350-401 Certification - The Ultimate Guide [Updated 2021]
350-401 Practice Exam and Study Guides - Verified By TestsDumps
Test Content Outline
Test 350-401 is designed to assess your mastery of core enterprise networking technologies under the following topics:
- Infrastructure;
- Virtualization.
- Automation;
- Dual-Stack (IPv4 and IPv6) Architecture;
- Network Assurance;
- Security;
Exam details
Cisco 350-401 is a 120-minute test that is available in two languages: English and Japanese. Although Cisco does not reveal the full details of its exams, the learners can expect about 100 questions in this one. The students must also be conversant with the format of these questions. Please note that some types that may be administered during the delivery of this test include multiple choice, single answer, short answer, testlets, and simlets.
Eventually, when you are ready, don’t forget that you should register for the test to take it. Therefore, go through the Pearson VUE platform, which is the official administrator of the Cisco certification exams, and follow the process of registration. From the website, type the code of this test and select the proctored section. You will see several instructions. Follow them to complete your registration. When you have completed this process, you will receive a confirmation email stating the details of your registration, including the date and time of your exam. So, be prepared for your defining day.
NEW QUESTION 57
How is a data modeling language used'
- A. To model the flows of unstructured data within the infrastructure.
- B. To represent finite and well-defined network elements that cannot be changed.
- C. To provide human readability to scripting languages
- D. To enable data to be easily structured, grouped validated, and replicated
Answer: C
Explanation:
Explanation
NEW QUESTION 58
Drag and drop the characteristics from the left onto the protocols they apply to on the right?
Answer:
Explanation:
NEW QUESTION 59
A network engineer is adding an additional 10Gps link to an exiting 2x10Gps LACP-based LAG to augment its capacity. Network standards require a bundle interface to be taken out of service if one of its member links goes down, and the new link must be added with minimal impact to the production network. Drag and drop the tasks that the engineer must perform from the left into the sequence on the right. Not all options are used.
Answer:
Explanation:
Explanation
A picture containing diagram Description automatically generated
NEW QUESTION 60
Drag and drop the characteristics from the left onto the correct infrastructure deployment types on the right.
Answer:
Explanation:
Explanation
On premise: customizable,specific requirements,resources
Cloud: scale, built-in automated backup, strong stable internet
NEW QUESTION 61
What are two benefits of virtualizing the server with the use of VMs in data center environment? (Choose two.)
- A. Increased security
- B. reduced IP and MAC address requirements
- C. reduced rack space, power, and cooling requirements
- D. speedy deployment
- E. smaller Layer 2 domain
Answer: C,D
Explanation:
Server virtualization and the use of virtual machines is profoundly changing data center dynamics.
Most organizations are struggling with the cost and complexity of hosting multiple physical servers in their data centers. The expansion of the data center, a result of both scale-out server architectures and traditional "one application, one server" sprawl, has created problems in housing, powering, and cooling large numbers of underutilized servers. In addition, IT organizations continue to deal with the traditional cost and operational challenges of matching server resources to organizational needs that seem fickle and ever changing.
Virtual machines can significantly mitigate many of these challenges by enabling multiple application and operating system environments to be hosted on a single physical server while maintaining complete isolation between the guest operating systems and their respective applications. Hence, server virtualization facilitates server consolidation by enabling organizations to exchange a number of underutilized servers for a single highly utilized server running multiple virtual machines.
By consolidating multiple physical servers, organizations can gain several benefits:
+ Underutilized servers can be retired or redeployed.
+ Rack space can be reclaimed.
+ Power and cooling loads can be reduced.
+ New virtual servers can be rapidly deployed.
+ CapEx (higher utilization means fewer servers need to be purchased) and OpEx (few servers means a simpler environment and lower maintenance costs) can be reduced.
Reference:
net_implementation_white_paper0900aecd806a9c05.html
NEW QUESTION 62
What is the structure of a JSON web token?
- A. three parts separated by dots: version header and signature
- B. three parts separated by dots: header payload, and signature
- C. header and payload
- D. payload and signature
Answer: B
Explanation:
Explanation
JSON Web Token (JWT) is an open standard (RFC 7519) that defines a compact and self-contained way for securely transmitting information between parties as a JSON object. This information can be verified and trusted because it is digitally signed. JWTs can be signed using a secret (with the HMAC algorithm) or a public/private key pair using RSA or ECDSA.
JSON Web Tokens are composed of three parts, separated by a dot (.): Header, Payload, Signature. Therefore, a JWT typically looks like the following:
xxxxx.yyyyy.zzzzz
The header typically consists of two parts: the type of the token, which is JWT, and the signing algorithm being used, such as HMAC SHA256 or RSA.
The second part of the token is the payload, which contains the claims. Claims are statements about an entity (typically, the user) and additional data.
To create the signature part you have to take the encoded header, the encoded payload, a secret, the algorithm specified in the header, and sign that.
Reference: https://jwt.io/introduction/
NEW QUESTION 63
Drag and drop the characteristics from the left onto the appropriate infrastructure deployment types on the right.
Answer:
Explanation:
NEW QUESTION 64
Which statement explains why Type 1 hypervisor is considered more efficient than Type 2 hypervisor?
- A. Type 1 hypervisor runs directly on the physical hardware of the host machine without relying on the underlying OS.
- B. Type 1 hypervisor relics on the existing OS of the host machine to access CPU, memory, storage, and network resources.
- C. Type 1 hypervisor is the only type of hypervisor that supports hardware acceleration techniques.
- D. Type 1 hypervisor enables other operating systems to run on it.
Answer: A
Explanation:
There are two types of hypervisors: type 1 and type 2 hypervisor.
In type 1 hypervisor (or native hypervisor), the hypervisor is installed directly on the physical
server. Then instances of an operating system (OS) are installed on the hypervisor. Type 1
hypervisor has direct access to the hardware resources. Therefore they are more efficient than
hosted architectures. Some examples of type 1 hypervisor are VMware vSphere/ESXi, Oracle VM
Server, KVM and Microsoft Hyper-V.
In contrast to type 1 hypervisor, a type 2 hypervisor (or hosted hypervisor) runs on top of an
operating system and not the physical hardware directly. answer 'Type 1 hypervisor runs directly
on the physical hardware of the host machine without relying on the underlying OS' big advantage
of Type 2 hypervisors is that management console software is not required. Examples of type 2
hypervisor are VMware Workstation (which can run on Windows, Mac and Linux) or Microsoft
Virtual PC (only runs on Windows).
NEW QUESTION 65
A network engineer is configuring Flexible Netflow and enters these commands Sampler Netflow1 Mode random one-out-of 100 Interface fastethernet 1/0 Flow-sampler netflow1 Which are two results of implementing this feature instead of traditional Netflow? (Choose two.)
- A. The number of packets to be analyzed are reduced
- B. The data export flow is more secure.
- C. The accuracy of the data to be analyzed is improved
- D. Only the flows of top 100 talkers are exported
- E. CPU and memory utilization are reduced.
Answer: A,E
Explanation:
Explanation
The "mode random one-out of 100" specifies that sampling uses the random mode and only take one sample out of every 100 packets.
NEW QUESTION 66
Refer to the exhibit.
Which type of antenna is show on the radiation patterns?
- A. Omnidirectional
- B. Dipole
- C. Patch
- D. Yagi
Answer: B
Explanation:
Explanation
A dipole antenna most commonly refers to a half-wavelength (/2) dipole. The physical antenna (not the package that it is in) is constructed of conductive elements whose combined length is about half of a wavelength at its intended frequency of operation. This is a simple antenna that radiates its energy out toward the horizon (perpendicular to the antenna). The patterns shown are those resulting from a perfect dipole formed with two thin wires oriented vertically along the z-axis.
Reference:
https://www.cisco.com/c/en/us/products/collateral/wireless/aironet-antennas-accessories/prod_white_paper0900a
NEW QUESTION 67
Which QoS mechanism will prevent a decrease in TCP performance?
- A. LLQ
- B. Policer
- C. Rate-Limit
- D. Fair-Queue
- E. WRED
- F. Shaper
Answer: E
Explanation:
Explanation
Weighted Random Early Detection (WRED) is just a congestion avoidance mechanism. WRED
drops packets selectively based on IP precedence. Edge routers assign IP precedences to packets
as they enter the network. When a packet arrives, the following events occur:
The average queue size is calculated.
2. If the average is less than the minimum queue threshold, the arriving packet is queued.
3. If the average is between the minimum queue threshold for that type of traffic and the
maximum threshold for the interface, the packet is either dropped or queued, depending on the
packet drop probability for that type of traffic.
4. If the average queue size is greater than the maximum threshold, the packet is dropped.
WRED reduces the chances of tail drop (when the queue is full, the packet is dropped) by
selectively dropping packets when the output interface begins to show signs of congestion (thus it
can mitigate congestion by preventing the queue from filling up). By dropping some packets early
rather than waiting until the queue is full, WRED avoids dropping large numbers of packets at
once and minimizes the chances of global synchronization. Thus, WRED allows the transmission
line to be used fully at all times.
WRED generally drops packets selectively based on IP precedence. Packets with a higher IP
precedence are less likely to be dropped than packets with a lower precedence. Thus, the higher
the priority of a packet, the higher the probability that the packet will be delivered.
Reference:
mt/qos-conavd-15-mt-book/qos-conavd-cfg-wred.html
WRED is only useful when the bulk of the traffic is TCP/IP traffic. With TCP, dropped packets
indicate congestion, so the packet source will reduce its transmission rate. With other protocols,
packet sources may not respond or may resend dropped packets at the same rate. Thus, dropping
packets does not decrease congestion.
16/qos-conavd-xe-16-book/qos-conavd-oview.html
Note: Global synchronization occurs when multiple TCP hosts reduce their transmission rates in
response to congestion. But when congestion is reduced, TCP hosts try to increase their
transmission rates again simultaneously (known as slow-start algorithm), which causes another
congestion. Global synchronization produces this graph:
NEW QUESTION 68
Which two mechanisms are available to secure NTP? (Choose two.)
- A. TACACS-based authentication
- B. IP access list-based
- C. IP prefix list-based
- D. IPsec
- E. Encrypted authentication
Answer: B,E
Explanation:
The time kept on a machine is a critical resource and it is strongly recommend that you use the security features of NTP to avoid the accidental or malicious setting of incorrect time. The two security features available are an access list-based restriction scheme and an encrypted authentication mechanism.
Reference:
ntpm.html
NEW QUESTION 69
If a VRRP master router fails, which router is selected as the new master router?
- A. router with the highest priority
- B. router with the lowest priority
- C. router with the highest loopback address
- D. router with the lowest loopback address
Answer: A
NEW QUESTION 70
Which statement about multicast RPs is true?
- A. RPs are required for protocol independent multicast sparse mode and dense mode.
- B. RPs are required only when using protocol independent multicast dense mode.
- C. By default, the RP is needed only to start new sessions with sources and receivers.
- D. By default, the RP is needed periodically to maintain sessions with sources and receivers
Answer: C
Explanation:
A rendezvous point (RP) is required only in networks running Protocol Independent Multicast sparse mode (PIM-SM).
By default, the RP is needed only to start new sessions with sources and receivers.
Reference:
/rps.html
For your information, in PIM-SM, only network segments with active receivers that have explicitly requested multicast data will be forwarded the traffic. This method of delivering multicast data is in contrast to the PIM dense mode (PIM-DM) model. In PIM-DM, multicast traffic is initially flooded to all segments of the network. Routers that have no downstream neighbors or directly connected receivers prune back the unwanted traffic.
NEW QUESTION 71
Drag and drop the REST API authentication methods from the left onto their descriptions on the right.
Answer:
Explanation:
NEW QUESTION 72
Refer to the exhibit.
An engineer configures monitoring on SW1 and enters the show command to verify operation. What does the output confirm?
- A. SPAN session 2 only monitors egress traffic exiting port FastEthernet 0/14.
- B. SPAN session 2 monitors all traffic entering and exiting port FastEthernet 0/15.
- C. RSPAN session 1 is incompletely configured for monitoring
- D. SPAN session 1 monitors activity on VLAN 50 of a remote switch
Answer: C
Explanation:
Explanation
SW1 has been configured with the following commands:
SW1(config)#monitor session 1 source remote vlan 50 SW1(config)#monitor session 2 source interface fa0/14 SW1(config)#monitor session 2 destination interface fa0/15 The session 1 on SW1 was configured for Remote SPAN (RSPAN) while session 2 was configured for local SPAN. For RSPAN we need to configure the destination port to complete the configuration.
Note: In fact we cannot create such a session like session 1 because if we only configure Source RSPAN VLAN 50 (with the command monitor session 1 source remote vlan 50) then we will receive a Type: Remote Source Session (not Remote Destination Session).
NEW QUESTION 73
Refer to the exhibit.
The inside and outside interfaces in the NAT configuration of this device have been correctly identified. What is the effect of this configuration?
- A. PAT
- B. dynamic NAT
- C. NAT64
- D. static NAT
Answer: A
NEW QUESTION 74
Refer to the exhibit.
An engineer entered the command no spanning-tree bpduguard enable on interface Fa 1/0/7. What is the effect of this command on Fa 1/0/7?
- A. It remains in err-disabled state until the spanning-tree portfast bpduguard disable command is entered in the interface configuration mode.
- B. It remains in err-disabled state until the no shutdown command is entered in the interface configuration mode.
- C. It remains in err-disabled state until the shutdown/no shutdown command is entered in the interface configuration mode.
- D. It remains in err-disabled state until the errdisable recovery cause failed-port-state command is entered in the global configuration mode.
Answer: C
Explanation:
NEW QUESTION 75
When configuring WPA2 enterprise on a WLAN, which additional security component configuration is required?
- A. PKI server
- B. TACACS server
- C. NTP server
- D. RADIUS server
Answer: D
NEW QUESTION 76
What are two considerations when using SSO as a network redundancy feature? (Choose two)
- A. must be combined with NSF to support uninterrupted Layer 2 operations
- B. the multicast state is preserved during switchover
- C. both supervisors must be configured separately
- D. must be combined with NSF to support uninterrupted Layer 3 operations
- E. requires synchronization between supervisors in order to guarantee continuous connectivity
Answer: D,E
Explanation:
Explanation
Cisco IOS Nonstop Forwarding(NSF) always runs with stateful switchover (SSO) and provides redundancy for Layer 3 traffic.
Reference:
https://www.cisco.com/en/US/docs/switches/lan/catalyst3850/software/release/3se/consolidated_guide/b_consoli
NEW QUESTION 77
Drag and drop the threat defense solutions from the left onto their descriptions on the right.
Answer:
Explanation:
NEW QUESTION 78
......
Ultimate Guide to the 350-401 - Latest Edition Available Now: https://www.testsdumps.com/350-401_real-exam-dumps.html
2021 Updated Verified Pass 350-401 Study Guides & Best Courses: https://drive.google.com/open?id=1vAg3V3TERzDqw_cV44_UaRNgMEb1BIN2
