Exam Code: 200-125 (Practice Exam Latest Test Questions VCE PDF)
Exam Name: CCNA Cisco Certified Network Associate CCNA (v3.0)
Certification Provider: Cisco
Free Today! Guaranteed Training- Pass 200-125 Exam.

2021 Apr 200-125 exam cost

Q151.  - (Topic 6)

Refer to the exhibit.

The following commands are executed on interface fa0/1 of 2950Switch. 2950Switch(config-if)# switchport port-security

2950Switch(config-if)# switchport port-security mac-address sticky 2950Switch(config-if)# switchport port-security maximum 1

The Ethernet frame that is shown arrives on interface fa0/1. What two functions will occur when this frame is received by 2950Switch? (Choose two.)

A. The MAC address table will now have an additional entry of fa0/1 FFFF.FFFF.FFFF.

B. Only host A will be allowed to transmit frames on fa0/1.

C. This frame will be discarded when it is received by 2950Switch.

D. All frames arriving on 2950Switch with a destination of 0000.00aa.aaaa will be forwarded out fa0/1.

E. Hosts B and C may forward frames out fa0/1 but frames arriving from other switches will not be forwarded out fa0/1.

F. Only frames from source 0000.00bb.bbbb, the first learned MAC address of 2950Switch, will be forwarded out fa0/1.

Answer: B,D

Explanation:

The configuration shown here is an example of port security, specifically port security using sticky addresses. You can use port security with dynamically learned and static MAC addresses to restrict a port's ingress traffic by limiting the MAC addresses that are allowed to send traffic into the port. When you assign secure MAC addresses to a secure port, the port does not forward ingress traffic that has source addresses outside the group of defined addresses. If you limit the number of secure MAC addresses to one and assign a single secure MAC address, the device attached to that port has the full bandwidth of the port.

Port security with sticky MAC addresses provides many of the same benefits as port security with static MAC addresses, but sticky MAC addresses can be learned dynamically. Port security with sticky MAC addresses retains dynamically learned MAC addresses during a link-down condition.


Q152.  - (Topic 4)

Which Layer 2 protocol encapsulation type supports synchronous and asynchronous circuits and has built-in security mechanisms?

A. HDLC

B. PPP

C. X.25

D. Frame Relay

Answer: B

Explanation:

PPP: Provides router-to-router and host-to-network connections over synchronous and asynchronous circuits. PPP was designed to work with several network layer protocols, including IP. PPP also has built-in security mechanisms, such as Password Authentication Protocol (PAP) and Challenge Handshake Authentication Protocol (CHAP).


Q153.  - (Topic 3)

A network administrator needs to allow only one Telnet connection to a router. For anyone viewing the configuration and issuing the show run command, the password for Telnet access should be encrypted. Which set of commands will accomplish this task?

A. service password-encryption

access-list 1 permit 192.168.1.0 0.0.0.255

line vty 0 4 login

password cisco access-class 1

B. enable password secret line vty 0

login

password cisco

C. service password-encryption line vty 1

login

password cisco

D. service password-encryption line vty 0 4

login

password cisco

Answer: C

Explanation:

Only one VTY connection is allowed which is exactly what's requested. Incorrect Answer: command.

line vty0 4

would enable all 5 vty connections.

Topic 4, WAN Technologies


Q154.  - (Topic 5)

Refer to the exhibit.

What is the most efficient summarization that R1 can use to advertise its networks to R2?

A. 172.1.0.0/22

B. 172.1.0.0/21 

C. 172.1.4.0/22 

D. 172.1.4.0/24 

172.1.5.0/24

172.1.6.0/24

172.1.7.0/24

E. 172.1.4.0/25 

172.1.4.128/25

172.1.5.0/24

172.1.6.0/24

172.1.7.0/24

Answer: C

Explanation:

The 172.1.4.0/22 subnet encompasses all routes from the IP range 172.1.4.0 – 172.1.7.255.


Q155.  - (Topic 7)

A network administrator is troubleshooting the OSPF configuration of routers R1 and R2. The routers cannot establish an adjacency relationship on their common Ethernet link.

The graphic shows the output of the show ip ospf interface e0 command for routers R1 and R2. Based on the information in the graphic, what is the cause of this problem?

A. The OSPF area is not configured properly.

B. The priority on R1 should be set higher.

C. The cost on R1 should be set higher.

D. The hello and dead timers are not configured properly.

E. A backup designated router needs to be added to the network.

F. The OSPF process ID numbers must match.

Answer: D

Explanation:

In OSPF, the hello and dead intervals must match and here we can see the hello interval is set to 5 on R1 and 10 on R2. The dead interval is also set to 20 on R1 but it is 40 on R2.


Avant-garde 200-125 exam prep:

Q156.  - (Topic 8)

Which command can you use to set the hostname on a switch?

A. switch-mdf-c1(config)#hostname switch-mdf1

B. switch-mdf-c1>hostname switch-mdf1

C. switch-mdf-c1#hostname switch-mdf1

D. switch-mdf-c1(config-if)#hostname switch-mdf1

Answer: A


Q157.  - (Topic 4)

Refer to the exhibit.

Which statement describes DLCI 17?

A. DLCI 17 describes the ISDN circuit between R2 and R3.

B. DLCI 17 describes a PVC on R2. It cannot be used on R3 or R1.

C. DLCI 17 is the Layer 2 address used by R2 to describe a PVC to R3.

D. DLCI 17 describes the dial-up circuit from R2 and R3 to the service provider.

Answer: C

Explanation:

DLCI-Data Link Connection Identifier Bits: The DLCI serves to identify the virtual connection so that the receiving end knows which information connection a frame belongs to. Note that this DLCI has only local significance. Frame Relay is strictly a Layer 2 protocol suite.


Q158.  - (Topic 8)

Which command can you enter to troubleshoot the failure of address assignments?

A. show ip dhcp pool

B. show ip dhcp database

C. show ip dhcp import

D. clear ip dhcp server statistics

Answer: A


Q159.  - (Topic 8)

Which network topology allows all traffic to flow through a central hub?

A. bus

B. star

C. mesh

D. ring

Answer: B


Q160.  - (Topic 3)

What are two enhancements that OSPFv3 supports over OSPFv2? (Choose two.)

A. It requires the use of ARP.

B. It can support multiple IPv6 subnets on a single link.

C. It supports up to 2 instances of OSPFv3 over a common link.

D. It routes over links rather than over networks.

Answer: B,D

Explanation:

Here is a list of the differences between OSPFv2 and OSPFv3:

✑ They use different address families (OSPFv2 is for IPv4-only, OSPFv3 can be used for IPv6-only or both protocols

✑ OSPFv3 introduces new LSA types

✑ OSPFv3 has different packet format

✑ OSPFv3 uses different flooding scope bits (U/S2/S1)

✑ OSPFv3 adjacencies are formed over link-local IPv6 communications

✑ OSPFv3 runs per-link rather than per-subnet

✑ OSPFv3 supports multiple instances on a single link, Interfaces can have multiple IPv6 addresses

✑ OSPFv3 uses multicast addresses FF02::5 (all OSPF routers), FF02::6 (all OSPF DRs)

✑ OSPFv3 Neighbor Authentication done with IPsec (AH)

✑ OSPFv2 Router ID (RID) must be manually configured, still a 32-bit number

Reference: http://www.networkworld.com/article/2225270/cisco-subnet/ospfv3-for-ipv4-and- ipv6.html