Try Before You Buy

Download a free sample of any of our exam questions and answers

  • 24/7 customer support, Secure shopping site
  • Free One year updates to match real exam scenarios
  • If you failed your exam after buying our products we will refund the full amount back to you.
Free Download
  • Home
  • Articles
  • Cisco 200-301 Test Engine Practice Test Questions, Exam Dumps [Q527-Q543]

Cisco 200-301 Test Engine Practice Test Questions, Exam Dumps [Q527-Q543]

Share

Cisco 200-301 Test Engine Practice Test Questions, Exam Dumps

100% Free 200-301 Daily Practice Exam With 970 Questions

NEW QUESTION # 527
What are two benefits of using VTP in a switching environment? (Choose two.)

  • A. It allows switches to read frame tags.
  • B. It allows frames from multiple VLANs to use a single interface.
  • C. It allows ports to be assigned to VLANs automatically.
  • D. It maintains VLAN consistency across a switched network.
  • E. It allows VLAN information to be automatically propagated throughout the switching environment.

Answer: D,E


NEW QUESTION # 528
Which command can you execute to set the user inactivity timer to 10 seconds?

  • A. SW1 (config-line)#exec-timeout 0 10
  • B. SW1 (config-line)#exec-timeout 10
  • C. SW1 (config-line)#absolute-timeout 10
  • D. SW1 (config-line)#absolute-timeout 0 10

Answer: A


NEW QUESTION # 529
Refer to the Exhibit.


IP connectivity between the three routers is configured. OSPF adjacencies must be established.
1. Configure R1 and R2 Router IDs using the interface IP addresses from the link that is shared between them.
2. Configure the R2 links with a max value facing R1 and R3. R2 must become the DR. R1 and R3 links facing R2 must remain with the default OSPF configuration for DR election. Verify the configuration after clearing the OSPF process.
3. Using a host wildcard mask, configure all three routers to advertise their respective Loopback1 networks.
4. Configure the link between R1 and R3 to disable their ability to add other OSPF routers.

  • A. Se ethe Explanation below

Answer: A

Explanation:
Answer as below configuration:
on R1
conf terminal
interface Loopback0
ip address 10.10.1.1 255.255.255.255
!
interface Loopback1
ip address 192.168.1.1 255.255.255.0
!
interface Ethernet0/0
no shut
ip address 10.10.12.1 255.255.255.0
ip ospf 1 area 0
duplex auto
!
interface Ethernet0/1
no shut
ip address 10.10.13.1 255.255.255.0
ip ospf 1 area 0
duplex auto
!
router ospf 1
router-id 10.10.12.1
network 10.10.1.1 0.0.0.0 area 0
network 192.168.1.0 0.0.0.255 area 0
!
copy run star
---------------------------------------
On R2
conf terminal
interface Loopback0
ip address 10.10.2.2 255.255.255.255
!
interface Loopback1
ip address 192.168.2.2 255.255.255.0
!
interface Ethernet0/0
no shut
ip address 10.10.12.2 255.255.255.0
ip ospf priority 255
ip ospf 1 area 0
duplex auto
!
interface Ethernet0/2
no shut
ip address 10.10.23.2 255.255.255.0
ip ospf priority 255
ip ospf 1 area 0
duplex auto
!
router ospf 1
network 10.10.2.2 0.0.0.0 area 0
network 192.168.2.0 0.0.0.255 area 0
!
copy runs start
-----------------------
On R3
conf ter
interface Loopback0
ip address 10.10.3.3 255.255.255.255
!
interface Loopback1
ip address 192.168.3.3 255.255.255.0
!
interface Ethernet0/1
no shut
ip address 10.10.13.3 255.255.255.0
ip ospf 1 area 0
duplex auto
!
interface Ethernet0/2
no shut
ip address 10.10.23.3 255.255.255.0
ip ospf 1 area 0
duplex auto
!
router ospf 1
network 10.10.3.3 0.0.0.0 area 0
network 192.168.3.0 0.0.0.255 area 0
!
copy run start
!


NEW QUESTION # 530
When configuring a WLAN with WPA2 PSK in the Cisco Wireless LAN Controller GUI, which two formats are available to select? (Choose two)

  • A. binary
  • B. ASCII
  • C. decimal
  • D. base64
  • E. hexadecimal

Answer: B,E

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/wireless/controller/7-4/configuration/guides/consolidated/b_cg74_CONSOLIDATED/b_cg74_CONSOLIDATED_chapter_01010001.html


NEW QUESTION # 531
Which command should you enter to configure a device as an NTP sever?

  • A. ntp authenticate
  • B. ntp sever
  • C. ntp peer
  • D. ntp master

Answer: D

Explanation:
To configure a Cisco device as an Authoritative NTP Server, use the ntp master [stratum] command.
To configure a Cisco device as a NTP client, use the command ntp server <IP address>. For example: Router(config)#ntp server 192.168.1.1. This command will instruct the router to query 192.168.1.1 for the time.


NEW QUESTION # 532
Which network allows devices to communicate without the need to access the Internet?

  • A. 172.28.0.0/16
  • B. 209.165.201.0/24
  • C. 1729.0.0/16
  • D. 192.0.0.0/8

Answer: A

Explanation:
This question asks about the private ranges of IPv4 addresses. The private ranges of each class of IPv4 are listed below:
Class A private IP address ranges from 10.0.0.0 to 10.255.255.255
Class B private IP address ranges from 172.16.0.0 to 172.31.255.255
Class C private IP address ranges from 192.168.0.0 to 192.168.255.255
Only the network 172.28.0.0/16 belongs to the private IP address (of class B).


NEW QUESTION # 533
Refer to the exhibit. Shortly after SiteA was connected to SiteB over a new single-mode fiber path, users at SiteA report intermittent connectivity issues with applications hosted at SiteB. What is the cause of the intermittent connectivity issue?

  • A. High usage is causing high latency
  • B. The sites were connected with the wrong cable type
  • C. An incorrect SFP media type was used at SiteA
  • D. Interface errors are incrementing

Answer: D

Explanation:
reliability 255/255: When the input and output errors increase, they affect the reliability counter.
This indicates how likely it is that a packet can be delivered or received successfully. Reliability is calculated like this: reliability = number of packets / number of total frames. The value of 255 is the highest value meaning that the interface is very reliable at the moment. The calculation above is done every 5 minutes.


NEW QUESTION # 534
Refer to the exhibit.

An administrator must turn off the Cisco Discovery Protocol on the port configured with address last usable address in the 10.0.0.0/30 subnet. Which command set meets the requirement?

  • A. interface gi0/0
    no cdp advertise-v2
  • B. interface gi0/1
    clear cdp table
  • C. interface gi0/1
    no cdp enable
  • D. interface gi0/0
    no cdp run

Answer: D


NEW QUESTION # 535
How do TCP and UDP differ in the way that they establish a connection between two endpoints?

  • A. UDP provides reliable message transfer and TCP is a connectionless protocol
  • B. TCP uses synchronization packets, and UDP uses acknowledgment packets.
  • C. TCP uses the three-way handshake and UDP does not guarantee message delivery
  • D. UDP uses SYN, SYN ACK and FIN bits in the frame header while TCP uses SYN, SYN ACK and ACK bits

Answer: C


NEW QUESTION # 536
Refer to the exhibit.

The show ip ospf interface command has been executed on R1 How is OSPF configured?

  • A. The interface is not participating in OSPF
  • B. There are six OSPF neighbors on this interface
  • C. The default Hello and Dead timers are in use
  • D. A point-to-point network type is configured

Answer: C

Explanation:
Explanation
https://www.cisco.com/c/en/us/support/docs/ip/open-shortest-path-first-ospf/13689-17.html


NEW QUESTION # 537
Drag and drop the Rapid PVST+ forwarding slate actions from the loft to the right. Not all actions are used.

Answer:

Explanation:


NEW QUESTION # 538
Refer to the exhibit.

An administrator is tasked with configuring a voice VLAN. What is the expected outcome when a Cisco phone is connected to the GigabitEfriemet3/1/4 port on a switch?

  • A. The phone sends and receives data in VLAN 50, but a workstation connected to the phone has no VLAN connectivity
  • B. The phone and a workstation that is connected to the phone do not have VLAN connectivity
  • C. The phone and a workstation that is connected to the phone send and receive data in VLAN 50.
  • D. The phone sends and receives data in VLAN 50, but a workstation connected to the phone sends and receives data in VLAN 1

Answer: D


NEW QUESTION # 539
Which value is used to determine the active router in an HSRP default configuration?

  • A. Router priority
  • B. Router loopback address
  • C. Router tracking number
  • D. Router IP address

Answer: D


NEW QUESTION # 540
Refer to the exhibit. What is the effect of this configuration?

  • A. The switch discard all ingress ARP traffic with invalid MAC-to-IP address bindings.
  • B. All ARP packets are dropped by the switch
  • C. All ingress and egress traffic is dropped because the interface is untrusted
  • D. Egress traffic is passed only if the destination is a DHCP server.

Answer: A


NEW QUESTION # 541
DRAG DROP
Drag and drop the threat-mitigation techniques from the left onto the types of threat or attack they mitigate on the right.
Select and Place:

Answer:

Explanation:

Section: Security Fundamentals
Explanation:
Double-Tagging attack:

In this attack, the attacking computer generates frames with two 802.1Q tags. The first tag matches the native VLAN of the trunk port (VLAN 10 in this case), and the second matches the VLAN of a host it wants to attack (VLAN 20).
When the packet from the attacker reaches Switch A, Switch A only sees the first VLAN 10 and it matches with its native VLAN 10 so this VLAN tag is removed. Switch A forwards the frame out all links with the same native VLAN 10. Switch B receives the frame with an tag of VLAN 20 so it removes this tag and forwards out to the Victim computer.
Note: This attack only works if the trunk (between two switches) has the same native VLAN as the attacker.
To mitigate this type of attack, you can use VLAN access control lists (VACLs, which applies to all traffic within a VLAN. We can use VACL to drop attacker traffic to specific victims/servers) or implement Private VLANs.
ARP attack (like ARP poisoning/spoofing) is a type of attack in which a malicious actor sends falsified ARP messages over a local area network as ARP allows a gratuitous reply from a host even if an ARP request was not received. This results in the linking of an attacker's MAC address with the IP address of a legitimate computer or server on the network. This is an attack based on ARP which is at Layer 2. Dynamic ARP inspection (DAI) is a security feature that validates ARP packets in a network which can be used to mitigate this type of attack.


NEW QUESTION # 542
A user configured OSPF and advertised the Gigabit Ethernet interface in OSPF By default, which type of OSPF network does this interface belong to?

  • A. point-to-point
  • B. broadcast
  • C. point-to-multipoint
  • D. nonbroadcast

Answer: A


NEW QUESTION # 543
......


Understanding functional and technical aspects of 200-301 CCNA Exam: Cisco Certified Network Associate Network Security Fundamentals

The following will be discussed here:

  • Configure Layer 2 security features (DHCP snooping, dynamic ARP inspection, and port security)
  • Configure and verify access control lists
  • Security Fundamentals
  • Describe remote access and site-to-site VPNs
  • Describe wireless security protocols (WPA, WPA2, and WPA- )
  • Configure device access control using local passwords

 

Use Valid New 200-301 Test Notes & 200-301 Valid Exam Guide: https://www.vce4dumps.com/200-301-valid-torrent.html

200-301 exam torrent Cisco study guide: https://drive.google.com/open?id=1i9_YDph2GkjcLQnEa4XB4Do-UtXr-8us

Related Articles

more
Cisco 200-301 Certification Practice Exam

VCE4Dumps have latest exam dumps vce and valid certification dumps, with the help of vce dumps, you will get a high score in the test.

Latest VCE Dumps

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 VCE4Dumps NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy