Share your ROUTE v2.0 Experience

Hi guys,

Today I pass the CCNP route with 84X.
I just completely covered all quizes of digital tut and Kikavich dump.
The total number of quiz is 60, and close to 10 questions are new one.

The new quizes is as below.(Thanks Jimmy.)

=================================
2.Which two features ara added in MSCHAP Version 2
a. Backwards-compatibility with MSCHAP version 1
b. Using the MD5 hash for stronger security
c. Ability to change an expired password
d. using 3 way handshakes for authentication
e. mutual authentication between peers
Ans: C, E

4.What is the default authentication in RIPv2 when authentication is enabled
a. SHA1 authentication
b. Enable password authentication
c. Plaintext authentication
d. MD5 authentication
Ans: C

1. multicast application must be accessible between sites, but not be accessible outside of the organisation. Based on the scoping requirements, the multicast group address for the application will be allocated out of which range ?
a. FF00::/16
b. FF08::/16
c. FF02::/16
d. FF0E::/16
Ans: B

3. What are the two benefits of BGP peer groups
a. support groups of paths
b. A configuration change can be applied simultaneously to all peers in the peer group
c. optimize backdoor routes
d. updated via multicast
e. each neighbour in a peer group can have different inbound BGP Policies
f. they use soft updates to minimize bandwidth consumption
Ans: B, F

4. true statement about conditional debugging
a. limited to Ethernet, serial, and multilink interfaces
b. generates debug messages only for packets entering the router
c. limit the output to a specific interface
d. support only one condition at a time
Ans: C

5. VPN support for IPv4 and IPv6 address families. Which command enables a VRF that supports these requirements?
a. Router(config-vrf)#route-target 004:006
a. Router(config)#ip vrf CUSTOMER
a. Router(config)#vrf definition CUSTOMER
a. Router(config-vrf)#rd 004:006
Ans: C

6. what are the two correct statements about enable secret and enable password command
a. the enable password command has a strong encryption algorithm than enable secret
b. if both commands are missing from the global configuration, vty lines use the console password
c. the enable secret command is backwards compatible with more versions of IOS
d. the enable secret and enable password commands must be used together
e. the enable secret command overrides enable password
Ans: C, E

7. Which feature is supported with stateful NAT64 ?
a. IP multicast
b. NAT44 and NAT64 on the same interface
c. VFR
d. FTP and ICMP on an application layer gateway
Ans: C

8. which of the following situations results in a routing loop ?
a. when you have a single point of redistribution
b. when you use NAT translation on the edge of your network
c. when you implement contiguous IP routing blocks
d. when you implement noncontiguous IP routing blocks
e. when you have multiple points of redistribution
Ans: E

1
Which two tasks must you perform to configure a BGP peer group ?
a. Configure the soft-update value
b. Set the advertisement interval
c. Assign neighbours to the peer group
d. Activate each neighbour
e. Activate the default route
Ans: C, D

3
which condition prevents the establishment of a DMPVN tunnel between two spokes ?
a. HSRP is enabled on the spoke devices
b. IPsec is enabled on the spoke devices
c. the two spokes are behind different PAT devices
d. the two spokes have different tunnel keepalive settings.
Ans: C

=================================

3 labs ; EIGPR and OSPF sim and Eigrp Stub.

Be careful about Eigrp stub Sim, you should apply route summary as 255.255.0.0.
255.255.240.0 didn’t work.

Hi,

DRAG AND DROP
New drag and drop which is difficult if you don’t know acronyms,
there are 6 options that you have to assign to either CoPP or MPP
Nothing else is written, so you have know that it’s about control plane
and management policies (Don’t remember options)

Q1:
Which is minimum level for which user can see full commands but can’t change anything?
A: 0
B: 1
C: 14
D: 15
E: 16

A: C

Q2:
Customer enabled new link to partner using RIPng, how and where is RIPng configured?
A: router
B: interface
C: global – (config)#ipv6 router rip “RIPNG”
D: interface
E: (other)

A: C

Q3:
Which NAT Command to disable dynamic ARP learning on an interface?
A. R(config-if) # ip nat enable
B. R(config-if) # ip nat inside
C. R(config-if)# ip nat outside
D. R(config)# ip nat service
E. R(config)# ip nat allow static host

A: E

Q4:
How to prevent unicast loops in metric type of routing network? (check 3 options)
– by filtering and tagging (don’t remember options specifically) but key is filter and tag

Hi Pun-P,
In questions above this one is wrong:

7. Which feature is supported with stateful NAT64 ?
a. IP multicast
b. NAT44 and NAT64 on the same interface
c. VRF
d. FTP and ICMP on an application layer gateway

But unless there is no E option all are wrong, simple proof is open google cisco nat64 pdf with limitations
and let me quote:
”
Restrictions for Configuring Stateful Network Address
Translation 64:
• IP Multicast is not supported.
• Virtual routing and forwarding (VRF)-aware NAT64 is not supported.
• Application-level gateways (ALGs) FTP and ICMP are not supported.
• Both NAT44 (static, dynamic andPAT) configuration and stateful NAT64 configuration are notsupported
on the same interface.
“

The answer is about Virtual Fragmentation Reassembly (VFR) not VRF
“When Stateful NAT64 is configured on an interface, Virtual Fragmentation Reassembly (VFR) is configured automatically.”
https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/ipaddr_nat/configuration/xe-16/nat-xe-16-book/iadnat-stateful-nat64.html

Lets be sure of our answers before posting them here:

@ Jimmy: Here are the answers to the following questions:

6. what are the two correct statements about enable secret and enable password command
a. the enable password command has a strong encryption algorithm than enable secret
b. if both commands are missing from the global configuration, vty lines use the console password
c. the enable secret command is backwards compatible with more versions of IOS
d. the enable secret and enable password commands must be used together
e. the enable secret command overrides enable password

Answer: B and E

The enable password command is backward compactible as it was first introduced with IOS version 10.0 and integrated with version 12.(33)SRA while the enable secret command
was introduced with the 11.0 IOS version.

Also the console line password is used for the vty lines when neither of the enable secret nor enable password commands are configured.

Q1.
which purpose of the AAA accounting feature is true when you use TACACS+ authentication ?
a. It prompts users to change their passwords when they expire
b. it saves a timestamped record of user activity
c. it controls the activities that the user is permitted to perform
d. it verifies the user identity.

Answer:D

The question is referring to authentication and not accounting.

For reference: https://www.cisco.com/c/en/us/td/docs/ios/12_2/security/command/reference/fsecur_r/srfpass.html

7. Which feature is supported with stateful NAT64 ?
a. IP multicast
b. NAT44 and NAT64 on the same interface
c. VFR
d. FTP and ICMP on an application layer gateway
Ans: C

cisco says :

• Virtual routing and forwarding (VRF)-aware NAT64 is not supported.

VFR (Virtual Fragmentation Reassenbly) is different from VRF (Virtual Routing and Forwarding).

passed route exam today…Thanks digitaldut

Total 60 questions including 3 simulations (120 minutes)

All lab simulations are still valid…EIGRP redistribution (FE between R2 and R3),IPv6 virtual link,EIGRP stub

4 DND (from digitaldut).some multiple choice questions from this site but Frame relay and GRE/VPN need to go beyond.

All the best

@Vikchur: congrats on passing your exam. What questions are you talking about that are related to Frame Relay and GRE/VPN?

Am looking for Route nd Switch lab manual version 7 in pdf anyone please help fasto123 at yahoo dot com please. Also latest cisco IOS to use in gns3.

@VIKCHUR
what dump did you try ?

@Data RT and Passpass,

Framerelay-Multipoint config commands (DND)
CHAP-Added features in CHAP v2 compared to CHAP v1
GRE-Features,
ACL-IPV6–vty line traffic filter,timerange periodic,
NAT64-advantages of stateful NAT64 compared to stateless NAT64

Try free dumps in internet relevant to dumpsnetwork.com (around 477q) but it is most likely digitaldut questions,

Try free dumps in internet actual tests.com dumps (666 questions) but it is too much for this exam.For example more than 100 heavy load questions related to BGP , it is useful for good knowledge but not at all worth putting too much time if u only concentrate certification.

Is this site still valid?

@vikchur

How about kikavich all in one dump? Didn’t you try kikavich all in one?

@ VIKCHUR Thank u for information

There are a lot of dumps in the bosses. I have to work with which I am confused.

300-101 477q
300-101 dexter 1.8
100-101-91q-Prince-V1
All-i one by kikavich
Digital tut_dexter
jazzy 477
kikavich v4 june update
Only New q not in the IN 477
which one should I study :(

Hi DataRT, Thanks for your correction to question 6.

However I disagree with you on Q1:
which purpose of the AAA accounting feature is true when you use TACACS+ authentication ?
a. It prompts users to change their passwords when they expire
b. it saves a timestamped record of user activity
c. it controls the activities that the user is permitted to perform
d. it verifies the user identity.

I think the answer is B, not D. The question asks about the accounting feature when using tacacs+ authentication. so i read that as: you have used tacacs+ to authenticate. now tell me about accounting feature.

thanks

I just copied the updates by Jimmy.
Check the correct answers by yourself.
Thanks!

has anyone taken the exam recently ? is the material in digitaltut enough to pass?

@ Marco:

If you assume the question was referring to accounting, then you should assume same for authorization as both accounting and authorization features are activated after a user is authenticated. This means you can as well choose option C (it controls the activities that the user is permitted to perform), an authorization feature, as one answer too.

Since the question wasn’t specific as per a particular AAA feature, you should go with authentication: “it verifies the user identity.”

Hi donald,

No, you will fail the exam if you study only digitaltut.

I passed it yesterday. For preparation, I completely covered all quizes on digital tut and Kikavich dump even though close to 10 questions were new.

@Pun-P:

Congrats!

What DND questions did you get?

Hi bros,

Which one should I take? Please someone verify this question “Which purpose of the AAA accounting feature is true when you use TACACS+ authentication ?”
B or D. Every points of view is valid. I just take from “Networklessons.com”

AAA stands for Authentication, Authorization and Accounting:
Authentication: Verify the identity of the user, who are you?
Authorization: What is the user allowed to do? what resources can he/she access?
Accounting: Used for billing and auditing.

Answer is D.

Hi All,

I need help! Failed last month, about to retake next week.

Can anyone tell me or provide new questions?

Does anyone have the e-book for any of the CCNP exams

i will take the exam after 2 hours from now, i will post my update here after that.

I wish I will pass in the exam.

Hi @Pubg-King,

Best of luck, and please update us after.

Goodluck!!

@Pubg-King
Best of luck

@Pubg-King best of luck dude

kikavich all-in-one 135q do you know which page you are on?

@pubg-King,
Good luck dude

kikavich june update is said that it is ?
is it true ?

@Pubg-King please share your experience

anyone has the last and good dumps ?

Which is minimum level for which user can see full commands but can’t change anything?
A: 0
B: 1
C: 14
D: 15
E: 16

??

Ans: C

Jimmy already shown it. see at 162

paased , 10 new questins but not that hard
same simulation
dnd same
a questions about entry in cef adjencency tabe if next fails to write mac address
glunt,geant ,null,discard

my bad.. not him…. someone., at digitaltut..

@networker
i got that Q also

Hi dzzz,

DnD can cover digitaltut?

Which is minimum level for which user can see full commands but can’t change anything?
A: 0
B: 1
C: 14
D: 15
E: 16

Ans: C

I don’t understand this. Priv level 14? I thought this was a customizable priv level? Why is the answer not B? Thanks for your help

how to prevent domain loops?
a)preventing using AD
b)preventing by filtering on subnet while redistribution
c)preventing on route tag using distribute list
d)preventing using eigrp default AD defeat loop

@dzzz congrats dear….thumb up…please try to remember more questions from pool of 10 questions to kill this myth
thanks

Hi Marco, I’m not expert. But here’s some reason to choose C, Cisco have 0~15 Privilege levels
I’m just browse from some site and i found out. more info here “https://networklessons.com/cisco/ccie-routing-switching/aaa-local-command-authorization/”

Level 0: Only a few commands are available, the most used command is probably ‘enable’.
Level 1: This is the default exec user level. You can use some of the show commands but you won’t be able to configure anything.
Level 15: The highest privilege level, also known as “enable mode” or “privileged mode“.
Level 16: don’t have in Cisco privilege mode.
so we assume that C would be the answer…

@networker

B is the right answer.

User EXEC mode — privilege level 1
Privileged EXEC mode — privilege level 15

When you log in to a Cisco router under the default configuration, you’re in user EXEC mode (level 1). From this mode, you have access to some information about the router, such as the status of interfaces, and you can view routes in the routing table. However, you can’t make any changes or view the running configuration file.

@networker
ans: B,C

@A@W you are right.possible answer should be B

@networker

Plz share the dumps + VCE file you are using to prepare for CCNP Route.

other q about snmp logging
logging host x.x.x.x trap 5

send notification and above…. to server x.x.x.x