Take Assessment - EWAN Final Exam - CCNA Exploration: Accessing The WAN (Version 4.0)
Take Assessment - EWAN Final Exam - CCNA Exploration: Accessing The WAN (Version 4.0)
Take Assessment - EWAN Final Exam - CCNA Exploration: Accessing The WAN (Version 4.0)
Close Window
Assessment System
1. Assessment Selection 2. Assessment Settings
3. Take Assessment
Take Assessment - EWAN Final Exam - CCNA Exploration: Accessing the WAN (Version 4.0)
Time Remaining:
Which three guidelines would help contribute to creating a strong password policy? (Choose three.) Once a good password is created, do not change it. Deliberately misspell words when creating passwords. Create passwords that are at least 8 characters in length. Use combinations of upper case, lower case, and special characters. Write passwords in locations that can be easily retrieved to avoid being locked out. Use long words found in the dictionary to make passwords that are easy to remember.
Which variable is permitted or denied by a standard access control list? protocol type source IP address source MAC address destination IP address destination MAC address
Refer to the exhibit. Company ABC expanded its business and recently opened a new branch office in another country. IPv6 addresses have been used for the company network. The data servers Server1 and Server2 run applications which require end-to-end functionality, with unmodified packets that are forwarded from the source to the destination. The edge routers R1 and R2 support dual stack configuration. What solution should be deployed at the edge of the company network in order to successfully interconnect both offices? a new WAN service supporting only IPv6 NAT overload to map inside IPv6 addresses to outside IPv4 address a manually configured IPv6 tunnel between the edge routers R1 and R2 static NAT to map inside IPv6 addresses of the servers to an outside IPv4 address and dynamic NAT for the rest of the inside IPv6 addresses 4 Which statement about a VPN is true? VPN link establishment and maintenance is provided by LCP. DLCI addresses are used to identify each end of the VPN tunnel. VPNs use virtual Layer 3 connections that are routed through the Internet. Only IP packets can be encapsulated by a VPN for tunneling through the Internet.
1 of 5
8/10/2009 7:58 PM
file:///D:/My%20Documents/Downloads/final%2031-07-09/final%2031-...
Which combination of Layer 2 protocol and authentication should be used to establish a link without sending authentication information in plain text between a Cisco and a non-Cisco router? PPP with PAP PPP with CHAP HDLC with PAP HDLC with CHAP
When NAT is in use, what is used to determine the addresses that can be translated on a Cisco router? access control list routing protocol inbound interface ARP cache
Which method is most effective in protecting the routing information that is propagated between routers on the network? Disable IP source routing. Configure passive interfaces. Configure routing protocol authentication. Secure administrative lines with Secure Shell.
Refer to the exhibit. The network administrator creates a standard access control list on Router1 to prohibit traffic from the 172.16.1.0/24 network from reaching the 172.16.2.0/24 network while still permitting Internet access for all networks. On which router interface and in which direction should it be applied? interface Fa0/0, inbound interface Fa0/0, outbound interface Fa0/1, inbound interface Fa0/1, outbound
A network administrator has moved the company intranet web server from a switch port to a dedicated router interface. How can the administrator determine how this change has affected performance and availability on the company intranet? Conduct a performance test and compare with the baseline that was established previously. Determine performance on the intranet by monitoring load times of company web pages from remote sites. Interview departmental administrative assistants and determine if they think load time for web pages has improved.
2 of 5
8/10/2009 7:58 PM
file:///D:/My%20Documents/Downloads/final%2031-07-09/final%2031-...
Compare the hit counts on the company web server for the current week to the values that were recorded in previous weeks.
10 An issue of response time has recently arisen on an application server. The new release of a software package has also been installed on the server. The configuration of the network has changed recently. To identify the problem, individuals from both teams responsible for the recent changes begin to investigate the source of the problem. Which statement applies to this situation? Scheduling will be easy if the network and software teams work independently. It will be difficult to isolate the problem if two teams are implementing changes independently. Results from changes will be easier to reconcile and document if each team works in isolation. Only results from the software package should be tested as the network is designed to accommodate the proposed software platform. 11 What is a characteristic feature of a worm? exploits a known vulnerability attaches to executable programs masquerades as a legitmate program lies dormant until triggered by an event, time, or date
12
Refer to the exhibit. R1 is performing NAT overload for the 10.1.1.0/24 inside network. Host A has sent a packet to Web Server. What is the destination IP address of the return packet from Web Server when received at R1? 10.1.1.2:80 10.1.1.2:1234 172.30.20.1:1234 172.30.20.1:3333
13
3 of 5
8/10/2009 7:58 PM
file:///D:/My%20Documents/Downloads/final%2031-07-09/final%2031-...
Refer to the exhibit. Routers R1 and R2 are both configured for single area OSPF. Users who are connected to switch S1 are unable to access database applications that run on servers that are connected to S2. The network engineer is working remotely and only has the information that is shown in the exhibit to direct initial troubleshooting efforts. Based on the exhibit, which OSI layer is the most appropriate to start with for a divide-and-conquer approach? network layer application layer data-link layer physical layer
14
Refer to the exhibit. Which statement correctly describes how Router1 processes an FTP request packet that enters interface S0/0/0, and is destined for an FTP server at IP address 172.16.1.5? The router matches the incoming packet to the statement that is created by access-list 201 permit ip any any command and allows the packet into the router. The router reaches the end of ACL 101 without matching a condition and drops the packet because there is no statement that was created by access-list 101 permit ip any any command. The router matches the incoming packet to the statement that was created by the access-list 101 permit ip any 172.16.1.0 0.0.0.255 command, ignores the remaining statements in ACL 101, and allows the packet into the router.
4 of 5
8/10/2009 7:58 PM
file:///D:/My%20Documents/Downloads/final%2031-07-09/final%2031-...
The router matches the incoming packet to the statement that was created by the access-list 201 deny icmp 172.16.1.0 0.0.0.255 any command, continues comparing the packet to the remaining statements in ACL 201 to ensure that no subsequent statements allow FTP, and then the router drops the packet. 15 What are two main components of data confidentiality? (Choose two.) checksum digital certificates encapsulation encryption hashing
Showing 1 of 4
<Prev
Page:
Next>
Close Window
All contents copyright 1992-2009 Cisco Systems, Inc. Privacy Statement and Trademarks.
5 of 5
8/10/2009 7:58 PM