Home > IP Services Questions

IP Services Questions

August 17th, 2015 in ROUTE 300-101 Go to comments

Question 1

Explanation

The switch validates DHCP packets received on the untrusted interfaces of VLANs with DHCP snooping enabled. The switch forwards the DHCP packet unless any of the following conditions occur (in which case the packet is dropped):
+ The switch receives a packet (such as a DHCPOFFER, DHCPACK, DHCPNAK, or DHCPLEASEQUERY packet) from a DHCP server outside the network or firewall.
+ The switch receives a packet on an untrusted interface, and the source MAC address and the DHCP client hardware address do not match. This check is performed only if the DHCP snooping MAC address verification option is turned on.
+ The switch receives a DHCPRELEASE or DHCPDECLINE message from an untrusted host with an entry in the DHCP snooping binding table, and the interface information in the binding table does not match the interface on which the message was received.
+ The switch receives a DHCP packet that includes a relay agent IP address that is not 0.0.0.0.

Reference: http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst6500/ios/12-2SX/configuration/guide/book/snoodhcp.html#wp1101946

Question 2

Explanation

We can test the action of HSRP by tracking the loopback interface and decrease the HSRP priority so that the standby router can take the active role.

Question 3

Explanation

The “ip http secure-port

” is used to set the secure HTTP (HTTPS) server port number for listening.

Question 4

Explanation

This command shows IPsec Security Associations (SAs) built between peers. An example of the output of above command is shown below:

Router#show crypto ipsec sa
interface: FastEthernet0
    Crypto map tag: test, local addr. 12.1.1.1
   local  ident (addr/mask/prot/port): (20.1.1.0/255.255.255.0/0/0)
   remote ident (addr/mask/prot/port): (10.1.1.0/255.255.255.0/0/0)
   current_peer: 12.1.1.2
     PERMIT, flags={origin_is_acl,}
    #pkts encaps: 7767918, #pkts encrypt: 7767918, #pkts digest 7767918
    #pkts decaps: 7760382, #pkts decrypt: 7760382, #pkts verify 7760382
    #pkts compressed: 0, #pkts decompressed: 0
    #pkts not compressed: 0, #pkts compr. failed: 0, 
    #pkts decompress failed: 0, #send errors 1, #recv errors 0
     local crypto endpt.: 12.1.1.1, remote crypto endpt.: 12.1.1.2
     path mtu 1500, media mtu 1500
     current outbound spi: 3D3
     inbound esp sas:
      spi: 0x136A010F(325714191)
        transform: esp-3des esp-md5-hmac ,
        in use settings ={Tunnel, }
        slot: 0, conn id: 3442, flow_id: 1443, crypto map: test
        sa timing: remaining key lifetime (k/sec): (4608000/52)
        IV size: 8 bytes
        replay detection support: Y
     inbound ah sas:
     inbound pcp sas:
inbound pcp sas:
outbound esp sas:
   spi: 0x3D3(979)
    transform: esp-3des esp-md5-hmac ,
    in use settings ={Tunnel, }
    slot: 0, conn id: 3443, flow_id: 1444, crypto map: test
    sa timing: remaining key lifetime (k/sec): (4608000/52)
    IV size: 8 bytes
    replay detection support: Y
outbound ah sas:
outbound pcp sas:

The first part shows the interface and cypto map name that are associated with the interface. Then the inbound and outbound SAs are shown. These are either AH or ESP SAs. In this case, because you used only ESP, there are no AH inbound or outbound SAs.

Note: Maybe “inbound crypto map” here mentions about crypto map name.

Comments
  1. Anonymous
    February 25th, 2015

    who has done the new exam? are these questios there?doing my exam on Sat the 28th of feb

  2. @anonymous
    February 25th, 2015

    Digitaltut has entered the “82Q” everyone has been talking about on it’s website in an organized fashion. All the questions listed on this website under the 300-101 heading have
    been stated to be on the test.

  3. joe90
    March 4th, 2015

    Digitaltut, you are my mid-night lover. great work

  4. bangash
    March 12th, 2015

    good work. as this is cover 82Q paper ????

  5. Me@here.com
    March 16th, 2015

    I took the exam on Feb 20th(ish) and I can attest that ALL of these questions are in the random-pool

    In my exam, I got 6 of these 8 questions.

    Prep prep prep

  6. Mike_patra
    April 6th, 2015

    Hi all. How many questions are in the exam? Thanks.

  7. Ahmed
    April 15th, 2015

    what are these questions … those aren’t in the new ccnp route material 300-101 in official cert guide … from where does you bring these questions ????

  8. bizzle
    April 28th, 2015

    just wondering, how much IP V6 is there in the new CCNP route exam?

  9. suman
    June 1st, 2015

    Can anyboday provide me the latest CCNP route dumps please. I have exam in next week

  10. Mikelibero
    June 20th, 2015

    F***n Cisco gives HRSP question in Route exam!!!
    This topic is on Switch blueprint. Out of scope for Route exam.

  11. Anonymous
    June 23rd, 2015

    @Mikelibero , Have you passed the exam ?

  12. digitaltut
    July 24th, 2015

    @all: Because of copyrighted issue, we had to remove all the questions and answers. We can only keep the explanations. You can download all the questions and answers at: https://mega.co.nz/#!0pUxSZoJ!s293gEdQu4xLndoA7zZTq5ldia3gdZlrZqNxc_AgpFc
    or
    http://www.4shared.com/office/-GBRNxjKce/ROUTE_July_2015.html

  13. adolfo
    August 2nd, 2015

    @digitaltut where can I download the questions and answers ?

  14. adolfo
    August 2nd, 2015

    oh sorry thanks for the links :)

  15. AnGeLo
    September 25th, 2015

    Guys, can somebody explain why the correct answer on question 6 regarding HSRP is the

    “Track the up/down state of a loopback interface and shut down this interface during maintenance”

    And not the “Adjust the HSRP priority without the use of preemption” ??

  16. Sabinay
    September 27th, 2015

    @ Digitaltut, the two links ” https://mega.co.nz/#!0pUxSZoJ!s293gEdQu4xLndoA7zZTq5ldia3gdZlrZqNxc_AgpFc
    or
    http://www.4shared.com/office/-GBRNxjKce/ROUTE_July_2015.html” doesn’t contain all question of Ip services, BGP and gre tunnel,can u update ur pdf please.

  17. digitaltut
    September 27th, 2015

    Please use this link to see newest PDF file: http://www.digitaltut.com/route-questions-and-answers

  18. Sabinay
    September 28th, 2015

    @ digitaltut, Thanks a lot….

  19. spelunker
    October 22nd, 2015

    Can someone please send me the latest CCNP ROUTE dumps at tao33428@yahoo.com
    Thanks.

  20. rigan
    December 24th, 2015

    where are the question ???

  21. vic
    January 19th, 2016

    here is the information: goo.gl/vroZC5

  22. route
    January 21st, 2016

    @vic How You download from this site google/vroZC5
    it is not visible or accessible I do not know
    how you go through? can you help me

  23. Anonymous
    March 3rd, 2016

    dfdfdfddfdf

  24. Love Leo
    May 21st, 2016

    Can anybody tell me, what is “82Q” ???

  25. June
    May 29th, 2016
  26. Need Help PLease
    October 4th, 2016

    All, I failed today with a 640. The ‘300-101: Implementing Cisco IP Routing’ exam is completely different then what is on this site. Not even close. There are maybe 10 questions that are the same… What happened???

  27. Swiss
    November 17th, 2016

    http://www.testmayor.com/300-101-test.html dumps is Valid. I took the test on Weds. 95% questions were from the Testmayor dumps. All questions and answers are valid, You’d better have to understand the technologies.

  28. MrsAliB
    November 28th, 2016

    I heard the dump ROUTE_Apr_2016 is no longer valid.
    Will there be a new dump soon?

  29. MrsAliB
    November 28th, 2016

    Please send it to ali.bos mail at outlook.

  30. Abela
    December 8th, 2016

    A packet capture log indicates that several router solicitation messages were sent from a local host on the IPv6 segment. that is the expected acknowledgment and its usage?

    A. Router acknowledgment messages will be forwarded upstream, where the DHCP server will allocate addresses to the local host.
    B. Routers on the IPv6 segment will respond with an advertisement that provides an external path from the local subnet, as well as certain data, such as prefix discovery.
    C. Duplicate Address Detection will determine if any other local host is using the same IPv6 address for communication with the IPv6 routers on the segment.
    D. All local host traffic will be redirected to the router with the lowest ICMPv6 signature, which is statically defined by the network administrator.

    Correct Answer: B

    Buy Complete Question And Answer File From http://www.dumps4download.com/300-101-dumps.html

  1. No trackbacks yet.