P.S. High value 300-320 testing engine are available on Google Drive, GET MORE: https://drive.google.com/open?id=1DeBuIsj3HM0d3f-Sgc2fxEp5cWmmgpxL
New Cisco 300-320 Exam Dumps Collection (Question 12 - Question 21)
Question No: 12
Which option is an advanced WAN services design consideration for a multipoint architecture that connects two or more customer devices using Ethernet bridging techniques over an MPLS network?
A. VPLS
B. Metro Ethernet
C. MPLS
D. SONET/SDH
Answer: A
Question No: 13
Which of these is true of IP addressing with regard to VPN termination?
A. addressing designs need to allow for summarization
B. termination devices need routable addresses inside the VPN
C. IGP routing protocols will update their routing tables over an IPsec VPN
D. designs should not include overlapping address spaces between sites, since NAT is not supported
Answer: D
Question No: 14
A network engineer must create a Layer 2 switch block design that has deterministic convergence and is loopfree at Layer 2. Which two switch block elements are needed to meet the requirements? (Choose two.)
A. Layer 3 link between distribution switches
B. HSRP with interface tracking on uplinks to core switches
C. RPVST with equal bridge priority on distribution switches
D. VLANs that do not span access switches
E. Layer 2 link between distribution switches
Answer: A,D
Question No: 15
Which of these practices should you follow when designing a Layer 3 routing protocol?
A. Never peer on transit links.
B. Build squares for deterministic convergence.
C. Build inverted U designs for deterministic convergence.
D. Summarize routes at the distribution to the core to limit EIGRP queries or OSPF LSA propagation.
Answer: D
Question No: 16
At a certain customer's site, a NAS is both physically and logically in the traffic path. The NAS identifies clients solely based on their MAC addresses. In which access mode has this NAS been configured to operate?
A. Layer 2 mode
B. Layer 3 Edge mode
C. Layer 3 Central mode
D. Layer 3 In-Band mode
Answer: A
Question No: 17
Which two statements are correct regarding Flex Links? (Choose two.)
A. An interface can belong to multiple Flex Links
B. Flex Links operate only over single pairs of links.
C. Flex Link pairs must be of the same interface type.
D. Flex Links automatically disable STP so no BPDUs are propagated.
E. Failover from active to standby on Flex Links takes less than a second.
Answer: B,D
Explanation: https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst6500/ios/12- 2SX/configuration/guide/book/flexlink.html
"Flex Links are a pair of a Layer 2 interfaces (ports or port channels), where one interface is configured to
act as a backup to the other. Flex Links are typically configured in service-provider or enterprise networks
where customers do not want to run STP. Flex Links provide link-level redundancy that is an alternative to
Spanning Tree Protocol (STP). STP is automatically disabled on Flex Links interfaces." "A backup link does not have to be the same type as the active link"
Question No: 18
Which two design concerns must be addressed when designing a multicast implementation? (Choose two.)
A. only the low-order 23 bits of the MAC address are used to map IP addresses
B. only the low-order 24 bits of the MAC address are used to map IP addresses
C. only the high-order 23 bits of the MAC address are used to map IP addresses
D. only the low-order 23 bits of the IP address are used to map MAC addresses
E. the 0x01004f MAC address prefix is used for mapping IP addresses to MAC addresses
F. the 0x01005e MAC address prefix is used for mapping IP addresses to MAC addresses
Answer: D,F
Explanation: Ethernet & FDDI Multicast Addresses
- The low order bit (0x01) in the first octet indicates that this packet is a Layer 2 multicast packet. Furthermore, the u201c0x01005eu201d prefix has been reserved for use in mapping L3 IP multicast addresses into L2 MAC addresses.
- When mapping L3 to L2 addresses, the low order 23 bits of the L3 IP multicast address are mapped into the low order 23 bits of the IEEE MAC address. Notice that this results in 5 bits of information being lost. https://www.cisco.com/networkers/nw00/pres/3200/3200_c1_Mod2_rev1.pdf
Question No: 19
Which unique characteristics of the Data Center Aggregation layer must be considered by an Enterprise Campus designer?
A. Layer 3 routing between the Access and Aggregation layers facilitates the ability to span VLANs across multiple access switches, which is a requirement for many server virtualization and clustering technologies.
B. "East-west" server-to-server traffic can travel between aggregation modules by way of the core, but backup and replication traffic typically remains within an aggregation module.
C. Load balancing, firewall services, and other network services are commonly integrated by the use of service modules that are inserted in the aggregation switches.
D. Virtualization tools allow a cost effective approach for redundancy in the network design by using two or four VDCs from the same physical switch.
Answer: C
Question No: 20
"High Availability and Cisco NSF with SSO The main objective in building a highly available data center network design is to avoid TCP session breakage while providing convergence that is unnoticeable, or as fast as possible. Cisco nonstop forwarding (NSF) with stateful switchover (SSO) are supervisor redundancy mechanisms that provide intrachassis SSO at Layers 2 to 4." QUESTION NO: 161
When designing remote access to the Enterprise Campus network for teleworkers and mobile workers, which of the following should the designer consider?
A. It is recommended to place the VPN termination device in line with the Enterprise Edge firewall, with ingress traffic limited to SSL only
B. Maintaining access rules, based on the source IP of the client, on an internal firewall drawn from a headend RADIUS server is the most secure deployment
C. VPN Headend routing using Reverse Route Injection (RRI) with distribution is recommended when the remote user community is small and dedicated DHCP scopes are in place
D. Clientless SSL VPNs provide more granular access control than SSL VPN clients (thin or thick), including at Layer7
Answer: D
Question No: 21
Which statement about IPS and IDS solutions is true?
A. IDS and IPS read traffic only in inline mode.
B. IDS and IPS read traffic only in promiscuous mode.
C. An IDS reads traffic in inline mode, and an IPS reads traffic in promiscuous mode.
D. An IDS reads traffic in promiscuous mode, and an IPS reads traffic in inline mode.
Answer: D
Recommend!! Get the High value 300-320 dumps in VCE and PDF From Surepassexam, Welcome to download: https://www.surepassexam.com/300-320-exam-dumps.html (New 482 Q&As Version)