642 873

Cisco 642-873
642-873 Designing Cisco Network Service

Architectures (ARCH)
Practice Test
Updated: Sep 30, 2009

Version 1.6
Cisco 642-873: Practice Exam
QUESTION NO: 1
Which of these Layer 2 access designs does not support VLAN extensions?
A. FlexLinks
B. loop-free U
C. looped square
D. looped triangle
E. loop-free inverted U
Answer: B
QUESTION NO: 2
Which of these is a Layer 2 transport architecture that provides packet-based transmission
m
optimized for data based on a dual (counter-rotating) ring topology?
A. DTP
B. RPR
.co
C. SDH
sts
D. CWDM
E. DWDM
lTe
Answer: B
tua
QUESTION NO: 3
Which three of these are elements of the Cisco Unified Wireless Network architecture? (Choose
Ac
three)
A. cell phones
B. remote access
C. mobility services
D. network management
E. network unification
F. network decentralization
Answer: C,D,E
QUESTION NO: 4
"Pass Any Exam. Any Time." - www.actualtests.com 2

Refer to the exhibit. Which two of these are correct regarding the recommended practice for
distribution layer design? (Choose two.)
m
.co
sts
lTe
A. use a redundant link to the core

tua
B. use a Layer 2 link between distribution switches

C. never use a redundant link to the core because of convergence issues
D. use a Layer 3 link between distribution switches with route summarization
Ac
E. use a Layer 3 link between distribution switches without route summarization
Answer: A,D
QUESTION NO: 5
Which of these terms refers to call issues that cause variations in timing or time of arrival?
A. queuing
B. jitter
C. packet loss
D. digitized sampling
E. signal-to-noise ratio ratio

Answer: B
QUESTION NO: 6
Which two of these are characteristics of an IDS sensor? (Choose two.)
A. passively listens to network traffic

B. is an active device in the traffic path
C. has a permissive interface that is used to monitor networks
D. traffic arrives on one IDS interface and exits on another
E. has a promiscuous interface that is used to monitor the network
Answer: A,E
m
QUESTION NO: 7
.co
In base e-Commerce module designs, where should firewall perimeters be placed?
A. core layer
sts
B. Internet boundary
C. aggregation layer
D. aggregation and core layers
lTe
E-access and aggregation layers
Answer: A
tua
QUESTION NO: 8
Ac
In which two locations in an enterprise network can an IPS sensor be placed? (Choose two.
A. bridging VLANs on two switches

B. bridging two VLANs on one switch
C. between two Layer 2 devices with trunking
D. between two Layer 2 devices without trunking
E. between a Layer 2 device and a Layer 3 device with trunking
Answer: C,D
QUESTION NO: 9

What is a virtual firewall?
A. another name for a firewall deployed in routed mode

B. another name for a firewall deployed in transparent mode
C. a separation of multiple firewall security contexts on a single firewall
D. a firewall that, when deployed in routed mode, can support up to 1000 VLANs per context
E. a firewall that has multiple contexts, all of which share the same policies (such as NAT and
ACLs)
Answer: C
QUESTION NO: 10
In a VoWLAN deployment, what is the recommended separation between cells with the same
channel?
m
A. 19 dBm
B. 7 dBm
.co
C. 10dBm
D. 6 dBm
sts
E. 5 dbmto 10 dBm
Answer: A
lTe
QUESTION NO: 11
tua
Why is STP required when VLANs span access layer switches?

Ac
A. to ensure a loop-free topology

B. to protect against user-side loops
C. in order to support business applications
D. because of the risk of lost connectivity without STP
E. for the most deterministic and highly available network topology
Answer: B
QUESTION NO: 12
Which site-to-site VPN solution allows Cisco routers, PIX Firewalls, and Cisco hardware clients to
act as remote VPN clients in order to receive predefined security policies and configuration
parameters from the VPN headend at the central site?

A. Easy VPN
B. GRE tunneling
C. Virtual Tunnel Interfaces
D. DynamicMultipoint VPN
E. Group Encrypted Transport VPN
Answer: A
QUESTION NO: 13
Which two design concerns must be addressed when designing a multicast implementation?
(Choose two.)
A. only the low-order 23 bits of the MAC address are used to map IP addresses
B. only the low-order 24 bits of the MAC address are used to map IP addresses
m
C. only the high-order 23 bits of the MAC address are used to map IP addresses
.co
D. only the low-order 23 bits of the IP address are used to map MAC addresses
E. the 0x01004f MAC address prefix is used for mapping IP addresses to MAC addresses
F. the 0x01005e MAC address prefix is used for mapping IP addresses to MAC addresses
sts
Answer: A,F
lTe
QUESTION NO: 14
Which two of these are recommended practices with trunks? (Choose two.)
tua
A. use ISL encapsulation

B. use 802.1 q encapsulation
Ac
C. set ISL to desirable and auto with encapsulation negotiate to support ILS protocol negotiation
D. use VTP server mode to support dynamic propagation of VLAN information across the network
E. set DTP to desirable and desirable with encapsulation negotiate to support DTP protocol
negotiation.
Answer: B,E
QUESTION NO: 15
For acceptable voice calls, the packet error rate should be no higher than what value?
A. 0.1%
B. 1%

C. 2.5%
D. 25%
Answer: B
QUESTION NO: 16
Which of these statements is true of clientless enD.user devices?
A. They do not receive unique IP addresses.

B. RADIUS or LDAP is required in order to assign IP addresses.
C. They are assigned addresses from the internal DHCP pool.
D. Their traffic appears to originate from the originating host network.
Answer: A
m
QUESTION NO: 17
.co
Which statement is correct regarding NBAR and NetFlow?
sts
A. NetFlow uses five key fields for the flow.

B. NBAR examines data in Layers 3 and 4.
lTe
C. NetFlow examines data in Layers 3 and 4.

D. NBAR examines data in Layers 2 through 4.
E. NetFlow examines data in Layers 2 through 4.
tua
Answer: B
Ac
QUESTION NO: 18
What is meant by the term "firewall sandwich"?
A. multiple layers of firewalling

B. a method of operating firewalls from multiple vendors
C. firewall connections in either an active or standby state
D. an architecture in which all traffic between firewalls goes through application-specific servers
E. an architecture in which all traffic between firewalls goes through application-specific gateways
Answer: A

QUESTION NO: 19
When BGP tuning is used, how is packet flow into the e-commerce module controlled?
A. by tracking the status of objects along the path to the e-commerce module
B. by detecting undesirable conditions along the path to the e-commerce module
C. by using the MED to communicate the site preferences for traffic to multiple ISPs
D. by communicating the available prefixes, routing policies, and preferences of each site to its
ISP
E. by moving the SLB to a position where selected traffic to and from the servers does not go
through the SLB
Answer: D
QUESTION NO: 20
m
Which three Layer 2 access designs have all of their uplinks in an active state? (Choose three.)
A. Flex Links
.co
B. loop-free U
sts
C. looped square
D. looped triangle
E. loop-free inverted U
lTe
Answer: B,C,E
tua
QUESTION NO: 21
Ac
Which signal and noise values will result in the best phone communication with an access point?
A. signal strength 6dBm, noise level 5dBm

B. signal strength 4dBm, noise level 4dBm
C. signal strength 8dBm, noise level 9dBm
D. signal strength 0dBm, noise level 6dBm
Answer: A
QUESTION NO: 22
A remote user needs a static IP address to support a specific application. Which remote access
VPN addressing technique supports this?

A. Deploy RADIUS or LDAP to assign the address to the user
B. Use DHCP to assign addresses based on incoming user policies.
C. Deploy a clientless model to assign a unique address to the user.
D. Use an internal address pool per VPN headend; use with ACLs and a static route to the VPN
headend.
Answer: A
QUESTION NO: 23
Which two of these are characteristics of an IPS device? (Choose two.)
A. passively listens to network traffic

B. is an active device in the traffic path
C. has a permissive interface that is used to monitor networks
m
D. traffic arrives on one IPS interface and exits on another
.co
E. has a promiscuous interface that is used to monitor the network
Answer: B,D
sts
QUESTION NO: 24
lTe
Which four Cisco Spanning Tree Protocol enhancements are supported with rapid per-VLAN
Spanning-Tree plus? (Choose four.)
tua
A. PortFast
B. UplinkFast
C. loop guard
Ac
D. root guard
E. BPDU guard
F. BackboneFast
Answer: A,C,D,E
QUESTION NO: 25
A customer has eight sites and plans to increase that number in the future. Branch site to branch
site traffic is approaching 30 percent. The customer's goals are to make it easier to add branch
sites in the future and to reduce traffic through the hub.
Which VPN topology should you recommend to this customer?

A. Easy VPN
B. GRE tunneling
C. Virtual Tunnel Interfaces
D. Dynamic Multipoint VPN
E. Group Encrypted Transport VPN
Answer: D
QUESTION NO: 26
Which two of these key fields are used to identify a flow in a traditional NetFlow implementation?
(Choose two.)
A. source port
B. output interface
m
C. next-hop IP address
D. source MAC address
E. destination IP address
.co
F. next-hop MAC address
sts
Answer: A,E
lTe
QUESTION NO: 27
Which two statements correctly describe an IPS device? (Choose two.)

tua
A. It resembles a Layer 2 bridge

B. Traffic flow through the IPS resembles traffic flow through a Layer 3 router.
Ac
C. Inline interfaces which have no IP addresses cannot be detected

D. Malicious packets that have been detected are allowed to pass through, but all subsequent
traffic is blocked.
E. Traffic arrives on the detection interface, is inspected, and exits via the same interface.
Answer: A,C
QUESTION NO: 28
What two descriptions best define DWDM? (Choose two.)
A. a WDM system that is compatible with EDFA technology

B. an optical technology for transmitting up to 16 channels over multiple fiber strands j C. an
optical technology for transmitting up to 32 channels over multiple fiber strands Z D. a technology
for transmitting multiple optical signals using less sophisticated transceiver designs then CWDM
E. a technology for transmitting more closely packed optical signals using more sophisticated
transceiver designs
than CWDM
Answer: A
QUESTION NO: 29 DRAG DROP
m
.co
Answer:
sts
lTe
tua
Explanation:
Ac

Answer:
m
.co
sts
lTe
tua
Explanation:
Ac
QUESTION NO: 31

Which two statements correctly identify considerations to take into account when deciding on
Campus QoS Design elements? (Choose two.)
A. Voice needs to be assigned to the hardware priority queue.

B. Voice needs to be assigned to the software priority queue.
C. Call signaling must have guaranteed bandwidth service.
D. Strict-priority queuing should be limited to 50 percent of the capacity of the link.
E. At least 33 percent of the link bandwidth should be reserved for default best-effort class.
Answer: A,C
QUESTION NO: 32
Which two of these are characteristics of multicast routing? (Choose two.)
m
A. multicast routing uses RPF
B. multicast routing is connectionless.
.co
C. In multicast routing, the source of a packet is known.
D. When network topologies change, multicast distribution trees are not rebuilt, but use the original
path
sts
E. Multicast routing is much like unicast routing, with the only difference being that it has a a group
of receivers rather than just one destination
lTe
Answer: A,C
tua
QUESTION NO: 33
Refer to the exhibit. When deploying an MSFC and an FWSM, which statement is correct?
Ac

m
.co
sts
lTe
A. Proper placement depends on the VLAN assignment.

B. Place it outside the firewall.
tua
C. Place it inside the firewall to make design and management easier.

D. Place it inside the firewall with multiple context modes connecting to all configured contexts.
Answer: A
Ac
QUESTION NO: 34
Client traffic is being bridged through LAN interfaces on two WLCs. Which roaming option will
keep them on the same IP subnet?
A. Layer 1 intercontroller roaming

B. Layer 2 intercontroller roaming
C. Layer 3 intercontroller roaming
D. intracontroller roaming
Answer: B

QUESTION NO: 35
Which three of these are major scaling, sizing, and performance considerations for an IPsec
design? (Choose three.)
A. connection speed
B. number of remote sites
C. features to tie supported
D. types of devices at the remote site
E. whether packets are encrypted using 3DES or AES
F. number of routes in the routing table at the remote site
Answer: A,B,C
m
QUESTION NO: 36 .co
Which two statements about SCSI are true? (Choose two.)
sts
A. The bus is limited to 32 devices.
B. It is a full-duplex serial standard.
C. It is a halF. duplex serial standard.
lTe
D. The bus is limited to 25 meters in length.

E. It allows up to 320 MB/s of shared channel bandwidth.
tua
Answer: C,E
Ac
QUESTION NO: 37
One of your customers is using the G.711 codec with 802.11a access point radios. This can
support a maximum of how many phones per access point?
A. 7
B. 8
C. 14
D. 19
E. 23
Answer: C

Answer:
m
.co
sts
Explanation:
lTe
tua
Ac
QUESTION NO: 39
A customer has seven sites, three of which process a large amount of traffic among them. The
customer plans to grow the number of sites in the future. Which is the most appropriate design
topology?
A. full mesh
B. peer-to-peer
C. partial mesh
D. hub and spoke

Answer: C
QUESTION NO: 40
Which statement about IDS/IPS design is correct?
A. An IPS should be deployed if the security policy does not support the denial of traffic.
B. An IDS analyzes a copy of the monitored traffic and not the actual forwarded packet,
C. Traffic impact considerations are increased when deploying an IDS over an IPS sensor.
D. Bandwidth considerations must be taken into account since IDS is deployed inline to traffic flow.
Answer: B
m
.co
sts
lTe
tua
Answer:
Ac

Explanation:
Drag and drop question. Drag the items to the proper locations.
m
QUESTION NO: 42
.co
Which two settings must be configured in order to use the GUI to configure applications? (Choose
two.)
sts
A. QoS must be set to Platinum

B. WMM must be enabled
lTe
C. QoS must be set to Gold

D. TSPEC must be disabled ] E. Cisco Compatible Extensions must be disabled
tua
Answer: A,B
Ac
QUESTION NO: 43
At a certain customer's site, a NAS is both physically and logically in the traffic path. The NAS
identifies clients solely based on their MAC addresses. In which access mode has this NAS been
configured to operate?
A. Layer 2 mode
B. Layer 3 Edge mode C. Layer 3 Central mode D. Layer 3 In-Band mode
Answer: A
QUESTION NO: 44
Which path selection protocol is used by Fibre Channel fabrics?

A. IVR
B. VoQ
C. FSPF
D. VSANs
E. SANTap
Answer: C
QUESTION NO: 45
Which of these statements best describes VPLS?
A. Neither broadcast nor multicast traffic is ever flooded in VPLS.

B. Multicast traffic is flooded but broadcast traffic is not flooded in VPLS.
C. VPLS emulates an Ethernet switch, with each EMS being analogous to a VLAN.
m
D. Because U-PE devices act as IEEE 802.1 devices, the VPLS core must use STP.
.co
E. When the provider experiences an outage, IP re-routing restores PW connectivity and MAC re-
learning is needed.
Answer: C
sts
lTe
QUESTION NO: 46
How does ERS use the VLAN tag? ~i A. to provide service internetworking
tua
A. to support transparency for Layer 2 frames

B. as a connection identifier to indicate destination
C. as a mapping to the DLCI in service internetworking
Ac
D. to provide a trunk by which all VLANs can navigate from one site to one or multiple sites
Answer: C
QUESTION NO: 47
Which two of these correctly describe Fibre Channel? (Choose two.)
A. supports multiple protocols

B. works only in a shared or loop environment
C. allows addressing for up to 4 million nodes
D. allows addressing for up to 8 million nodes
E. provides a high speed transport for SCSI payloads

F. may stretch to a distance of up to 100 km before needing extenders
Answer: A,E
QUESTION NO: 48
What method does the Cisco MDS 9000 Series use to support trunking?
A. ISL
B. IVR
C. VoQ
D. VSANs
E. Enhanced ISL
Answer: E
m
.co
sts
lTe
tua
Answer:
Ac
Explanation:

QUESTION NO: 50
In which NAS operating mode are ACL filtering and bandwidth throttling only provided during
posture assessment?
m
A. Layer2
B. Layer 3
C. in-band
.co
D. out-oF. band
E. edge
sts
F. central
Answer: D
lTe
QUESTION NO: 51
tua
Which two statements about Layer 3 access designs are correct? (Choose two.)
Ac
A. IP address space is difficult to manage.

B. Broadcast and fault domains are increased.
C. Convergence time is fractionally slower than STP.
D. Limits on clustering and NIC teaming are removed.
E. Fast uplink convergence is supported for failover and fallback.
Answer: A,E
QUESTION NO: 52
What is the purpose of IGMP in a multicast implementation?
A. it is not used in multicast

B. it determines the virtual address group for a multicast destination
C. it dynamically registers individual hosts in a multicast group on a specific LAN
D. it is used on WAN connections to determine the maximum bandwidth of a connection
E. it determines whether Bidirectional PIM or PIM sparse mode will be used for a multicast flow
Answer: C
QUESTION NO: 53
Which two characteristics are most typical of a SAN? (Choose two.)
A. NICs are used for network connectivity.

B. Servers request specific blocks of data
C. Storage devices are directly connected to servers.
D. A fabric is used as the hardware for connecting servers to storage devices.
m
E. The TCO is higher because of the cost of director class storage switches.
Answer: B,D
.co
sts
QUESTION NO: 54
Which of these is least important when determining how many users a NAS can support?
lTe
A. bandwidth
B. number of plug-ins per scan
tua
C. total number of network devices

D. number of checks in each posture assessment
Ac
Answer: A
QUESTION NO: 55
Which of these is true of IP addressing with regard to VPN termination?
A. addressing designs need to allow for summarization

B. termination devices need mutable addresses inside the VPN
C. IGP routing protocols will update their routing tables over an IPsec VPN
D. designs should not include overlapping address spaces between sites, since NAT is not
supported
Answer: A

QUESTION NO: 56
When is a first-hop redundancy protocol needed in the distribution layer?
A. when HSRP is not supported by the design

B. when multiple vendor devices need to be supported
C. when preempt tuning of the default gateway is needed
D. when a robust method of backing up the default gateway is needed
E. when the design implements Layer 2 between the access switch and the distribution switch
F. when the design implements Layer 3 between the access switch and the distribution switch
Answer: F
m
QUESTION NO: 57
a
.co
Refer to the exhibit. Which two characteristics are true of a firewall running in routed mode?
(Choose two)
sts
lTe
tua
Ac
A. FWSM routes traffic between the VLANs.

B. FWSM switches traffic between the VLANs.
C. Routed mode is often called bump-in-the-wire mode.
D. Routed mode firewall deployments are used most often in current designs.
E. Traffic switched between VLANs is subject to state tracking and other firewall configurable
options.

Answer: A,D
QUESTION NO: 58
Which of these practices should you follow when designing a Layer 3 routing protocol?
A. Never peer on transit links.

B. Build squares for deterministic convergence.
C. Build inverted U designs for deterministic convergence.
D. Summarize routes at the distribution to the core to limit EIGRP queries or OSPF LSA
propagation.
Answer: D
m
QUESTION NO: 59
.co
What is the recommended radius of a cell for a voice-ready wireless network?
A. 6 dBm
sts
B. 7 dBm
C. 19dBm
D. 5 dBm
lTe
Answer: B
tua
QUESTION NO: 60
Ac
Which three implementation modes may be used to deploy SLB? (Choose three.)
A. Router mode
B. One-arm mode
C. Three-arm mode
D. Bridge mode inline
E. Bridge mode passive
F. Combo Bridge router mode
Answer: A,B,D
QUESTION NO: 61

In a base e-Commerce module design, which routing statement is correct?
A. Routing is mostly static

B. Hardcoded IP addresses are used to support failover.
C. Inbound servers use the CSM or ACE as the default gateway.
D. VLANs between the access layer switches are used for FHRP protocols.
Answer: A
QUESTION NO: 62
a
Refer to the exhibit. Which two statements about the topologies shown are correct? (Choose two.)
m
.co
sts
lTe
A. Design 1 is a looped triangle design.

B. Design 2 is a looped triangle design.
C. Design 2 achieves quick convergence using RSTP.
tua
D. Both designs support stateful services at the aggregation layer. J E. Design 2 is the most widely
deployed in enterprise data centers.
Ac
Answer: A,D
QUESTION NO: 63
What is the term for a logical SAN which provides isolation among devices physically connected to
the same fabric?
A. ISL
B. IVR
C. VoQ
D. VSANs
E. Enhanced ISL

Answer: D
QUESTION NO: 64
Which technology allows centralized storage services to be shared across different VSANs?
A. IVR
B. FSPF
C. FICON
D. SANTap
Answer: A
m
QUESTION NO: 65
Which two statements are correct regarding Flex Links? (Choose two.)
A. An interface can belong to multiple Flex Links.

.co
B. Flex Links operate only over single pairs of links.
sts
C. Flex Link pairs must be of the same interface type.
D. Flex Links automatically disable STP so no BPDUs are propagated.
E. Failover from active to standby on Flex Links takes less than a second.
lTe
Answer: B,D
tua
QUESTION NO: 66
Ac
Lafeyette Productions is looking for a new ISP that has improved availability, load balancing, and
catastrophe protection. Which type of ISP connectivity solution would be best?
A. single run
B. direct BGP peering
C. stub domain EBGP
D. multi-homed
Answer: D
QUESTION NO: 67
Acme Nutrition manufactures a wide variety of vitamin supplements. It has a single manufacturing
facility with 3 regional warehouses and 16 district sales offices. Currently the manufacturing facility

requires 210 IP addresses; each warehouse requires 51 IP addresses; each district sales office
requires 11 IP addresses; and the IP WAN requires 38 IP addresses.
If Acme Nutrition plans for 20 percent growth in facilities, how many Class C subnets will the
district sales offices require?
A. 20 (4 from the warehouse range,15 from a separate Class C block and 1 from the IP WAN
block)
B. 19 (3 from the warehouse range and 16 from a separate Class C address)
C. 16 (3 from the warehouse range and 13 from a separate Class C address)
D. 19 (3 from the warehouse block, 15 from a separate Class C block and 1 from the IP WAN
block)
Answer: D
m
QUESTION NO: 68
Please match the VPN component to its description.

.co
sts
(1) VPN access devices
(2) IPSec tunnels
(3) Internet services from ISPs
lTe
(4) Headend VPN devices
(I)VPN headend termination devices at a central campus

tua
(II)VPN interconnections for headend and branctend devices

(III)VPN brarch-end terminatior devices at branch office location
(IV)WAN interconnection media
Ac
A. (I)-(3);(II)-(2);(III)-(4);(IV)-(1)
B. (I)-(1);(II)-(2);(II)-(3);(IV)-(4)
C. (I)-(3);(II)-(2);(III)-(1);(IV)-(4)
D. (I)-(2);(II)-(3);(III)-(4);(IV)-(1)
Answer: A
QUESTION NO: 69
When designing a converged network, which measures can be taken at the building access layer
to help eliminate latency and ensure end-to-end quality of service can be maintained? (Choose
three.)

A. classify and mark traffic close to the source
B. rate limit voice traffic
C. configure spanning-tree for fast link convergence
D. isolate voice traffic on separate VLANs
Answer: A,C,D
QUESTION NO: 70
Users at the Charleville Company began experiencing high network delays when Internet
connectivity was enabled for all users. After investigating the traffic flow, you determine that peer-
to-peer traffic from a music download site is consuming a large amount of bandwidth. Which QoS
mechanism can you implement to improve the network response time?
A. Use class-based shaping to delay any excessive peer-to-peer traffic.
m
B. Use class-based policing to limit the peer-to-peer traffic rate.
.co
C. Use class-based WRED to randomly drop the peer-to-peer traffic during network congestions.
D. Use CBWFQ to queue the peer-to-peer traffic into the default traffic class.
Answer: B
sts
lTe
QUESTION NO: 71
With Call Manager v3.1, what is the maximum number of servers in a Cluster?
tua
A. 8
B. 3
C. 7
Ac
D. 6
Answer: A
QUESTION NO: 72
What are two considerations to using IP Multicast delivery? (Choose two.)
A. source sends multiple data streams out each interface

B. no guaranteed delivery mechanism
C. no congestion avoidance
D. not for bandwidth intensive applications

Answer: B,C
QUESTION NO: 73
Which routing protocol supports a flexible area structure using routing levels one and two?
A. IS-IS
B. EIGRP
C. BGP
D. OSPF
Answer: A
m
QUESTION NO: 74
Scalability is provided in the server farm module by which of the following design strategies?
A. up to 10 Gbps of bandwidth at the access level

.co
B. redundant servers at the access level
sts
C. modular block design at the access level
D. high port densities at the access level
lTe
Answer: C
tua
QUESTION NO: 75
Which VPN management feature would be considered to ensure that the network had the least
Ac
disruption of service when making topology changes?
A. path MTU discovery

B. dynamic reconfiguration
C. auto setup
D. remote management
Answer: B
QUESTION NO: 76
Which IOS QoS enhancement was created to address scalability and bandwidth guarantee
issues?

A. RSVP
B. IntServ
C. DiffServ
D. WFQ
Answer: A
QUESTION NO: 77
You are the Cisco Network Designer. What is the term for a logical SAN which provides isolation
among devices physically connected to the same fabric?
A. virtual storage area network

B. Virtua LAN
C. Virtual Output Queuing
m
D. InterSwitch Link
Answer: A
.co
sts
QUESTION NO: 78
A security analysis at The Potomac Canal Company recommends installing an IDS appliance and
lTe
a firewall appliance. These appliances should connect directly into a Layer 3 switch. A load
balancer and SSL termination have also been recommended.Potomac's management have
expressed concern over the cost. You suggest using integrated blades. What is one advantage
tua
and one disadvantage of your design proposal? (Choose two.)
A. Increased usage of standalone devices is cost-effective.

Ac
B. Putting all security devices in a single chassis provides a single point of failure.
C. Using integrated blades would only require two devices.
D. The data center would need several devices to achieve its goal.
Answer: B,C
QUESTION NO: 79
Which typical enterprise campus requirement ensures that the network supports the required
applications and that data flows within the required time frames?
A. manageability
B. availability

C. functionality
D. performance
Answer: C
QUESTION NO: 80
Which routing protocol best fits these requirements?
- Supported by multiple router vendors

- Requires minimum router CPU and memory resources
- Uses a simple routing metric
- Supports manual or automatic route summarization
A. IS-IS
m
B. OSPF
C. RIPv2
D. EIGRP
.co
Answer: C
sts
lTe
QUESTION NO: 81
Please match the Cisco client security software application to its description.
tua
(1) Cisco NAC Appliance Agent

(2) Cisco Trust Agent
(3) Cisco Secure Services Client
Ac
(4) Cisco Security Agent
(I)client-side component provides device-based registry scans

(II)threal proectior application prevents malicious behavior before it can occur
(III)singe authenication framework works on multiple device types
(IV)application determines if security or management tools are installed and current
A. (I)-(1);(II)-(4);(III)-(2);(IV)-(3)
B. (I)-(4);(II)-(1);(III)-(3);(IV)-(2)
C. (I)-(2);(II)-(4);(III)-(3);(IV)-(1)
D. (I)-(1);(II)-(4);(III)-(3);(IV)-(2)
Answer: D

QUESTION NO: 82
When is the site-to-site remote access model appropriate? (Choose one.)
A. for use by mobile users

B. for a group of users in the same vicinity sharing a connection
C. for multiple ISDN connections
D. for modem concentrated dial-up connections
Answer: B
QUESTION NO: 83
m
You are the Cisco Network Designer. Which layer NAS operating mode are ACL filtering and
bandwidth throttling only provided during posture assessment?
A. Layer 3
.co
B. out-of-band
sts
C. Layer 4
D. Layer 2
lTe
Answer: B
tua
QUESTION NO: 84
Please match the Cisco STP enahancement term to its definition.

Ac
(1) PortFast
(2) UplinkFast
(3) BackboneFast
(4) Loop guard
(5) Root guard
(I)shuts down a port that receives a BPDU when enabled

(II)cuts convergence time by mas-age for indirect failure
(III)prevents the aliernate or root port from being designated in absence of BPDUs
(IV)causes Layer 2 LAN interface access port to immediately enter the forwarding state
(V)helps prevent bridging loops due to jni-directional link failures on point-to-point links
A. (I)-(4);(II)-(2);(III)-(3);(IV)-(5);(V)-(1)

B. (I)-(4);(II)-(3);(III)-(2);(IV)-(5);(V)-(1)
C. (I)-(4);(II)-(2);(III)-(1);(IV)-(5);(V)-(3)
D. (I)-(3);(II)-(2);(III)-(4);(IV)-(5);(V)-(1)
Answer: A
QUESTION NO: 85
When designing the WAN module within the enterprise edge, which document is used to specify
the connectivity and performance agreements with the service provider?
A. RFP
B. RFC
C. SOW
D. SLC/SLA
m
Answer: D
.co
QUESTION NO: 86
sts
Please match the spanning-tree term to its description.

lTe
(1) CST
(2) MST
(3) STP
tua
(4) RSTP
(5) PVST+
Ac
(I)icentical to 802.1w
(II)assurnes one spraining-tree instance for each bridged network regardless of number of VLANs
(III)provides a separate instance of 802.1w for each VLAN
(IV)Cisco STP enhancement providing a separate 802.1D spanning tree instance for each VLAN
(V)original 802.1D version providing loo-free topology in a network with red-indant links
A. (I)-(2);(II)-(5);(III)-(1);(IV)-(4);(V)-(3)
B. (I)-(2);(II)-(5);(III)-(4);(IV)-(1);(V)-(3)
C. (I)-(1);(II)-(5);(III)-(2);(IV)-(4);(V)-(3)
D. (I)-(2);(II)-(5);(III)-(3);(IV)-(4);(V)-(1)
Answer: A

QUESTION NO: 87
Which content networking device allows bandwidth configuration settings so that streaming
content will not interfere with other network traffic?
A. Content Engine
B. IP/TV Control Server
C. IP/TV Broadcast Server
D. Content Distribution Manager
Answer: B
QUESTION NO: 88
What is the first step that you would use Cisco Product Advisor for when selecting a router for an
m
Edge solution?
A. select the number of LAN ports required

B. select the number of WAN ports required
.co
C. determine types of protocols to be supported
sts
D. determine the environment in which the router will be used
Answer: D
lTe
QUESTION NO: 89
tua
Which statement about CiscoWorks 2000 Inventory Manager is true?
A. When the configuration of a device changes, the inventory is automatically updated.

Ac
B. It scans and records the operational status of devices.

C. It uses SNMP v1.
D. It scans devices for hardware information.
Answer: D
QUESTION NO: 90
To securely transport EIGRP traffic, a network administrator will build VPNs between sites. What
is the best method to accomplish the transport of EIGRP traffic?
A. IPSec in tunnel mode

B. GRE with IPSec in tunnel mode

C. IPSec in transport mode
D. GRE with IPSec in transport mode
Answer: D
QUESTION NO: 91
What are disadvantages to storage directly attached to the application servers? (Choose three.)
A. reliability
B. scalability
C. manageability
D. redundancy
Answer: B,C,D
m
QUESTION NO: 92
.co
What four functions does Web Cache Communication Protocol (WCCP) incorporate? (Choose
sts
four.)
A. scalability
lTe
B. service assurance
C. load balancing
D. fault tolerance
tua
E. remote management
Answer: A,B,C,D
Ac
QUESTION NO: 93
The network administrator would like to generate synthetic traffic using the Service Assurance
Agent contained in Cisco IOS. Which CiscoWorks network management application will be used to
report the latency and availability for configured traffic operations on an end-to-end and hop-by-
hop (router-to-router) basis?
A. nGenius Real-Time Monitor

B. Device Fault Manager
C. CiscoView
D. Internetwork Performance Monitor

Answer: D
QUESTION NO: 94
Which three things can be restricted by the Class of Service in a traditional PBX? (Choose three.)
A. dialed numbers
B. dial plans
C. voice mail prompts
D. phone features
Answer: A,B,D
m
QUESTION NO: 95
What is high availability?
A. reduced MTBF
.co
B. redundant infrastructure
sts
C. continuous operation of computing systems
D. clustering of computer systems
lTe
Answer: C
tua
QUESTION NO: 96
What two choices can you make when redundancy is required from a branch office to a regional
Ac
office? (Choose two.)
A. dual Wan links to the regional office

B. dual Wan links to another branch office
C. multiple Frame Relay PVCs
D. single links - one to the regional office and one to another branch office
Answer: A,D
QUESTION NO: 97
ABC Company has 1500 managed devices and 15,000 end users on a campus network. LAN
Management Solution (LMS) is being deployed as the network management application. What is
the recommended number of network management server(s)?

A. 2
B. 3
C. 1
D. 4
Answer: C
QUESTION NO: 98
When dealing with transparent caching, where should the Content Engines be placed?
A. close to the servers

B. close to the end users
C. in front of web server farms
D. at the Internet edge
m
Answer: B
.co
QUESTION NO: 99
sts
Which one is not the feature of the Cisco Unified Wireless Network architecture?
lTe
A. mobility services
B. network unification
C. remote access
tua
D. network management
Answer: C
Ac
QUESTION NO: 100
Sun Stable is a global insurance company with headquarters located in Houston, Texas. The
campus there is made up of a number of office buildings located within the same vicinity. In 2003,
a new building, Building 331B was added. The additional building houses approximately 1000
employees. Rather than deploy a private branch exchange (PBX) in the new building, Sun Stable
has decided to implement an IP telephony solution. External calls will be carried across a MAN link
to another building, where a gateway connects into the worldwide PBX network of Sun Stable.
Voice mail and unified messaging components are required and all IP phones and workstations
should be on separate VLANs and IP subnets.
Which IP telephony deployment best suits their need?

A. single-site
B. clustering over the WAN
C. multisite with distributed call processing
D. multisite with centralized call processing
Answer: A
QUESTION NO: 101
The Schuyler and Livingston Iron Works has been working on getting its network security under
control.
It has set up VPN with IPSec links to its suppliers. It has installed network vulnerability scanners to
proactively identify areas of weakness, and it monitors and responds to security events as they
m
occur. It also employs extensive access control lists, stateful firewall implementations, and
dedicated firewall appliances. The company has been growing very fast lately and wants to make
sure it is up to date on security measures. .co
Which two areas of security would you advise the company to strengthen? (Choose two.)
sts
A. secure connectivity
B. security management
lTe
C. identity
D. intrusion protection
tua
Answer: B,C
Ac
QUESTION NO: 102
Which QoS requirement applies to streaming video traffic?
A. one-way latency of 150 ms to 200 ms

B. jitter of 30 ms or less
C. packet loss of 2 percent or less
D. 150bps of overhead bandwidth
Answer: C
QUESTION NO: 103
____ dBm is the recommended radius of a cell for a voice-ready wireless network.

A. 6
B. 7
C. 10
D. 4
Answer: B
QUESTION NO: 104
Which three components comprise the AVVID framework? (Choose three.)
A. common network infrastructure

B. abstracted integration
C. intelligent network services
D. network solutions
m
Answer: A,C,D
.co
QUESTION NO: 105
sts
A virtual storage area network (VSAN) is a collection of ports from a set of connected Fibre
Channel switches, that form a virtual fabric. Which technology allows centralized storage services
lTe
to be shared across different VSANs?
A. FSPF
tua
B. FICON
C. SANTap
D. IVR
Ac
Answer: D
QUESTION NO: 106
For acceptable voice calls, the packet error rate should be less than___%
A. 2.5
B. 0.01
C. 1
D. 0.1
Answer: C

QUESTION NO: 107
Users of a site-to-site VPN are reporting performance problems. The VPN connection employs
IPSec and GRE and traverses several Ethernet segments. The VPN packets are being
fragmented as they traverse the links. What would be two methods to overcome this problem?
(Choose two.)
A. Set the MTU higher than 1500 bytes.

B. Employ path MTU discovery.
C. Turn off pre-fragmentation for IPSec.
D. Set the MTU value to 1400 bytes.
Answer: B,D
m
QUESTION NO: 108 .co
Which three are used in configuring Call Manager dial plans? (Choose three.)
sts
A. route pattern
B. route list
C. route group
lTe
D. gateway list
Answer: A,B,C
tua
QUESTION NO: 109

Ac
Which two benefits does VoFR provide? (Choose two.)
A. bandwidth efficiency
B. congestion notification
C. heterogeneous network
D. cell-switching
Answer: A,B
QUESTION NO: 110
Which two statements are true about MLP interleaving? (Choose two.)

A. It fragments and encapsulates all packets in a fragmentation header.
B. Packets larger than the fragmentation size are always fragmented, and cannot be interleaved,
even if the traffic is voice traffic.
C. Packets smaller than the fragmentation size are interleaved between the fragments of the
larger packets.
D. It fragments and encapsulates packets that are longer than a configured size, but does not
encapsulate smaller packets inside a fragmentation header.
Answer: C,D
QUESTION NO: 111
What are two design guidelines for VoIP networks? (Choose two.)
A. Jitter should be less then 40 ms.
m
B. Delay should be no more than 10 ms.
.co
C. Managed bandwidth is strongly recommended for voice control traffic.
D. Loss should be no more than 1 percent.
Answer: C,D
sts
lTe
QUESTION NO: 112
Which enterprise caching mode eliminates the need for Layer 4 switches or WCCP enabled
routers to intercept user requests?
tua
A. transparent
B. reverse proxy
Ac
C. proxy
D. direct
Answer: C
QUESTION NO: 113
What is the device weight limit per CallManager in a Cisco IP phone configuration?
A. 3000
B. 5000
C. 2500
D. 6500

Answer: B
QUESTION NO: 114
Which protocol would provide block access to remote storage over WAN links?
A. SCSI-FP
B. FCIP
C. iSCSI
D. eSCSI
Answer: C
m
QUESTION NO: 115
Which three objectives would be met by designing Layer 3 switching in the Campus Backbone of a
medium size installation? (Choose three.)
.co
A. provide a flexible topology with no spanning tree loops
sts
B. increase router peering
C. scale to a large size
D. control broadcasts in the backbone
lTe
Answer: A,C,D
tua
QUESTION NO: 116

Ac
What are three primary activities in the cycle of building an enterprise security strategy? (Choose
three.)
A. administration
B. activity audit
C. policy establishment
D. technology implementation
Answer: B,C,D
QUESTION NO: 117
Captain Marion's Videography delivers Internet digital video using 9 MPEG video encoders and a
statistical multiplexer. Channels are packed into a 6-MHz channel bandwidth.The MPEG

multiplexer monitors and allocates the appropriate bandwidth. The multiplexer measures available
bandwidth and feeds back signaling to the MPEG encoders. Coding rates are then increased or
decreased. Packet generation from each input source is controlled such that no packets are
dropped and no extra null packets can be generated.
These bandwidth and traffic requirements work best with which mode of video delivery?
A. quality equalization
B. fixed broadcast
C. open looped
D. VoD delivery
Answer: B
m
QUESTION NO: 118
.co
A company is using a multi-site centralized call processing model. Which feature ensures that the
remote site IP phones will still have limited functionality given a WAN outage?
A. TAPI
sts
B. Call Admission Control

C. SRST
lTe
D. MGCP
Answer: C
tua
QUESTION NO: 119

Ac
Which three LAN routing protocols would be appropriate for a small retail organization with a multi-
vendor LAN infrastructure? (Choose three.)
A. IGRP
B. RIPv2
C. RIP
D. OSPF
Answer: B,C,D
QUESTION NO: 120
What is one of the reasons that custom QoS ACLs are recommended over automatic QoS when
configuring ports on a Catalyst 6500 for use with IP phones?
A. 79xx IP phones use a custom protocol to communicate CDP information to the switch.
B. 79xx IP phones do not mark voice packets with optimal DSCP values.
C. 79xx IP phones do not automatically mark voice packets with non-zero DSCP values.
D. 79xx IP phones do not mark protocol packets such as DHCP, DNS, or TFTP with non-zero
DSCP values.
Answer: D
QUESTION NO: 121
What type of Call Admission control in CallManager allows for limits to the bandwidth consumed
by active calls?
A. locations
B. regions
m
C. partitions
D. device Pools .co
Answer: A
sts
QUESTION NO: 122

lTe
Which three components are part of the Intelligent Network Services provided by the Cisco AVVID
framework? (Choose three.)
tua
A. security
B. IP multicasting
C. QoS
Ac
D. IP telephony
Answer: A,B,C
QUESTION NO: 123
A network vulnerability scanner is part of which critical element of network and system security?
A. perimeter security
B. security monitoring
C. host security
D. policy management

Answer: B
QUESTION NO: 124
Which IP telephony deployment model uses an H.225 Gatekeeper-Controlled trunk for call
admission control within existing H.323 environments?
A. multisite with centralized call processing

B. single site with centralized call processing
C. multisite with distributed call processing
D. single site with distributed call processing
Answer: C
m
QUESTION NO: 125
.co
Which two of the following Cisco router platforms support Multicast Distributed Fast Switching?
(Choose two.)
sts
A. 7500 series
B. 12000 series
C. 7200 series with NSE-1
lTe
D. 3600 series
Answer: A,B
tua
QUESTION NO: 126

Ac
You are the Cisco Network Designer. Which of these is a Layer 2 transport architecture that
provides packet-based transmission optimized for data based on a dual ring topology?
A. Resilient Packet Ring

B. Coarse Wave Division Multiplexing
C. Dynamic Trunking Protocol
D. Synchronous Digital Hierarchy
Answer: A
QUESTION NO: 127

To ensure voice packets are kept within the Committed Information Rate (CIR) of a Frame Relay
link, what should be used in the CPE?
A. classification
B. traffic shaping
C. prioritization
D. fragmentation
Answer: B
QUESTION NO: 128
Which three best practices should be implemented at the campus backbone submodule to support
the server farm module? (Choose three.)
m
A. Implement server load balancing.
B. Implement intrusion detection with automatic notification of intrusion attempts in place.
.co
C. Implement highly redundant switching and links with no single points or paths of failure.
D. Implement the Hot Standby Router Protocol (HSRP) for failover protection.
sts
Answer: B,C,D
lTe
QUESTION NO: 129
Please match the Cisco NAC appliance component to its description.

tua
(1) Cisco NAS

(2) Cisco NAA
Ac
(3) Rule-set Lpdates

(4) Cisco NAM
(I)a centralized management point

(II)an in-band cr out-of-band device for network access control
(III)a Windows-based client which allows network access based on the tasks running
(IV)a status crecker for operating systems,antivirus,antispyware,etc
A. (I)-(2);(II)-(3);(III)-(4);(IV)-(1)
B. (I)-(2);(II)-(4);(III)-(3);(IV)-(1)
C. (I)-(3);(II)-(2);(III)-(4);(IV)-(1)
D. (I)-(2);(II)-(3);(III)-(1);(IV)-(4)
Answer: A

QUESTION NO: 130
Acme Costume Company is connecting its manufacturing facilties to its stores with a small point-
to-multipoint Frame Relay IP WAN. Little growth is expected in the network infrastructure.Up to
this point the company has been using a dial-on-demand network. Dropping WAN costs, however,
have led them to consider using a high-speed WAN solution to improve access.
Which two routing protocols could you deploy to support the new larger network while keeping
costs down? (Choose two.)
A. RIP
B. EIGRP
C. RIPv2
m
D. OSPF
Answer: B,D .co

sts
QUESTION NO: 131
What is a criteria of the enterprise composite network model?

lTe
A. defines flexible boundaries between modules for scalability requirements

B. requires specific core, distribution, and access layer requirements to match the model
C. clearly defines module boundaries and demarcation points to identify where traffic is
tua
D. includes all modules needed to meet any network design
Answer: C
Ac
QUESTION NO: 132
Which two are characteristics of RSVP? (Choose two.)
A. For RSVP to be end-to-end, all devices must support RSVP.

B. An RSVP compatible QoS mechanism must be used to implement guarantees according to
RSVP reservations.
C. RSVP itself provides bandwidth and delay guarantees.
D. RSVP reservations are maintained by a centralized reservations server.
Answer: A,B

642 873

Enviado por

Dados do documento

Título original

Direitos autorais

Formatos disponíveis

Compartilhar este documento

Compartilhar ou incorporar documento

Opções de compartilhamento

Você considera este documento útil?

Este conteúdo é inapropriado?

Direitos autorais:

Formatos disponíveis

642 873

Enviado por

Direitos autorais:

Formatos disponíveis

Cisco 642-873

642-873 Designing Cisco Network Service

Updated: Sep 30, 2009

Which of these is a Layer 2 transport architecture that provides packet-based transmission

"Pass Any Exam. Any Time." - www.actualtests.com 2

A. use a redundant link to the core

B. use a Layer 2 link between distribution switches

E. use a Layer 3 link between distribution switches without route summarization

"Pass Any Exam. Any Time." - www.actualtests.com 3

Which two of these are characteristics of an IDS sensor? (Choose two.)

A. passively listens to network traffic

E-access and aggregation layers

A. bridging VLANs on two switches

"Pass Any Exam. Any Time." - www.actualtests.com 4

A. another name for a firewall deployed in routed mode

Why is STP required when VLANs span access layer switches?

A. to ensure a loop-free topology

"Pass Any Exam. Any Time." - www.actualtests.com 5

A. use ISL encapsulation

"Pass Any Exam. Any Time." - www.actualtests.com 6

Which of these statements is true of clientless enD.user devices?

A. They do not receive unique IP addresses.

A. NetFlow uses five key fields for the flow.

C. NetFlow examines data in Layers 3 and 4.

What is meant by the term "firewall sandwich"?

A. multiple layers of firewalling

"Pass Any Exam. Any Time." - www.actualtests.com 7

A. signal strength 6dBm, noise level 5dBm

"Pass Any Exam. Any Time." - www.actualtests.com 8

Which two of these are characteristics of an IPS device? (Choose two.)

A. passively listens to network traffic

"Pass Any Exam. Any Time." - www.actualtests.com 9

Which two statements correctly describe an IPS device? (Choose two.)

A. It resembles a Layer 2 bridge

C. Inline interfaces which have no IP addresses cannot be detected

What two descriptions best define DWDM? (Choose two.)

A. a WDM system that is compatible with EDFA technology

QUESTION NO: 29 DRAG DROP

QUESTION NO: 30 DRAG DROP

"Pass Any Exam. Any Time." - www.actualtests.com 11

"Pass Any Exam. Any Time." - www.actualtests.com 12

A. Voice needs to be assigned to the hardware priority queue.

Which two of these are characteristics of multicast routing? (Choose two.)

"Pass Any Exam. Any Time." - www.actualtests.com 13

A. Proper placement depends on the VLAN assignment.

C. Place it inside the firewall to make design and management easier.

A. Layer 1 intercontroller roaming

"Pass Any Exam. Any Time." - www.actualtests.com 14

D. The bus is limited to 25 meters in length.

"Pass Any Exam. Any Time." - www.actualtests.com 15

"Pass Any Exam. Any Time." - www.actualtests.com 16

Which statement about IDS/IPS design is correct?

"Pass Any Exam. Any Time." - www.actualtests.com 17

A. QoS must be set to Platinum

C. QoS must be set to Gold

Which path selection protocol is used by Fibre Channel fabrics?

"Pass Any Exam. Any Time." - www.actualtests.com 18

Which of these statements best describes VPLS?

A. Neither broadcast nor multicast traffic is ever flooded in VPLS.

A. to support transparency for Layer 2 frames

Which two of these correctly describe Fibre Channel? (Choose two.)

A. supports multiple protocols

"Pass Any Exam. Any Time." - www.actualtests.com 19