EI CCNP CCIE 350-401笔试（含注释）

1.

Which technology is used as the basis for the Cisco SD-Access data plane?

A. iPsec

B. LISP

C. VXLAN

D. 802.1Q

Answer:

C

In SD-Access the control plane is based on LISP (Locator/ID Separation Protocol), the data plane is based on VXLAN 

2.

What is a characteristic of MAC sec?

A. 802.1AE is built between the host and switch using the MKA protocol, which negotiates encryption keys based on the primary session key from a successful 802.1X session.

B. 802.1AE provides encryption and authentication services

C. 802.1AE is negotiated using Cisco AnyConnect NAM and the SAP protocol

D. 802.1AE is built between the host and switch using the MKA protocol using keys generated via the Diffie-Hellman algorithm (anonymous encryption mode)

Answer: D

in 2006 the IEEE ratified the 802.1AE standard, also known as MAC security standard (MACsec). MACsec encrypts all Ethernet frames, irrespective of the upper layer protocol. With MACsec, not only routed IP packets but also IP packets where the source and destination is in the same subnet or even non-IP traffic are encrypted.

我们可以了解到802.1AE是一种二层封装技术，通过封装所有以太网帧，从而实现加密的安全效果。802.1AE可以保护数据内容被抓包获取，同时也能保证数据的完整性

3.

An engineer is working with the Cisco DNA Center API. Drag and drop the methods from the left onto the actions that they are used for on the right.

Answer:

4.

Refer to the exhibit. Cisco DNA Center has obtained the username of the client and the multiple devices that the client is using on the network. How is Cisco DNA Center getting these context details?

A, Cisco DNA Center pulled those details directly from the edge node where the user connected.

B, The administrator had to assign the username to the IP address manually in the user database tool on Cisco DNA Center.

C, User entered those details in the Assurance app available on iOS and Android devices.

D, Those details are provided to Cisco DNA Center by the Identity Services Engine.

Answer: D

DNA Center 通过 ISE 获取用户身份信息。

5. After a redundant route processor failure occurs on a Layer 3 device, which mechanism allows for packets to be forwarded from a neighboring router based on the most recent tables?

A, BFD

B, NSF

C, RPVST+

D, RP failover

Answer: B

NSF, non  stop forwaring

乾颐堂提供

思科.华为.Python学习

CCNA｜CCNP｜CCIE｜HCIA｜HCIP｜HCIE

路由交换｜安全｜DC数据中心｜无线｜云计算

等学习资料及视频