CCNA 4 Final

51 Questions | By Dermonty | Last updated: Jan 21, 2013 | Total Attempts: 734

Questions

Settings

or Create Online Exam

Tomado de http://ccnaanswers. Com/ccna-4-final-exam-v4-0-answers/

More Ccna Quizzes

An Advanced CCNA Subnetting Test An Advanced CCNA Subnetting Test

Ait CCNA 1 Network Fundamentals Rec Chapter 5 Ait CCNA 1 Network Fundamentals Rec Chapter 5

CCNA Exam 2020 Questions! Trivia Quiz CCNA Exam 2020 Questions! Trivia Quiz

Featured Quizzes

Fun Quiz: The Impossible Test! Fun Quiz: The Impossible Test!

Quiz: What U.S. City Should You Live In? Quiz: What U.S. City Should You Live In?

Billie Eilish: The Ultimate Trivia Quiz! Billie Eilish: The Ultimate Trivia Quiz!

Related Topics

Questions and Answers

1.

What functionality do access control lists provide in the implementation of dynamic NAT on a Cisco router?
- A.
  
  Define which addresses can be translated
- B.
  
  Define which addresses are assigned to a NAT pool
- C.
  
  Define which addresses are allowed out the router
- D.
  
  Define which addresses can be accessed from the inside network
2.

Which three guidelines would help contribute to creating a strong password policy? (Choose three.)
- A.
  
  Once a good password is created, do not change it.
- B.
  
  Deliberately misspell words when creating passwords.
- C.
  
  Create passwords that are at least 8 characters in length.
- D.
  
  Use combinations of upper case, lower case, and special characters.
- E.
  
  Write passwords in locations that can be easily retrieved to avoid being locked out.
- F.
  
  Use long words found in the dictionary to make passwords that are easy to remember.
3.

Refer to the exhibit. Every time the administrator reboots this router, the boot process ends in setup mode. What is a possible problem?
- A.
  
  There is insufficient RAM for the IOS to load on this router.
- B.
  
  A password recovery process should be done on this router.
- C.
  
  The bootstrap version and the version of the IOS are different.
- D.
  
  The IOS image is damaged and must be reloaded using tftpdnld.
- E.
  
  The configuration register is set to ignore the startup configuration.
4.

Which option correctly defines the capacity through the local loop guaranteed to a customer by the service provider?
- A.
  
  BE
- B.
  
  DE
- C.
  
  CIR
- D.
  
  CBIR
5.

Refer to the exhibit. A host connected to Fa0/0 is unable to acquire an IP address from the DHCP server. The output of the debug ip dhcp server command shows "DHCPD: there is no address pool for 10.1.1.1". What is the problem?
- A.
  
  The 10.1.1.1 address is already configured on Fa0/0.
- B.
  
  The default router for the 10Network pool is incorrect.
- C.
  
  The ip helper-address must be added to Fa0/0 interface.
- D.
  
  The pool of addresses for the 10Network pool is incorrect.
6.

Which data link layer encapsulation protocol is used by default for serial connections between two Cisco routers?
- A.
  
  ATM
- B.
  
  Frame Relay
- C.
  
  HDLC
- D.
  
  PPP
- E.
  
  SDLC
7.

Refer to the exhibit. Which statement correctly describes how Router1 processes an FTP request that enters interface s0/0/0 and is destined for an FTP server at IP address 192.168.1.5?
- A.
  
  The router matches the incoming packet to the statement that was created by the access-list 201 deny icmp 192.168.1.0 0.0.0.255 any command, continues comparing the packet to the remaining statements in ACL 201 to ensure that no subsequent statements allow FTP, and then the router drops the packet.
- B.
  
  The router reaches the end of ACL 101 without matching a condition and drops the packet because there is no statement that was created by the access-list 101 permit ip any any command.
- C.
  
  The router matches the incoming packet to the statement that was created by the access-list 101 permit ip any 192.168.1.0 0.0.0.255 command and allows the packet into the router.
- D.
  
  It matches the incoming packet to the statement that was created by the access-list 201 permit ip any any command and allows the packet into the router.
8.

Compared with IDS systems, what can IPS systems do to provide further protection of computer systems?
- A.
  
  Detect potential attacks
- B.
  
  Stop the detected attack from executing
- C.
  
  Update OS patches for computer systems
- D.
  
  Scan computer systems for viruses and spyware
9.

Which IEEE 802.16 broadband wireless technology allows users to connect to the ISP at speeds comparable to DSL and cable?
- A.
  
  Wi-Fi
- B.
  
  Satellite
- C.
  
  WiMAX
- D.
  
  Metro Ethernet
10.

A network administrator has changed the VLAN configurations on his network switches over the past weekend. How can the administrator determine if the additions and changes improved performance and availability on the company intranet?
- A.
  
  Conduct a performance test and compare with the baseline that was established previously.
- B.
  
  Interview departmental secretaries and determine if they think load time for web pages has improved.
- C.
  
  Determine performance on the intranet by monitoring load times of company web pages from remote sites.
- D.
  
  Compare the hit counts on the company web server for the current week to the values that were recorded in previous weeks.
11.

Refer to the exhibit. What is the meaning of the term dynamic in the output of the command?
- A.
  
  The bandwidth capability of the interface increases and decreases automatically based on BECNs.
- B.
  
  The Serial0/0/1 interface acquired 172.16.3.1 from a DHCP server.
- C.
  
  The mapping between DLCI 100 and 172.16.3.1 was learned through Inverse ARP.
- D.
  
  DLCI 100 will automatically adapt to changes in the Frame Relay cloud.
12.

Which type of ACL will permit traffic inbound into a private network only if an outbound session has already been established between the source and destination?
- A.
  
  Extended
- B.
  
  Reflexive
- C.
  
  Standard
- D.
  
  Time-based
13.

Which two statements are true about IPv6 link local addresses? (Choose two.)
- A.
  
  They begin with the 2000::/3 prefix.
- B.
  
  They begin with the FE80::/10 prefix.
- C.
  
  They are assigned by IANA to an organization.
- D.
  
  They must be manually configured by the administrator.
- E.
  
  They are assigned to a host by a stateless autoconfiguration process.
14.

A company is looking for a WAN solution to connect its headquarters site to four remote sites. What are two advantages that dedicated leased lines provide compared to a shared Frame Relay solution? (Choose two.)
- A.
  
  Reduced jitter
- B.
  
  Reduced costs
- C.
  
  Reduced latency
- D.
  
  The ability to burst above guaranteed bandwidth
- E.
  
  The ability to borrow unused bandwidth from the leased lines of other customers
15.

Refer to the exhibit. A network administrator is trying to connect R1 remotely to make configuration changes. Based on the exhibited command output, what will be the result when attempting to connect to R1?
- A.
  
  Failure to connect due to Telnet not being enabled
- B.
  
  Failure to connect due to incomplete configuration for Telnet
- C.
  
  A successful connection and ability to make configuration changes
- D.
  
  A successful connection but inability to make configuration changes because of the absence of an enable secret password
16.

What are two effective measures for securing routers? (Choose two.)
- A.
  
  Protect all active router interfaces by configuring them as passive interfaces.
- B.
  
  Configure remote administration through VTY lines for Telnet access.
- C.
  
  Use quotes or phrases to create pass phrases.
- D.
  
  Disable the HTTP server service.
- E.
  
  Enable SNMP traps.
17.

An issue of response time has recently arisen on an application server. The new release of a software package has also been installed on the server. The configuration of the network has changed recently. To identify the problem, individuals from both teams responsible for the recent changes begin to investigate the source of the problem. Which statement applies to this situation?
- A.
  
  Scheduling will be easy if the network and software teams work independently.
- B.
  
  It will be difficult to isolate the problem if two teams are implementing changes independently.
- C.
  
  Results from changes will be easier to reconcile and document if each team works in isolation.
- D.
  
  Only results from the software package should be tested as the network is designed to accommodate the proposed software platform.
18.

Refer to the exhibit. From the output of the show interfaces and pingcommands, at which layer of the OSI model is a fault indicated?
- A.
  
  Application
- B.
  
  Transport
- C.
  
  Network
- D.
  
  Data link
- E.
  
  Physical
19.

Which technology is used to dynamically map next hop, network layer addresses to virtual circuits in a Frame Relay network?
- A.
  
  Inverse ARP
- B.
  
  LMI
- C.
  
  DLCI
- D.
  
  FECN
20.

An administrator learns of an e-mail that has been received by a number of users in the company. This e-mail appears to come from the office of the administrator. The e-mail asks the users to confirm their account and password information. Which type of security threat does this e-mail represent?
- A.
  
  Cracking
- B.
  
  Phishing
- C.
  
  Phreaking
- D.
  
  Spamming
21.

Refer to the exhibit. Which data transmission technology is being represented?
- A.
  
  TDM
- B.
  
  PPP
- C.
  
  HDLC
- D.
  
  SLIP
22.

Refer to the exhibit. Results of the show vlan and show vtp status commands for switches S1 and S2 are displayed in the exhibit. VLAN 11 was created on S1. Why is VLAN 11 missing from S2?
- A.
  
  There is a Layer 2 loop.
- B.
  
  The VTP domain names do not match.
- C.
  
  Only one switch can be in server mode.
- D.
  
  S2 has a higher spanning-tree priority for VLAN 11 than S1 does.
23.

What is the result of adding the global command service password-encryption to the configuration of a router?
- A.
  
  Line passwords are encrypted with type 7 encryption.
- B.
  
  Enable passwords are encrypted with type 5 encryption.
- C.
  
  All services must provide an encrypted password to function.
- D.
  
  Only encrypted messages are allowed for router communication.
24.

While troubleshooting a problem with an e-mail server, an administrator observes that the switch port used by the server shows "up, line protocol up". The administrator cannot ping the server. At which layer of the OSI model is the problem most likely to be found?
- A.
  
  Application layer
- B.
  
  Network layer
- C.
  
  Data link layer
- D.
  
  Physical layerphysical layer
25.

Where does a service provider assume responsibility from a customer for a WAN connection?
- A.
  
  Local loop
- B.
  
  DTE cable on router
- C.
  
  Demarcation point
- D.
  
  Demilitarized zone
26.

What will be the result of adding the command ip dhcp excluded-address 192.168.24.1 192.168.24.5 to the configuration of a local router that has been configured as a DHCP server?
- A.
  
  Traffic that is destined for 192.168.24.1 and 192.168.24.5 will be dropped by the router.
- B.
  
  Traffic will not be routed from clients with addresses between 192.168.24.1 and 192.168.24.5.
- C.
  
  The DHCP server will not issue the addresses ranging from 192.168.24.1 to 192.168.24.5.
- D.
  
  The router will ignore all traffic that comes from the DHCP servers with addresses 192.168.24.1 and 192.168.24.5.
27.

Refer to the exhibit. Partial results of the show access-lists and show ip interface FastEthernet 0/1 commands for router Router1 are shown. There are no other ACLs in effect. Host A is unable to telnet to host B. Which action will correct the problem but still restrict other traffic between the two networks?
- A.
  
  Apply the ACL in the inbound direction.
- B.
  
  Apply the ACL on the FastEthernet 0/0 interface.
- C.
  
  Reverse the order of the TCP protocol statements in the ACL.
- D.
  
  Modify the second entry in the list to permit tcp host 172.16.10.10 any eq telnet .
28.

Refer to the exhibit. The corporate network that is shown has been assigned network 172.16.128.0/19 for use at branch office LANs. If VLSM is used, what mask should be used for addressing hosts at Branch4 with minimal waste from unused addresses?
- A.
  
  /19
- B.
  
  /20
- C.
  
  /21
- D.
  
  /22
- E.
  
  /23
- F.
  
  /24
29.

Refer to the exhibit. RIPv2 has been configured on all routers in the network. Routers R1 and R3 have not received any RIP routing updates. What will fix the issue?
- A.
  
  Enable RIP authentication on R2.
- B.
  
  Issue the ip directed-broadcast command on R2.
- C.
  
  Change the subnet masks to 10.11.12.0/8 and 172.16.40.0/16 on R2.
- D.
  
  Enable CDP on R2 so that the other routers will receive routing updates.
30.

Refer to the exhibit. This serial interface is not functioning correctly. Based on the output shown, what is the most likely cause?
- A.
  
  Improper LMI type
- B.
  
  Interface reset
- C.
  
  PPP negotiation failure
- D.
  
  Unplugged cable
31.

Which statement is true about PAP in the authentication of a PPP session?
- A.
  
  PAP uses a two-way handshake.
- B.
  
  The password is unique and random.
- C.
  
  PAP conducts periodic password challenges.PAP conducts periodic password challenges.
- D.
  
  PAP uses MD5 hashing to keep the password secure.
32.

An administrator is configuring a dual stack router with IPv6 and IPv4 using RIPng. The administrator receives an error message when trying to enter the IPv4 routes into RIPng. What is the cause of the problem?
- A.
  
  When IPv4 and IPv6 are configured on the same interface, all IPv4 addresses are over-written in favor of the newer technology.
- B.
  
  Incorrect IPv4 addresses are entered on the router interfaces.
- C.
  
  RIPng is incompatible with dual-stack technology.
- D.
  
  IPv4 is incompatible with RIPng.
33.

What is tunneling?
- A.
  
  Using digital certificates to ensure that data endpoints are authentic
- B.
  
  Creating a hash to ensure the integrity of data as it traverses a network
- C.
  
  Using alternate paths to avoid access control lists and bypass security measures
- D.
  
  Encapsulating an entire packet within another packet for transmission over a network
34.

Which statement is true about NCP?
- A.
  
  Link termination is the responsibility of NCP.
- B.
  
  Each network protocol has a corresponding NCP.
- C.
  
  NCP establishes the initial link between PPP devices.
- D.
  
  NCP tests the link to ensure that the link quality is sufficient.
35.

Refer to the exhibit. A network administrator is creating a prototype to verify the new WAN design. However, the communication between the two routers cannot be established. Based on the output of the commands, what can be done to solve the problem?
- A.
  
  Replace the serial cable .
- B.
  
  Replace the WIC on RA.
- C.
  
  Configure RA with a clock rate command.
- D.
  
  Issue a no shutdown interface command on RB.
36.

Refer to the exhibit. Based on the output as shown, which two statements correctly define how the router will treat Telnet traffic that comes into interface FastEthernet 0/1? (Choose two).
- A.
  
  Telnet to 172.16.10.0/24 is denied.
- B.
  
  Telnet to 172.16.20.0/24 is denied.
- C.
  
  Telnet to 172.16.0.0/24 is permitted.
- D.
  
  Telnet to 172.16.10.0/24 is permitted.
- E.
  
  Telnet to 172.16.20.0/24 is permitted.
37.

Which Frame Relay flow control mechanism is used to signal routers that they should reduce the flow rate of frames?
- A.
  
  DE
- B.
  
  BE
- C.
  
  CIR
- D.
  
  FECN
- E.
  
  CBIR
38.

Refer to the exhibit. A network administrator configures a standard access control list on Router1 to prohibit traffic from the 192.168.0.0/24 network from reaching the Internet. The access control list also permits traffic from the 192.168.0.0/24 network to reach the 192.168.1.0/24 network. On which interface and in which direction should the access control list be applied?
- A.
  
  Interface Fa0/0, inbound
- B.
  
  Interface Fa0/0, outbound
- C.
  
  Interface S0/0/0, inbound
- D.
  
  Interface S0/0/0, outbound
39.

Refer to the exhibit. What can be concluded from the exhibited output of thedebug ip nat command?
- A.
  
  The 10.1.1.225 host is exchanging packets with the 192.168.0.10 host.
- B.
  
  The native 10.1.200.254 address is being translated to 192.168.0.10.
- C.
  
  The 192.168.0.0/24 network is the inside network.
- D.
  
  Port address translation is in effect.
40.

A network administrator is instructing a technician on best practices for applying ACLs. Which suggestion should the administrator provide?
- A.
  
  Named ACLs are less efficient than numbered ACLs.
- B.
  
  Standard ACLs should be applied closest to the core layer.
- C.
  
  ACLs applied to outbound interfaces are the most efficient.
- D.
  
  Extended ACLs should be applied closest to the source that is specified by the ACL.
41.

Refer to the exhibit. Headquarters is connected through the Internet to branch office A and branch office B. Which WAN technology would be best suited to provide secure connectivity between headquarters and both branch offices?
- A.
  
  ATM
- B.
  
  VPN
- C.
  
  ISDN
- D.
  
  Frame Relay
- E.
  
  Broadband DSL
42.

Which three physical network problems should be checked when a bottom-up troubleshooting approach has been chosen to troubleshoot network performance? (Choose three.)
- A.
  
  Cable connectivity
- B.
  
  High collision counts
- C.
  
  STP failures and loops
- D.
  
  Address mapping errors
- E.
  
  High CPU utilization rates
- F.
  
  Excess packets that are filtered by the firewall
43.

Refer to the exhibit. A network administrator is attempting to configure a Frame Relay network. The administrator enters the commands as shown in the exhibit on R2, but the Frame Relay PVCs are inactive. What is the problem?
- A.
  
  The incorrect DLCI numbers are being configured on R2.
- B.
  
  The S0/0/0 interface on R2 needs to be point-to-point.
- C.
  
  The frame-relay map commands are missing the cisco keyword at the end.
- D.
  
  A single router interface cannot connect to more than one Frame Relay peer at a time.
44.

Which IP address and wildcard mask would be used in an ACL to block traffic from all hosts on the same subnet as host 192.168.16.43/28?
- A.
  
  Access-list 10 deny 192.168.16.0 0.0.0.31
- B.
  
  Access-list 10 deny 192.168.16.16 0.0.0.31
- C.
  
  Access-list 10 deny 192.168.16.32 0.0.0.16
- D.
  
  Access-list 10 deny 192.168.16.32 0.0.0.15
- E.
  
  Access-list 10 deny 192.168.16.43 0.0.0.16
45.

Which combination of Layer 2 protocol and authentication should be used to establish a link without sending authentication information in plain text between a Cisco and a non-Cisco router?
- A.
  
  PPP with PAP
- B.
  
  PPP with CHAP
- C.
  
  HDLC with PAP
- D.
  
  HDLC with CHAP
46.

When would the multipoint keyword be used in Frame Relay PVCs configuration?
- A.
  
  When global DLCIs are in use
- B.
  
  When using physical interfaces
- C.
  
  When multicasts must be supported
- D.
  
  When participating routers are in the same subnet
47.

A network technician analyzes the network and notices late collisions. The collisions occur accompanied by jabber that originates from the server. What is the likely cause of the problem?
- A.
  
  Faulty switch port
- B.
  
  Web server CPU overload
- C.
  
  Faulty NIC in the web server
- D.
  
  Misconfiguration of web server services
48.

Refer to the exhibit. R1 is performing NAT overload for the 10.1.1.0/24 inside network. Host A has sent a packet to the web server. What is the destination IP address of the return packet from the web server?
- A.
  
  10.1.1.2:1234
- B.
  
  172.30.20.1:1234
- C.
  
  172.30.20.1:3333
- D.
  
  192.168.1.2:80
49.

Refer to the exhibit. All devices are configured as shown in the exhibit. PC1 is unable to ping the default gateway. What is the cause of the problem?
- A.
  
  The default gateway is in the wrong subnet.
- B.
  
  STP has blocked the port that PC1 is connected to.
- C.
  
  Port Fa0/2 on S2 is assigned to the wrong VLAN.
- D.
  
  S2 has the wrong IP address assigned to the VLAN30 interface.
50.

When Frame Relay encapsulation is used, what feature provides flow control and exchanges information about the status of virtual circuits?
- A.
  
  LCP
- B.
  
  LMI
- C.
  
  DLCI
- D.
  
  Inverse ARP
51.

A network administrator is tasked with maintaining two remote locations in the same city. Both locations use the same service provider and have the same service plan for DSL service. When comparing download rates, it is noticed that the location on the East side of town has a faster download rate than the location on the West side of town. How can this be explained?
- A.
  
  The West side has a high volume of POTS traffic.
- B.
  
  The West side of town is downloading larger packets.
- C.
  
  The service provider is closer to the location on the East side.
- D.
  
  More clients share a connection to the DSLAM on the West side.

Back to top