Home > Router Questions

Router Questions

August 7th, 2017 in ROUTE 300-101 Go to comments

Question 1

Explanation

To determine which scheme has been used to encrypt a specific password, check the digit preceding the encrypted string in the configuration file. If that digit is a 7, the password has been encrypted using the weak algorithm. If the digit is a 5, the password has been hashed using the stronger MD5 algorithm.

For example, in the configuration command:

enable secret 5 $1$iUjJ$cDZ03KKGh7mHfX2RSbDqP.

The enable secret has been hashed with MD5, whereas in the command:

username jdoe password 7 07362E590E1B1C041B1E124C0A2F2E206832752E1A01134D

The password has been encrypted using the weak reversible algorithm.

When we enter the “enable secret” command with a number after that, the IOS can specify that the password has been encrypted so it will not encrypt any more and accept that password.

In new Cisco IOS (v15+), it seems the device does not recognize “enable secret 7” command as encrypted password. We tried on Cisco IOS v15.4 and see this:

enable_secret.jpg

When we tried to enter the command “enable secret 7 07362E590E1B1C041B1E124C0A2F2E206832752E1A01134D”, the Cisco IOS automatically change the command to “enable secret 5 $1$dLq2$qgzb4bgdsasX8dx1oHOkD.” (in the running-config file). So if you paste an “enable secret 7 …” command from an old Cisco IOS version, you cannot login any more with your password.

Note: In fact, there is an error with the answer D. As we entered the command in answer D, the router denied the encrypted password because it was not a valid encrypted secret password. That means the router also checked if the password was hashed correctly or not. But it is the best answer in this question.

enable_secret_error.jpg

Question 2

Explanation

Excessive debugs to the console port of a router can cause the router to hang. This is because the router automatically prioritizes console output ahead of other router functions. Hence if the router is processing a large debug output to the console port, it may hang. Hence, if the debug output is excessive use the vty (telnet) ports or the log buffers to obtain your debugs.

Note: By default, logging is enabled on the console port. Hence, the console port always processes debug output even if you are actually using some other port or method (such as Aux, vty or buffer) to capture the output. Hence, Cisco recommends that, under normal operating conditions, you have the no logging console command enabled at all times and use other methods to capture debugs.

To enable logging logging on your virtual terminal connection (telnet), use the “terminal monitor” command under Privileged mode (Router#)

Reference: http://www.cisco.com/c/en/us/support/docs/dial-access/integrated-services-digital-networks-isdn-channel-associated-signaling-cas/10374-debug.html

Question 3

Explanation

Per-packet load-balancing means that the router sends one packet for destination1 over the first path, the second packet for (the same) destination1 over the second path, and so on. Per-packet load balancing guarantees equal load across all links. However, there is potential that the packets may arrive out of order at the destination because differential delay may exist within the network -> Answer D is correct.

When searching the routing table, the router looks for the longest match for the destination IP address prefix. This is done at “process level” (known as process switching), which means that the lookup is considered as just another process queued among other CPU processes

Interrupt-level switching means that when a packet arrives, an interrupt is triggered which causes the CPU to postpone other tasks in order to handle that packet.

In general, process switching is faster then interrupt-level switching and can cause out-of-order packets.

Question 4

Explanation

The command “debug condition interface <interface>” command is used to disable debugging messages for all interfaces except the specified interface so in this case the debug output will be shown on Fa0/1 interface only.

Note: If in this question there was another “debug condition interface fa0/0” command configured then the answer should be C (both interfaces will show debugging ouput).

Question 5

Explanation

There are a few simple steps you can follow to ensure your VTY lines are as secure as possible. The easiest way is to enable username / password authentication. Other ways are to include an access-list to prevent unwanted IP addresses from connecting and use SSH to encrypt the traffic connecting to the device.

Question 6

Explanation

An Integrated Services Router(ISR) router can be implemented an Ethernet Switch Module to perform both IP routing and inter-VLAN routing. With this module, an ISR router will contain interface vlan configurations.

Question 7

Question 8

Comments
Comment pages
1 2 1727
  1. open
    January 31st, 2018

    I just passed the Route test but it seems there are no a whole lot of questions from the dumps. I did have the BPR, EIGRP/ospf distro,ospf stub sim to do.

    all in all there are more frame relay questions I wing but I passed.

    study hard and practice the sims.

  2. NaSs
    February 20th, 2018

    Hi guys, i just purchased premium membership,
    is there any link to download dumps?
    please Advice?

    Regards!

  3. Marcus
    March 3rd, 2018

    Can anyone explain why answer D in Q6 is correct? I guess answer should be A, because inter-vlan routing is only real reason for ‘interface vlan’ command, as @RD mentioned above.

  4. Marcus
    March 3rd, 2018

    Why answer B in Q8 is incorrect? Cisco says:

    “The service password-encryption global configuration command directs the Cisco IOS software to encrypt the passwords, Challenge Handshake Authentication Protocol (CHAP) secrets, and similar data that are saved in its configuration file.”

    The pitfall in words ‘remote device’?

  5. Nedem
    March 5th, 2018

    Instant Download
    Real Exam Questions.
    No Fake
    VCE and PDF
    Easy to Learn
    Complete Package
    Online Email support
    All time support
    Free 60 days update

    http://docs.google.com/document/d/1u-Y0KODT9rLdgeFqJrY2Ra8whX9MpVY7JN1T50ftr6g/edit

  6. Anonymous
    March 5th, 2018

    I Failed the exam on last Friday. 757 points and the minimum to pass is 790. A lot of new questions that wasn’t covered on this website. The labs are the same (including the IP addresses) so please study the sim labs carefully.

    Good luck to all.

  7. question Search
    March 6th, 2018

    hi were can I find the questions?

  8. CCNP_ROUTE
    March 6th, 2018

    I failed yesterday… 779 points. some AAA question and for VRF appear.

  9. CCNP_ROUTE
    March 6th, 2018

    @Marcus,
    Some one answer you?

  10. Marcus
    March 10th, 2018

    @CCNP_ROUTE, no, but I still hope :)

  11. zee
    March 16th, 2018

    please somebody share the drive link here, for ccnp ROUTE dumps

  12. Elv
    March 27th, 2018

    @Marcus,service password-encryption command does not encrypt passwords on a remote device when configured. It encrypts the password for the local router on which it was configured. That is why answer B in Q 8 is incorrect.

  13. xhe
    April 1st, 2018

    Hi,

    Where can I download the questions ?

  14. dannDumb
    April 11th, 2018

    Hi does anybody has the new dumb, I did not pass the exam with the Oct version.
    {email not allowed}

  15. Anonymous
    April 23rd, 2018

    can someone please send me the dump wilgonzalez1227 at y ahoo thank you in advance, taking the test on Friday….

  16. Aryan
    April 30th, 2018

    @digitaltut

    please provide a link to the questions.

    Many thanks.

  17. Kero
    May 6th, 2018

    can any one send my the questions please?
    Email = {not Allowed e-mail}

  18. Anonymous
    May 15th, 2018

    I took the exam 14 May, and 90% – 95% of the questions were different than from what I studied. The Labs that they threw at me on the test were on target though.

  19. fasfasf21431
    May 30th, 2018

    Latest Update 100% Real CCNP Exam Questions

    dumps
    pro
    dot
    com

  20. shift
    May 30th, 2018

    Could someone please send me the latest dumps please

    manu_rule_4ever at hotmail dot co dot uk

  21. din
    June 2nd, 2018

    Could anyone able to share CCNP route latest dumps that will be helpful I am going to write exam my email {email not allowed}

  22. Red
    June 4th, 2018

    Is there anyone who can give the latest dumps. Im planning to take the exam but my dumps are probably outdated. Thanks so much!

  23. Aol customer support
    June 4th, 2018

    These questions and answers are very helpful for study. visit https://aolsupports.org/ for more things like this.

  24. hrs
    June 6th, 2018

    can some 1 pls share the questions for these answers.

  25. Zak
    June 12th, 2018

    I remember from the exam 300-101 which I failed few days back that a question came with Exhibit showing Router# logging console 7 and it gave me choices, does anyone know what is the answer to that exhibit?
    Thank you

Comment pages
1 2 1727
  1. No trackbacks yet.