CCNA 4 Final
Settings
Tomado de http://ccnaanswers. Com/ccna-4-final-exam-v4-0-answers/
- 1.What functionality do access control lists provide in the implementation of dynamic NAT on a Cisco router?
- A.
Define which addresses can be translated
- B.
Define which addresses are assigned to a NAT pool
- C.
Define which addresses are allowed out the router
- D.
Define which addresses can be accessed from the inside network
- 2.Which three guidelines would help contribute to creating a strong password policy? (Choose three.)
- A.
Once a good password is created, do not change it.
- B.
Deliberately misspell words when creating passwords.
- C.
Create passwords that are at least 8 characters in length.
- D.
Use combinations of upper case, lower case, and special characters.
- E.
Write passwords in locations that can be easily retrieved to avoid being locked out.
- F.
Use long words found in the dictionary to make passwords that are easy to remember.
- 3.
![Refer to the exhibit. Every time the administrator reboots this router, the boot process ends in setup mode. What is a possible problem? - ProProfs]( "Refer to the exhibit. Every time the administrator reboots this router, the boot process ends in setup mode. What is a possible problem?")
Refer to the exhibit. Every time the administrator reboots this router, the boot process ends in setup mode. What is a possible problem?- A.
There is insufficient RAM for the IOS to load on this router.
- B.
A password recovery process should be done on this router.
- C.
The bootstrap version and the version of the IOS are different.
- D.
The IOS image is damaged and must be reloaded using tftpdnld.
- E.
The configuration register is set to ignore the startup configuration.
- 4.Which option correctly defines the capacity through the local loop guaranteed to a customer by the service provider?
- A.
BE
- B.
DE
- C.
CIR
- D.
CBIR
- 5.
![Refer to the exhibit. A host connected to Fa0/0 is unable to acquire an IP address from the DHCP server. The output of the debug ip dhcp server command shows]( "Refer to the exhibit. A host connected to Fa0/0 is unable to acquire an IP address from the DHCP server. The output of the debug ip dhcp server command shows")
Refer to the exhibit. A host connected to Fa0/0 is unable to acquire an IP address from the DHCP server. The output of the debug ip dhcp server command shows "DHCPD: there is no address pool for 10.1.1.1". What is the problem?- A.
The 10.1.1.1 address is already configured on Fa0/0.
- B.
The default router for the 10Network pool is incorrect.
- C.
The ip helper-address must be added to Fa0/0 interface.
- D.
The pool of addresses for the 10Network pool is incorrect.
- 6.Which data link layer encapsulation protocol is used by default for serial connections between two Cisco routers?
- A.
ATM
- B.
Frame Relay
- C.
HDLC
- D.
PPP
- E.
SDLC
- 7.
![Refer to the exhibit. Which statement correctly describes how Router1 processes an FTP request that enters interface s0/0/0 and is destined for an FTP server at IP address 192.168.1.5? - ProProfs]( "Refer to the exhibit. Which statement correctly describes how Router1 processes an FTP request that enters interface s0/0/0 and is destined for an FTP server at IP address 192.168.1.5?")
Refer to the exhibit. Which statement correctly describes how Router1 processes an FTP request that enters interface s0/0/0 and is destined for an FTP server at IP address 192.168.1.5?- A.
The router matches the incoming packet to the statement that was created by the access-list 201 deny icmp 192.168.1.0 0.0.0.255 any command, continues comparing the packet to the remaining statements in ACL 201 to ensure that no subsequent statements allow FTP, and then the router drops the packet.
- B.
The router reaches the end of ACL 101 without matching a condition and drops the packet because there is no statement that was created by the access-list 101 permit ip any any command.
- C.
The router matches the incoming packet to the statement that was created by the access-list 101 permit ip any 192.168.1.0 0.0.0.255 command and allows the packet into the router.
- D.
It matches the incoming packet to the statement that was created by the access-list 201 permit ip any any command and allows the packet into the router.
- 8.Compared with IDS systems, what can IPS systems do to provide further protection of computer systems?
- A.
Detect potential attacks
- B.
Stop the detected attack from executing
- C.
Update OS patches for computer systems
- D.
Scan computer systems for viruses and spyware
- 9.Which IEEE 802.16 broadband wireless technology allows users to connect to the ISP at speeds comparable to DSL and cable?
- A.
Wi-Fi
- B.
Satellite
- C.
WiMAX
- D.
Metro Ethernet
- 10.A network administrator has changed the VLAN configurations on his network switches over the past weekend. How can the administrator determine if the additions and changes improved performance and availability on the company intranet?
- A.
Conduct a performance test and compare with the baseline that was established previously.
- B.
Interview departmental secretaries and determine if they think load time for web pages has improved.
- C.
Determine performance on the intranet by monitoring load times of company web pages from remote sites.
- D.
Compare the hit counts on the company web server for the current week to the values that were recorded in previous weeks.
- 11.
![Refer to the exhibit. What is the meaning of the term dynamic in the output of the command? - ProProfs]( "Refer to the exhibit. What is the meaning of the term dynamic in the output of the command?")
Refer to the exhibit. What is the meaning of the term dynamic in the output of the command?- A.
The bandwidth capability of the interface increases and decreases automatically based on BECNs.
- B.
The Serial0/0/1 interface acquired 172.16.3.1 from a DHCP server.
- C.
The mapping between DLCI 100 and 172.16.3.1 was learned through Inverse ARP.
- D.
DLCI 100 will automatically adapt to changes in the Frame Relay cloud.
- 12.Which type of ACL will permit traffic inbound into a private network only if an outbound session has already been established between the source and destination?
- A.
Extended
- B.
Reflexive
- C.
Standard
- D.
Time-based
- 13.Which two statements are true about IPv6 link local addresses? (Choose two.)
- A.
They begin with the 2000::/3 prefix.
- B.
They begin with the FE80::/10 prefix.
- C.
They are assigned by IANA to an organization.
- D.
They must be manually configured by the administrator.
- E.
They are assigned to a host by a stateless autoconfiguration process.
- 14.A company is looking for a WAN solution to connect its headquarters site to four remote sites. What are two advantages that dedicated leased lines provide compared to a shared Frame Relay solution? (Choose two.)
- A.
Reduced jitter
- B.
Reduced costs
- C.
Reduced latency
- D.
The ability to burst above guaranteed bandwidth
- E.
The ability to borrow unused bandwidth from the leased lines of other customers
- 15.
![Refer to the exhibit. A network administrator is trying to connect R1 remotely to make configuration changes. Based on the exhibited command output, what will be the result when attempting to connect to R1? - ProProfs]( "Refer to the exhibit. A network administrator is trying to connect R1 remotely to make configuration changes. Based on the exhibited command output, what will be the result when attempting to connect to R1?")
Refer to the exhibit. A network administrator is trying to connect R1 remotely to make configuration changes. Based on the exhibited command output, what will be the result when attempting to connect to R1?- A.
Failure to connect due to Telnet not being enabled
- B.
Failure to connect due to incomplete configuration for Telnet
- C.
A successful connection and ability to make configuration changes
- D.
A successful connection but inability to make configuration changes because of the absence of an enable secret password
- 16.What are two effective measures for securing routers? (Choose two.)
- A.
Protect all active router interfaces by configuring them as passive interfaces.
- B.
Configure remote administration through VTY lines for Telnet access.
- C.
Use quotes or phrases to create pass phrases.
- D.
Disable the HTTP server service.
- E.
Enable SNMP traps.
- 17.An issue of response time has recently arisen on an application server. The new release of a software package has also been installed on the server. The configuration of the network has changed recently. To identify the problem, individuals from both teams responsible for the recent changes begin to investigate the source of the problem. Which statement applies to this situation?
- A.
Scheduling will be easy if the network and software teams work independently.
- B.
It will be difficult to isolate the problem if two teams are implementing changes independently.
- C.
Results from changes will be easier to reconcile and document if each team works in isolation.
- D.
Only results from the software package should be tested as the network is designed to accommodate the proposed software platform.
- 18.
![Refer to the exhibit. From the output of the show interfaces and pingcommands, at which layer of the OSI model is a fault indicated? - ProProfs]( "Refer to the exhibit. From the output of the show interfaces and pingcommands, at which layer of the OSI model is a fault indicated?")
Refer to the exhibit. From the output of the show interfaces and pingcommands, at which layer of the OSI model is a fault indicated?- A.
Application
- B.
Transport
- C.
Network
- D.
Data link
- E.
Physical
- 19.Which technology is used to dynamically map next hop, network layer addresses to virtual circuits in a Frame Relay network?
- A.
Inverse ARP
- B.
LMI
- C.
DLCI
- D.
FECN
- 20.An administrator learns of an e-mail that has been received by a number of users in the company. This e-mail appears to come from the office of the administrator. The e-mail asks the users to confirm their account and password information. Which type of security threat does this e-mail represent?
- A.
Cracking
- B.
Phishing
- C.
Phreaking
- D.
Spamming
- 21.
![Refer to the exhibit. Which data transmission technology is being represented? - ProProfs]( "Refer to the exhibit. Which data transmission technology is being represented?")
Refer to the exhibit. Which data transmission technology is being represented?- A.
TDM
- B.
PPP
- C.
HDLC
- D.
SLIP
- 22.
![Refer to the exhibit. Results of the show vlan and show vtp status commands for switches S1 and S2 are displayed in the exhibit. VLAN 11 was created on S1. Why is VLAN 11 missing from S2? - ProProfs]( "Refer to the exhibit. Results of the show vlan and show vtp status commands for switches S1 and S2 are displayed in the exhibit. VLAN 11 was created on S1. Why is VLAN 11 missing from S2?")
Refer to the exhibit. Results of the show vlan and show vtp status commands for switches S1 and S2 are displayed in the exhibit. VLAN 11 was created on S1. Why is VLAN 11 missing from S2?- A.
There is a Layer 2 loop.
- B.
The VTP domain names do not match.
- C.
Only one switch can be in server mode.
- D.
S2 has a higher spanning-tree priority for VLAN 11 than S1 does.
- 23.What is the result of adding the global command service password-encryption to the configuration of a router?
- A.
Line passwords are encrypted with type 7 encryption.
- B.
Enable passwords are encrypted with type 5 encryption.
- C.
All services must provide an encrypted password to function.
- D.
Only encrypted messages are allowed for router communication.
- 24.While troubleshooting a problem with an e-mail server, an administrator observes that the switch port used by the server shows "up, line protocol up". The administrator cannot ping the server. At which layer of the OSI model is the problem most likely to be found?
- A.
Application layer
- B.
Network layer
- C.
Data link layer
- D.
Physical layerphysical layer
- 25.Where does a service provider assume responsibility from a customer for a WAN connection?
- A.
Local loop
- B.
DTE cable on router
- C.
Demarcation point
- D.
Demilitarized zone
Back to top