Summer Certification Sale 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: clap70

400-007 Cisco Certified Design Expert (CCDE v3.1) Questions and Answers

Questions 4

: 474

The development of a connected ecosystem of devices reflects manufacturers ' heightened focus on internal needs and issues as they work to increase product resiliency and improve customer experience In which two ways can network visibility contribute to resilient software defined networking? (Choose two.)

Options:

A.

by prioritizing critical applications

B.

by detecting and preventing network issues early

C.

by ensuring reliability by static architecture

D.

by abstracting traffic patterns from operators

E.

by reducing costs by removing low-priority traffic

Buy Now
Questions 5

The API of an SDN controller named CTL-A uses the HTTP POST method and the same URL for all resources The JSON body of each message is used to get information for specific resources and operations The API of a SDN controller named CTL-B uses HTTP CRUD methods and a uniform interface with different URLs for each resource Which API type is used by each SDN controller?

Options:

A.

CTL-A uses a RESTful API and CTL-B has an HTTP-based API

B.

CTL-B uses a RESTful API and CTL-A has an HTTP-based API

C.

CTL-A and CTL-B have a non-RESTful API

D.

CTL-A and CTL-B have a RESTful API

Buy Now
Questions 6

What is a country-specific requirement that data is subject to the laws of the country in which it is collected or processed and must remain within its borders?

Options:

A.

Data sovereignty

B.

Data rationality

C.

Data inheritance

D.

Data replication

Buy Now
Questions 7

As a network designer, you need to support an enterprise with hundreds of remote sites connected over a single WAN network that carries different types of traffic, including VoIP, video, and data applications. Which of the following design considerations will not impact design decision?

Options:

A.

Focus on the solution instead of the problem, which helps to reduce downtime duration

B.

The location of the data collection

C.

What direction the data or flows should be metered

D.

Identify traffic types and top talkers over this link

Buy Now
Questions 8

IPFIX data collection via standalone IPFIX probes is an alternative to flow collection from routers and switches. Which use case is suitable for using IPFIX probes?

Options:

A.

performance monitoring

B.

security

C.

observation of critical links

D.

capacity planning

Buy Now
Questions 9

Drag and drop the multicast protocols from the left onto the current design situation on the right.

Options:

Buy Now
Questions 10

QUESTION 69 Refer to the exhibit. AJI links are P2P Layer 3. A high availability application is synchronizing data between host A and host B. To increase chance of delivery the same data is sent twice from host A on two different NICs toward the two NICs on host B.

Refer to the exhibit. All links are P2P Layer 3. A high availability application is synchronizing data between Host A and Host B. To increase the chance of delivery, the same data is sent twice from Host A on two different NICs toward the two NICs on Host B.

Which solution must be deployed in the network to ensure that any failure in the network does not trigger data loss on Host B?

Options:

A.

EIGRP with feasible successors

B.

BFD

C.

IP Fast Reroute

D.

Static routes

Buy Now
Questions 11

Company XYZ, a global content provider, owns data centers on different continents. Their data center design involves a standard three-layer design with a Layer 3-only core. VRRP is used as the FHRP. They require VLAN extension across access switches in all data centers and plan to purchase a Layer 2 interconnection between two of their data centers in Europe. In the absence of other business or technical constraints, which termination point is optimal for the Layer 2 interconnection?

Options:

A.

At the core layer, to offer the possibility to isolate STP domains

B.

At the access layer because the STP root bridge does not need to align with the VRRP active node

C.

At the core layer because all external connections must terminate there for security reasons

D.

At the aggregation layer because it is the Layer 2 to Layer 3 demarcation point

Buy Now
Questions 12

Which function is performed at the access layer of the three-layer hierarchical network design model?

Options:

A.

Fault isolation

B.

QoS classification and marking boundary

C.

Reliability

D.

Fast transport

E.

Redundancy and load balancing

Buy Now
Questions 13

Refer to the table.

A customer investigates connectivity options for a DCI between two production data centers. The solution must provide dual 10G connections between locations with no single points of failure for Day 1 operations. It must also include an option to scale for up to 20 resilient connections in the second year to accommodate isolated SAN over IP and isolated, dedicated replication IP circuits. All connectivity methods are duplex 10 Gbps. Which transport technology costs the least over two years, in the scenario?

Options:

A.

Metro Ethernet

B.

DWDM

C.

CWDM

D.

MPLS

Buy Now
Questions 14

Which design element is used to define network performance requirements?

Options:

A.

service level

B.

operating cost

C.

location dependency

D.

network size

Buy Now
Questions 15

What is a description of a control plane action?

Options:

A.

De-encapsulating and re-encapsulating a packet in a data-link frame

B.

Matching the destination MAC address of an Ethernet frame to the MAC address table

C.

Matching the destination IP address of an IP packet to the IP routing table

D.

Hosts locating routers that reside on attached links using the IPv6 Neighbor Discovery Protocol

Buy Now
Questions 16

There are varying requirements and motivations for improving the scalability and resilience of an enterprise application. The relative importance of these requirements and constraints varies depending on the type of app. the profile of the users, and the scale and maturity of the organization in which it is deployed. What are two common business drivers that deals with these aspects? (Choose two.)

Options:

A.

Minimize time spent investigating failures.

B.

Build apps using the latest industry patterns and practices.

C.

Ensure that user demand can be met during periods of high usage.

D.

Reduce the frequency of failures requiring human intervention.

E.

Increase flexibility and agility to handle changing market demands.

Buy Now
Questions 17

Company XYZ has a multicast domain that spans across multiple autonomous systems. The company wants a simplified and controlled approach to interconnecting multicast domains. Which technology is the best fit?

Options:

A.

MSDP

B.

PIM SSM

C.

MPLS

D.

PIM sparse mode

Buy Now
Questions 18

A senior network designer suggests that you should improve network convergence times by reducing BGP timers between your CE router and the PE router of the service provider. Which two factors should you consider to adjust the timer values? (Choose two.)

Options:

A.

service provider agreement to support tuned timers

B.

manual updates to the peer groups

C.

service provider scheduling of changes to the PE

D.

number of routes on the CE router

E.

number of VRFs on the PE router

Buy Now
Questions 19

Organic growth or decline comes from a company ' s normal business activities, rather than through acquisitions or divestment. Changes in usage patterns can also cause organic change in network requirements Which tool is useful when designing and operationalizing a network that is in the process of change?

Options:

A.

change management

B.

modularity

C.

mobility

D.

Monitoring

Buy Now
Questions 20

Which SDN architecture component is used by the application layer to communicate with the control plane layer to provide instructions about the resources required by applications?

Options:

A.

Southbound APIs

B.

Northbound APIs

C.

Orchestration layer

D.

SDN controller

Buy Now
Questions 21

A customer asks you to perform a high-level review of their upcoming WAN refresh for remote sites. The review is specially focused on their retail store operations consisting of 500+ locations connected via multipoint IPsec VPN solution. Which routing protocol would be valid but would also be the most restrictive for the expansion of this deployment model?

Options:

A.

EIGRP

B.

IS-IS

C.

OSPF

D.

BGP

Buy Now
Questions 22

Which design benefit of PortFast is true?

Options:

A.

PortFast does not generate a spanning tree topology change when a station on a port is connected or disconnected

B.

PortFast disables spanning tree on the port, which puts the port into the forwarding state immediately after it is connected

C.

PortFast allows small, unmanaged switches to be plugged into ports of access switches without risking switch loops

D.

PortFast detects one-way communications on the physical port, which prevents switch loops

E.

PortFast prevents switch loops that are caused by a unidirectional point-to-point link condition on Rapid PVST+ and MST

F.

PortFast prevents switched traffic from traversing suboptimal paths on the network

Buy Now
Questions 23

When an SDN-based model is used to transmit multimedia traffic, which aspect should an architect consider while designing the network?

Options:

A.

QoE estimation

B.

Security

C.

Traffic patterns

D.

Flow forwarding

Buy Now
Questions 24

: 501

An organization who recently adapted SDWAN has been using CPU intensive policy routing on their new WAN edge device in the HQ to forward traffic to one of its branches which hosts the enterprise firewall What can replace the CPU intensive policy routing?

Options:

A.

induced network segregation

B.

hair-pinning

C.

CSP

D.

network service insertion

Buy Now
Questions 25

Company XYZ needs advice in redesigning their legacy Layer 2 infrastructure. Which technology should be included in the design to minimize or avoid convergence delays due to STP or FHRP and provide a loop-free topology?

Options:

A.

Use switch clustering in the access layer.

B.

Use switch clustering in the core/distribution layer.

C.

Use spanning-tree PortFast.

D.

Use BFD.

Buy Now
Questions 26

risk is a major determining factor in whether a company chooses to go with a public cloud, a private, or a hybrid of both. what are two factors that impact the decision on which cloud service placement model to use? (choose two)

Options:

A.

cross zone redundancy

B.

regulation

C.

organization skills

D.

legacy architectures

E.

data ownership

Buy Now
Questions 27

Network changes due to mergers, acquisitions, and divestitures can be highly disruptive if not carefully planned. When an organization sells part of its business, it must detach those parts of the network with minimal risk and downtime.

Which network design approach is appropriate to minimize the impact and risks as the divested parts of the network are detached?

Options:

A.

Redundant design

B.

Modular design

C.

Less complex design

D.

Routed access design

Buy Now
Questions 28

Company XYZ is running OSPF in their network. They have merged with another company that is running EIGRP as the routing protocol. Company XYZ now needs the two domains to talk to each other with redundancy, while maintaining a loop-free environment. The solution must scale when new networks are added into the network in the near future. Which technology can be used to meet these requirements?

Options:

A.

multipoint route-redistribution with route filtering using ACLs

B.

DUMP multipoint route-redistribution with route filtering using route tags

C.

DUMPS single point route-redistribution with route filtering using route tags

D.

DUMPS single point route-redistribution with route filtering using ACLs

Buy Now
Questions 29

Customer XYZ network consists of an MPLS core, IS-IS running as IGP, a pair of BGP route reflectors for route propagation, and a few dozen MPLS-TE tunnels for specific tactical traffic engineering requirements. The customer ' s engineering department has some questions about the use of the Overload Bit in the IS-IS networks and how it could be used to improve their current network design. Which two concepts about the Overload Bit are true? (Choose two.)

Options:

A.

It can be set on a router during the startup process for a fixed period of time

B.

Networks advertised within the LSPs of the respective node will become unreachable

C.

It forces the midpoint MPLS-TE node to reoptimize the primary tunnels going through the OL node.

D.

It can be set on a router until other interacting protocols have signaled convergence.

E.

It is not recommended on BGP Route Reflectors

Buy Now
Questions 30

A small organization of 20 employees is looking to deliver a network design service for modernizing customer networks to support advanced solutions.

Project scope and weekly progress should be visualized by the management.

Always consider feedback and make changes accordingly during the project.

Should consider flexibility to change scope at any point in time.

Which project methodology meets the requirements and has the least impact on the outcome?

Options:

A.

Scrum

B.

LEAN

C.

Kanban

D.

Six-Sigma

Buy Now
Questions 31

The network team in XYZ Corp wants to modernize their infrastructure and is evaluating an implementation and migration plan to allow integration MPLS-based, Layer 2 Ethernet services managed by a service provider to connect branches and remote offices. To decrease OpEx and improve

response times when network components fail, XYZ Corp decided to acquire and deploy new routers. The network currently is operated over E1 leased lines (2 Mbps) with a managed CE service provided by the telco.

Drag and drop the implementation steps from the left onto the corresponding targets on the right in the correct order.

Options:

Buy Now
Questions 32

What is the most important operational driver in building a resilient and secure modular network design?

Options:

A.

Dependencies on hardware or software that is difficult to scale

B.

Minimize app downtime

C.

Reduce the frequency of failures requiring human intervention

D.

Increase time spent on developing new features

Buy Now
Questions 33

Refer to the exhibit A solution architect is tasked with designing a quick fault detection and convergence solution based on a set of requirements

•Due to the use of voice applications, users must ideally not experience traffic disruption in excess of 100 milliseconds in case of link or node failures in OSPF area 100. •The enterprise requires the network to be highly available

•Traffic must quickly switch to another path without waiting for the OSPF dead interval to kick in What can be included in the design in order to meet these requirements?

Options:

A.

Make OSPF peers use BFD and set the BFD timers to an appropriate value.

B.

Enable IP SLA tracking with next hop to OSPF peer

C.

Use fault propagation timers specified in milliseconds for the OSPF SPF algorithm.

D.

Adjust SPF delay and LSA interval timers in OSPF protocol.

Buy Now
Questions 34

An enterprise has identified these causes for inefficient CAPEX spending:

CAPEX planning is driven by technology and not by business objectives.

The CAPEX planning team lacks the data it needs to perform due diligence tasks.

The organizational structure lacks sufficient accountability and incentives.

Which corporate cultural change contributes to improving the effectiveness of CAPEX spending?

Options:

A.

Build a financial control function that delivers high-quality reports on operational expenses for business insight and financial reporting.

B.

CxO-level staff must have a full technical understanding but they should not trust their technical leaders fully.

C.

Adopt new organizational models that promote real accountability for ROI, not just revenue, EBITDA, and cash.

D.

Marketing and product management divisions must reduce their CAPEX budgets significantly to drive the change.

Buy Now
Questions 35

Which two types of planning approaches are used to develop business-driven network designs and to facilitate the design decisions? (Choose two)

Options:

A.

cost optimization approach

B.

strategic planning approach

C.

modular approach

D.

tactical planning approach

E.

business optimization approach

Buy Now
Questions 36

As part of a new network design documentation, you are required to explain the reason for choosing Cisco FabricPath for Layer 2 loop avoidance.

Which two elements help Cisco FabricPath mitigate Layer 2 loops if they happen in the Layer 2 MP network? (Choose two)

Options:

A.

MAC tunneling

B.

IS-IS multipath

C.

RPF check

D.

TTL header

Buy Now
Questions 37

Company XYZ has two routing domains in their network, EIGRP and OSPF. The company wants to provide full reachability between the two domains by implementing redistribution on a router running both protocols They need to design the redistribution in a way that the OSPF routers will see link costs added to external routes. How must the redistribution strategy be designed for this network?

Options:

A.

Redistributed using metric type 2 into OSPF

B.

Redistribute using metric type 1 into EIGRP

C.

Redistribute using metric type 1 into OSPF

D.

Redistribute using metric type 2 into EIGRP

Buy Now
Questions 38

A large enterprise cloud design team is evaluating cloud consumption models. What is an example of a typical PaaS limitation or concern?

Options:

A.

Vendor lock-in

B.

Runtime issues

C.

Lack of control

D.

Multi-tenant security

Buy Now
Questions 39

Company XYZ wants to deploy OSPF. The design plan requires that two OSPF networks be mutually redistributed at multiple locations and ensure end-to-end connectivity to all of the company ' s networks. Which technology can be used to fulfill the requirements while avoiding the creation of routing loops?

Options:

A.

Create a virtual link between ASBRs.

B.

Change the router ID for both ASBRs.

C.

Redistribute routes as external type 2 routes.

D.

Use route maps on ASBRs to filter routes with tags so they are not redistributed.

Buy Now
Questions 40

A Service Provider is designing a solution for a managed CE service to a number of local customers using a single CE platform and wants to have logical separation on the CE platform using Virtual Routing and Forwarding (VRF) based on IP address ranges or packet length. Which is the most scalable solution to provide this type of VRF Selection process on the CE edge device?

Options:

A.

Static Routes for Route Leaking

B.

Policy Based Routing

C.

OSPF per VRF Instance

D.

Multi-Protocol BGP

Buy Now
Questions 41

Refer to the exhibit.

A customer runs OSPF with Area 5 between its aggregation router and an internal router. When a network change occurs in the backbone, Area 5 starts having connectivity issues due to the SPF algorithm recalculating an abnormal number of times in Area 5. You are tasked to redesign this network to increase resiliency on the customer network with the caveat that Router B does not support the stub area. How can you accomplish this task?

Options:

A.

Increase the bandwidth on the connection between Router A and Router B

B.

Implement LSA filtering on the ABR, allowing summary routes and preventing more specific routes into Area 5

C.

Create a virtual link to Area 0 from Router B to the ABR

D.

Turn on LSA throttling on all devices in Area 5

E.

Set Area 5 to stubby at the ABR anyway

Buy Now
Questions 42

Which Interconnectivity method offers the fastest convergence in the event of a unidirectional issue between three Layer 3 switches connected together with routed links in the same rack in a data center?

Options:

A.

Copper Ethernet connectivity with BFD enabled

B.

Copper Ethernet connectivity with UDLD enabled

C.

Fiber Ethernet connectivity with BFD enabled

D.

Fiber Ethernet connectivity with UDLD enabled

Buy Now
Questions 43

Company XYZ is running BGP as their routing protocol. An external design consultant recommends that TCP Path MTU Discovery be enabled. Which effect will this have on the network?

Options:

A.

It will enhance the performance of TCP-based applications.

B.

It will increase the convergence time.

C.

It will improve the convergence time.

D.

It will create a loop free path.

Buy Now
Questions 44

What is a disadvantage of the traditional three-tier architecture model when east-west traffic between different pods must go through the distribution and core layers?

Options:

A.

Low bandwidth

B.

Security

C.

Scalability

D.

High latency

Buy Now
Questions 45

An international media provider faces challenges managing deployed services with a homegrown orchestration system. Which platform is well-suited as a state-aware orchestration system?

Options:

A.

Puppet

B.

Kubernetes

C.

Ansible

D.

Terraform

Buy Now
Questions 46

Network operators have many options available from fully centralized to fully distributed control planes and each approach has its own set of characteristics Drag and drop the characteristics from the left onto the corresponding approach on the right

Options:

Buy Now
Questions 47

When constraint-based routing is under consideration to be added to a network design, what are two inherent characteristics or impacts that must be considered? (Choose two)

Options:

A.

better network utilization

B.

stability in the route table

C.

high computation overhead

D.

smaller routing table size

E.

less resources than the shortest path

Buy Now
Questions 48

A business customer deploys workloads in the public cloud but now faces governance issues related to IT traffic flow and data security. Which action helps identify the issue for further resolution?

Options:

A.

Set up a secure tunnel from customer routers to protect traffic to cloud providers.

B.

Send IPFIX telemetry data from customer routers to a centralized collector to identify traffic to cloud providers.

C.

Build a zone-based firewall policy on Internet edge firewalls that collects statistics on traffic to cloud providers.

D.

Apply workload policies that dictate security requirements for cloud workloads.

Buy Now
Questions 49

The SD-WAN architecture is composed of separate orchestration, management, control, and data planes. Which activity happens at the orchestration plane?

Options:

A.

Automatic onboarding of the SD-WAN routers into the SD-WAN overlay

B.

Decision-making process on where traffic flows

C.

Packet forwarding

D.

Central configuration and monitoring

Buy Now
Questions 50

What is the key strategy to address scalability challenges In the rapidly evolving digital landscape with resilient designs?

Options:

A.

Mitigate the impact of power outages.

B.

Minimize the distance.

C.

Identify potential bottlenecks.

D.

Optimize resource utilization.

Buy Now
Questions 51

Refer to the exhibit.

The enterprise customer wants to stream one-way video from their head office to eight branch offices using multicast. Their current service provider provides a Layer 3 VPN solution and manages the CE routers, but they do not currently support multicast. Which solution quickly allows this multicast traffic to go through while allowing for future scalability?

Options:

A.

Enable a GRE tunnel between nodes CE1 and CE2

B.

Enable a GRE tunnel between nodes C2 and C4

C.

Enable a GRE tunnel between nodes C1 and C4

D.

Implement hub and spoke MPLS VPN over DMVPN (also known as 2547o DMVPN) between CE1 and CE2

E.

The service provider must provide a Draft Rosen solution to enable a GRE tunnel between nodes PE1 and PE2

Buy Now
Questions 52

: 479

A comprehensive business continuity plan creates a clear recovery pathway for your systems and acts as an operational blueprint Which two elements are crucial to know before creating a business continuity plan? (Choose two.)

Options:

A.

recovery blueprint

B.

notification matrix

C.

critical activities

D.

communication plan

E.

threat scenarios

Buy Now
Questions 53

A service provider hires you to design its new managed CE offering to meet these requirements:

The CEs cannot run a routing protocol with the PE.

Provide the ability for equal or unequal ingress load balancing in dual-homed CE scenarios.

Provide support for IPv6 customer routes.

Scale up to 250,000 CE devices per customer.

Provide low operational management to scale customer growth.

Utilize low-end (inexpensive) routing platforms for CE functionality.

Which tunneling technology do you recommend?

Options:

A.

FlexVPN

B.

point-to-point GRE

C.

DMVPN

D.

LISP

Buy Now
Questions 54

When a traditional network is transformed to a hierarchical network, the state information in the control plane is reduced so that changes in one area of the network do not result in changes in the routing table on devices half-way around the globe What is a potential trade off in these cases?

Options:

A.

suboptimal use of available resources

B.

vertical split of failure domains

C.

horizontal split of failure domains

D.

increased routing table size

Buy Now
Questions 55

A financial company requires that a custom TCP-based stock-trading application be prioritized over all other traffic for the business due to the associated revenue. The company also requires that VoIP be prioritized for manual trades. Which directive should be followed when a QoS strategy is developed for the business?

Options:

A.

Allow VoIP and the custom application to share the same priority queue.

B.

The custom application and VoIP must be assigned their own separate priority queue.

C.

Interleave the custom application with other TCP applications in the same CBWFQ.

D.

Avoid placing the custom application in a CBWFQ queue that contains other traffic.

Buy Now
Questions 56

You have been asked to design a high-density wireless network for a university campus. Which two principles would you apply in order to maximize the wireless network capacity? (Choose two.)

Options:

A.

Implement a four-channel design on 2.4 GHz to increase the number of available channels

B.

Choose a high minimum data rate to reduce the duty cycle.

C.

Increases the number of SSIDs to load-balance the client traffic.

D.

Make use of the 5-GHz band to reduce the spectrum utilization on 2.4 GHz when dual-band clients are used.

E.

Enable 802.11n channel bonding on both 2.4 GHz and 5 GHz to increase the maximum aggregated cell throughput.

Buy Now
Questions 57

A key to maintaining a highly available network is building in the appropriate redundancy to protect against failure. This redundancy is carefully balanced with the inherent complexity of redundant systems. Which design consideration is relevant for enterprise WAN use cases when it comes to resiliency?

Options:

A.

Design in a way that expects outages and attacks on the network and its protected resources

B.

The design approach should consider simple and centralized management aspect

C.

Design in a way that it simplifies and improves ease of deployment

D.

Design automation tools wherever it is appropriate for greater visibility

Buy Now
Questions 58

Drag and drop the FCAPS network management reference models from the left onto the correct definitions on the right.

Options:

Buy Now
Questions 59

Which undesired effect of increasing the jitter compensation buffer is true?

Options:

A.

The overall transport jitter decreases and quality improves.

B.

The overall transport jitter increases and quality issues can occur.

C.

The overall transport delay increases and quality issues can occur.

D.

The overall transport delay decreases and quality improves.

Buy Now
Questions 60

Which two actions must merchants do to be compliant with the Payment Card Industry Data Security Standard (PCI DSS)? (Choose two.)

Options:

A.

Conduct risk analyses

B.

Install firewalls

C.

Use antivirus software

D.

Establish monitoring policies

E.

Establish risk management policies

Buy Now
Questions 61

Indicate the nature of automation and orchestration tasks by dragging the tasks on the left to the corresponding category on the right in no particular order.

Options:

Buy Now
Questions 62

During initial preparations to deploy 802 1x for wired access to their network, a company must ensure that the solution complies with existing internal security policies These policies mandate that every Auth C/Auth Z request must be protected by a tunnel which authenticates both server and clients using their PKI AI the same time, the user authentication phase must be independent of the tunnel Which scheme meets the requirements?

Options:

A.

EAP-MDS

B.

EAP-Fast

C.

EAP-MSCHAPv2

D.

PEAP

Buy Now
Questions 63

Scalability is a desirable attribute of a network, system, or process Poor scalability can result in poor system performance, necessitating the reengineering or duplication of systems Load scalability is the ability of a system to perform gracefully as traffic increases Which two problems can occur due to poor load scalability design? (Choose two.)

Options:

A.

cannot fully take advantage of parallelism

B.

algorithmically intolerable

C.

limited size of a data structure

D.

repeatedly engaging in wasteful activity

E.

redundant message logging

Buy Now
Questions 64

Which three elements help network designers to construct secure systems that protect information and resources (such as devices, communication, and data) from unauthorized access, modification, inspection, or destruction? (Choose three.)

Options:

A.

confidential

B.

serviceability

C.

reliability

D.

availability

E.

integrity

F.

scalability

Buy Now
Questions 65

While designing a switched topology, in which two options is UplinkFast recommended? (Choose two.)

Options:

A.

when switches of different spanning-tree types are connected (for example. 802.1d connecting to 802.1w)

B.

on distribution layer switches

C.

when hello timers are changed to more aggressive values

D.

on access layer switches

E.

on the core switches

Buy Now
Questions 66

An attacker exploits application flaws to obtain data and credentials. What is the next step after application discovery in Zero Trust networking?

Options:

A.

Establish visibility and behavior modeling

B.

Enforce policies and microsegmentation

C.

Assess real-time security health

D.

Ensure trustworthiness of systems

Buy Now
Questions 67

Company XYZ has implemented policy-based routing in their network. Which potential problem must be kept in mind about network reconvergence and PBR?

Options:

A.

It can limit network scalability

B.

It can create microloops during reconvergence

C.

It increases convergence time.

D.

It reduces convergence time.

Buy Now
Questions 68

Which two benefits can software defined networks provide to businesses? (Choose two.)

Options:

A.

Provides additional redundancy

B.

Decentralized management

C.

Reduced latency

D.

Enables innovation

E.

Reduction of OpEx/CapEx

F.

Meets high traffic demands

Buy Now
Questions 69

A business wants to refresh its legacy Frame Relay WAN and consolidate product specialists via video in 200 branches. Which technology should be used?

Options:

A.

DMVPN phase 1 network over the Internet

B.

Layer 3 MPLS VPN hub and spoke

C.

Layer 2 VPLS

D.

Layer 3 MPLS VPN full mesh

Buy Now
Questions 70

An enterprise solution team is analyzing multilayer architecture and multicontroller SDN solutions for multisite deployments. The analysis focuses on the ability to run tasks on any controller via a standardized interface. Which requirement addresses this ability on a multicontroller platform?

Options:

A.

Deploy a root controller to gather a complete network-level view.

B.

Use the East-West API to facilitate replication between controllers within a cluster.

C.

Build direct physical connectivity between different controllers.

D.

Use OpenFlow to implement and adapt new protocols.

Buy Now
Questions 71

Refer to the exhibit.

The WAN network of the General Bank of Greece has experienced several outages. It takes too long to activate a new branch site. The networking department of the bank plans to upgrade the legacy end-of-life WAN network with a new flexible, manageable, and scalable in-house solution. The number of branches will increase exponentially in the next fiscal year. The CTO states that the bank’s main goal is OPEX reduction. The network engineering team prepares a table to evaluate the available options. Which WAN technology can be used for the solution?

Options:

A.

DMVPN over L3VPN

B.

Managed SD-WAN

C.

SD-WAN over L3VPN

D.

SD-WAN over L2VPN

Buy Now
Questions 72

Which technique facilitates analytics and knowledge discovery in big data systems to recognize hidden and complex patterns?

Options:

A.

predictive monitoring

B.

deep learning

C.

traffic classification

D.

network mobility

Buy Now
Questions 73

Which two aspects are considered when designing a dual hub dual DMVPN cloud topology? (Choose two.)

Options:

A.

will only work with single-tier headend architecture

B.

hub sites must connect to both DMVPN clouds

C.

recommended for high availability

D.

spoke-to-spoke traffic will transit the hub unless spokes exchange dynamic routing directly

E.

requires all sites to have dual Internet connections

Buy Now
Questions 74

: 473

A network consists of multiple planes where each plane represents a different area of network operations and cames different types of network traffic Which two statements describe the concepts of assurance in the context of control planes? (Choose two.)

Options:

A.

It is responsible for collecting analyzing, and enforcing policies based on observed data

B.

It primarily deals with configuring system access and network traffic flow policies

C.

It focuses on gathering and analyzing metrics, logs, and traces to infer the health of systems

D.

It executes predefined policies and forwards network traffic

E.

It is the ability to ensure system compliance and reliability under specified conditions

Buy Now
Questions 75

: 482

Even with two different device platforms that support NETCONF or any other common transport method it does not mean they are compatible from a tooling and/or a developer’s perspective What is required to get the compatibility?

Options:

A.

Both devices must use a common data modeling language

B.

Both devices should have vendor-specific interoperability

C.

Both devices must use the same versions of NETCONF

D.

Both devices must support the same NETCONF features

Buy Now
Questions 76

What are three examples of solution components of the network infrastructure that help enforce security policy compliance on all devices as they seek to access the network and computing resources, thereby limiting damage from emerging security threats such as viruses, worms, and spyware? (Choose three)

Options:

A.

posture agent

B.

network access devices

C.

endpoint security application

D.

management and reporting tools

E.

web filtering devices

F.

audit and decision point servers

Buy Now
Questions 77

: 492

A network architect is tasked to develop a design where it is a requirement to group resources according to their security and trust level in the network. Which tool can be leveraged to achieve this?

Options:

A.

multi-factor authentication

B.

application firewalls

C.

proxy servers

D.

IDS based malware detection

Buy Now
Questions 78

SDN is still maturing Throughout the evolution of SDN which two things will play a key role in enabling a successful deployment and avoiding performance visibility gaps in the infrastructure’ (Choose two.)

Options:

A.

peer-to-peer controller infrastructure

B.

failing back to old behaviours

C.

dynamic real-time change

D.

rapid on-demand growth

E.

integration of device context

Buy Now
Questions 79

: 504

To facilitate true end-to-end QoS on an IP-network, the IETF has defined two models: IntServ and DiffServ Which protocol is used by both models?

Options:

A.

Common Open Policy Service

B.

Resource Quality Service Planning

C.

Service Code Point Policy

D.

Resource Reservation and Distribution

Buy Now
Questions 80

Which network management framework can be used to develop a network architecture that contains business requirements analysis, gap analysis, and network diagrams as artifacts to be used for design and implementation later?

Options:

A.

TOGAF

B.

ITIL

C.

FCAPS

D.

Cobit

Buy Now
Questions 81

Two enterprise networks must be connected together. Both networks are using the same private IP addresses. The client requests from both sides should be translated using hide NAT (dynamic NAT) with the overload feature to save IP addresses from the NAT pools. Which design addresses this requirement using only one Cisco IOS NAT router for both directions?

Options:

A.

This is not possible, because two Cisco IOS NAT routers are required to do dynamic NAT with overload in both directions

B.

The ip nat inside and ip nat outside commands must be configured at the interfaces with the overload option in both directions

C.

The overload feature is the default and does not have to be configured

D.

Two different NAT pools must be used for the ip nat inside source and the ip nat outside source commands for the overload feature in both directions

E.

The NAT Virtual Interface must be used to achieve this requirement

Buy Now
Questions 82

An engineer must redesign the QoS strategy for Company XYZ The current network is experiencing many dropped packets due to oversubscription of the guaranteed bandwidth allocated by the service provider Company XYZ wants a design with a QoS strategy that controls the traffic flow leaving the Edge router to minimize packet drops Which QoS technique can be recommended as a solution?

Options:

A.

LLQ

B.

rate-Limiting

C.

policing

D.

traffic shaping

Buy Now
Questions 83

Which two statements describe the usage of the IS-IS overload bit technique? (Choose two.)

Options:

A.

If overload-bit is set on a Level 2 intermediate system, the other Level 2 intermediate systems in the topology will stop using the overloaded IS to forward Level 2 traffic. However, the intermediate system can still forward Level 1 traffic.

B.

It can be set in intermediate systems (IS-IS routers) to prioritize control plane CSNP packets.

C.

It can be used to automatically synchronize the link-state database between Level 1 intermediate systems.

D.

It can be set in intermediate systems (IS-IS routers) to avoid traffic black holes until routing protocols are fully converged after a reload operation.

E.

It can be set in intermediate systems (IS-IS routers) to attract transit traffic from other intermediate systems.

Buy Now
Questions 84

What is the primary benefit for an organization that dynamically can expand their private cloud capacity by allocating additional compute and/or storage resources using a third-party service provider or partner?

Options:

A.

traffic engineering

B.

business agility

C.

policy enforcement

D.

traffic encapsulation

Buy Now
Questions 85

: 476

While designing a robust network architecture for a large e-commerce dient that has recently decided to make a global expansion of their cloud-based applications and services a network architect is evaluating cloud connectivity options The top priorities are low-latency and high- throughput connectivity between their on-premises data centers and the cloud providers Which cloud connectivity solution fits in this specific use case?

Options:

A.

cloud On-Ramp

B.

WAN integration

C.

MPLS direct connect

D.

direct connect

Buy Now
Questions 86

Drag and drop the design use cases from the left onto the correct uRPF techniques used to prevent spoofing attacks Not all options are used.

Options:

Buy Now
Questions 87

In the wake of a security compromise incident where the internal networks were breached by an outside attacker at the perimeter of the infrastructure, an enterprise is now evaluating potential measures that can help protect against the same type of incident in the future. What are two design options that can be employed? (Choose two)

Options:

A.

microzoning

B.

segmentation

C.

domain fencing

D.

virtualization

E.

microperimeters

Buy Now
Questions 88

Which two actions must be taken when assessing an existing wireless network implementation for its readiness to support voice traffic? (Choose two.)

Options:

A.

Check for high roaming delay.

B.

Check for uniform radio coverage across the floors.

C.

Check for high channel utilization.

D.

Check for latency over wireless.

E.

Identify frequent TX power changes.

Buy Now
Questions 89

What is a disadvantage of the traditional three-tier architecture model when east-west traffic between different pods must go through the distribution and core layers?

Options:

A.

Low bandwidth

B.

Security

C.

Scalability

D.

High latency

Buy Now
Questions 90

Refer to the exhibit.

Your company designed a network to allow server VLANs to span all access switches in a data center. In the design, Layer 3 VLAN interfaces and HSRP are configured on the aggregation switches. Which two features improve STP stability within the network design? (Choose two.)

Options:

A.

BPDU guard on access ports

B.

BPDU guard on the aggregation switch downlinks toward access switches

C.

root guard on the aggregation switch downlinks toward access switches

D.

root guard on access ports

E.

edge port on access ports

F.

access switch pairs explicitly determined to be root and backup root bridges

Buy Now
Questions 91

Which two control plane policer designs must be considered to achieve high availability? (Choose two.)

Options:

A.

Control plane policers are enforced in hardware to protect the software path, but they are hardware platform dependent in terms of classification ability.

B.

Control plane policers are really needed only on externally facing devices.

C.

Control plane policers can cause the network management systems to create false alarms.

D.

Control plane policers must be processed before a forwarding decision is made.

E.

Control plane policers require that adequate protocol overheads are factored in to allow protocol convergence.

Buy Now
Questions 92

A legacy enterprise is using a Service Provider MPLS network to connect its head office and branches. Recently, they added a new branch to their network. Due to physical security concerns, they want to extend their existing IP CCTV network of the head office to the new branch, without any routing changes in the network. They are also under some time constraints. What is the best approach to extend the existing IP CCTV network to the new branch, without incurring any IP address changes?

Options:

A.

GRE

B.

EoMPLS

C.

VXLAN

D.

L2TPv3

Buy Now
Questions 93

You have been tasked with designing a data center interconnect as part of business continuity. You want to use FCoE over this DCI to support synchronous replication. Which two technologies allow for FCoE via lossless Ethernet or data center bridging? (Choose two.)

Options:

A.

DWDM

B.

EoMPLS

C.

SONET/SDH

D.

Multichassis EtherChannel over Pseudowire

E.

VPLS

Buy Now
Questions 94

You were tasked to enhance the security of a network with these characteristics:

A pool of servers is accessed by numerous data centers and remote sites

The servers are accessed via a cluster of firewalls

The firewalls are configured properly and are not dropping traffic

The firewalls occasionally cause asymmetric routing of traffic within the server data center.

Which technology should you recommend to enhance security by limiting traffic that could originate from a hacker compromising a workstation and redirecting flows at the servers?

Options:

A.

Poison certain subnets by adding static routes to Null0 on the core switches connected to the pool of servers.

B.

Deploy uRPF strict mode.

C.

Limit sources of traffic that exit the server-facing interface of the firewall cluster with ACLs.

D.

Deploy uRPF loose mode.

Buy Now
Questions 95

Which service abstracts away the management of the operating system, middleware, and runtime?

Options:

A.

IaaS

B.

PaaS

C.

SaaS

D.

BMaaS

Buy Now
Questions 96

Which design solution reduces the amount of IGMP state in the network?

Options:

A.

IGMP filtering

B.

IGMPv3 with PIM-SSM

C.

Multiple multicast domains

D.

One multicast group address throughout network regardless of IGMP version

Buy Now
Questions 97

What is a web-based model in which a third-party provider hosts applications that are available to customers over the Internet?

Options:

A.

PaaS

B.

SaaS

C.

IaaS

D.

WaaS

Buy Now
Questions 98

A consultant needs to evaluate project management methodologies for a new service deployment on the existing network of a customer. The customer wants to be involved in the end-to-end project progress and be provided with frequent updates. The customer also wants the ability to change the requirements if needed, as the project progresses. Which project management methodology should be used?

Options:

A.

Three principles

B.

Phased

C.

Agile

D.

Waterfall

Buy Now
Questions 99

A company requires an RPO of less than 10 seconds to ensure business continuity. Which technology should be deployed?

Options:

A.

Geographically dispersed data centers with asynchronous replication

B.

A single data center with duplicated infrastructure, dual PSUs, and a UPS

C.

Geographically dispersed data centers with synchronous replication

D.

A single data center with duplicated infrastructure and dual PSUs

Buy Now
Questions 100

Which two characteristics are associated with 802.1s? (Choose two)

Options:

A.

802.1s supports up to 1024 instances of 802.1

B.

802.1s is a Cisco enhancement to 802.1w.

C.

802.1s provides for faster convergence over 802.1D and PVST+.

D.

CPU and memory requirements are the highest of all spanning-tree STP implementations.

E.

802.1s maps multiple VLANs to the same spanning-tree instance.

Buy Now
Questions 101

: 500

Scrum is a subset of Agile and is a lightweight process framework for Agile development. Which role becomes the interface between the business, the customers, and their product-related needs on one side, and the Team on the other?

Options:

A.

Scrum Master

B.

Program Manager

C.

Product Manager

D.

Product Owner

Buy Now
Questions 102

Company XYZ wants to improve the security design of their network to include protection from reconnaissance and DoS attacks on their sub-interfaces destined toward next hop routers. Which technology can be used to prevent these types of attacks?

Options:

A.

MPP

B.

CPPr

C.

CoPP

D.

DPP

Buy Now
Questions 103

Company XYZ asks for design recommendations for Layer 2 redundancy. The company wants to prioritize fast convergence and resiliency elements. In the design, which two technologies are recommended? (Choose two.)

Options:

A.

Design MLAG/MC-LAG into the network wherever possible.

B.

Configure DHCP snooping on the switches.

C.

Use root guard.

D.

Use BPDU guard.

E.

Use UniDirectional Link Detection.

Buy Now
Questions 104

Company XYZ plans to run OSPF on a DMVPN network. They want to use spoke-to-spoke tunnels in the design. What is a drawback or concern in this type of design?

Options:

A.

Additional host routes will be inserted into the routing tables

B.

Manual configuration of the spokes with the appropriate priority will be needed

C.

There will be split-horizon issue at the hub

D.

Manual configuration of the spoke IP address on the hub will be needed

Buy Now
Questions 105

A mega store plans to expand its business into the online world, and wants to operate using the highest possible security standards to prove to their customers that they take handling of their payment information seriously. Only TLS v1.3 will be allowed on their websites. Which type of SSL certificate will emphasize their commitment to enforcing high security standards and minimize risk of spoofing?

Options:

A.

DV SSL certificate

B.

PV SSL certificate

C.

OV SSL certificate

D.

EV SSL certificate

Buy Now
Questions 106

What is an architectural framework created by ETSI that defines standards to decouple network functions from proprietary hardware-based appliances and have them run in software on standard x86 servers?

Options:

A.

NPIV

B.

NFVIS

C.

NFV

D.

VNF

Buy Now
Questions 107

A multinational organization has decided to migrate its business-critical operations to a hybrid cloud solution They are concerned about data governance, particularly regarding data sovereignty, ownership, and locale The company operates in multiple countries with strict data privacy regulations Which solution best ensures compliance with data governance regulations ' ?

Options:

A.

Implement a private cloud solution with data centers within the company ' s own premises.

B.

Utilize a public cloud provider with data centers located in different countries around the world.

C.

Store all data in a single data center located in the country where the company is headquartered

D.

Distribute data across multiple data centers located in different countries based on user location

Buy Now
Questions 108

Security experts promote the security defense-m-depth principle which states that network security should be multilayered and modular and multiple methods should be designed and applied to different parts of the network Drag and drop the characteristics on the left to the matching enterprise network components on the right.

Options:

Buy Now
Questions 109

: 496

Resilient technology needs to be agile, scalable flexible recoverable and interoperable Resilient technology is critical in maintaining uninterrupted services for customers and servicing them during peak times What is additionally required besides resilient infrastructure to keep an organization functioning in the event of a cyberattack data corruption catastrophic system failure, or other types of incidents?

Options:

A.

power efficient and performing at capacity

B.

high data quality and recoverability

C.

enhanced and decentralized stack system

D.

increased visibility and transparency

Buy Now
Questions 110

With virtualization being applied in many parts of the network, every physical link is likely to carry one or more virtual links, but what is a drawback in cases like this?

Options:

A.

unneeded tunneling

B.

fate sharing

C.

serialization delay

D.

bandwidth utilization

Buy Now
Questions 111

A European national bank considers migrating its on-premises systems to a private cloud offering in a non-European location to significantly reduce IT costs. What is a primary factor prior to migration?

Options:

A.

data governance

B.

additional latency

C.

security

D.

cloud connectivity

Buy Now
Questions 112

A rapidly growing e-commerce business with a global customer base needs a robust network design that can support their business-critical operations and ensure low-latency access for their customers around the globe. The IT team is considering different solutions to meet their requirements. Which network design is suitable for these needs?

Options:

A.

Rely on a peer-to-peer network architecture to distribute the workload among customer devices.

B.

Implement a fully on-premises network infrastructure with dedicated servers in different geographic locations.

C.

Utilize a public cloud provider to provide hosting for web servers and databases.

D.

Adopt a hybrid cloud approach, using a mix of public cloud services and private on-premises servers.

Buy Now
Questions 113

Which two mechanisms avoid suboptimal routing in a network with dynamic mutual redistribution between multiple OSPFv2 and EIGRP boundaries? (Choose two.)

Options:

A.

AD manipulation

B.

Matching OSPF external routes

C.

Route tagging

D.

Route filtering

E.

Matching EIGRP process ID

Buy Now
Questions 114

An engineer is designing the QoS strategy for Company XYZ. A lot of scavenger traffic is traversing the 20Mb Internet link. The new design must limit scavenger traffic to 2 Mbps to avoid oversubscription during congestion. Which QoS technique can be used?

Options:

A.

Class-based traffic policing

B.

LLQ

C.

CBWFQ

D.

Class-based traffic shaping

Buy Now
Questions 115

A networking team needs to prevent spoofing attacks They are describing the different uRPF design use cases so they can identify and deploy the optimal mode in various parts of their network

Drag and drop the use cases from the left onto the corresponding uRPF technique on the right Not all options are used

Options:

Buy Now
Questions 116

Which two features describe controller-based networking solutions compared to traditional networking solutions? (Choose two.)

Options:

A.

Inflate licensing costs

B.

Reduce network configuration complexity

C.

Provide centralization of primary IT functions

D.

Allow for fewer network failures

E.

Increase network bandwidth usage

Buy Now
Questions 117

What are two examples of components that are part of an SDN architecture? (Choose two.)

Options:

A.

Software plane

B.

Control plane

C.

Application plane

D.

Management plane

E.

Network plane

Buy Now
Questions 118

Company XYZ is redesigning their QoS policy. Some of the applications used by the company are real-time applications. The QoS design must give these applications preference in terms of transmission. Which QoS strategy can be used to fulfill the requirement?

Options:

A.

weighted fair queuing

B.

weighted random early detection

C.

low-latency queuing

D.

first-in first-out

Buy Now
Questions 119

Which two protocols are used by SDN controllers to communicate with switches and routers? (Choose two.)

Options:

A.

OpenFlash

B.

OpenFlow

C.

NetFlash

D.

Open vSwitch Database

E.

NetFlow

Buy Now
Questions 120

Drag and drop the multicast protocols from the left onto the current design situation on the right.

Options:

Buy Now
Questions 121

Your company wants to deploy a new data center infrastructure. Based on the requirements you have chosen VXLAN as encapsulation technology. The customer is concerned about misconfiguration of Layer 2 devices and DC-wide outages caused by Layer 2 loops. What do you answer?

Options:

A.

VXLAN offers native loop avoidance mechanism

B.

Storm Control should be enabled on all ports

C.

VPC+ could prevent L2 loop on access ports

D.

BPDU Guard should be enabled on all VTEP access ports

Buy Now
Questions 122

Which technology is an open-source infrastructure automation tool that automates repetitive tasks for users who work in networks such as cloud provisioning and intraservice orchestration?

Options:

A.

Ansible

B.

Contrail

C.

Java

D.

Jinja2

Buy Now
Questions 123

What are two advantages of controller-based networks versus traditional networks? (Choose two.)

Options:

A.

The ability to have forwarding tables at each device

B.

More flexible configuration per device

C.

More consistent device configuration

D.

Programmatic APIs that are available per device

E.

The ability to configure the features for the network rather than per device

Buy Now
Questions 124

Which two features control multicast traffic in a VLAN environment? (Choose two)

Options:

A.

IGMP snooping

B.

MLD snooping

C.

RGMP

D.

PIM snooping

E.

pruning

Buy Now
Questions 125

You have been asked to design a remote access VPN solution to support up to 2000 devices. You must ensure that only corporate assets are allowed to connect to the VPN, and users must authenticate to gain access based on their user role. Users must use a password that they are already using to access existing applications. A user may not always use the same device to access the VPN. Which two options combined meet the requirements? (Choose two)

Options:

A.

Use local usernames and passwords on the VPN device

B.

Deploy a central authentication directory that users can be authenticated and authorized against

C.

Deploy certificates that are unique to each user

D.

Deploy an IPsec VPN solution

E.

Deploy certificates that are unique to each device

F.

Deploy a SSL VPN solution

Buy Now
Questions 126

which two actions must be taken when assessing an existing wireless network implementation for its readliness to support voice traffic? (choose two)

Options:

A.

Validate antenna settings on APs

B.

Verify that RX level are not above -6WBm.

C.

Analyze typical roaming delays.

D.

Identify frequent TX power changes.

E.

Check for high channel utilization

Buy Now
Questions 127

A network architect is working on a large project involving migration to a software-defined networking platform, and is currently working on writing an executive summary for final approval by the management board. When writing the executive summary, What is a limitation of or challenges with software-defined networks that must be listed?

Options:

A.

Provides better flexibility but decreases the speed of service delivery.

B.

Difficulties in making significant improvements to service request response times.

C.

Virtualization inherently adds overhead and network latency.

D.

Often comes with a high CAPEX due to use of automation tools.

Buy Now
Questions 128

Which redundancy element plays a crucial role in ensuring business continuity even in challenging situations?

Options:

A.

adapting and expanding the network

B.

network boot performance

C.

disaster recovery planning

D.

minimizing the downtime

Buy Now
Questions 129

While positive feedback loops generally don ' t last long enough to bring down a network completely, they can still last long enough to disrupt traffic flows or to cause the network to converge more slowly than it should.

What are two examples of cases where a positive feedback loop can be long-lived and devastating to the network ' s control plane? (Choose two)

Options:

A.

During redistribution of reachability information between multiple control planes

B.

Modifying the flow of traffic through the network by steering traffic based on QoS attributes

C.

When input traffic volumes on an interfaces causes the interface queue to overflow.

D.

The rate at which the information earned in the various control plane protocols changes

E.

When more paths available in any given routing process than are installed in the routing table

Buy Now
Questions 130

: 503

As organizations rush to implement AI, many fail to address its ethical considerations Not examining those issues puts an organization at risk of legal violations, loss of customer trust and long-term reputational damage. Which two ethical standards are required in preven ting such pitfalls? (Choose two. )

Options:

A.

data privacy

B.

algorithmic transparency

C.

Al maturity

D.

data silos process automation

Buy Now
Questions 131

Refer to the exhibit.

For Company XYZ, Bangkok is using ECMP to reach the 172.20.2.0/24 network. The company wants a design that would allow them to forward traffic from 172.16.2.0/24 toward 172.20.2.0/24 via the Singapore router as the preferred route. The rest of the traffic should continue to use ECMP. Which technology fulfills this design requirement?

Options:

A.

policy-based routing

B.

route summarization

C.

unequal-cost load balancing using variance

D.

LFA

Buy Now
Questions 132

Which development model is closely associated with Agile project management?

Options:

A.

static model

B.

evolutionary delivery model

C.

lifecycle model

D.

starfish model

Buy Now
Questions 133

Which feature is supported by NETCONF but is not supported by SNMP?

Options:

A.

Distinguishing between configuration data and operational data

B.

Taking administrative actions

C.

Collecting the status of specific fields

D.

Changing the configuration of specific fields

Buy Now
Questions 134

When planning their cloud migration journey, what is crucial for virtually all organizations to perform?

Options:

A.

SASE framework deployment

B.

Optimizing the WAN environment

C.

Assessment of current infrastructure

D.

RPO and RTO calculations duration planning

Buy Now
Questions 135

Refer to the exhibit Which impact of using three or more ABRs between the backbone area and area 1 is true?

Options:

A.

In a large-scale network LSA replication by all ABRs can cause serious scalability issues

B.

Multiple ABRs reduce the CPU processing on each ABR due to splitting prefix advertisement

C.

In a large-scale network multiple ABRs can create microloops

D.

Prefixes from the non-backbone area are advertised by one ABR to the backbone

Buy Now
Questions 136

A bank recently had their security compromised during an initial key exchange between devices using a symmetric cryptography algorithm, and as a result the key was revealed/leaked. Going forward, they want to ensure that key exchanges are performed using asymmetric cryptography algorithms. Which algorithm offers the desired functionality?

Options:

A.

AES

B.

RSA

C.

RC4

D.

Diffie-Hellman

Buy Now
Questions 137

Company ABC wants to minimize the risk of users plugging unauthorized switches and hubs into the network. Which two features can be used on the LAN access ports to support this design requirement? (Choose two.)

Options:

A.

Loop Guard

B.

PortFast

C.

DTF

D.

Root Guard

E.

BPDU Guard

Buy Now
Questions 138

A large enterprise customer is planning a new WAN connection to its headquarters The current architecture is dual homed with static routing but users complain when a specific link fails Failure of the other link does not affect any services or applications The new WAN connection must provide the headquarters with a resilient network design and increase the return on investment Which solution should be recommended to the customer?

Options:

A.

Implement granular quality of service on the links.

B.

Procure additional bandwidth.

C.

Use dynamic routing toward the WAN.

D.

Add an additional link to the WAN.

Buy Now
Questions 139

Which main IoT migration aspect should be reviewed for a manufacturing plant?

Options:

A.

Sensors

B.

Security

C.

Applications

D.

Wi-Fi Infrastructure

E.

Ethernet Switches

Buy Now
Questions 140

An architect prepares a network design for a startup company. The design must meet business requirements while the business grows and divests due to rapidly changing markets. What is the highest priority in this design?

Options:

A.

The network should be hierarchical.

B.

The network should be modular.

C.

The network should be scalable.

D.

The network should have a dedicated core.

Buy Now
Questions 141

Retef to the exhibit.

An engineer is designing a multiarea OSPF network for a client who also has a large EIGRP domain. EIGRP routes are getting redistributed into OSPF. OSPF area 20 has routers with limited memory and CPU resources. The engineer wants to block routes from EIGRP 111 from propagating into area 20 and allow EIGRP 222 routes to flow in. Which OSPF area type fulfills this design requirement?

Options:

A.

area 20 as a stub area

B.

type 5 LSA filtering on the ASBR between EIGRP 111 and area 0

C.

area 20 as a NSSA area

D.

type 3 LSA filtering on the ABR between area 0 and area 20

Buy Now
Questions 142

In the case of outsourced IT services, the RTO is defined within the SLA Which two support terms are often included in the SLA by IT and other service providers’ (Choose two)

Options:

A.

Network size and cost

B.

Support availability

C.

Network sustainability

D.

Network reliability

E.

Resolution time

Buy Now
Questions 143

In large-scale networks controllers needs to be able to process millions of flows per second without compromising the quality of the service What are two actions that must be implemented to address scaling limitations when deploying the network*? (Choose two.)

Options:

A.

Spirt the control logic functions between specialized data plane devices and controllers

B.

Deploy a high-throughput application platform

C.

Delegate work to the forwarding devices to reduce control plane overhead

D.

Deploy high performance controllers to increase the performance of the data plane

E.

Deploy authoritative switches to reduce the amount of controller workloads.

Buy Now
Questions 144

As part of a design solution a consultant needs to describe the trade-offs between different SDN models Drag the characteristics on the left to the correct controller-based network designs on the right in no particular order.

Options:

Buy Now
Questions 145

The PaaS model provides customers with a virtualized application development platform without the need for them to furnish hardware or system administration using in-house resources All necessary infrastructure components and application development services are provided and managed by the cloud service provider. Which limitation should be considered when selecting PaaS model?

Options:

A.

loss of customer control

B.

limited customization options

C.

potential network latency

D.

compatibility with existing development environments

Buy Now
Questions 146

Which two characteristics apply to firewall transparent mode operations in a firewall solution design? (Choose two.)

Options:

A.

Changes in the existing IP addressing and subnets are required

B.

The firewall can participate actively on spanning tree.

C.

Multicast traffic can traverse the firewall.

D.

OSPF adjacencies can be established through the firewall

E.

The firewall acts like a router hop in the network.

Buy Now
Questions 147

What is the most important operational driver when building a resilient and secure modular network design?

Options:

A.

Reduce the frequency of failures requiring human intervention

B.

Minimize app downtime

C.

Increase time spent on developing new features

D.

Dependencies on hardware or software that is difficult to scale

Buy Now
Questions 148

A software-defined network exposes an API to the RIB and forwarding engine, allowing off-box control of routing—what SDN model is used?

Options:

A.

Replace

B.

Augmented

C.

Hybrid

D.

Distributed

Buy Now
Exam Code: 400-007
Exam Name: Cisco Certified Design Expert (CCDE v3.1)
Last Update: Jun 27, 2026
Questions: 206
400-007 pdf

400-007 PDF

$119.7  $399
400-007 Engine

400-007 Testing Engine

$134.7  $449
400-007 PDF + Engine

400-007 PDF + Testing Engine

$179.7  $599