642-974 Practice Tests & Exams

Notes:	Hide Notes

Slide 1: 642-974 Data Center Networking Infrastructure Support Specialist Exam: 642-974 Demo Edition CERT MAGIC 1 http://www.certmagic.com Slide 2: 642-974 QUESTION: 1 How would you configure a NAM to monitor and report the most heavily viewed sections of a website? A. Create a separate domain name or virtual server IP address for each section of the site. Add each domain name or IP address to the NAM application protocol directory. B. Enable regular-expression pattern matching. Define application protocol filters based on regular expressions that match the desired URLs. C. Enable URL monitoring. Define each desired URL as an application in the protocol directory. D. Use SPAN or VACLs to capture upper-layer protocol data from the web servers. Use a third-party application to parse the stored capture files. Answer: C QUESTION: 2 Which command must be issued to activate the FWSM firewall context? A. Allocate-vlan B. Config-url C. Limit-resource D. Map-interface Answer: B QUESTION: 3 Refer to the exhibit. Which FWSM command allows routing of TCP traffic from the Internet to network 10.0.3.0/24? A. Access-list inside permit tcp 192.168.1.0 255.255.255.0 10.0.3.0 255.255.255.0 B. Route inside 10.0.3.0 255.255.255.0 10.0.1.3 C. Route outside 10.0.3.0 255.255.255.0 10.0.1.3 D. Route inside 0 0 10.0.1.3 2 http://www.certmagic.com Slide 3: 642-974 Answer: B QUESTION: 4 In a Cisco Catalyst 6500 Series Switch, in which slot or slots should you install the NAM? A. Slots 1 to 4 B. Slot 5 or 6 C. Any slot except a supervisor module slot D. The slots that are closest to the supervisor modules Answer: C QUESTION: 5 A customer has installed an FWSM in the data center. Which feature must be configured to enable FTP to work? A. Dynamic NAT B. Dynamic PAT C. Access lists D. Transparent mode E. Deep packet inspection Answer: E QUESTION: 6 Which IDSM capture method has the ability to impact the performance of VoIP applications? A. In-line B. Promiscuous C. Span D. VACLs Answer: A QUESTION: 7 You work as a Cisco engineer in the Data Center of Company.com. With your experience, which two functions will be executed if install all command ? (Choose two.) A. Causes a switchover back to the originally active supervisor module 3 http://www.certmagic.com Slide 4: 642-974 B. Reloads the standby supervisor module with the new Cisco NX-OS software C. Copies the kickstart and system images to the standby supervisor module D. Backs up the currently active software image before upgrading it Answer: B, C QUESTION: 8 Cisco NX-OS is a data center-class operating system that is modular, resilient, and built for quality of service. So in your opinion, how many paths can be considered in NX-OS for equal-cost multipathing? A. 6 B. 10 C. 16 D. 18 Answer: C QUESTION: 9 You work as the network administrator at Company.com. As far as you know, which command qualifies uRPF in strict mode? A. ip verify unicast source reachable-via any B. ip verify unicast source reachable-via rx C. ip verify unicast source reachable-via strict D. ip verify unicast source strict Answer: B QUESTION: 10 What will be upgraded as a result of this command? upgrade ftp://ftpuser@10.1.2.3//upgrade/IPS-K9-r-1.1-a-5.1-1.pkg A. Recovery partition B. Application partition C. Both application and recovery partitions immediately D. Both application and recovery partitions at the next scheduled automatic IDSM update Answer: A QUESTION: 11 4 http://www.certmagic.com Slide 5: 642-974 What is the effect of executing the command intrusion-detection module 5 managementport access-vlan 10 on an IDSM? A. Allows the IDSM to be managed by devices in VLAN 10 B. Configures the IDSM to monitor traffic from VLAN 10 in in-line mode C. Allows the IDSM to perform blocking actions on devices in VLAN 10 D. Configures the IDSM to monitor traffic from VLAN 10 in promiscuous mode Answer: A QUESTION: 12 Your customer uses these file-oriented network applications: FTP Web-based file repositories Windows and Linux file sharing How can you use the NAM to create a report showing total network traffic for these applications? A. Define a VACL that forwards traffic for all of the applications. B. Define an application group that contains all of the interfaces for the application servers. C. This cannot be accomplished because the NAM cannot monitor upper-layer protocol data. D. Add each application to the Cisco Traffic Analyzer protocol directory and create an application group with all of the applications. Answer: D QUESTION: 13 Policy-based routing (PBR) provides a mechanism for expressing and implementing forwarding/routing of data packets based on the policies defined by the network administrators. Which of following is taken to packets that do not match any of the routemap statements in policy-based routing? A. Dropped B. Continue being evaluated against the implicit "permit" statement C. Forwarded using the specified "set" policy D. Forwarded using a policy identical to packets matching a "deny" statement Answer: D QUESTION: 14 As a Cisco engineer works at Company.com. With your experience, how you realize to achieve multiple active uplinks and loop prevention in a Cisco Nexus 5000 Switch, using Ethernet Host Virtualizer? 5 http://www.certmagic.com Slide 6: 642-974 A. By PortChanneling uplink ports B. By implementing Per-VLAN Spanning Tree C. By pinning MAC addresses to specific ports D. By tying a server interface to a border interface in the switching fabric Answer: C QUESTION: 15 You are a help desk trainee for Company.com. When you deploy the network, what happens after a failure by using the default VDC high-availability options in the Cisco Nexus 7010 Switch? A. The VDC is deleted and then re-created with startup configuration. B. If dual supervisors, a supervisor switchover is forced. C. If single supervisor, a graceful restart is forced. D. The VDC is deleted and no further action will be performed. Answer: B QUESTION: 16 Refer to the exhibit. Given this network design, what can you use to configure the IDSM to capture traffic? A. SPAN B. VACLs C. SPAN or VACLs D. neither SPAN nor VACLs Answer: D QUESTION: 17 Which signature action can be configured only on an IDSM sensor in IPS mode? A. Log packets containing the attacker and victim address pair 6 http://www.certmagic.com Slide 7: 642-974 B. Modify data in the packet C. Send a request to block a connection D. Terminate the TCP flow Answer: B QUESTION: 18 You work as the network administrator at Company.com. You are familiar with all kinds of Switches, so as far as you know, what can a Cisco Nexus 7010 Switch administrator do via VDC to provide OOB management? A. Use 802.1Q trunking and provide a separate VLAN via VDC B. Use different OOB management ports for the different VDCs C. Allocate separate VLANs and Virtual Routing and Forwardings via VDC D. Use the same VLAN and subnet for all VDCs, with different IP addresses Answer: D QUESTION: 19 How can a customer with multiple FWSM contexts limit the number of connections that are permitted in each context? A. Map the context to a class, and apply resource limits to the class. B. Map the context to a VLAN, and apply resource limits to the VLAN. C. Map the context to a class, and apply resource limits to the context. D. You cannot limit the number of connections that are permitted in a context. Answer: A QUESTION: 20 You work as the network administrator at Company.com. You are testing the company network while during failover, what occurs with the MAC address of the standby Hot Standby Router Protocol (HSRP) router? A. It defaults to the factory-burned MAC address of the standby router. B. It is reclaimed by the active router. C. The standby router assumes the virtual MAC address. D. The standby router sends gratuitous Address Resolution Protocol (ARP) messages. Answer: C 7 http://www.certmagic.com