Your success in Cisco ccna 200 125 syllabus is our sole target and we develop all our ccna 200 125 dumps braindumps in a way that facilitates the attainment of this target. Not only is our 200 125 cisco study material the best you can find, it is also the most detailed and the most updated. ccna 200 125 pdf Practice Exams for Cisco CCNA Routing and Switching 125 200 are written to the highest standards of technical accuracy.

P.S. Download 200-125 forum are available on Google Drive, GET MORE: https://drive.google.com/open?id=1OzZ4eFC1XI8L79-k0OIZGdrxMXtPVcLb


New Cisco 200-125 Exam Dumps Collection (Question 8 - Question 17)

Q8. What is a valid HSRP virtual MAC address?

A. 0000.5E00.01A3

B. 0007.B400.AE01

C. 0000.0C07.AC15

D. 0007.5E00.B301

Answer: C

Explanation:

With HSRP, two or more devices support a virtual router with a fictitious MAC address and unique IP address. There are two version of HSRP.

+ With HSRP version 1, the virtual routeru2019s MAC address is 0000.0c07.ACxx , in which xx is the HSRP group.

+ With HSRP version 2, the virtual MAC address if 0000.0C9F.Fxxx, in which xxx is the HSRP group.

Note: Another case is HSRP for IPv6, in which the MAC address range from 0005.73A0.0000 through 0005.73A0.0FFF.


Q9. CORRECT TEXTA corporation wants to add security to its network. The requirements are:

u2711 Host B should be able to use a web browser (HTTP) to access the Finance Web Server.

u2711 Other types of access from host B to the Finance Web Server should be blocked.

u2711 All access from hosts in the Core or local LAN to the Finance Web Server should be blocked.

u2711 All hosts in the Core and on local LAN should be able to access the Public Web Server.

You have been tasked to create and apply anumbered access listto a single outbound interface. This access list can contain no more thanthreestatements that meet these requirements.

Access to the router CLI can be gained by clicking on the appropriate host.

u2711 All passwords have been temporarily set to u201cciscou201d.

u2711 The Core connection uses an IP address of 198.18.132.65.

u2711 The computers in the Hosts LAN have been assigned addresses of 192.168.201.1

u2013 192.168.201.254.

u2711 host A 192.168.201.1

u2711 host B 192.168.201.2

u2711 host C 192.168.201.3

u2711 host D 192.168.201.4

u2711 The Finance Web Server has been assigned an address of 172.22.237.17.

u2711 The Public Web Server in the Server LAN has been assigned an address of 172.22.237.18.

Answer:

Please check the below explanation for all details.

Explanation:

We should create an access-list and apply it to the interface that is connected to the Server LAN because it can filter out traffic from both S2 and Core networks. To see which interface this is, use the u201cshow ip interface briefu201d command:

From this, we know that the servers are located on the fa0/1 interface, so we will place our numbered access list here in the outbound direction.

Corp1#configure terminal

Our access-list needs to allow host B u2013 192.168125.2 to the Finance Web Server 172.22.109.17 via HTTP (port 80), so our first line is this:

Corp1(config)#access-list 100 permit tcp host 192.168.125.2 host 172.22.109.17 eq 80

Then, our next two instructions are these:

u2711 Other types of access from host B to the Finance Web Server should be blocked.

u2711 All access from hosts in the Core or local LAN to the Finance Web Server should be blocked.

This can be accomplished with one command (which we need to do as our ACL needs to

be no more than 3 lines long), blocking all other access to the finance web server:

Corp1(config)#access-list 100 deny ip any host 172.22.109.17

Our last instruction is to allow all hosts in the Core and on the local LAN access to the Public Web Server (172.22.109.18)

Corp1(config)#access-list 100 permit ip host 172.22.109.18 any Finally, apply this access-list to Fa0/1 interface (outbound direction) Corp1(config)#interface fa0/1

Corp1(config-if)#ip access-group 100 out

Notice: We have to apply the access-list to Fa0/1 interface (not Fa0/0 interface) so that the access-list can filter traffic coming from both the LAN and the Core networks.

To verify, just click on host B to open its web browser. In the address box type http://172.22.109.17 to check if you are allowed to access Finance Web Server or not. If your configuration is correct then you can access it.

Click on other hosts (A, C and D) and check to make sure you canu2019t access Finance Web Server from these hosts. Then, repeat to make sure they can reach the public server at 172.22.109.18. Finally, save the configuration

Corp1(config-if)#end

Corp1#copy running-config startup-config


Q10. What are two characteristics of Frame Relay point-to-point subinterfaces? (Choose two.)

A. They create split-horizon issues.

B. They require a unique subnet within a routing domain.

C. They emulate leased lines.

D. They are ideal for full-mesh topologies.

E. They require the use of NBMA options when using OSPF.

Answer: B,C

Explanation:

Subinterfaces are used for point to point frame relay connections, emulating virtual point to point leased lines. Each subinterface requires a unique IP address/subnet. Remember, you cannot assign multiple interfaces in a router that belong to the same IP subnet.


Q11. Which two states are the port states when RSTP has converged? (Choose two.)

A. discarding

B. listening

C. learning

D. forwarding

E. disabled

Answer: A,D

Explanation:

There are only three port states left in RSTP that correspond to the three possible operational states. The 802.1D disabled, blocking, and listening states are merged into a unique 802.1w discarding state.

STP (802.1D) Port State RSTP (802.1w) Port State

Is Port Included in Active Topology? Is Port Learning MAC Addresses? Disabled

Discarding No

No Blocking

Discarding No

No Listening Discarding Yes

No Learning Learning Yes

Yes Forwarding Forwarding Yes

Yes

Reference: http://www.cisco.com/en/US/tech/tk389/tk621/technologies_white_paper09186a0080094cf

a.shtml#states


Q12. Which two benefits are provided by using a hierarchical addressing network addressing scheme? (Choose two.)

A. reduces routing table entries

B. auto-negotiation of media rates

C. efficient utilization of MAC addresses

D. dedicated communications between devices

E. ease of management and troubleshooting

Answer: A,E

Explanation:

Here are some of the benefits of hierarchical addressing:

u2711 Reduced number of routing table entriesu2014 whether it is with your Internet routers or your internal routers, you should try to keep your routing tables as small as possible by using route summarization. Route summarization is a way of having a single IP address represent a collection of IP addresses; this is most easily accomplished when you employ a hierarchical addressing plan. By summarizing routes, you can keep your routing table entries (on the routers that receive the summarized routes) manageable, which offers the following benefits:

u2711 Efficient allocation of addressesu2014Hierarchical addressing lets you take advantage of all possible addresses because you group them contiguously.

Reference: http://www.ciscopress.com/articles/article.asp?p=174107


Q13. What is one benefit of PVST+?

A. PVST+ supports Layer 3 load balancing without loops.

B. PVST+ reduces the CPU cycles for all the switches in the network.

C. PVST+ allows the root switch location to be optimized per VLAN.

D. PVST+ automatically selects the root bridge location, to provide optimized bandwidth usage.

Answer: C

Explanation:

The PVST+ provides Layer 2 load-balancing for the VLAN on which it runs. You can create different logical topologies by using the VLANs on your network to ensure that all of your links are used but that no one link is oversubscribed. Each instance of PVST+ on a VLAN has a single root switch. This root switch propagates the spanning-tree information associated with that VLAN to all other switches in the network. Because each switch has the same information about the network, this process ensures that the network topology is maintained and optimized per VLAN.

Reference: http://www.cisco.com/en/US/docs/switches/lan/catalyst3750x_3560x/software/release/12.2

_55_se/configuration/guide/swstp.html


Q14. Which statement is correct regarding the operation of DHCP?

A. A DHCP client uses a ping to detect address conflicts.

B. A DHCP server uses a gratuitous ARP to detect DHCP clients.

C. A DHCP client uses a gratuitous ARP to detect a DHCP server.

D. If an address conflict is detected, the address is removed from the pool and an administrator must resolve the conflict.

E. If an address conflict is detected, the address is removed from the pool for an amount of time configurable by the administrator.

F. If an address conflict is detected, the address is removed from the pool and will not be reused until the server is rebooted.

Answer: D

Explanation:

An address conflict occurs when two hosts use the same IP address. During address assignment, DHCP checks for conflicts using ping and gratuitous ARP. If a conflict is detected, the address is removed from the pool. The address will not be assigned until the administrator resolves the conflict.

(Reference: http://www.cisco.com/en/US/docs/ios/12_1/iproute/configuration/guide/1cddhcp.html)


Q15. Refer to the exhibit.

Which of these statements correctly describes the state of the switch once the boot process has been completed?

A. As FastEthernet0/12 will be the last to come up, it will be blocked by STP.

B. Remote access management of this switch will not be possible without configuration change.

C. More VLANs will need to be created for this switch.

D. The switch will need a different IOS code in order to support VLANs and STP.

Answer: B

Explanation:

Notice the line, which says u201cInterface VLAN1, changed state to administratively downu201d. This shows that VLAN1 is shut down. Hence remote management of this switch is not possible unless VLAN1 is brought back up. Since VLAN1 is the only interface shown in the output, you have to assume that no other VLAN interface has been configured with an IP Address.


Q16. Before installing a new, upgraded version of the IOS, what should be checked on the router, and which command should be used to gather this information? (Choose two.)

A. the amount of available ROM

B. the amount of available flash and RAM memory

C. the version of the bootstrap software present on the router

D. show version

E. show processes

F. show running-config

Answer: B,D

Explanation:

When upgrading a new version of the IOS we need to copy the IOS to the Flash so first we have to check if the Flash has enough memory or not. Also running the new IOS may require more RAM than the older one so we should check the available RAM too. We can check both with the u201cshow versionu201d command.


Q17. Refer to the exhibit.

Which two statements are true about interVLAN routing in the topology that is shown in the exhibit? (Choose two.)

A. Host E and host F use the same IP gateway address.

B. Router1 and Switch2 should be connected via a crossover cable.

C. Router1 will not play a role in communications between host A and host D.

D. The FastEthernet 0/0 interface on Router1 must be configured with subinterfaces.

E. Router1 needs more LAN interfaces to accommodate the VLANs that are shown in the exhibit.

F. The FastEthernet 0/0 interface on Router1 and the FastEthernet 0/1 interface on Switch2 trunk ports must be configured using the same encapsulation type.

Answer: D,F

Explanation:

In order for multiple VLANs to connect to a single physical interface on a Cisco router, subinterfaces must be used, one for each VLAN. This is known as the router on a stick configuration. Also, for any trunk to be formed, both ends of the trunk must agree on the encapsulation type, so each one must be configured for 802.1q or ISL.


Recommend!! Get the Download 200-125 dumps in VCE and PDF From Certleader, Welcome to download: https://www.certleader.com/200-125-dumps.html (New 573 Q&As Version)