有効なCCNA 200-301問題集はあなたの合格を必ず保証します
200-301問題集でリアル試験問題でテストエンジン問題集でトレーニング
Cisco 200-301 認定試験の出題範囲:
| トピック | 出題範囲 |
|---|---|
| トピック 1 |
|
| トピック 2 |
|
| トピック 3 |
|
| トピック 4 |
|
| トピック 5 |
|
| トピック 6 |
|
| トピック 7 |
|
| トピック 8 |
|
| トピック 9 |
|
| トピック 10 |
|
| トピック 11 |
|
| トピック 12 |
|
| トピック 13 |
|
| トピック 14 |
|
| トピック 15 |
|
| トピック 16 |
|
| トピック 17 |
|
| トピック 18 |
|
| トピック 19 |
|
質問 42
A packet is destined for 10.10.1.22. Which static route does the router choose to forward the packet?
- A. ip route 10.10.1.20 255.255.255.254 10.10.255.1
- B. ip route 10.10.1.16 255.255.255.252 10.10.255.1
- C. ip route 10.10.1.0 255.255.255.240 10.10.255.1
- D. ip route 10.10.1.20 255.255.255.252 10.10.255.1
正解: D
解説:
Section: IP Connectivity
質問 43
Which network allows devices to communicate without the need to access the Internet?
- A. 192.0.0.0/8
- B. 172.28.0.0/16
- C. 1729.0.0/16
- D. 209.165.201.0/24
正解: B
解説:
The private ranges of each class of IPv4 are listed below:
Class A private IP address ranges from 10.0.0.0 to 10.255.255.255 Class B private IP address ranges from 172.16.0.0 to 172.31.255.255 Class C private IP address ranges from 192.168.0.0 to 192.168.255.255 Only the network 172.28.0.0/16 belongs to the private IP address (of class B).
質問 44
A network engineer must create a diagram of a multivendor network. Which command must be configured on the Cisco devices so that the topology of the network can be mapped?
- A. Device(Config)#lldp run
- B. Device(Config)#flow-sampler-map topology
- C. Device(Config-if)#cdp enable
- D. Device(Config)#cdp run
正解: A
質問 45
Refer to the exhibit.
The default-information originate command is configured under the R1 OSPF configuration After testing workstations on VLAN 20 at Site B cannot reach a DNS server on the Internet Which action corrects the configuration issue?
- A. Add the always keyword to the default-information originate command on R1
- B. Configure the ip route 0.0.0.0 0.0.0.0 10.10.10.2 command on R2
- C. Add the default-information originate command onR2
- D. Configure the ip route 0.0.0.0 0.0.0.0 10.10.10.18 command on R1
正解: D
質問 46
Which three statements about static routing are true? (Choose three.)
- A. It is best used for large-scale deployments.
- B. Routing is disrupted when links fail.
- C. It uses consistent route determination
- D. It requires more resources than other routing methods.
- E. Routers can use update messages to reroute when links fail.
- F. It is best used for small-scale deployments.
正解: B,C,F
質問 47
Drag and drop the threat-mitigation techniques from the left onto the types of threat or attack they mitigate on the right.
正解:
解説:
Explanation
Double-Tagging attack:In this attack, the attacking computer generates frames with two 802.1Q tags. The first tag matches the native VLAN of the trunk port (VLAN 10 in this case), and the second matches the VLAN of a host it wants to attack (VLAN 20).When the packet from the attacker reaches Switch A, Switch A only sees the first VLAN 10 and it matches with its native VLAN 10 so this VLAN tag is removed. Switch A forwards the frame out all links with the same native VLAN 10. Switch B receives the frame with an tag of VLAN 20 so it removes this tag and forwards out to the Victim computer.Note: This attack only works if the trunk (between two switches) has the same native VLAN as the attacker.To mitigate this type of attack, you can use VLAN access control lists (VACLs, which applies to all traffic within a VLAN. We can use VACL to drop attacker traffic to specific victims/servers) or implement Private VLANs.ARP attack (like ARP poisoning/spoofing) is a type of attack in which a malicious actor sends falsified ARP messages over a local area network as ARP allows a gratuitous reply from a host even if an ARP request was not received. This results in the linking of an attacker's MAC address with the IP address of a legitimate computer or server on the network. This is an attack based on ARP which is at Layer 2.Dynamic ARP inspection (DAI) is a security feature that validates ARP packets in a network which can be used to mitigate this type of attack.
質問 48
Drag and drop the descriptions of file-transfer protocols from the left onto the correct protocols on the right.
正解:
解説:
質問 49
Refer to the exhibit
The server on this network is configured with an MTU of 9216 and the two interfaces on router R1 are configured for MTUs of 2000 and 3000, as shown.
What is the largest packet size that can pass between the workstation and the server?
- A. 1500 bytes
- B. 9216 bytes
- C. 2000 bytes
- D. 3000 bytes
正解: A
質問 50
Which command enables a router to become a DHCP client?
- A. ip dhcp client
- B. ip dhcp pool
- C. ip address dhcp
- D. ip helper-address
正解: C
解説:
Reference:
https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/ipaddr_dhcp/configuration/12-4/dhcp-12-4-book/config-dhcp-client.html
If we want to get an IP address from the DHCP server on a Cisco device, we can use the command "ip address dhcp".
Note: The command "ip helper-address" enables a router to become a DHCP Relay Agent.
質問 51
Refer to the exhibit.
How does the router manage traffic to 192.168.12.16?
- A. It chooses the OSPF route because it has the longest prefix inclusive of the destination address.
- B. it load-balances traffic between all three routes
- C. It chooses the EIGRP route because it has the lowest administrative distance
- D. It selects the RIP route because it has the longest prefix inclusive of the destination address.
正解: D
質問 52
Refer to the exhibit. What configuration on RTR-1 denies SSH access from PC-1 to any RTR-1 interface and allows all other traffic?
- A.
- B.
- C.
- D.
正解: A
解説:
Section: Security Fundamentals
質問 53
Drag and drop the AAA terms from the left onto the description on the right.
正解:
解説:
質問 54
Refer to the exhibit.
Which prefix does Router1 use for traffic to Host A?
- A. 10.10.13.0/25
- B. 10.10.13.144/28
- C. 10.10.10.0/28
- D. 10.10.13.208/29
正解: D
質問 55
A network engineer must back up 20 network router configurations globally within a customer environment. Which protocol allows the engineer to perform this function using the Cisco IOS MIB?
- A. SNMP
- B. ARP
- C. SMTP
- D. CDP
正解: A
質問 56
Refer to exhibit. What Administrative distance has route to 192.168.10.1 ?
- A. 0
- B. 1
- C. 2
- D. 3
正解: C
質問 57
Refer to the exhibit.
A packet is being sent across router R1 to host 172.163.3.14. To which destination does the router send the packet?
- A. 207.165.200.254 via Serial0/0/0
- B. 207.165.200.254 via Serial0/0/1
- C. 207.165.200.246 via Serial0/1/0
- D. 207.165.200.250 via Serial/0/0/0
正解: D
質問 58
What are two roles of the Dynamic Host Configuration Protocol (DHCP)? (Choose two.)
- A. The DHCP server leases client IP addresses dynamically.
- B. The DHCP client can request up to four DNS server addresses.
- C. The DHCP server assigns IP addresses without requiring the client to renew them.
- D. The DHCP client maintains a pool of IP addresses it can assign.
- E. The DHCP server offers the ability to exclude specific IP addresses from a pool of IP addresses.
正解: A,E
質問 59
Refer to the exhibit.
Assuming that the entire network topology is shown, what is the operational status of the interfaces of R2 as indicated by the command output shown?
- A. Two interfaces have problems.
- B. The operational status of the interfaces cannot be determined from the output shown.
- C. One interface has a problem.
- D. The interfaces are functioning correctly.
正解: D
質問 60
......
Cisco 200-301問題を提供していますCCNA問題集と完璧な解答付き:https://www.goshiken.com/Cisco/200-301-mondaishu.html
200-301テスト問題集とオンライン試験エンジンはここにある:https://drive.google.com/open?id=1DYeyRcRVijLq3LOGjJE9uFsWTgrU3p87