300-420 ENSLD:Designing Cisco Enterprise Networks (ENSLD) Update:November 11, 2025 Questions and Answers: 336 Q&A 1. Drag and drop the properties from the left onto the protocols they describe on the right. None 2. A branch office has a primary L3VPN MPLS connection back to the main office and an IPSEC VPN tunnel that serves as backup. Which design ensures that data is sent over the backup connection only if the primary MPLS circuit is down? A. Use EIGRP to establish a neighbor relationship with the main office via B. L3VPN MPLS and the IPSEC VPN tunnel. C. Use BGP with the multipath feature enabled to force traffic via the primary path when available. D. Use static routes tied to an IP SLA to prefer the primary path while a floating static route points to the backup connection. E. Use OSPF with a passive-interface command on the backup connection. None 3. An engineer is designing a BGP solution for a client that peers with ISP1 for full Internet connectivity and with ISP2 for direct exchange of routes for several third parties. Which action, when implemented on the edge routers, enables the client network to reach the Internet through ISP1? A. Run an eBGP session within different VRFs for each ISP. B. Advertise a default route for downstream routers within the client network. C. Apply the AS-path prepend feature for ISP2. D. Apply route filtering such that the client advertises only routes originated from its own AS. None 4. An engineer is designing a Layer 2 campus network. The design must support fast convergence and leverage as much bandwidth as possible between layers. Distribution switches do support VSS; unfortunately, not all routing protocols are available for use due to license limitations. Which solution must the engineer choose? A. EtherChannel B. MEC C. RSTP D. ECMP None 5. A network engineer must design a multicast solution to prevent the spoofing of multicast streams and ensure efficient bandwidth utilization. The network will be merged with another multicast domain in the future, and the merge must require minimum effort. Which two solutions meet the customer requirements? (Choose two.) A. PIM-SSM B. IGMPv3 C. IGMPv2 D. PIM-SM E. MSDP 6. Which component of Cisco SD-Access integrates with Cisco DNA Center to perform policy segmentation and enforcement through the use of security group access control lists and security group tags? A. Cisco Application Policy Infrastructure Controller Enterprise Module B. Cisco Network Data Platform C. Cisco Identity Services Engine D. Cisco TrustSec None 7. Drag and drop the steps WAN Edge performs when on-boarded into the Cisco SD-WAN overlay from the left into the order they are completed on the right. None 8. What are two characteristics of a migration from an IP-VPN service to a Cisco SD-WAN architecture? (Choose two.) A. increased solution complexity B. increased security C. increased scalability D. centralized application policies E. distributed control plane 9. A customer reports that each time a networking component fails, OSPF recalculates the backup path, with causes a short outage. Which solution must the customer implement to improve this situation? A. Aggressive OSPF timers B. LFA FRR C. Incremental SPF D. BFD None 10. An engineer must design an address translation solution to provide Internet connectivity for the corporate network. The design Is restricted to the 172.16.168.0/22 subnet. Which solution must the engineer choose? A. stateful NAT64 B. stateless NAT64 C. stateful NAT66 D. stateless NAT66 None 11. An engineer must design a management network that enables SSH, NTP, FTP, and SNMP over the production network. The design requires the management of routers and switches that exist across different networks. Which feature must the design include? A. Management Plane Protection B. dedicated management console connection per device C. terminal server D. dedicated management VRF connection per device None 12. Which feature is used to optimize WAN bandwidth of IGMP network traffic among WAN Edge routers in the same VPN? A. IGMPv2 B. multicast RP C. multicast-replicator D. multicast service routes None 13. A customer wants to adopt a dynamic site-to-site VPN solution to secure communication for VoIP, video, and FTP traffic between the remote branches and the headquarters. The customer also wants the branches to communicate directly, thereby reducing traffic at the headquarters location. The solution must consider that the branch routers are limited in available memory. Which VPN solution meets these requirements? A. DMVPN Phase 2 Hub and Spoke design B. DMVPN Phase 3 Hub and Spoke design C. DMVPN Phase 1 Hub and Spoke design D. DMVPN Phase 3 Hierarchical design None 14. Which topology within a network underlay eliminates the need for first hop redundancy protocols while improving fault tolerance, increasing resiliency, and simplifying the network? A. virtualized topology B. routed access topology C. Layer 2 topology D. logical fabric topology None 15. An engineer Is designing a redistribution solution for a customer. The customer recently acquired another company and decided to integrate the new network running RlPv1 with the company's existing network. Which redistribution technique must the engineer select to ensure the multipoint two-way redistribution does not cause routing loops? A. distribute-lists inbound under the EIGRP process denying RIPv1 learned prefixes B. distribute-lists outbound under the EIGRP process denying RIPv1 learned prefixes C. distribute-lists outbound under the RIPv1 process denying EIGRP learned prefixes D. distribute-lists inbound under the RIPv1 process denying EIGRP learned prefixes None 16. A network administrator is troubleshooting a DMVPN setup between the hub and the spoke. Which action should the administrator take before troubleshooting the IPsec configuration? A. Verify the GRE tunnels. B. Verify ISAKMP. C. Verify NHRP. D. Verify crypto maps. None 17. Drag and drop the characteristics from the left onto the YANG models they describe on the right. Not all options are used None 18. An engineer is designing an IPv4 addressing plan for an enterprise with 1000 branches. Each branch requires a prefix for data and a prefix for voice. Each prefix must accommodate up to 128 hosts, and prefixes must facilitate summarization at aggregation points in the network. The security team requires a simple method for identifying voce prefixes. Which allocation does the engineer recommend from the RFC1918 address space? A. /24 prefixes for data from 10.0.0.0/15 and /24 prefixes for voice from 172.16.0.0/15 B. /24 prefixes for data from 10.0.0.0/8 and /24 prefixes for voice from the next contiguous /24 prefix per site C. /25 prefixes for data from 10.0.0.0/8 end /25 prefixes for voice from the next contiguous /25 prefix per branch D. /24 prefixes for data from 10.0.0.0/8 and /24 prefixes for voice from 172.16.0.0/12 None 19. A company has some offices that are connected via dark fiber in New York. A network architect must optimize the network design based on the EIGRP routing protocol. The network has hierarchical addressing between 10 and 12 routers in each office. Routing convergence time must be at the minimum. What must the network architect do to reduce the query range? A. Configure stub areas on non-edge routers. B. Implement network summarization on edge routers. C. Use different EIGRP processes on edge routers. D. Configure route filtering on non-edge routers. None 20. An engineer working for a telecommunication company with an employee ID 4449:30 959 Is calculating STP scalability for switches to ensure that the numbers are below the maximum supported value for STP logical ports How many logical interfaces are active for switch A? A. 4 B. 307 C. 202 D. 100 None 21. An architect must design an IP addressing scheme for a multisite network connected via a WAN transit. The campus site must accommodate 12,000 devices and the branch sites must accommodate 1,000 devices. Which address scheme optimizes network device resources, contains convergence events to the different blocks of the network, and ensures future growth of the network? A. Campus: 10.0.0.0/18 Branch1: 10.0.192.0/21 Branch2: 10.0.200.0/21 B. Campus: 10.0.0.0/16 Branchi: 10.255.0.0/20 Branch2: 10.255.16.0/20 C. Campus: 10.0.0.0/10 Branch1: 10.64.0.0/10 Branch2: 10.128.0.0/10 D. Campus: 10.0.0.0/20 Branch1: 10.0.64.0/21 Branch2: 10.0.128.0/21 None 22. An infrastructure team is concerned about the shared memory utilization of a device, and for this reason, they need to monitor the device state. Which solution limits impact on the device and provides the required data? A. IPFIX B. static telemetry C. on-change subscription D. periodic subscription None 23. An engineer uses Postman and YANG to configure a router with: OSPF process ID 200 network 172.16.10.128/26 enabled for Area 0 Which get-config reply verifies that the model set was designed correctly? A. B. C. D. None 24. An architect is designing an ISIS network for a customer migrating from IPv4 to IPv6. The current network uses narrow metrics, and the IPv6 areas will increase to 10 within the next two years. Also, IPv6 traffic must not blackhole in IPv4 network during the migration. Which two solutions must the architect choose? (Choose two.) A. multi-topology enabled under address-family ipv6 on C1 and C2 B. metric-style transition enabled on all routers C. multi-topology enabled under address-family ipv6 on E1 and E2 D. metric-style transition enabled on C1 and C2 E. metric-style transition enabled on E1 and E2 25. Currently, inter-VRF routing between the global routing table and VRF-A is accomplished on the client firewall, but the customer wants to do this on the core network layer. The customer does not want to run BGP, VRF-Lite: or static routing Which mechanism meets the requirements? A. policy-based routing with the global set statement in a route map B. route map that matches access lists and prefix lists with the import feature C. inter-VRF can only be used on an external device with a link in each VRF D. VRF receive feature under the global routing interfaces None 26. A company wants to switch from static routing to a dynamic routing protocol to ease the administrative and operational overhead. The network topology is hub and spoke, and the branches use DM VPN back to the hub with two 10-Mbps internet connections. The branch routers are multivendor and have limited memory and CPU resources. Which routing protocol and design solution meets the requirements? A. eBGP with the hub routers set up as route reflectors B. ISIS with the hub and spoke routers configured in two different areas C. EIGRP with branch routers as stub routers and variance enabled D. OSPF with the hub in area 0 and branch routers in stub areas with ECMP None 27. An engineer must design a large Layer 2 domain that contains hundreds of switches and VLANs. The engineer's primary goals are to: Efficiently utilize the bandwidth of all links Avoid Layer 2 loops Cause minimal impact on switch CPU and memory Which technology should the engineer include in the design? A. PVST+ B. Rapid PVST+ C. MST D. RSTP None 28. An engineer is designing a BGP solution supporting a VXLAN environment over a Layer 3 IPv4 network fabric with these requirements provide Layer 2 adjacency allow VM migration of workloads between sites IGP is OSPF Which BGP address family must the engineer choose? A. VPNv4 B. IPv4 unicast C. L2VPN VPLS-VPWS D. L2VPNEVPN None 29. An engineer must design a solution to connect a customer to the Internet. The solution will include a Layer 3 circuit with a CIR of 50 Mbps from the service provider. The hand-off from the provider's switch to the customer's router is 1Gbps. Which solution should the engineer include to prevent potential issues with choppy voice traffic? A. Reduce the bandwidth of the connection to the router. B. Implement hierarchical QoS with a parent policing policy. C. Implement hierarchical QoS with a parent shaping policy. D. Add a bandwidth statement to the router interface. None 30. An architect is designing a network that requires route redistribution. The design must prevent route feedback and the creation of routing loops. The OSPF domain is using default metrics, and the IS-IS domain is using narrow metrics. Which solution must the architect select? A. Change the IS-IS administrative distance to 105. B. Change the OSPF area to a nonbackbone stub area C. Use route filtering with an ACL or prefix list. D. Use route tagging with a route map. None 31. An architect must design a solution that uses the direct link between R1 and R2 for traffic from 10.10.10.0/24 toward network 10.10.20.0/24. Which solution should the architect include in the design? A. Configure the OSPF cost of the link to a value lower than 30. B. Lower the Administrative Distance for OSPF area 0. C. Place the link into area 2 and install a new link between R1 and R2 in area 0. D. Configure the link to provide multiarea adjacency. None 32. An architect must create a stable and scalable EIGRP solution for a customer. The design must: conserve bandwidth, memory, and CPU processing prevent suboptimal routing avoid any unnecessary queries Which two solutions must the architect select? (Choose two.) A. route summarization B. prefix lists C. distribute lists D. stub routing E. static redistribution 33. An enterprise customer has these requirements: end-to-end QoS for the business-critical applications and VoIP services based on CoS marking. flexibility to offer services such as IPv6 and multicast without any reliance on the service provider. support for full-mesh connectivity at Layer 2. Which WAN connectivity option meets these requirements? A. VPWS B. MPLS VPN C. DMVPN D. VPLS None 34. Where must an architect plan for route summarization for the topology? A. from the core toward the aggregation and the access toward the aggregation B. from the core toward the aggregation and the aggregation toward the core C. from the aggregation toward the access and the access toward the aggregation D. from the aggregation toward the core and the aggregation toward the access None 35. Which feature provides the capability for intra-VN traffic filtering and control within the Cisco SOAccess architecture? A. scalable groups B. MAC ACL C. prefix list D. service policy None 36. An engineer must design a routing solution for a company that is single-homed to an ISP. The company's goal is to run BGP between the CE and the PE devices. To support running BGP, the company obtained a public AS number and IP subnet from ARIN. Which solution must the engineer select? A. The customer announces the public IP subnet to the ISP The ISP announces the default route to the customer. B. The customer announces the public IP subnet to the ISP The ISP announces the BGP table to the customer C. The ISP announces the customer public IP subnet. The ISP announces the partial BGP table to the customer. D. The customer announces the default route to the ISP The ISP announces the default route to the customer None 37. Drag and drop the model-driven telemetry considerations from the left onto the modes they apply to on the right. None 38. Which common issue causes intermittent DMVPN tunnel flaps? A. a routing neighbor reachability issue B. a suboptimal routing table C. interface bandwidth congestion D. that the GRE tunnel to hub router is not encrypted None 39. Which two points in the network must an engineer configure the ports for explicit trust when using a DiffServ model? A. B and E B. F and G C. A and D D. C and D None 40. Drag and drop the properties from the left onto the Cisco SD-WAN components that perform them on the right. None 41. Which two steps can be taken to improve convergence in an OSPF network? (Choose two.) A. Use Bidirectional Forwarding Detection B. Merge all the areas into one backbone area C. Tune OSPF parameters D. Make all non-backbone areas stub areas E. Span the same IP network across multiple areas. 42. When is it advisable to provide dedicated control plane nodes within a Cisco SD-Access design? A. in a small deployment where border nodes are not required B. in a design where fabric edge nodes are unable to provide control plane functionality C. in designs without Cisco DNA Center D. when there is a requirement for frequent roaming of endpoints across fabric edge nodes None 43. An engineer uses Postman and YANG to configure a router with: OSPF process ID 100 network 10.10.10.0/28 enabled for Area0 Which get-config replay verifies that the model set was designed correctly? A. B. C. D. None 44. Drag and drop the components in a Cisco SD-Access architecture from the left onto their descriptions on the right. None 45. An engineer must connect the IPv6 island to the IPv4-only network to provide IPv6 hosts access to file servers and DNS services in the IPv4 network. Which NAT should the engineer choose? A. stateless NAT66 B. stateful NAT66 C. static NAT-PT D. dynamic NAT-PT None 46. How is end-to-end microsegmentation enforced in a Cisco SD-Access architecture? A. VLANs are used to segment traffic at Layer 2. B. 5-tuples and ACLs are used to permit or deny traffic. C. SGTs and SGTACLs are used to control access to various resources. D. VRFs are used to segment traffic at Layer 3. None 47. Drag and drop the model driven telemetry characteristics from the left onto the mode they belong to on the right. None 48. An architect must design an IPv6 migration solution for an enterprise customer to support these requirements: Clients will transition to the new IPv6 network, which provides NAT64 and IPv6 DNS resolution services, using the same DNS name that points to the IPv4 address. The service provider will create a client-facing IPv6 interface with a new IPv6 virtual address that points to the same IPv4 DNS server. The service provider will support clients that use global IPv6 addresses and encapsulate IPv4 packets into IPv6 tunnels. Which two migration solutions must the architect choose? (Choose two.) A. Use dual-stack lite from the MPLS network to the IGR. B. Use IPv6 tunneling from the devices to the core MPLS network. C. Use dual-stack lite from the devices to the core MPLS network. D. Use NAT44/64 from the MPLS network to the IGR. E. Use NAT44/64 from the devices to the core MPLS network. 49. Which two functions are provided by the Cisco SD-WAN orchestration plane? (Choose two.) A. centralized provisioning B. primary authentication point C. NAT traversal facilitation D. Zero Touch Provisioning E. troubleshooting and monitoring 50. Drag and drop the description from the left onto the corresponding WAN connectivity types and categories on the right. None 51. Which method does Cisco SD-WAN use to avoid fragmentation issues? A. PMTUD is used. B. Traffic is marked with the DF bit set. C. Jumbo frames are enabled. D. Access circuits are configured with 1600 byte MTU settings. None 52. A network engineer is redesigning a company's QoS solution. The company is currently using IP Precedence, but the engineer plans to move to DiffServ. It is important that the new solution provide backward compatibility with the current solution. Which technology should the design include? A. expedited forwarding B. assured forwarding C. class selector code points D. default per hop behavior None 53. Drag and drop the types of WAN connectivity from the left onto the connectivity use cases on the right. None 54. Which method will filter routes between EIGRP neighbors within the same autonomous system? A. distribute-list B. policy-based routing C. leak-map D. route tagging None 55. A large chain of stores currently uses MPLS-based T1 lines to connect their stores to their data center. An architect must design a new solution to improve availability and reduce costs while keeping these considerations in mind: » The company uses multicast to deliver training to the stores. » The company uses dynamic routing protocols and has implemented QoS. » To simplify deployments, tunnels should be created dynamically on the hub when additional stores open. Which solution should be included in this design? A. VPLS B. GET VPN C. DMVPN D. IPsec None 56. When a network is designed using IS-IS protocol, which two circuit types are supported? (Choose two.) A. nonbroadcast multiaccess B. multiaccess C. point-to-multipoint D. nonbroadcas E. point-to-point 57. An engineer must connect a new remote site to an existing OSPF network. The new site consists of two low-end routers, one for WAN, and one for LAN. There is no demand for traffic to pass through this area. Which area type does the engineer choose to provide minimal router resources utilization, while still allowing for full connectivity to the rest of the network? A. not so stubby B. totally not so stubby C. totally stubby area D. stubby area None 58. How do endpoints inside an SD-Access network reach resources outside the fabric? A. a VRF fusion router is used to map resources in one VN to another VN B. Fabric borders use VRFs to map VNs to VRFs C. SD-Access transit links are used to transport encapsulated traffic from one fabric to another D. A fabric edge is used to de-encapsulate VXLAN traffic to normal IP traffic then transported over the outside network None 59. Which solution allows overlay VNs to communicate with each other in an SD-WAN Architecture? A. External fusion routers can be used to map VNs to VRFs and selectively route traffic between VRFs B. GRE tunneling can be configured between fabric edges to connect one VN to another. C. SGTs can be used to permit traffic from one VN to another. D. Route leaking can be used on the fabric border nodes to inject routes from one VN to another. None 60. Drag and drop the Cisco SD-WAN components from the left onto their definitions on the right. None 61. A customer is discussing QoS requirements with a network consultant. The customer has specified that end-to-end path verification is a requirement. Which QoS solution meets this requirement? A. IntServ model with RSVP to support the traffic flows B. DiffServ model with PHB to support the traffic flows C. marking traffic at the access layer with DSCP to support the traffic flows D. marking traffic at the access layer with CoS to support the traffic flows None 62. An engineer must design a multicast network for a financial application. Most of the multicast sources also receive multicast traffic (many-to-many deployment model). To better scale routing tables, the design must not use source trees. Which multicast protocol satisfies these requirements? A. PIM-SSM B. PIM-SM C. MSDP D. BIDIR-PIM None 63. An engineer is planning an IPv4 to IPv6 migration solution for a customer. The routers in the network can support IPv4 and IPv6, except for the DWDM routers. The DWDM routers provide a Layer 2 link in which the routers peer directly with each other across a DWDM circuit. The circuit also provides connectivity between the mail servers. Which IPv6 migration technique must the engineer deploy? A. dual-stack B. 6to4 C. ISATAP D. 6rd None 64. The full EIGRP routing table is advertised throughout the network. Currently, users experience data loss when any one link in the network fails. An architect optimizes the network to reduce the impact when a link fails. Which solution should the architect include in the design? A. Run BFD on the inter links between EIGRP neighbors. B. Summarize the access layer networks from each access layer switch toward the aggregation layer. C. Reduce the default EIGRP hello interval and hold time. D. Summarize the access layer networks from the aggregation layer toward the core layer. None 65. Which two LISP components are required in the Cisco SD-Access fabric control plane node? (Choose two.) A. Engross Tunnel Router B. Ingres Tunnel Router C. Map-Resolver D. Map-Server Proxy E. ETR 66. Which feature of Cisco SD-WAN Secure Direct Cloud Access divides user traffic into different zones and VPNs or VRFs? A. centralized data policy B. secure segmentation C. perimeter control D. application-awareness routing None 67. What is the role of a control-plane node in a Cisco SD-Access architecture? A. fabric device that connects wired endpoints to the SD-Access fabric B. map system that manages endpoint to device relationships C. fabric device that connects APs and wireless endpoints to the SD-Access fabric D. map system that manages External Layer 3 networks None 68. Which two statements about VRRP object tracking are true? (Choose two) A. The priority of a VRRP device can change in accordance with the up or down status of a VRRP object B. The VRRP interface priority must be manually configured by the administrator C. A VRRP group can track only one object at a time D. VRRP can track the status of interfaces and routes E. VRRP supports only interface tracking 69. An architect is designing a Layer 2 network for a customer. The network will use the spanning-tree protocol. During a link failure between SW1 and SW2, the fastest possible convergence time is desired. Which solution must the architect select? A. Loop Guard B. UplinkFast C. PortFast D. BackboneFast None 70. An engineer is designing an OSPF solution for a customer. The design must take into consideration: Application load balancers D. E. and F are in different geographical locations and are OSPF-enabled. Hosts A, B. and C connect to an application through the load balancers using IP address 10.1.1.1/32. In the event of a failure of one of the load balancers, hosts must still have access to the application. Which solution must the engineer choose? A. All load balancers to be co-located in area 0. B. X, Y, and Z to be configured as different areas C. At least one load balancer to be in area 0. D. X, Y and Z to be configured as the same area None 71. Which two functions is the Cisco SD-Access Edge Node responsible for? (Choose two.) A. Act as anycast layer 3 gateway B. Advertise EID subnets C. Map users to virtual network D. Act as LISP proxy tunnel router E. Route and transport IP traffic None 72. What is one function of the vSmart controller in an SD-WAN deployment? A. orchestrates vEdge and cEdge connectivity B. responsible for the centralized control plane of the SD-WAN network C. provides centralized network management and a GUI to monitor and operate the SDWAN overlay D. provides a data-plane at branch offices to pass traffic through the SD-WAN network None 73. Which design consideration must be made when dual WAN Edge routers are deployed at a branch site? A. Use BGP AS-path prepending to influence egress traffic and use MED to influence ingress traffic from the branch. B. HSRP priorities must match the OMP routing policy to prefer one WAN Edge over the other. C. Traffic must be symmetrical as it egresses the WAN Edges and returns from remote sites for DPI to function properly D. Configure BFD between WAN Edge routers to detect sub-second link failures. None 74. An engineer is designing a PIM Anycast RP solution between two data centers. The design must ensure that RP1 in DC1 and RP2 in DC2 inform each other about specific sources that have joined locally. Which solution must the engineer choose? A. Provision the RPs on the same IP subnet and extend the subnet at Layer 2 between data centers B. Enable MSDP between RPs using separate unique loopback interfaces C. Enable MSDP between RPs using the configured Anycast RP address D. No action is required because PIM registers from the source will, by default, reach each RP None 75. What is the purpose of service routes in OMP updates? A. specify routes toward a centralized orchestration plane B. describe underlay transport Information C. define the remote management Information D. indicate services that are enabled for service insertion None 76. Since installing a cisco TelePresence system, the company is experiencing other application having response issues when the system in use. As a result, the company asked an architect to recommend a QoS solution. The customer is currently using a CBWFQ policy to manage traffic on an internet connection with a speed of 100 Mbps. Which link-capacity limit must the architect choose for strict-priority for the real-time traffic? A. 25 Mbps B. 50 Mbps C. 33 Mbps D. 75 Mbps None 77. An engineer proposed this solution for a company that requires a loop-free. Layer 2 network design. The network will run 802.1W, and all links will be 1 Gbps. If all interfaces are up as point- to-point adjacencies, what are the expected port end states based on the design? A. Eth1/2 on SW2 and SW3 will be in a Desg FWD state B. Eth1/3 on SW2 and SW3 will be m an Attn BLK state C. Eth1/2 on SW3 and SW4 will be m an Attn BLKbtate. D. Eth1/1 on SW1 and SW2 will be in a Root FWD state. None 78. A network engineer must segregate three interconnected campus networks using IS-IS routing. A two-layer hierarchy must be used to support large routing domains and to avoid more specific routes from each campus network being advertised to other campus network routers automatically. Which two actions does the engineer take to accomplish this segregation? (Choose two.) A. Designate two IS-IS routers as BDR routers at the edge of each campus, and configure one BDR for all Level 1 routers and one BDR for all Level 2 routers. B. Designate two IS-IS routers from each campus to act as Level 1/Level 2 backbone routers at the edge of each campus network. C. Assign the same IS-IS NET value for each campus, and configure internal campus routers with Level 1/ Level 2 routing. D. Utilize different MTU values for each campus network segment. Level 2 backbone routers must utilize a larger MTU size of 9216. E. Assign a unique IS-IS NET value for each campus, and configure internal campus routers with Level 1 routing. 79. Which design achieves SD-WAN control plane redundancy? A. Configuring BFD on the WAN Edge routers B. Using multiple instances of vManage in clusters C. Deploying using a virtual platform like UCS or CSP D. Managing the underlay network with OMP None 80. A customer's current Layer 2 infrastructure is running Spanning Tree 802.1d, and all configuration changes are manually implemented on each switch. An architect must redesign the Layer 2 domain to achieve these goals: reduce the impact of topology changes reduce the time spent on network administration reduce manual configuration errors Which two solutions should the architect include in the new design? (Choose two.) A. Implement Rapid PVST+ instead of STP. B. Implement MST instead of STP. C. Use VTP to propagate VLAN information and to prune unused VLANs. D. Configure broadcast and multicast storm control on all switches. E. Configure dynamic trunking protocol to propagate VLAN information. 81. A customer has two eBGP peerings from a single CE router toward two service providers. The customer has hired an architect to design a solution to ensure certain traffic enters the customer's network through interface g¡g0/0. Which solution must the architect include in the design? A. Advertise a lower MED value toward the less preferred service provider. B. Prepend additional AS on the AS path toward the preferred service provider. C. Break aggregated routes into longer prefixes and advertise to the preferred service provider. D. Set a higher local preference to the preferred service provider path. None 82. Which function does the Cisco SD-Access intermediate node perform? A. Act as LISP proxy tunnel router. B. Route and transport IP traffic. C. Act as an anycast Layer 3 gateway. D. Map users to a virtual network. None 83. Which two best practices must be followed when designing an out-of-band management network? (Choose two.) A. Enforce access control B. Facilitate network integration C. Back up data using the management network D. Ensure that the management network is a backup to the data network E. Ensure network isolation None 84. Which solution decreases the EIGRP convergence time? A. Enable subsecond timers B. Increase the hold time value C. Increase the dead timer value D. Enable stub routing on the spokes None 85. An engineer is designing a routing solution for a customer. The design must ensure that a failure of network 10.1.0.0/24, 10.1.2.0/24, 10.2.1.0/24, or 10.2.3.0/24 does not impact the core. It also requires fast convergence time during any link failover in the core or access networks. Which solution must the engineer select? A. Add aggregation layer between core and access networks. B. Enable graceful restart on routers A and C. C. Enable FRR for the connected networks of routers A and C. D. Enable summarization on routers A and C. None 86. How is sub-second failure of a transport link detected in a Cisco SD-WAN network? A. Hellos are sent between the WAN Edge routers and the vSmart controller. B. BFD runs on the IPsec tunnels between WAN Edge routers. C. BGP is used between WAN Edge routers and the vSmart controller. D. Link state change messages are sent between vSmart controllers. None 87. Drag and drop the descriptions from the left onto the Cisco SD-WAN component they describe on the right. None 88. The customer solution requires QoS to support streaming multimedia over a WAN. An architect chooses to use Per-Hop Behavior. Which solution should the engineer use to of mark traffic traveling between branch sites? A. LLQ with DSCP EF B. CBWFQ with DSCP AF3 C. CBWFQ with DSCP AF2 D. LLQ with DSCP AF4 None 89. When IPsec VPNs are designed, what is a unique requirement if support for IP Multicast is required? A. encapsulation of traffic with GRE or VTI B. IPsec forwarding using transport mode C. additional bandwidth for headend D. IPsec forwarding using tunnel mode None 90. The connection between SW2 and SW3 is fiber and occasionally experiences unidirectional link failure. An architect must optimize the network to reduce the change of layer2 forwarding loops when the link fails. Which solution should the architect include? A. Utilize 8PDU filter on SW3. B. Utilize loop guard on SW2 C. Utilize BPDU guard on SW1 D. Utilize root guard on SW1. None 91. What is an advantage of designing an out-of-band network management solution? A. In the event of a production network outage, network devices can still be managed. B. There is no separation between the production network and the management network. C. In the event of a production network outage, it can be used as a backup network path. D. It is less expensive than an in-band management solution None 92. An architect must create a QoS solution for a customer to ensure that a 40 Mbps Internet connection is shared between four subnets based on these requirements: Each subnet must receive no less than 10 Mbps of download bandwidth during peak traffic times. A subnet can use up to 40 Mbps during nonpeak traffic times if the other subnets are idle. Download traffic must never experience a delay. Which solution must the architect choose? A. rate-limiting and shaping B. bandwidth percentage and policing C. shaping and policing D. bandwidth percentage and rate-limiting None 93. Which two routing protocols allow for unequal cost load balancing? (Choose two.) A. EIGRP B. IS-IS C. BGP D. OSPF E. RIPng None 94. EIGRP has been configured on all links. The spoke nodes have been configured as EIGRP stubs, and the WAN links to R3 have higher bandwidth and lower delay than the links to R4. When a link failure occurs at the R1-R2 link, what happens to traffic on R1 that is destined for a subnet attached to R2? A. R1 has no route to R2 and drops the traffic B. R1 load-balances across the paths through R3 and R4 to reach R2 C. R1 forwards the traffic to R3, but R3 drops the traffic D. R1 forwards the traffic to R3 in order to reach R2 None 95. An engineer is designing a Layer 3 campus network running EIGRP between the core,aggregation, and access layers. The access layer switches will be connected to the aggregation layer using Layer 3 copper connections. The engineer wants to improve convergence time for access layer switch failures. Which technique must the design include? A. enabling BFD for EIGRP on the access layer uplinks B. reducing the EIGRP Hello / Hold timer values C. EIGRP summarization from core to aggregation layer D. EIGRP summarization from access to aggregation layer None 96. An engineer is designing an OSPF network for a client. Requirements dictate that the routers in Area 1 should receive all routes belonging to the network, including EIGRP, except the ones originated in the RIP domain. Which action should the engineer take? A. Make area 1 a NSSA. B. Make area 1 a stub. C. Make area 1 a standard OSPF area. D. Make the area 1 routers part of area 0. None 97. An architect must design a resilient gateway solution based on these requirements: VLAN 10 and VLAN 11 support voice and video applications. Link and node failures must have minimal impact on traffic. Provide protection against false hello packets. Support IPv6. Which solution must the architect choose? A. GLBP with IP SLA tracking B. VRRP version 2 with authentication C. HSRP version 2 with MD5 authentication D. VRRP version 2 with object tracking None 98. Which WAN connectivity technology is optimal for edge computing compared to others and why? A. Due to low latency, high bandwidth, and closest proximity to the user. 4G/5G connectivity is the optimal WAN technology for edge computing compared to L3 VPN MPLS connectivity, which offers native separation and security with close proximity to the data center B. Due to high bandwidth, separation and security, and proximity to the data center network DWDM Is the optimal WAN technology lor edge computing compared to 4G/5G connectivity, which offers native separation and security with close proximity to the data center. C. Due to low latency, high bandwidth, and closest proximity to the user, L3 VPN MPLS connectivity is the optimal WAN technology for edge computing compared to 4G/5G connectivity, which offers native separation and security with close proximity to the data center. D. Due to low cost, high bandwidth, low latency, and closest proximity to the edge of the network, Mero Ethernet is the optimal WAN technology for edge computing compared to MPLS, which offers native separation and security with close proximity to the data center. None 99. A company needs to increase access port capacity on one floor of a building. They want to leverage the existing catalyst access switch. There is no problem with uplink bandwidth capacity. However, no additional uplinks can be added because no ports are available on the distribution switches. Which solution must the company choose to provide additional access ports? A. VDC B. VSS C. Etherchannel D. Stackwise None 100. A network engineer must design a multicast solution based on these requirements: interactive communication must not use source trees users must register 100 multicast sources Which solution must the company choose? A. MSDP B. PIM-DM C. any-source multicast D. BIDIR PIM None 101. An architect is designing an EIGRP solution based on these requirements: Traffic forwarding should use the best two paths while all links are available Single path failure must not impact traffic between branch and HQ Which solution must the architect select? A. Maximum-paths 2 B. Add-paths 2 C. Metric weights 010100 D. Variance 2 None 102. An engineer is designing a hierarchical ISIS solution for an enterprise customer with these requirements Users in areas 25 and 55 send and receive traffic from both backbone areas Link flaps in areas 35 and 45 must not impact other areas Routers will double within the next 12 months in areas 35 and 45 Which design must the engineer select? A. A series routers Level 2, B series routers Level 2, and C series routers Level 1 B. A series routers Level 1/2 B series routers Level 2 and C series routers Level 2 C. A series routers Level 1. B series routers Level 1/2. and C series routers Level 2 D. A series routers Level 1.2 B series routers Level 1/2 and C series routers Level 1/2 None 1 out of 102 Name Email Time is Up!
