[Free] 2017(Apr) Ensurepass Testking Cisco 100-105 Latest Dumps 141-150

Ensurepass
2017 April Cisco Official New Released 100-105 Q&As
100% Free Download! 100% Pass Guaranteed!
http://www.ensurepass.com/100-105.html

Interconnecting Cisco Networking Devices Part 1 v3.0 (ICND1)

 

QUESTION 141

What does the “Inside Global” address represent in the configuration of NAT?

 

A.

the summarized address for all of the internal subnetted addresses

B.

the MAC address of the router used by inside hosts to connect to the Internet

C.

a globally unique, private IP address assigned to a host on the inside network

D.

a registered address that represents an inside host to an outside network

 

Correct Answer: D

Explanation:

NAT: Local and Global Definitions

http://www.cisco.com/en/US/tech/tk648/tk361/technologies_tech_note09186a0080094837.shtml

 

Cisco defines these terms as:

Inside local address–The IP address assigned to a host on the inside network. This is the address configured as a parameter of the computer OS or received via dynamic address allocation protocols such as DHCP. The address is likely not a legitimate IP address assigned by the Network Information Center (NIC) or service provider.

Inside global address–A legitimate IP address assigned by the NIC or service provider that represents one or more inside local IP addresses to the outside world.

Outside local address–The IP address of an outside host as it appears to the inside network. Not necessarily a legitimate address, it is allocated from an address space routable on the inside.

Outside global address–The IP address assigned to a host on the outside network by the host owner.

The address is allocated from a globally routable address or network space.

These definitions still leave a lot to be interpreted. For this example, this document redefines these terms by first defining local address and global address. Keep in mind that the terms inside and outside are NAT definitions. Interfaces on a NAT router are defined as inside or outside with the NAT configuration commands, ip nat inside destination and ip nat outside source . Networks to which these interfaces connect can then be thought of as inside networks or outside networks, respectively.

Local address–A local address is any address that appears on the inside portion of the network.

Global address–A global address is any address that appears on the outside portion of the network.

 

 

QUESTION 142

The ip helper-address command does what?

 

A.

assigns an IP address to a host

B.

resolves an IP address from a DNS server

C.

relays a DHCP request across networks

D.

resolves an IP address overlapping issue

 

Correct Answer: C

Explanation:

http://cisconet.com/tcpip/dhcp/107-how-to-use-ip-helper-address-to-connect-remote-dhcp-server.html

 

When the DHCP client sends the DHCP request packet, it doesn’t have an IP address. So it uses the all-zeroes address, 0.0.0.0, as the IP source address. And it doesn’t know how to reach the DHCP server, so it uses a general broadcast address, 255.255.255.255, for the destination.

So the router must replace the source address with its own IP address, for the interface that received the request. And it replaces the destination address with the address specified in the ip helper-address command. The client device’s MAC address is included in the payload of the original DHCP request packet, so the router doesn’t need to do anything to ensure that the server receives this information. The router then relays the DHCP request to the DHCP server.

 

 

QUESTION 143

When configuring NAT, the Internet interface is considered to be what?

 

A.

local

B.

inside

C.

global

D.

outside

 

Correct Answer: D

Explanation:

The first step to deploy NAT is to define NAT inside and outside interfaces. You may find it easiest to define your internal network as inside, and the external network as outside. However, the terms internal and external are subject to arbitration as well. This figure shows an example of this.

 

clip_image001

 

Reference: http://www.cisco.com/c/en/us/support/docs/ip/network-address-translation- nat/13772-12.html#topic2

 

 

QUESTION 144

DRAG DROP

Drag the definition on the left to the correct term on the right. Not all definitions on the left will be used.

 

clip_image003

 

Correct Answer:

clip_image005

 

 

QUESTION 145

A network administrator cannot connect to a remote router by using SSH. Part of the show interfaces command is shown.

 

router#show interfaces

 

Serial0/1/0 is up, line protocol is down

 

At which OSI layer should the administrator begin troubleshooting?

 

A.

physical

B.

data link

C.

network

D.

transport

 

Correct Answer: B

Explanation:

https://learningnetwork.cisco.com/thread/12389

 

I think the indication here is “Serial 0 is up, line protocol is down”. What causes this indication? Correct me if I am wrong. When you have this indication, a cable unplugged is not a correct answer. If you check the output of your “show interface serial 0” command again, you should notice it as “Serial 0 is down, line protocol is down. Under the “show ip int brief” you should see status = down and protocol = down as opposed to up, down. Because you disconnected the cable, layer 1 will go down, which is indicated by the serial 0 down status. The line protocol status is for layer 2. So, a cable unplugged is not a correct answer to “Serial 0 is up, line protocol is down”. Up/down means that the physical layer is OK, but there is a problem with the data link link (line protocol).

 

 

 

 

 

 

 

 

 

 

QUESTION 146

Refer to the exhibit. A company wants to use NAT in the network shown. Which commands will apply the NAT configuration to the proper interfaces? (Choose two.)

 

clip_image006

 

A.

R1(config)# interface serial0/1

R1(config-if)# ip nat inside

B.

R1(config)# interface serial0/1

R1(config-if)# ip nat outside

C.

R1(config)# interface fastethernet0/0

R1(config-if)# ip nat inside

D.

R1(config)# interface fastethernet0/0

R1(config-if)# ip nat outside

E.

R1(config)# interface serial0/1

R1(config-if)# ip nat outside source pool 200.2.2.18 255.255.255.252

F.

R1(config)# interface fastethernet0/0

R1(config-if)# ip nat inside source 10.10.0.0 255.255.255.0

 

Correct Answer: BC

Explanation:

For NAT, you need to define which interfaces are inside and which are outside. The outside interface is the one that connects to the external network, and the one that will be used for translating addresses. The inside interface is for the internal network, and defines the network IP addresses that will get translated
to the one specified in the outside network.

 

 

QUESTION 147

What happens when computers on a private network attempt to connect to the Internet through a Cisco router running PAT?

 

A.

The router uses the same IP address but a different TCP source port number for each connection.

B.

An IP address is assigned based on the priority of the computer requesting the connection.

C.

The router selects an address from a pool of one-to-one address mappings held in the lookup table.

D.

The router assigns a unique IP address from a pool of legally registered addresses for the duration of the connection.

 

Correct Answer: A

Explanation:

http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/nat_staticpat.html

 

Static PAT translations allow a specific UDP or TCP port on a global address to be translated to a specific port on a local address. That is, both the address and the port numbers are translated.

 

Static PAT is the same as static NAT, except that it enables you to specify the protocol (TCP or UDP) and port for the real and mapped addresses. Static PAT enables you to identify the same mapped address across many different static statements, provided that the port is different for each statement. You cannot use the same mapped address for multiple static NAT statements.

 

Port Address Translation makes the PC connect to the Internet but using different TCP source port.

 

 

QUESTION 148

DRAG DROP

Various protocols are listed on the left. On the right are applications for the use of those protocols. Drag the protocol on the left to an associated function for that protocol on the right. (Not all options are used.)

 

clip_image008

 

Correct Answer:

clip_image010

 

 

 

 

 

QUESTION 149

Which of the following statements are TRUE regarding Cisco access lists? (Choose two.)

 

< /table>

 

Correct Answer: AC

Explanation:

In an inbound access list, packets are filtered as they enter an interface. Extended access lists are used to filter protocol specific packets. Access lists can be used in a variety of situations when the router needs to be given guidelines for decision-making. These situations include:

Filtering traffic as it passes through the router

To control access to the VTY lines (Telnet)

To identify “interesting” traffic to invoke Demand Dial Routing (DDR) calls

To filter and control routing updates from one router to another

There are two types of access lists, standard and extended. Standard access lists are applied as close to the destination as possible (outbound), and can only base their filtering criteria on the source IP address. The number used while creating an access list specifies the type of access list created. The range used for standard access lists is 1 to 99 and 1300 to 1999. Extended access lists are applied as close to the source as possible (inbound), and can base their filtering criteria on the source or destination IP address, or on the specific protocol being used. The range used for extended access lists is 100 to 199 and 2000 to 2699.

Other features of access lists include:

Inbound access lists are processed before the packet is routed. Outbound access lists are processed after the packet has been routed to an exit interface. An “implicit deny” is at the bottom of every access list, which means that if a packet has not matched any preceding access list condition, it will be filtered (dropped). Access lists require at least one permit statement, or all packets will be filtered (dropped). One access list may be configured per direction for each Layer 3 protocol configured on an interface The option stating that in an inbound access list, packets are filtered before they exit an interface is incorrect.

 

Packets are filtered as they exit an interface when using an outbound access list. The option stating that a deny statement must be specified at the end of each access list in order to filter unwanted traffic is incorrect. There is an implicit deny at the bottom of every access list.

When a line is added to an existing access list, it is not inserted at the beginning of the access list. It is inserted at the end. This should be taken into consideration. For example, given the following access list, executing the command access-list 110 deny tcp 192.168.5.0 0.0.0.255 any eq www would have NO effect on the packets being filtered because it would be inserted at the end of the list, AFTER the line that allows all traffic.

 

access-list 110 permit ip host 192.168.5.1 any

access-list 110 deny icmp 192.168.5.0 0.0.0.255 any echo

access-list 110 permit any any

 

 

QUESTION 150

How many addresses will be available for dynamic NAT translation when a router is configured with the following commands?

 

Router(config)#ip nat pool TAME 209.165.201.23 209.165.201.30 netmask 255.255.255.224

 

Router(config)#ip nat inside source list 9 pool TAME

A.

In an inbound access list, packets are filtered as they enter an interface.

B.

In an inbound access list, packets are filtered before they exit an interface.

C.

Extended access lists are used to filter protocol-specific packets.

D.

You must specify a deny statement at the end of each access list to filter unwanted traffic.

E.

When a line is added to an existing access list, it is inserted at the beginning of the access list.

A.

7

B.

8

C.

9

D.

10

E.

24

F.

32

 

Correct Answer: B

Explanation:

209.165.201.23 to 209.165.201.30 provides for 8 addresses.

 

100% Free Download!
—Download Free Demo:100-105 Demo PDF
100% Pass Guaranteed!
Download 2017 Ensurepass 100-105 Full Exam PDF and VCE Q&As:269
—Get 10% off your purchase! Copy it:8GTC-8UIE-M1SC [2017.04.01-2017.04.30]

Ensurepass ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
PDF + VCE Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No

2017 Ensurepass IT Certification PDF and VCE

Proudly powered by WordPress   Premium Style Theme by www.gopiplus.com