• Home
  • Articles
  • 2021 350-401 Premium Files Test pdf - Free Dumps Collection [Q91-Q111]

2021 350-401 Premium Files Test pdf - Free Dumps Collection [Q91-Q111]

Share

2021 350-401 Premium Files Test pdf - Free Dumps Collection

 Get ready to pass the 350-401 Exam right now using our CCNP Enterprise  Exam Package


Cisco 350-401 Exam Topics:

SectionWeightObjectives
Infrastructure30%1.Layer 2
  • Troubleshoot static and dynamic 802.1q trunking protocols
  • Troubleshoot static and dynamic EtherChannels
  • Configure and verify common Spanning Tree Protocols (RSTP and MST)

2.Layer 3

  • Compare routing concepts of EIGRP and OSPF (advanced distance vector vs. linked state, load balancing, path selection, path operations, metrics)
  • Configure and verify simple OSPF environments, including multiple normal areas, summarization, and filtering (neighbor adjacency, point-to-point and broadcast network types, and passive interface)
  • Configure and verify eBGP between directly connected neighbors (best path selection algorithm and neighbor relationships)

3.Wireless

  • Describe Layer 1 concepts, such as RF power, RSSI, SNR, interference noise, band and channels, and wireless client devices capabilities
  • Describe AP modes and antenna types
  • Describe access point discovery and join process (discovery algorithms, WLC selection process)
  • Describe the main principles and use cases for Layer 2 and Layer 3 roaming
  • Troubleshoot WLAN configuration and wireless client connectivity issues

4.IP Services

  • Describe Network Time Protocol (NTP)
  • Configure and verify NAT/PAT
  • Configure first hop redundancy protocols, such as HSRP and VRRP
  • Describe multicast protocols, such as PIM and IGMP v2/v3
Virtualization10%1.Describe device virtualization technologies
  • Hypervisor type 1 and 2
  • Virtual machine
  • Virtual switching

2.Configure and verify data path virtualization technologies

  • VRF
  • GRE and IPsec tunneling

3.Describe network virtualization concepts

  • LISP
  • VXLAN
Network Assurance10%1.Diagnose network problems using tools such as debugs, conditional debugs, trace route, ping, SNMP, and syslog
2.Configure and verify device monitoring using syslog for remote logging
3.Configure and verify NetFlow and Flexible NetFlow
4.Configure and verify SPAN/RSPAN/ERSPAN
5.Configure and verify IPSLA
6.Describe Cisco DNA Center workflows to apply network configuration, monitoring, and management
7.Configure and verify NETCONF and RESTCONF
Security20%1.Configure and verify device access control
  • Lines and password protection
  • Authentication and authorization using AAA

2.Configure and verify infrastructure security features

  • ACLs
  • CoPP

3.Describe REST API security
4.Configure and verify wireless security features

  • EAP
  • WebAuth
  • PSK

5.Describe the components of network security design

  • Threat defense
  • Endpoint security
  • Next-generation firewall
  • TrustSec, MACsec
  • Network access control with 802.1X, MAB, and WebAuth
Automation15%1.Interpret basic Python components and scripts
2. Construct valid JSON encoded file
3. Describe the high-level principles and benefits of a data modeling language, such as YANG
4. Describe APIs for Cisco DNA Center and vManage
5. Interpret REST API response codes and results in payload using Cisco DNA Center and RESTCONF
6. Construct EEM applet to automate configuration, troubleshooting, or data collection
7. Compare agent vs. agentless orchestration tools, such as Chef, Puppet, Ansible, and SaltStack
Architecture15%1. Explain the different design principles used in an enterprise network
  • Enterprise network design such as Tier 2, Tier 3, and Fabric Capacity planning
  • High availability techniques such as redundancy, FHRP, and SSO

2.Analyze design principles of a WLAN deployment

  • Wireless deployment models (centralized, distributed, controller-less, controller based, cloud, remote branch)
  • Location services in a WLAN design

3.Differentiate between on-premises and cloud infrastructure deployments
4.Explain the working principles of the Cisco SD-WAN solution

  • SD-WAN control and data planes elements
  • Traditional WAN and SD-WAN solutions

5.Explain the working principles of the Cisco SD-Access solution

  • SD-Access control and data planes elements
  • Traditional campus interoperating with SD-Access

6.Describe concepts of wired and wireless QoS

  • QoS components
  • QoS policy

7. Differentiate hardware and software switching mechanisms

  • Process and CEF
  • MAC address table and TCAM
  • FIB vs. RIB

 

NEW QUESTION 91
Which two methods are used to reduce the AP coverage area? (Choose two)

  • A. Disable 2.4 GHz and use only 5 GHz.
  • B. Increase minimum mandatory data rate
  • C. Reduce AP transmit power.
  • D. Reduce channel width from 40 MHz to 20 MHz
  • E. Enable Fastlane

Answer: B,C

 

NEW QUESTION 92
Drag and drop the characteristics from the left to the correct Infrastructure deployment type on the right.

Answer:

Explanation:

Explanation

 

NEW QUESTION 93
A customer requests a network design that supports these requirements:

Which protocol does the design include?

  • A. VRRP version 3
  • B. VRRP version 2
  • C. GLBP
  • D. HSRP version 2

Answer: A

 

NEW QUESTION 94
Drag and drop the threat defense solutions from the left onto their descriptions on the right.

Answer:

Explanation:

 

NEW QUESTION 95
What is the role of the vsmart controller in a Cisco SD-WAN environment?

  • A. It manages the data plane.
  • B. IT performs authentication and authorization
  • C. It manages the control plane.
  • D. It is the centralized network management system.

Answer: C

 

NEW QUESTION 96
Drag and drop the REST API authentication methods from the left onto their descriptions on the right.

Answer:

Explanation:

 

NEW QUESTION 97
When a wireless client roams between two different wireless controllers, a network connectivity outage is experience for a period of time. Which configuration issue would cause this problem?

  • A. Not all of the controllers within he mobility group are using the same virtual interface IP address.
  • B. Not all of the controllers in the mobility group are using the same mobility group name.
  • C. All of the controllers in the mobility group are using the same mobility group name.
  • D. All of the controllers within the mobility group are using the same virtual interface IP address.

Answer: B

 

NEW QUESTION 98
A network administrator is implementing a routing configuration change and enables routing debugs to track routing behavior during the change. The logging output on the terminal is interrupting the command typing process.
Which two actions can the network administrator take to minimize the possibility of typing commands incorrectly? (Choose two.)

  • A. Configure the logging synchronous command under the vty.
  • B. Increase the number of lines on the screen using the terminal length command.
  • C. Configure the logging delimiter feature.
  • D. Configure the logging synchronous global configuration command.
  • E. Press the TAB key to reprint the command in a new line.

Answer: A,E

 

NEW QUESTION 99

Refer to the exhibit. An engineer configures CoPP and enters the show command to verify the implementation.
What is the result of the configuration?

  • A. All traffic will be policed based on access-list 120.
  • B. If traffic exceeds the specified rate, it will be transmitted and remarked.
  • C. ICMP will be denied based on this configuration.
  • D. Class-default traffic will be dropped.

Answer: A

 

NEW QUESTION 100
Which OSPF networks types are compatible and allow communication through the two peering devices?

  • A. point-to-multipoint to nonbroadcast
  • B. point-to-multipoint to broadcast
  • C. broadcast to point-to-point
  • D. broadcast to nonbroadcast

Answer: A

 

NEW QUESTION 101
How does SSO work with HSRP to minimize network disruptions?

  • A. It enables HSRP to failover to the standby RP on the same device.
  • B. It ensures fast failover in the case of link failure.
  • C. It enables HSRP to elect another switch in the group as the active HSRP switch.
  • D. It enables data forwarding along known routes following a switchover, white the routing protocol reconverges.

Answer: A

Explanation:
Explanation
SSO HSRP alters the behavior of HSRP when a device with redundant Route Processors (RPs) is configured for stateful switchover (SSO) redundancy mode. When an RP is active and the other RP is standby, SSO enables the standby RP to take over if the active RP fails.
The SSO HSRP feature enables the Cisco IOS HSRP subsystem software to detect that a standby RP is installed and the system is configured in SSO redundancy mode. Further, if the active RP fails, no change occurs to the HSRP group itself and traffic continues to be forwarded through the current active gateway device.
Reference:
https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/ipapp_fhrp/configuration/15-s/fhp-15-s-book/fhp-hsrp-sso.htm

 

NEW QUESTION 102
An engineer must create an EEM applet that sends a syslog message in the event a change happens in the network due to trouble with an OSPF process. Which action should the engineer use?

  • A. action 1syslog write "OSPF ROUTING ERROR"
  • B. action 1 syslog msg "OSPF ROUTING ERROR"
  • C. action 1 syslog send "OSPF ROUTING ERROR"
  • D. action 1 syslog pattern "OSPF ROUTING ERROR"

Answer: B

 

NEW QUESTION 103

Refer to the exhibit. A network engineer configures show command to verity the configuration What toes the output confirm?

  • A. R1 to configured with PAT overload parameters
  • B. A Telnet from 160.1.1 1 to 10.1.1.10 has been initiated.
  • C. R1 is configured with NAT overload parameters
  • D. The first pocket triggered NAT to add on entry to NAT table

Answer: D

 

NEW QUESTION 104
Which NGFW mode blocks flows crossing the firewall?

  • A. tap
  • B. passive
  • C. inline tap
  • D. inline

Answer: D

Explanation:
Explanation/Reference: https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw/200924-configuring-firepower- threat-defense-int.html

 

NEW QUESTION 105
How is a data modeling language used'

  • A. To enable data to be easily structured, grouped validated, and replicated
  • B. To model the flows of unstructured data within the infrastructure.
  • C. To represent finite and well-defined network elements that cannot be changed.
  • D. To provide human readability to scripting languages

Answer: A

Explanation:
Customer needs are fast evolving. Typically, a network center is a heterogenous mix of various devices at multiple layers of the network. Bulk and automatic configurations need to be accomplished. CLI scraping is not flexible and optimal. Re-writing scripts many times, even for small configuration changes is cumbersome. Bulk configuration changes through CLIs are error-prone and may cause system issues. The solution lies in using data models-a programmatic and standards-based way of writing configurations to any network device, replacing the process of manual configuration. Data models are written in a standard, industry-defined language. Although configurations using CLIs are easier (more human-friendly), automating the configuration using data models results in scalability.

 

NEW QUESTION 106
Which statement about an RSPAN session configuration is true?

  • A. Only incoming traffic can be monitored
  • B. A fitter mutt be configured for RSPAN Regions
  • C. A special VLAN type must be used as the RSPAN destination.
  • D. Only one session can be configured at a time

Answer: C

Explanation:
The traffic for each RSPAN session is carried over a user-specified RSPAN VLAN that is dedicated for that RSPAN session in all participating switches -> This VLAN can be considered a special VLAN type -> Answer C is correct.
Reference:
https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst3750x_3560x/software/release/12-
2_55_se/configuration/guide/3750xscg/swspan.html
We can configure multiple RSPAN sessions on a switch at a time, then continue configuring multiple RSPAN sessions on the other switch without any problem -> Answer B is not correct.
This is how to configure Remote SPAN (RSPAN) feature on two switches. Traffic on FastEthernet0/1 of Switch 1 will be sent to Fa0/10 of Switch2 via VLAN 40.
+ Configure on both switches
Switch1,2(config)#vlan 40
Switch1,2(config-vlan)#remote-span
+ Configure on Switch1
Switch1(config)# monitor session 1 source interface FastEthernet 0/1
Switch1(config)# monitor session 1 destination remote vlan 40
+ Configure on Switch2
Switch2(config)#monitor session 5 source remote vlan 40
Switch2(config)# monitor session 5 destination interface FastEthernet 0/10

 

NEW QUESTION 107

Refer to the exhibit. PC-1 must access the web server on port 8080. To allow this traffic, which statement must be added to an access control list that is applied on SW2 port G0/0 in the inbound direction?

  • A. permit host 172.16.0.2 host 192.168.0.5 eq 8080
  • B. permit host 192.168.0.5 eq 8080 host 172.16.0.2
  • C. permit host 192.168.0.5 it 8080 host 172.16.0.2
  • D. permit host 192.168.0.5 host 172.16.0.2 eq 8080

Answer: B

Explanation:
Explanation
The inbound direction of G0/0 of SW2 only filter traffic from Web Server to PC-1 so the source IP address and port is of the Web Server.

 

NEW QUESTION 108
How does EIGRP differ from OSPF?

  • A. EIGRP has a full map of the topology, and OSPF only knows directly connected neighbors
  • B. EIGRP uses more CPU and memory than OSPF
  • C. EIGRP is more prone to routing loops than OSPF
  • D. EIGRP supports equal or unequal path cost, and OSPF supports only equal path cost.

Answer: D

Explanation:
OSPF maintains information about all the networks and running routers in its area. Each time there is a change within the area, all routers need to re-sync their database and then run SPF again. This process makes it more CPU intensive. EIGRP, on the other hand, has triggered and incremental updates. Therefore EIGRP is more efficient in terms of CPU usage and memory.

 

NEW QUESTION 109
Refer to the exhibit.

An engineer must modify the access control list EGRESS to allow all IP traffic from subnet 10.1.10.0/24 to
10.1.2.0/24. The access control list is applied in the outbound direction on router interface GigabitEthemet 0/1.
Which configuration commands can the engineer use to allow this traffic without disrupting existing traffic flows?
A)

B)

C)

D)

  • A. Option B
  • B. Option A
  • C. Option C
  • D. Option D

Answer: A

 

NEW QUESTION 110
Which two namespaces does the LISP network architecture and protocol use? (Choose two.)

  • A. DNS
  • B. VTEP
  • C. EID
  • D. RLOC
  • E. TLOC

Answer: C,D

 

NEW QUESTION 111
......


Who Should Take 350-401 Test?

This exam targets mid-level network engineers, network administrators, network support technicians, and help desk technicians. Anyone who wants to leverage their skills of working with core enterprise network technologies and discover more about dual-stack architecture is a suitable candidate. By acing 350-401, applicant earns the Cisco Certified Specialist — Enterprise Core certification.

While this test doesn't have any formal prerequisites, candidates will have higher chances to get the passing score if they have previously worked with Cisco enterprise network solutions. Also, if they have knowledge equivalent to CCNA certification, then they will find the training process more adequate for their skills. Still, scrutinize the prerequisites for the certifications 350-401 exam leads to. For example, it's recommended for one to have 3-5 years of experience to apply for CCNP Enterprise certificate.


What is the cost of Implementing Cisco Enterprise Network Core Technologies (350-401 ENCOR)

  • Format: Multiple choices, multiple answers
  • Length of Examination: 90 minutes
  • Passing Score: 70%
  • Number of Questions: 90-105

 

Master 2021 Latest The Questions CCNP Enterprise and Pass 350-401  Real Exam!: https://www.pass4sures.top/CCNP-Enterprise/350-401-testking-braindumps.html

A fully updated 2021 350-401 Exam Dumps exam guide from training expert Pass4sures: https://drive.google.com/open?id=1BTn1fNJJHgQUhtlwMoH3CKMxr-ESV0Xn

Related Articles

more
Cisco 350-401 Certification Practice Exam