be used for the transport protocol.
B. GRE will be used for the tunneling protocol, and IPv6 will be used for the transport protocol.
C. IPSec will be used for the tunneling protocol, and IPv4 will be used for the transport protocol.
D. IPSec will be used for the tunneling protocol, and IPv6 will be used for the transport protocol.
E. The tunnel will not establish, because one router must be configured statically.
Correct Answer:
E. The tunnel will not establish, because one router must be configured statically.
Answer Description:
The tunnel will not establish, because one router, the initiator, must be configured statically. The tunnel mode auto command enables the Tunnel Mode Auto Selection feature, which simplifies the configuration of a virtual private network (VPN) tunnel. When Tunnel Mode Auto Selection is configured, the responder will apply the tunneling protocol and transport protocol that is established by the initiator.

To configure a router to use Generic Routing Encapsulation (GRE) for the tunneling protocol and IPv4 for the transport protocol, you should issue the tunnel mode gre ipcommand. To configure a router to use GRE for the tunneling protocol and IPv6 for the transport protocol, you should issue the tunnel mode gre ipv6 command. To configure a router to use IP Security (IPSec) for the tunneling protocol and IPv4 for the transport protocol, you should issue the tunnel mode ipsec ipv4 command. To configure a router to use IPSec for the tunneling protocol and IPv6 for the transport protocol, you should issue the tunnel mode ipsec ipv6 command.

Exam Question 204

You issue the show ip route command on RouterE and receive the following output:
You issue the show ip route command on RouterE and receive the following output.
Which of the following statements are accurate about the route to 192.0.3.0/24? (Select 2 choices.)

A. The link cost is 66.
B. The link cost is 110.
C. The AD is 66.
D. The AD is 110.
E. The bandwidth of the link is 66 Kbps.
F. The bandwidth of the link is 110 Kbps.
Correct Answer:
A. The link cost is 66.
D. The AD is 110.
Answer Description:
The administrative distance (AD) of the route in the scenario is 110, and the link cost is 66. In the output of the show ip route command, the first number within the brackets indicates the AD. When multiple routes to a network exist and each route uses a different routing protocol, a router prefers the routing protocol with the lowest AD. The following list contains the most commonly used ADs:


The AD of the route in this scenario is 110, the same as the default distance for an Open Shortest Path First (OSPF) route. AD for a routing protocol can be manually configured by issuing the distance command in router configuration mode. For example, to change the AD of OSPF process ID 1 from 110 to 80, you could issue the following commands:
RouterE(config)#router ospf 1
RouterE(config-router)#distance 80

The second number within the brackets indicates the metric. Because this is an OSPF link, as indicated by the O at the start of the route statement, the second number within the brackets indicates the cost metric. Therefore, the cost of the link in this scenario is 66. When two OSPF paths exist to the same destination, the router will choose the OSPF path with the lowest cost.

OSPF calculates cost based on the bandwidth of an interface: the higher the bandwidth, the lower the cost. To calculate the cost, divide 100,000,000 by the bandwidth in bits per second. Thus a 100Mbps link would have a cost of 1, a 10Mbps link would have a cost of 10, a T1 line would have a cost of 64 (100,000,000 / 1,544,000), and a 64Kbps line would have a cost of 1,562.

As the hops between a router and a destination increase, the cost increases by the bandwidth calculation of the additional links. Therefore, the route in this scenario is the cost of the FastEthernet link between RouterE and RouterC added to the cost of the T1 link between RouterC and RouterB added to the cost of the FastEthernet link between RouterB and the 192.0.3.0/24 network. Therefore, the cost for RouterE to reach the 192.0.3.0/24 network is 1 + 64 + 1, or 66.

Exam Question 205

You have issued the following commands on RouterA:

Pseudowire-class boson
ip pmtu

RouterA receives a packet that is larger than the path MTU and that has a DF bit set to 0.
Which of the following will RouterA do? (Select 2 choices.)

A. RouterA will forward the packet.
B. RouterA will drop the packet.
C. RouterA will return an ICMP unreachable message to the sender.
D. RouterA will fragment the packet before L2TP/IP encapsulation occurs.
E. RouterA will fragment the packet after L2TP/IP encapsulation has occurred.
Correct Answer:
A. RouterA will forward the packet.
D. RouterA will fragment the packet before L2TP/IP encapsulation occurs.
Answer Description:
When RouterA receives a packet that is larger than the path maximum transmission unit (MTU) and that has a Don’t Fragment (DF) bit set to 0, RouterA will fragment the packet before Layer 2 Tunneling Protocol (L2TP)/IP encapsulation has occurred and then forward the packet. The ip pmtu command enables path MTU discovery (PMTUD) so that fragmentation issues can be avoided on the service provider backbone.

With PMTUD, the DF bit is copied from the IP header to the Layer 2 encapsulation header. If an IP packet is larger than the MTU of any interface on the path, the packet is dropped or fragmented based on the DF bit. If the DF bit is set to 0, the packet is fragmented before encapsulation occurs and is then forwarded. If the DF bit is set to 1, the packet is dropped and the router will return an Internet Control Message Protocol (ICMP) unreachable message to the sender.

Exam Question 206

In which of the following locations does BGP PIC store an alternate path? (Select the best answer.)

A. only in the RIB
B. only in the FIB
C. only in CEF
D. only in the RIB and the FIB
E. in the RIB, in the FIB, and in CEF
Correct Answer:
E. in the RIB, in the FIB, and in CEF
Answer Description:
Border Gateway Protocol (BGP) Prefix-Independent Convergence (PIC) improves convergence by creating and storing an alternate path in the Routing Information Base (RIB), in the Forwarding Information Base (FIB), and in Cisco Express Forwarding (CEF). As soon as a failure is detected, BGP uses the alternate path.

BGP PIC is capable of improving convergence for both core and edge failures on IPv4, IPv6, and Multiprotocol Label Switching (MPLS) networks. Bidirectional Forwarding Detection (BFD) must be enabled on directly connected neighbors in order to detect link failures.

Exam Question 207

Which of the following can be monitored by the EEM IOSWDSysMon core event publisher? (Select the best answer.)

A. abnormal stop events
B. memory utilization
C. syslog messages
D. timed events
E. counter thresholds
Correct Answer:
B. memory utilization
Answer Description:
Memory utilization can be monitored by the Embedded Event Monitor (EEM) Watchdog System Monitor (IOSWDSysMon) core event publisher. Watchdog System Monitor can also be configured to monitor CPU utilization.

EEM consists of three components: the EEM server, event publishers, and event subscribers. EEM event detectors are event publishers; EEM policies are event subscribers. When an event is detected, EEM can perform various actions, such as generating a Simple Network Management Protocol (SNMP) trap or reloading the router.

Abnormal stop events are monitored by the system manager event detector. Syslog messages are monitored by the syslog event detector. Timed events are monitored by the timer event detector. Counter thresholds are monitored by the counter event detector. All of these event detectors are considered to be EEM core event publishers.

Exam Question 208

Which of the following are characteristics of GLBP? (Select 2 choices.)

A. One router is elected as the active router, and another router is elected as the standby router.
B. One router is elected as the master router, and all other routers are placed in the backup state.
C. All routers in a GLBP group can participate by forwarding a portion of the traffic.
D. In a GLBP group, only one AVG and only one AVF can be assigned.
E. In a GLBP group, only one AVG can be assigned but multiple AVFs can be assigned.F. In a GLBP group, multiple AVGs can be assigned but only one AVF can be assigned.
Correct Answer:
C. All routers in a GLBP group can participate by forwarding a portion of the traffic.
E. In a GLBP group, only one AVG can be assigned but multiple AVFs can be assigned.F. In a GLBP group, multiple AVGs can be assigned but only one AVF can be assigned.
Answer Description:
The following are characteristics of Gateway Load Balancing Protocol (GLBP):

  • All routers in a GLBP group can participate by forwarding a portion of the traffic.
  • Only one active virtual gateway (AVG) can be assigned in a GLBP group, but multiple active virtualforwarders (AVFs) can be assigned in a GLBP group.

GLBP is a Ciscoproprietary protocol used to provide router redundancy and load balancing. GLBP enables you to configure multiple routers into a GLBP group; the routers in the group receive traffic sent to a virtual IP address that is configured for the group. Each GLBP group contains an AVG that is elected based on which router is configured with the highest priority value or the highest IP address value if multiple routers are configured with the highest priority value.

The other routers in the GLBP group are configured as primary or secondary AVFs. The AVG assigns a virtual Media Access Control (MAC) address to up to four primary AVFs; all other routers in the group are considered secondary AVFs and are placed in the listen state. The virtual MAC address is always 0007.b400.xxyy, where xx is the GLBP group number and yy is the AVF number.

When the AVG receives Address Resolution Protocol (ARP) requests that are sent to the virtual IP address for the GLBP group, the AVG responds with different virtual MAC addresses. This provides load balancing, because each of the primary AVFs will participate by forwarding a portion of the traffic sent to the virtual IP address. If one of the AVFs fails, the AVG assigns the AVF role to another router in the group. If the AVG fails, the AVF with the highest priority becomes the AVG; by default, preemption is disabled.

Additionally, you can control the percentage of traffic that is sent to a specific gateway by configuring weighted load balancing. By default GLBP uses a roundrobin technique to load balance between routers. If you configure weighted load balancing, GLBP can send a higher percentage of traffic to a single GLBP group member based on the weight values assigned to the interfaces of that member.

The election of an active router and a standby router are characteristics of Hot Standby Router Protocol (HSRP), not GLBP. Like GLBP, HSRP provides router redundancy. However, only one router in an HSRP group is active at any time. If the active router becomes unavailable, the standby router becomes the active router.

The election of a master router and the placement of all other routers in the group into the backup state are characteristics of Virtual Router Redundancy Protocol (VRRP). Like GLBP and HSRP, VRRP provides router redundancy. However, similar to HSRP, only one router is active at any time. If the master router becomes unavailable, one of the backup routers becomes the master router. A GLBP group can contain only one AVG. All other routers in the group are configured as AVFs; multiple AVFs can be configured in a GLBP group.

Exam Question 209

You administer the BGP network in the following exhibit:
You administer the BGP network in the following exhibit.
Between which routers can the cost community attribute be passed? (Select the best answer.)

A. between all of the routers in this scenario
B. between none of the routers in this scenario
C. only between RouterA and RouterB
D. only between RouterA and RouterC
Correct Answer:
C. only between RouterA and RouterB
Answer Description:
The Border Gateway Protocol (BGP) cost community attribute can be passed only between RouterA and RouterB. The cost community, which is a nontransitive extended community, is passed only between internal BGP (iBGP) and confederation peers? it is not sent to external BGP (eBGP) peers. When multiple equalcost paths exist, the path with the lowest cost community number is preferred.

To configure the cost community attribute in a route map, you should issue the set extcommunity costcommunityidcostvalue command from routemap configuration mode. The community ID, which is defined by the communityid variable, is a value from 0 through 255. The cost, which is defined by the costvalue variable, is a value from 0 through 4294967295, with a default value of half of the maximum, or 2147483647. If two paths have the same cost, the path with the lowest community ID will be preferred.

When aggregate routes or multipaths are used and several component routes use the same community ID, the highest cost is applied to the aggregate or multipath route. If one or more of the component routes do not carry the cost community attribute or are configured with different community IDs, the default value of 2147483647 is applied to the aggregate or multipath route.

Exam Question 210

By default, how often are MAC addresses flushed from the CAM table? (Select the best answer.)

A. after three minutes of no activity from that address
B. after five minutes of no activity from that address
C. after 10 minutes of no activity from that address
D. after 300 minutes of no activity from that address
Correct Answer:
B. after five minutes of no activity from that address
Answer Description:
By default, Media Access Control (MAC) addresses are flushed from the Content Addressable Memory (CAM) table after five minutes of inactivity from that address. The CAM table provides a list of known hardware addresses and their associated ports on the switch. After the integrity of a frame has been verified, the switch searches the CAM table for an entry that matches the frame’s destination MAC address.

If the frame’s destination MAC address is not found in the table, the switch forwards the frame to all its ports, except the port from which it received the frame. If the destination MAC address is found in the table, the switch forwards the frame to the appropriate port. The source MAC address is also recorded if it did not previously exist in the CAM table.

By default, MAC addresses are flushed from the CAM table after 300 seconds of no activity from that address, not 300 minutes. The mac-address-table aging-time seconds command can be used to change the frequency with which MAC addresses are flushed from the CAM table. In order to have MAC addresses flushed from the CAM table after three minutes of inactivity, you should issue the macaddresstable agingtime 180 command. Likewise, you should issue the macaddresstable agingtime 600 command for the addresses to be flushed after 10 minutes of inactivity.