350-401問題集1175問でCCNP Enterpriseを確実実践
リアル最新350-401試験問題350-401問題集
Cisco 350-401認定試験は、ネットワークエンジニア、ネットワーク管理者、およびエンタープライズレベルのネットワークインフラストラクチャを担当するIT専門家に推奨されます。この認定は、IT業界でのキャリアを前進させようとしている人や、新しいスキルとテクノロジーを学ぶことを目指している個人にも適しています。
質問 # 235
Refer to the exhibit.
Which HTTP JSON response does the python code output give?
- A. NameError: name 'json' is not defined
- B. 7.61
- C. 7.0(3)I7(4)
- D. KeyError 'kickstart_ver_str'
正解:C
質問 # 236
Refer to the exhibit. Extended access-list 100 is configured on interface GigabitEthernet 0/0 in an inbound direction, but it does not have the expected behavior of allowing only packets to or from
192 168 0.0/16.
Which command set properly configures the access list?
- A. R1(config)#ip access-list extended 100
R1(config-ext-nacl)#5 permit ip any any - B. R1(config)#ip access-list extended 100
R1(config-ext-nacl)#no 10 - C. R1(config)#no access-list 100 seq 10
R1(config)#access-list 100 seq 40 deny ip any any - D. R1(config)#no access-list 100 deny ip any any
正解:B
解説:
The first ACL statement of "10 deny ip any any" will match and drop all traffic so we have to remove this statement.
質問 # 237
When using TLS for syslog, which configuration allows for secure and reliable transportation of messages to its default port?
- A. logging host 10.2.3.4 vrf mgmt transport udp port 514
- B. logging host 10.2.3.4 vrf mgmt transport udp port 6514
- C. logging host 10.2.3.4 vrf mgmt transport tcp port 514
- D. logging host 10.2.3.4 vrf mgmt transport tcp port 6514
正解:D
解説:
Explanation/Reference: https://tools.ietf.org/html/rfc5425
質問 # 238
Drag and drop the characteristics from the left onto the routing protocols they describe on the right.
正解:
解説:
質問 # 239
Refer to the exhibit.
On which interfaces should VRRP commands be applied to provide first hop redundancy to PC-01 and PC-02?
- A. G0/0 on Edge-01 and G0/0 on Edge-02
- B. G0/0 and G0/1 on Core
- C. G0/0 and G0/1 on ASW-01
- D. G0/1on Edge-01 and G0/1 on Edge-02
正解:D
質問 # 240
Which exhibit displays a valid JSON file?
- A. Option D
- B. Option C
- C. Option B
- D. Option A
正解:A
質問 # 241
Which statement explains why Type 1 hypervisor is considered more efficient than Type 2 hypervisor?
- A. Type 1 hypervisor enables other operating systems to run on it.
- B. Type 1 hypervisor runs directly on the physical hardware of the host machine without relying on the underlying OS.
- C. Type 1 hypervisor is the only type of hypervisor that supports hardware acceleration techniques.
- D. Type 1 hypervisor relics on the existing OS of the host machine to access CPU, memory, storage, and network resources.
正解:B
解説:
Explanation
There are two types of hypervisors: type 1 and type 2 hypervisor.
In type 1 hypervisor (or native hypervisor), the hypervisor is installed directly on the physical server. Then instances of an operating system (OS) are installed on the hypervisor. Type 1 hypervisor has direct access to the hardware resources. Therefore they are more efficient than hosted architectures. Some examples of type 1 hypervisor are VMware vSphere/ESXi, Oracle VM Server, KVM and Microsoft Hyper-V.
In contrast to type 1 hypervisor, a type 2 hypervisor (or hosted hypervisor) runs on top of an operating system and not the physical hardware directly. answer 'Type 1 hypervisor runs directly on the physical hardware of the host machine without relying on the underlying OS' big advantage of Type 2 hypervisors is that management console software is not required. Examples of type 2 hypervisor are VMware Workstation (which can run on Windows, Mac and Linux) or Microsoft Virtual PC (only runs on Windows).
質問 # 242
Refer to the exhibit. An engineer is reaching network 172.16.10.0/24 via the R1-R2-R4 path.
Which configuration forces the traffic to take a path of R1-R3-R4?
- A. R1(config)#route-map RM_LOCAL_PREF permit 10
R1(config-route-map)#set local-preference 101
R1(config-route-map)#exit
R1(config)#router bgp 100
R1(config-router)#neighbor 13.13.13.3 route-map RM_LOCAL_PREF in
R1(config-router)#end
R1#clear ip bgp 13.13.13.3 soft in - B. R2(config)#route-map RM_MED permit 10
R2(config-route-map)#set metric 1
R2(config-route-map)#exit
R2(config)#router bgp 200
R2(config-router)#neighbor 12.12.12.1 route-map RM_MED out
R2(config-router)#end
R2#clear ip bgp 12.12.12.1 soft out - C. R1(config)#router bgp 100
R1(config-router)#neighbor 13.13.13.3 weight 1
R1(config-router)#end - D. R1(config)#route-map RM_AS_PATH_PREPEND
R1(config-route-map)#set as-path prepend 200 200
R1(config-route-map)#exit
R1(config)#router bgp 100
R1(config-router)#neighbor 12.12.12.2 route-map RM_AS_PATH_PREPEND in
R1(config-router)#end
R1#clear ip bgp 12.12.12.2 soft in
正解:A
解説:
https://community.cisco.com/t5/networking-documents/understanding-bgp-best-path-selection- manipulation/ta-p/3150576
質問 # 243
Which network devices secure API platform?
- A. web application firewalls
- B. content switches
- C. Layer 3 transit network devices
- D. next-generation intrusion detection systems
正解:B
質問 # 244
A company plans to implement intent-based networking in its campus infrastructure. Which design facilities a migrate from a traditional campus design to a programmer fabric designer?
- A. Layer 2 access
- B. two-tier
- C. routed access
- D. three-tier
正解:B
解説:
Explanation
Intent-based Networking (IBN) transforms a hardware-centric, manual network into a controller-led network that captures business intent and translates it into policies that can be automated and applied consistently across the network. The goal is for the network to continuously monitor and adjust network performance to help assure desired business outcomes. IBN builds on software-defined networking (SDN). SDN usually uses spine-leaf architecture, which is typically deployed as two layers: spines (such as an aggregation layer), and leaves (such as an access layer).
The example below shows the usage of lock command:
def demo(host, user, names):
With manager. Connect(host=host, port=22, username=user) as m:
With m.locked(target='running'):
for n in names:
m.edit_config (target='running', config=template % n)
The command "m.locked (target='running')" causes a lock to be acquired on the running datastore.
質問 # 245
Which tunnel type al'ows clients to perform a seamless Layer 3 roam between a Cisco AireOS WLC and a Cisco IOS XE WLC?
- A. Ethernet over IP
- B. IPsec
- C. VPN
- D. Mobility
正解:A
質問 # 246
Which configuration enables a device to be configured via NETCONF over SSHv2?
- A.
- B.
- C.
- D.
正解:C
質問 # 247
A network engineer is adding an additional 10Gps link to an exiting 2x10Gps LACP-based LAG to augment its capacity. Network standards require a bundle interface to be taken out of service if one of its member links goes down, and the new link must be added with minimal impact to the production network. Drag and drop the tasks that the engineer must perform from the left into the sequence on the right. Not all options are used.
正解:
解説:
質問 # 248
Drag and drop the descriptions from the left onto the QoS components they describe on the right.
正解:
解説:
質問 # 249
Which control plane protocol is used between Cisco SD-WAN routers and vSmart controllers?
- A. TCP
- B. BGP
- C. UDP
- D. OMP
正解:D
質問 # 250
In an SD-WAN deployment, which action in the vSmart controller responsible for?
- A. handle, maintain, and gather configuration and status for nodes within the SD-WAN fabric
- B. gather telemetry data from vEdge routers
- C. distribute policies that govern data forwarding performed within the SD-WAN fabric
- D. onboard vEdge nodes into the SD-WAN fabric
正解:C
解説:
Explanation
Control plane (vSmart) builds and maintains the network topology and make decisions on the traffic flows.
The vSmart controller disseminates control plane information between WAN Edge devices, implements control plane policies and distributes data plane policies to network devices for enforcement.
質問 # 251
An engineer must use flexible NetFlow on a group of switches. To prevent overloading of the flow connector, if the flow is idle for 20 seconds, the flow sample should be exported. Which command set should be applied?
- A. flow record recordflow
exporter flowexport
record recordflow
cache timeout active 120
cache timeout inactive 20
cache type immediate - B. flow monitor monitorflow
exporter recordflow
cache timeout active 120
cache timeout inactive 20
cache type permanent - C. flow record recordflow
match ipv6 destination ip-address
match ipv6 source ip-address
match ipv6 protocol-type view
match interface input
match interface output
match transport destination-port
collect counter bytes long - D. flow monitor monitorflow
exporter flowexport
record recordflow
cache timeout active 120
cache timeout inactive 20
cache type immediate
正解:D
質問 # 252
A network engineer is configuring Flexible Netflow and enters these commands
Sampler Netflow1
Mode random one-out-of 100
Interface fastethernet 1/0
Flow-sampler netflow1
Which are two results of implementing this feature instead of traditional Netflow? (Choose two.)
- A. The number of packets to be analyzed are reduced
- B. The data export flow is more secure.
- C. The accuracy of the data to be analyzed is improved
- D. CPU and memory utilization are reduced.
- E. Only the flows of top 100 talkers are exported
正解:A、D
解説:
The "mode random one-out of 100" specifies that sampling uses the random mode and only take one sample out of every 100 packets.
質問 # 253
What is one benefit of adopting a data modeling language?
- A. refactoring vendor and platform specific configurations with widely compatible configurations
- B. augmenting the use of management protocols like SNMP for status subscriptions
- C. augmenting management process using vendor centric actions around models
- D. deploying machine-friendly codes to manage a high number of devices
正解:A
質問 # 254
A Cisco administrstor deploys a new wireless network but CAPWAP APs cannot communicate with the wireless controller. IP connectivity in the network functions properly. Which action resolves the issue?
- A. Open CAPWAP UDP ports 5246 and 5247 in the network firewall.
- B. Enable the UDP Lite feature on the WLC.
- C. Open CAPWAP UDP port 12222 in the network firewall.
- D. Ensure that the controller is connected to a AAA server.
正解:A
質問 # 255
Drag and drop the virtual component from the left onto their descriptions on the right.
正解:
解説:
Explanation
+ configuration file containing settings for a virtual machine such as guest OS: VMX
+ component of a virtual machine responsible for sending packets to the hypervisor: vNIC
+ zip file containing a virtual machine configuration file and a virtual disk: OVA
+ file containing a virtual machine disk drive: VMDK
The VMX file simply holds the virtual machine configuration.
VMDK (short for Virtual Machine Disk) is a file format that describes containers for virtual hard disk drives to be used in virtual machines like VMware Workstation or VirtualBox.
An OVA file is an Open Virtualization Appliance that contains a compressed, "installable" version of a virtual machine. When you open an OVA file it extracts the VM and imports it into whatever virtualization software you have installed on your computer.
質問 # 256
Refer to the exhibit.
An engineer must ensure that all traffic leaving AS 200 will choose Link 2 as an entry point. Assuming that all BGP neighbor relationships have been formed and that the attributes have not been changed on any of the routers, which configuration accomplish task?
- A. Option C
- B. Option A
- C. Option D
- D. Option B
正解:B
解説:
Explanation
R3 advertises BGP updates to R1 with multiple AS 100 so R3 believes the path to reach AS 200 via R3 is farther than R2 so R3 will choose R2 to forward traffic to AS 200.
質問 # 257
......
Cisco 350-401認定試験は、かなりの量の準備と研究が必要な挑戦的な試験です。候補者は、ネットワークテクノロジー、プロトコル、およびインフラストラクチャを深く理解することが期待されています。また、ネットワーク自動化ツールとテクニック、ネットワークセキュリティのベストプラクティス、ネットワーク設計の原則にも精通している必要があります。
350-401別格な問題集で最上級の成績にさせる350-401問題:https://www.goshiken.com/Cisco/350-401-mondaishu.html
手に入れよう!最新350-401認定の有効な試験問題集解答:https://drive.google.com/open?id=1Nuxdkg9cpeSleNTsNKMVVJmj8bgwlMkM