Download Interconnecting Cisco Networking Devices Part 2 (ICND2 v3-0).pass4sures.200-105.2019-06-03.1e.383q.vcex

Download Exam

File Info

Exam Interconnecting Cisco Networking Devices Part 2 (ICND2 v3.0)
Number 200-105
File Name Interconnecting Cisco Networking Devices Part 2 (ICND2 v3-0).pass4sures.200-105.2019-06-03.1e.383q.vcex
Size 14.69 Mb
Posted June 03, 2019
Downloads 388
Download Interconnecting Cisco Networking Devices Part 2 (ICND2 v3-0).pass4sures.200-105.2019-06-03.1e.383q.vcex

How to open VCEX & EXAM Files?

Files with VCEX & EXAM extensions can be opened by ProfExam Simulator.


With discount: 20%


Demo Questions

Question 1

Which protocol authenticates connected devices before allowing them to access the LAN?

  • A: 802.1d
  • B: 802.11
  • C: 802.1w
  • D: 802.1x

Correct Answer: D

802.1X authentication involves three parties: a supplicant, an authenticator, and an authentication server. The supplicant is a client device (such as a laptop) that wishes to attach to the LAN/WLAN. The term 'supplicant' is also used interchangeably to refer to the software running on the client that provides credentials to the authenticator. The authenticator is a network device, such as an Ethernet switch or wireless access point; and the authentication server is typically a host running software supporting the RADIUS and EAP protocols.
The authenticator acts like a security guard to a protected network. The supplicant (i.e., client device) is not allowed access through the authenticator to the protected side of the network until the supplicant's identity has been validated and authorized. An analogy to this is providing a valid visa at the airport's arrival immigration before being allowed to enter the country. With 802.1X port-based authentication, the supplicant provides credentials, such as user name/password or digital certificate, to the authenticator, and the authenticator forwards the credentials to the authentication server for verification. If the authentication server determines the credentials are valid, the supplicant (client device) is allowed to access resources located on the protected side of the network.

Question 2

What is a difference between TACACS+ and RADIUS in AAA?

  • A: Only TACACS+ allows for separate authentication.
  • B: Only RADIUS encrypts the entire access-request packet.
  • C: Only RADIUS uses TCP.
  • D: Only TACACS+ couples authentication and authorization.

Correct Answer: A

Authentication and Authorization RADIUS combines authentication and authorization. The access-accept packets sent by the RADIUS server to the client contain authorization information. This makes it difficult to decouple authentication and authorization. 
TACACS+ uses the AAA architecture, which separates AAA. This allows separate authentication  
solutions that can still use TACACS+ for authorization and accounting. For example, with  
TACACS+, it is possible to use Kerberos authentication and TACACS+ authorization and accounting. After a NAS authenticates on a Kerberos server, it requests authorization information from a TACACS+ server without having to re-authenticate. The NAS informs the TACACS+ server that it has successfully authenticated on a Kerberos server, and the server then provides authorization information. During a session, if additional authorization checking is needed, the access server checks with a TACACS+ server to determine if the user is granted permission to use a particular command. This provides greater control over the commands that can be executed on the access server while decoupling from the authentication mechanism.

Question 3

What is the first step you perform to configure an SNMPv3 user?

  • A: Configure server traps.
  • B: Configure the server group.
  • C: Configure the server host.
  • D: Configure the remote engine ID.

Correct Answer: B

To configure an SNMP server user, specify an SNMP group or a table that maps SNMP users to SNMP views. Then, specify the IP address or port number for the remote SNMP agent of the device where the user resides. Also, before you configure remote users for a particular agent, configure the SNMP engine ID by using the snmp-server engineID command for the remote agent. The SNMP engine ID of the remote agent is required to compute the authentication or privacy digests for the SNMP password. If the remote engine ID is not configured first, the configuration command will fail. 
1. enable 
2. configure terminal 
3. snmp-server group [group-name {v1 | v2c | v3 [auth | noauth | priv]}] [read read-view] [writewrite-view] [notify notify-view] [access access-list] 
4. snmp-server engineID {local engine-id | remote ip-address [udp-port udp-port-number] [vrfvrf-name] engine-id-string} 
5. snmp-server user user-name group-name [remote ip-address [udp-port port]] {v1 | v2c | v3[encrypted] [auth {md5 | sha} auth-password]} [access access-list] 
6. end 

Question 4

How can you disable DTP on a switch port?

  • A: Configure the switch port as a trunk.
  • B: Add an interface on the switch to a channel group.
  • C: Change the operational mode to static access.
  • D: Change the administrative mode to access.

Correct Answer: D

Switchport Mode Access: This puts the interface (ACCESS PORT) into a PERMANENT NON-TRUNKING mode and negotiates to convert the link into a NON-TRUNK link. The port would be a dedicated Layer 2 access port!
Switchport Nonegotiates: Prevents the interface from generating DTP Frames. You can use this command only when the interface switchport mode is (ACCESS/TRUNK).

Question 5

If host Z needs to send data through router R1 to a storage server, which destination MAC address does host Z use to transmit packets?

  • A: the host Z MAC address
  • B: the MAC address of the interface on R1 that connects to the storage server
  • C: the MAC address of the interface on R1 that connects to host Z.
  • D: the MAC address of the storage server interface.

Correct Answer: C

Question 6

Refer to the exhibit. 


Router edge-1 is unable to establish OSPF neighbor adjacency with router ISP-1. Which two configuration changes can you make on edge-1 to allow the two routers to establish adjacency? (Choose two.)

  • A: Set the subnet mask on edge-1 to
  • B: Reduce the MTU on edge-1 to 1514.
  • C: Set the OSPF cost on edge-1 to 1522.
  • D: Reduce the MTU on edge-1 to 1500.
  • E: Configure the ip ospf mtu-ignore command on the edge-1 Gi0/0 interface.

Correct Answer: DE

A situation can occur where the interface MTU is at a high value, for example 9000, while the real value of the size of packets that can be forwarded over this interface is 1500. 
If there is a mismatch on MTU on both sides of the link where OSPF runs, then the OSPF adjacency will not form because the MTU value is carried in the Database Description (DBD) packets and checked on the other side.

Question 7

Which statement about MPLS is true?

  • A: It operates in Layer 1.
  • B: It operates between Layer 2 and Layer 3.
  • C: It operates in Layer 3.
  • D: It operates in Layer 2.

Correct Answer: B

MPLS belongs to the family of packet-switched networks. MPLS operates at a layer that is generally considered to lie between traditional definitions of OSI Layer 2 (data link layer) and Layer 3 (network layer), and thus is often referred to as a layer 2.5 protocol.

Question 8

Which two switch states are valid for 802.1w? (Choose two.)

  • A: listening
  • B: backup
  • C: disabled
  • D: learning
  • E: discarding

Correct Answer: DE

Port States 
There are only three port states left in RSTP that correspond to the three possible operational states. The 802.1D disabled, blocking, and listening states are merged into a unique 802.1w discarding state. 


Question 9

Which option is the benefit of implementing an intelligent DNS for a cloud computing solution?

  • A: It reduces the need for a backup data center.
  • B: It can redirect user requests to locations that are using fewer network resources.
  • C: It enables the ISP to maintain DNS records automatically.
  • D: It eliminates the need for a GSS.

Correct Answer: B

Question 10

Which two pieces of information are provided by the show controllers serial 0 command? (Choose two.)

  • A: the type of cable that is connected to the interface
  • B: the uptime of the interface
  • C: the status of the physical layer of the interface
  • D: the full configuration of the interface
  • E: the interface’s duplex settings

Correct Answer: AC

Example command:






You can buy ProfExam with a 20% discount!


Use ProfExam Simulator to open VCEX and EXAM files