Exam : Cisco 350-001 Title : CCIE-Routing and Switching Written exam(4.1)
1. Which of these is mandatory when configuring Cisco IOS Firewall? A. Cisco IOS IPS enabled on the untrusted interface B. NBAR enabled to perform protocol discovery and deep packet inspection C. a route map to define the trusted outgoing traffic D. a route map to define the application inspection rules E. an inbound extended ACL applied to the untrusted interface Answer: E
2. Which statement correctly describes the disabling of IP TTL propagation in an MPLS network? A. The TTL field from the IP packet is copied into the TTL field of the MPLS label header at the ingress edge LSR. B. TTL propagation cannot be disabled in an MPLS domain. C. TTL propagation is only disabled on the ingress edge LSR. D. The TTL field of the MPLS label header is set to 255. E. The TTL field of the IP packet is set to 0. Answer: D
3. Which two of these are used in the selection of a root bridge in a network utilizing Spanning Tree Protocol IEEE 802.1D? (Choose two.) A. Designated Root Cost B. bridge ID priority C. max age D. bridge ID MAC address E. Designated Root Priority F. forward delay Answer: BD
4. If a port configured with STP loop guard stops receiving BPDUs, the port will be put into which state? A. learning state B. listening state C. forwarding state D. root-inconsistent state Answer: D
5. What is the purpose of an explicit "deny any" statement at the end of an ACL? A. none, since it is implicit B. to enable Cisco IOS IPS to work properly; however, it is the deny all traffic entry that is actually required C. to enable Cisco IOS Firewall to work properly; however, it is the deny all traffic entry that is actually required D. to allow the log option to be used to log any matches E. to prevent sync flood attacks F. to prevent half-opened TCP connections Answer: D
6. Two routers configured to run BGP have been connected to a firewall, one on the inside interface and one on the outside interface. BGP has been configured so the two routers should peer, including the correct BGP session endpoint addresses and the correct BGP session hop-count limit (EBGP multihop). What is a good first test to see if BGP will work across the firewall? A. Attempt to TELNET from the router connected to the inside of the firewall to the router connected to the outside of the firewall. If telnet works, BGP will work, since telnet and BGP both use TCP to transport data. B. Ping from the router connected to the inside interface of the firewall to the router connected to the outside interface of the firewall. If you can ping between them, BGP should work, since BGP uses IP to transport packets. C. There is no way to make BGP work across a firewall without special configuration, so there is no simple test that will show you if BGP will work or not, other than trying to start the peering session. D. There is no way to make BGP work across a firewall. Answer: A
7. Spanning Tree Protocol IEEE 802.1s defines the ability to deploy which of these? A. one global STP instance for all VLANs B. one STP instance for each VLAN C. one STP instance per set of VLANs D. one STP instance per set of bridges Answer: C
8. What is the purpose of the STP PortFast BPDU guard feature? A. enforce the placement of the root bridge in the network B. ensure that a port is transitioned to a forwarding state quickly if a BPDU is received C. enforce the borders of an STP domain D. ensure that any BPDUs received are forwarded into the STP domain Answer: C
350-001 Exam Details
There is no time to lose! Buy your 350-001 exam notes today and be ready to pass your 350-001 test as soon as tomorrow! Our 350-001 practice exam is 100% 350-001 brain dump free and each and every 350-001 practice test comes with the GUARANTEE that you will pass your test on the first try. How many other 350-001 simulation sites can offer that promise?
You'll get perfect 350-001 exam questions geared to teach you by example in the actual style you will be tested in. 350-001 test questions come with correct 350-001 answers that have been validated by our online computer based trainers. You have absolutely nothing to lose and everything to gain with the 350-001 dumps free materials you will have instant access to.
What exactly is in an TestUnion 350-001 course? You get:
In depth and practical information like you would learn from 350-001 labs, without the cost and time commitment of attending the actual lab. A virtual 350-001 study guide in a convenient 350-001 pdf download for portability and convenience. 350-001 questions in the same format and covering the same topics as on the actual 350-001 test. 350-001 answers verified by 350-001 boot camp instructors who care about your passing. You get our 100% guarantee that you WILL pass your exam. On the first attempt!
TestUnion products come with a handy 350-001 exam engine to put you in the drivers seat, just like on test day. Unlike heavy 350-001 audio exams, you wont need specialized hardware to play or use our 350-001 tutorials - you'll be able to print or read them right away with any Acrobat compatible device or software.
Download 350-001 exam samples or buy the 350-001 practice exam today and be on the road to certification success!
