[2017 New] Updated 300-320 New Questions From Lead2pass Free Downloading (101-125)

2017 July Cisco Official New Released 300-320 Dumps in Lead2pass.com!

100% Free Download! 100% Pass Guaranteed!

Whether you are a student attempting to pass 300-320 exam to be eligible for a post-graduate job, or a working professional hoping to improve your work credentials and earn that dream promotion Lead2pass is here to help. We have 300-320 exam dumps and brain dumps, so passing 300-320 exam is not an easy feat.

Following questions and answers are all new published by Cisco Official Exam Center: https://www.lead2pass.com/300-320.html

QUESTION 101
Which two key components are related to one firewall per ISP design option for e-commerce? (Choose two.)

A.    It is a common approach to single-homing.
B.    This approach is commonly used in large sites.
C.    Any failure on an edge router results in a loss of session.
D.    It has one NAT to two ISP-assigned blocks.
E.    It is difficult to set up and administer.

Answer: CD

QUESTION 102
What is the latest Cisco high-availability solution?

A.    VRRP
B.    HSRP
C.    VSS
D.    GLBP

Answer: C

QUESTION 103
Which two options are VRF components. (Choose two.)

A.    RIB
B.    VSS
C.    FIB
D.    HSRP

Answer: AC

QUESTION 104
Which two options are storage topologies? (Choose two.)

A.    WAS
B.    DAS
C.    CAS
D.    NAS

Answer: BD

QUESTION 105
Refer to the exhibit. Which statement about the ASA is true?

 

A.    The management interface is reachable only from VLAN 30.
B.    The management interface is reachable only from VLAN 40.
C.    It is running in transparent mode.
D.    It is running in routed mode.

Answer: C

QUESTION 106
Which statement about IPS and IDS solutions is true?

A.    IDS and IPS read traffic only in inline mode.
B.    IDS and IPS read traffic only in promiscuous mode.
C.    An IDS reads traffic in inline mode, and an IPS reads traffic in promiscuous mode.
D.    An IDS reads traffic in promiscuous mode, and an IPS reads traffic in inline mode.

Answer: D

QUESTION 107
Which NAC design model matches the following definitions?

– NAS is deployed centrally in the core or distribution layer.
– Users are multiple hops away from the Cisco NAS.
– After authentication and posture assessment, the client traffic no longer passes through the Cisco NAS.
– PBR is needed to direct the user traffic appropriately.

A.    Layer 3 in-band virtual gateway
B.    Layer 3 out-of-band with addressing
C.    Layer 2 in-band virtual gateway
D.    Layer 2 out-of-band virtual gateway

Answer: B
Explanation:
https://www.cisco.com/c/en/us/products/collateral/security/nac-appliance-clean-access/product_data_sheet0900aecd802da1b5.html
Passing traffic mode
· Virtual gateway (bridged mode)
· Real IP gateway (routed mode)
Client access mode
· Layer 2 (client is adjacent to the Cisco NAC Server)
· Layer 3 (client is multiple hops from the Cisco NAC Server)
Traffic flow model
· In-band (Cisco NAC Server is always in-line with user traffic)
· Out-of-band (Cisco NAC Server is in-line only during authentication, posture assessment, and remediation)

QUESTION 108
Which option is a recommended firewall topology?

A.    using two firewalls with stateful failover switched mode
B.    using one firewall with NAT enabled in transparent mode
C.    using two firewalls in active/active mode
D.    using one firewall with stateful failover enabled in routed mode

Answer: C

QUESTION 109
Which three options are recommended practices when configuring VTP? (Choose three.)

A.    Set the switch to transparent mode.
B.    Set the switch to server mode.
C.    Enable VLAN pruning.
D.    Disable VLAN pruning.
E.    Specify a domain name.
F.    Clear the domain name.

Answer: ADE
Explanation:
http://www.ciscopress.com/articles/article.asp?p=1315434&seqNum=2

QUESTION 110
Which four primary attributes define a WAN service? (Choose four.)

A.    bandwidth
B.    bursting capacity
C.    memory
D.    CPU
E.    QoS classes and policies
F.    latency
G.    multicast support

Answer: ABEG

QUESTION 111
Which option does the FabricPath technology use to create loop-free Layer 2 networks?

A.    STP
B.    TTL
C.    fabric tags
D.    FSTP

Answer: C
Explanation:
TTL ends up a looping packet but the loop can still be there.
Fabric path uses IS-IS and the concept of “switch-ids” which could refer to “fabric tags”.

QUESTION 112
Which Cisco NAC Appliance component is optional?

A.    NAC Appliance Manager
B.    NAC Appliance Server
C.    NAC Appliance Agent
D.    NAC Appliance Policy Updates

Answer: C
Explanation:
https://www.cisco.com/c/en/us/support/docs/security/nac-appliance-clean-access/112168-nac-oob-acls-00.html#sol-comp
“The Cisco NAC Agent is an optional component of the Cisco NAC solution.”

QUESTION 113
Which option describes the effect of using softphones instead of VoIP handsets on QoS implementation for the voice traffic?

A.    It provides a Layer 2 CoS marking in the frames that can be used for QoS implementation.
B.    Using softphones means that 802.1Q tagging must be configured between the PC and the switch.
C.    The voice traffic of softphones is mixed with data traffic of PC on the access VLAN.
D.    By using softphones, the implementation of a QoS depends only on trusting DSCP markings set by the PC.

Answer: C

QUESTION 114
Which part of the Layer 3 header is used to identify a flow in NetFlow but it is not used for NBAR?

A.    source port
B.    ToS
C.    protocol type
D.    source IP

Answer: B

QUESTION 115
Which three options are features of IP SLAs? (Choose three.)

A.    enables verification of service guarantees
B.    dynamically adjusts QoS parameters
C.    validates network performance and metrics
D.    initiates failover for saturated links
E.    proactively identifies network related issues

Answer: ACE

QUESTION 116
Which statement is correct regarding NBAR and NetFlow?

A.    NetFlow uses five key fields for the flow.
B.    NBAR examines data in Layers 3 and 4.
C.    NetFlow examines data in Layers 3 and 4.
D.    NBAR examines data in Layers 2 through 4.
E.    NetFlow examines data in Layers 2 through 4.

Answer: E
Explanation:
NetFlow is a passive technology that monitors network activity, typically from OSI Layers 2 through 4.
NBAR is an active technology that can be used to validate or reclassify ToS marking based on packet inspection in Layers 3 through 7.

QUESTION 117
Which two statements are correct regarding Flex Links? (Choose two.)

A.    An interface can belong to multiple Flex Links.
B.    Flex Links operate only over single pairs of links.
C.    Flex Link pairs must be of the same interface type.
D.    Flex Links automatically disable STP so no BPDUs are propagated.
E.    Failover from active to standby on Flex Links takes less than a second.

Answer: BD
Explanation:
Flex Links are a pair of a Layer 2 interfaces (ports or port channels), where one interface is configured to act as a backup to the other. Flex Links are typically configured in service-provider or enterprise networks where customers do not want to run STP. Flex Links provide link-level redundancy that is an alternative to Spanning Tree Protocol (STP). STP is automatically disabled on Flex Links interfaces. A backup link does not have to be the same type as the active link.
https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst6500/ios/12-2SX/configuration/guide/book/flexlink.html

QUESTION 118
Which technology allows centralized storage services to be shared across different VSANs?

A.    IVR
B.    FSPF
C.    FICON
D.    SANTap

Answer: A

QUESTION 119
What is the term for a logical SAN which provides isolation among devices physically connected to the same fabric?

A.    ISL
B.    IVR
C.    VoQ
D.    VSANs
E.    Enhanced ISL

Answer: D

QUESTION 120
In a base e-Commerce module design, which routing statement is correct?

A.    Routing is mostly static.
B.    Hardcoded IP addresses are used to support failover.
C.    Inbound servers use the CSM or ACE as the default gateway.
D.    VLANs between the access layer switches are used for FHRP protocols.

Answer: A
Explanation:
https://www.safaribooksonline.com/library/view/foundation-learning-guide/9780132652933/ch07.html
“Base Design Routing Logic Routing in this e-commerce module design is mostly static, using VIP addresses to support failover.”

QUESTION 121
What is the recommended radius of a cell for a voice-ready wireless network?

A.    6 dBm
B.    7 dBm
C.    19 dBm
D.    5 dBm
E.    -67 dBm
F.    -86 dBm

Answer: E
Explanation:
https://www.safaribooksonline.com/library/view/foundation-learning- guide/9780132652933/app03.html
“Recommendations for VoWLAN deployment include the following:
A cell radius of 67 dBm, with a separation of 19 dBm for cells on the same channel.”

 

QUESTION 122
Which of these practices should you follow when designing a Layer 3 routing protocol?

A.    Never peer on transit links.
B.    Build squares for deterministic convergence.
C.    Build inverted U designs for deterministic convergence.
D.    Summarize routes at the distribution to the core to limit EIGRP queries or OSPF LSA propagation.

Answer: D

QUESTION 123
Which two statements about Layer 3 access designs are correct? (Choose two.)

A.    IP address space is difficult to manage.
B.    Broadcast and fault domains are increased.
C.    Convergence time is fractionally slower than STP.
D.    Limits on clustering and NIC teaming are removed.
E.    Fast uplink convergence is supported for failover and fallback.

Answer: AE

QUESTION 124
Which two characteristics are most typical of a SAN? (Choose two.)

A.    NICs are used for network connectivity.
B.    Servers request specific blocks of data.
C.    Storage devices are directly connected to servers.
D.    A fabric is used as the hardware for connecting servers to storage devices.
E.    The TCO is higher because of the cost of director class storage switches.

Answer: BD

QUESTION 125
Which of these is least important when determining how many users a NAS can support?

A.    bandwidth
B.    number of plug-ins per scan
C.    total number of network devices
D.    number of checks in each posture assessment

Answer: A

Your focus should be getting the best dumps to prepare for 300-320 exam. That is where Lead2pass comes in. We have collected an extensive library of exam dumps from Cisco certification.

300-320 new questions on Google Drive: https://drive.google.com/open?id=0B3Syig5i8gpDRmZpUHB2VDNvdTg

2017 Cisco 300-320 exam dumps (All 398 Q&As) from Lead2pass:

https://www.lead2pass.com/300-320.html [100% Exam Pass Guaranteed]