Download New Updated (Spring 2015) Cisco 300-209 Actual Tests 91-100

Ensurepass

 

 

QUESTION 91

What action does the hub take when it receives a NHRP resolution request from a spoke for a network that exists behind another spoke?

 

A.

The hub sends back a resolution reply to the requesting spoke.

B.

The hub updates its own NHRP mapping.

C.

The hub forwards the request to the destination spoke.

D.

The hub waits for the second spoke to send a request so that it can respond to both spokes.

 

Correct Answer: C

 

 

QUESTION 92

Refer to the exhibit. The network administrator is adding a new spoke, but the tunnel is not passing traffic. What could cause this issue?

 

clip_image002

 

A.

DMVPN is a point-to-point tunnel, so there can be only one spoke.

B.

There is no EIGRP configuration, and therefore the second tunnel is not working.

C.

The NHRP authentication is failing.

D.

The transform set must be in transport mode, which is a requirement for DMVPN.

E.

The NHRP network ID is incorrect.

 

Correct Answer: C

 

QUESTION 93

A spoke has two Internet connections for failover. How can you achieve optimum failover without affecting any other router in the DMVPN cloud?

 

A.

Create another DMVPN cloud by configuring another tunnel interface that is sourced from the second ISP link.

B.

Use another router at the spoke site, because two ISP connections on the same router for the same hub is not allowed.

C.

Configure SLA tracking, and when the primary interface goes down, manually change the tunnel source of the tunnel interface.

D.

Create another tunnel interface with same configuration except the tunnel source, and configure the if-state nhrp and backup interface commands on the primary tunnel interface.

 

Correct Answer: D

 

 

QUESTION 94

In DMVPN phase 2, which two EIGRP features need to be disabled on the hub to allow spoke-to-spoke communication? (Choose two.)

 

A.

autosummary

B.

split horizon

C.

metric calculation using bandwidth

D.

EIGRP address family

E.

< font style="font-size: 10pt" color="#000000">next-hop-self

F.

default administrative distance

 

Correct Answer: BE

 

 

QUESTION 95

What does NHRP stand for?

 

A.

Next Hop Resolution Protocol

B.

Next Hop Registration Protocol

C.

Next Hub Routing Protocol

D.

Next Hop Routing Protocol

 

Correct Answer: A

 

 

QUESTION 96

When troubleshooting established clientless SSL VPN issues, which three steps should be taken? (Choose three.)

 

A.

Clear the browser history.

B.

Clear the browser and Java cache.

C.

Collect the information from the computer event log.

D.

Enable and use HTML capture tools.

E.

Gather crypto debugs on the adaptive security appliance.

F.

Use Wireshark to capture network traffic.

 

Correct Answer: BDF

QUESTION 97

A user is trying to connect to a Cisco IOS device using clientless SSL VPN and cannot establish the connection. Which three commands can be used for troubleshooting of the AAA subsystem? (Choose three.)

 

A.

debug aaa authentication

B.

debug radius

C.

debug vpn authorization error

D.

debug ssl openssl errors

E.

debug webvpn aaa

F.

debug ssl error

 

Correct Answer: ABE

 

 

QUESTION 98

Which option is a possible solution if you cannot access a URL through clientless SSL VPN with Internet Explorer, while other browsers work fine?

 

A.

Verify the trusted zone and cookies settings in your browser.

B.

Make sure that you specified the URL correctly.

C.

Try the URL from another operating system.

D.

Move to the IPsec client.

 

Correct Answer: A

 

 

QUESTION 99

Which cryptographic algorithms are a part of the Cisco NGE suite?

 

A.

HIPPA DES

B.

AES-CBC-128

C.

RC4-128

D.

AES-GCM-256

 

Correct Answer: D

 

 

QUESTION 100

Which transform set is contained in the IKEv2 default proposal?

 

A.

aes-cbc-192, sha256, group 14

B.

3des, md5, group 7

C.

3des, sha1, group 1

D.

aes-cbc-128, sha, group 5

 

Correct Answer: D

 

Free VCE & PDF File for Cisco 300-209 Real Exam

Instant Access to Free VCE Files: CCNA | CCNP | CCIE …
Instant Access to Free PDF Files: CCNA | CCNP | CCIE …