642-801

QUESTION 301
You wish to permit all BGP prefixes between /10 and /18 for the 207.0.0.0 network. How
should a BGP prefix list be configured to do this?
A. ip prefix-list 207.0.0.0/8 ge 10 le 18
B. ip prefix-list 207.0.0.0/8 ge 18 le 10
C. ip prefix-list 207.0.0.0/24 ge 10 le 18
D. ip prefix-list 207.0.0.0/24 ge 18 le 10
E. None of the above
Answer: A
Explanation:
With prefix lists, the "ge" means "greater than or equal to" while the le means "less than or equal
to." Here, we want to specify all prefixes greater than or equal to 10 and less than or equal to 18
as specified in choice
A. In addition, we must specify an 8 bit network mask, not a 24 bit
network mask.
QUESTION 302
Routers CK1 and CK2 are configured for BGP as shown below:
RTR CK1
router bgp 200
neighbor 183.215.22.1 remote-as 200
neighbor 183.215.22.1 update-source loopback 1
RTR CK2
router bgp 200
neighbor 147.229.1.1 remote-as 200
These two routers currently have an active BGP peering session between them and they are
able to pass routes to each other. Based on these configuration files, which of the following
are true? (Select three)
A. RTR CK1 and RTR CK2 are running IBGP inside AS 200
B. The IP address of RTR CK1 's Loopback 1 interface is 147.229.1.1.
C. The IP address of RTR CK1 's Loopback 1 interface is 183.215.22.1.
D. RTR CK1 and RTR CK2 are running EBGP between the autonomous systems.
E. RTR CK1 has forced BGP to use the loopback IP address as the source in the TCP
neighbor connection.
Answer: A, B, E
Explanation:
A: The two statements that define a remote AS (autonomous) use the same AS number. Both
routers must belong to the same AS and there IBGP is used.
B: The IP address of the CK1 loopback address is 147.229.1.1 as specified in the neighbor
Actualtests.com - The Power of Knowing

642-801
statement of the CK2 router: neighbor 147.229.1.1 remote-as 200
E: The "neighbor 183.215.22.1 update-source loopback 1" command issued at CK1 makes
CK1 use this loopback for the BGP connection to CK2 . See Note 2 below.
Note 1: Syntax of neighbor command:
Router(config-router)#neighbor
{ip-address | peer-group-name} remote-as as-number
This command specifies a BGP neighbor.
Note 2: For iBGP, you might want to allow your BGP connections to stay up regardless of which
interface is used to reach a neighbor. To enable this configuration, you first configure a loopback
interface and assign it an IP address (neighbor 183.215.22.1 update-source loopback 1). Next,
configure the BGP update source to be the loopback interface (we have to assume this step - it is
not indicated by the exhibit). Finally, configure your neighbor to use the address on the loopback
interface (neighbor 147.229.1.1 remote-as 200).
Incorrect Answers:
C: 183.215.22.1 is the IP address of CK2 , not CK1 .
D: There is only one AS and the routers belong to that AS. Within an AS IBGP is used, not
EBGP.
QUESTION 303
The Certkiller BGP router is configured as shown below:
router bgp 64000
neighbor 172.16.1.1 remote-as 64000
neighbor 10.1.1.2 remote-as 64550
network 200.52.1.192 mask 255.255.255.224
no synchronization
aggregate-address 200.52.1.0 255.255.255.0
The BGP peers 172.16.1.1 and 10.1.1.2 in the above configuration are active, as well as the
interface with IP address 200.52.1.192. Based on this information, which statement below
is true about your configuration?
A. Router CertK has an IBGP connection with neighbor 10.1.1.2.
B. Router CertK has an EBGP connection with the neighbor 172.16.1.1.
C. Router CertK advertises only a route 200.52.1.0 255.255.255.0 in BGP.
D. Router CertK advertises only a route 200.52.1.192 255.255.255.224 in BGP.
E. Router CertK advertises both the routes to 200.52.1.0 255.255.255.0 and 200.52.1.192
255.255.255.224 in BGP.
Answer: E
Explanation:
The aggregate route, 200.52.1.0 255.255.255.0, and the more specific route, 200.52.1.192
255.255.255.224, will both be advertised. To only advertise the aggregate route the summaryonly
option of the aggregate-address command must be used.
Note: The aggregate-address command is used to create an aggregate, or summary, entry in the
BGP table.
Incorrect Answers:
Actualtests.com - The Power of Knowing

642-801
A: The neighbor 10.1.1.2 belongs to another autonomous system and is a EBGP neighbor, not
an IBGP neighbor.
B: Router A and neighbor 172.16.1.1 belong to the same autonomous system and is an IBGP
neighbor, not an EBGP neighbor.
C: The summary-only option of the aggregate-address command is used to only advertise the
summary and not the specific routes.
D: The aggregate route, 200.52.1.0 255.255.255.0, will be advertised as well.
QUESTION 304
The Certkiller network consists of two separate autonomous systems as shown below:

You need to configure Router CK2 as a BGP route reflector and Router CK1 as the client.
Assuming that Router CK3 isn't running BGP, which two of the commands below would
you enter on CK2 to satisfy your goals? (Select two)
A. neighbor 165.50.12.1 remote-as 65100
B. neighbor 165.50.12.2 remote-as 64000
C. neighbor 165.50.12.1 route-reflector-client
D. neighbor 165.50.12.2 route reflector-client
Answer: B, D
Explanation:
B: Router CK2 (config-router)# neighbor 165.50.12.2 remote-as 64000
We configure router CK1 (165.50.12.2) as a neighbor in AS 64000.
D: Router CK2 (config-router)# neighbor 165.50.12.2 route-reflector-client
Configures the router CK2 as a BGP route reflector and configures the specified neighbor
CK1 (165.50.12.2) as its client.
Incorrect Answers:
A: We must specify router CK1 as neighbor, not CK2 itself (165.50.12.1). Furthermore, we
should use the local AS (64000), not the remote AS 65100.
C: We must specify router CK1 as route reflector client, not CK2 itself (165.50.12.1).
QUESTION 305
The Certkiller network consists of a series of routers that are all configured for IBGP.
Which one of the following IBGP characteristics is true?
A. The IBGP routers must always be fully meshed.
B. The IBGP routers can be in a different AS.
C. The IBGP routers must be directly connected.
Actualtests.com - The Power of Knowing

642-801
D. The IBGP routers do not need to be directly connected.
E. None of the above are true.
Answer: D
Explanation:
The IBGP routers do not have to be directly connected. The remote IBGP peers need only be
reachable via a TCP connection. For example, if the network is also running an interior routing
protocol such as EIGRP or OSPF, the remote IBGP router could be many hops away, as long as
it is reachable via the IGP that is being used.
Incorrect Answers:
A: Using route reflectors or confederations a full mesh topology is not necessary.
B: The IBGP routers must be placed in the same AS. Peers that are in different autonomous
systems are using EBGP, not IBGP.
C: The IBGP routers do not have to be directly connected.
QUESTION 306
Which of the following statements regarding BGP peer groups are true? (Select two)
A. Peer members inherit all options of the peer group.
B. Peer groups can be used to simplify BGP configurations.
C. Peer groups are optional non-transitive attributes for BGP.
D. A peer group allows options that affect outbound updates to be overridden.
E. A common name should be used on all routers because this information is passed
between neighbors.
Answer: A, B
Explanation:
A BGP peer group is a group of BGP neighbors with the same update policies.
A: By default members of the peer group inherit all of the configuration options of the peer
group.
Note: Members can also be configured to override these options
B: Peer groups are normally used to simplify router configurations when many neighbors have
the same policy.
Note: BGP neighbors who share the same outbound policies can be grouped together in what is
called a BGP peer group. Instead of configuring each neighbor with the same policy individually,
Peer group allows to group the policies which can be applied to individual peer thus making
efficient update calculation along with simplified configuration.
Incorrect Answers:
C: The only Optional non-transitive attribute in BGP is MED.
D: Does not apply.
E: Using a common router name provides no BGP benefits at all.
Reference: BGP Peer Groups, http://www.cisco.com/warp/public/459/29.html

Actualtests.com - The Power of Knowing

642-801
QUESTION 307
A BGP router is configured as shown below:
interface ethernet 0
ip address 10.10.10.1 255.255.0.0
!
int serial 0
ip address 172.16.1.1 255.255.255.252
!
router bgp 65001
neighbor 192.168.1.1 remote-as 65002
Based on the above configuration, which of the following BGP statements would inject the
10.10.0.0/16 prefix into the BGP routing table?
A. network 10.0.0.0
B. network 10.10.0.0 mask 255.255.0.0
C. network 10.10.10.1 mask 255.255.255.255
D. network 10.10.10.0 mask 255.255.255.0
E. network 10.0.0.0 mask 255.255.0.0
Answer: B
Explanation:
The /16 mask is equal to 255.255.0.0, so answer choice B matches the address and the mask. To
specify the route as classless, the mask keyword should be included or the network will be
summarized at the network boundary.
QUESTION 308
Why would a systems administrator enter in the network command when configuring
BGP?
A. Local routes matching the network command are filtered from the BGP routing table.
B. Local routes matching the network command can be installed into the BGP routing table.
C. Routes matching the network command will be filtered from BGP routing updates.
D. External routes matching the network command will be installed into the BGP routing
table.
E. None of the above.
Answer: B
Explanation:
Use the network router configuration command to permit BGP to advertise a network if it is
present in the IP routing table.
Reference: Building Scalable Cisco Networks (Cisco Press) page 342
QUESTION 309
The Certkiller network is depicted in the following diagram:
Actualtests.com - The Power of Knowing

642-801

Which of the following command sets would you use if you want Certkiller 1 and
Certkiller 2 to exchange BGP routing information? (Select two)
A. Certkiller 2(config)#router bgp 200
Certkiller 2(config-router)#neighbor 10.1.1.1 remote-as 100
B. Certkiller 1(config)#router bgp 100
Certkiller 1(config-router)#exit
Certkiller 1(config)#interface S0
Certkiller 1(config-if)#neighbor 10.1.1.2 remote-as 200
C. Certkiller 1(config)#router bgp 100
Certkiller 1(config-router)#neighbor 10.1.1.2 remote-as 200
D. Certkiller 2(config)#router bgp 100
Certkiller 2(config-router)exit
Certkiller 2(config)#interface S0
Certkiller 2(config-if)#neighbor remote-as 100
E. Certkiller 1(config)#router bgp 100
Certkiller 1(config-router)#network 10.0.0.0
Certkiller 1(config-router)#neighbor 10.1.1.2 remote-as 100
F. Certkiller 2(config)#router bgp 200
Certkiller 2(config-router)#network 10.0.0.0
Certkiller 2(config-router)#network 10.1.1.1 remote-as 200
Answer: A, C
Explanation:
Choices A and C give the correct syntax for configuring EBGP peering sessions.
Incorrect Answers:
B, D: The BGP peering configurations are placed under the BGP routing process, not in
interface configuration mode.
E, F: The network 10.0.0.0 command is not required here, since this is an EBGP peering session
using the directly connected interface. Since each neighbor shares the 10.0.0.0 network they
each already know how to reach this network.

Actualtests.com - The Power of Knowing

642-801
QUESTION 310
Router TK-1 is configured for BGP routing as shown below:
router bgp 65300
network 27.0.0.0
neighbor 192.23.1.1 remote-as 65300
From the perspective of router TK-1, what kind of router is the router with IP address
192.23.1.1?
A. A peer router running IBGP
B. A peer router running EBGP
C. A community member running IBGP
D. A peer group member running IBGP
E. A peer group member running EBGP
Answer: A
Explanation:
Both the local and remote router is configured with the same autonomous system number so they
are peer routers running IBGP.
QUESTION 311
When you're configuring BGP on a Cisco router, what is true of the command network?
A. Local routers matching the network command are filtered from the BGP routing table.
B. Local routers matching the network command can be installed into the BGP routing
table.
C. Sending and receiving BGP updates is controlled by using a number of different filtering
methods.
D. The route to a neighbor autonomous system must have the correct MED applied to be
installed into BGP routing table.
E. None of the above.
Answer: B
Explanation:
The network command allows BGP to advertise an IGP route if it is already in the IP table. A
matching route must exist in the routing table before the network is announced. The network
command is used to permit BGP to advertise a network if it is present in the IP routing table.
QUESTION 312
Router CK1 needs to be configured to advertise a specific network. Which of the following
commands would you use if you wanted to advertise the subnet 154.2.1.0 255.255.255.0 to
the EBGP neighbors on your subnet?
A. Router (config-router)#network 154.2.1.0
B. Router (config-router)#network 164.2.1.0
Actualtests.com - The Power of Knowing

642-801
C. Router (config-router)#network-advertise 154.2.1.0
D. Router (config-router)#network 154.2.1.0 mask 255.255.255.0
E. None of the above
Answer: D
Explanation:
The network command is used to specify the networks to be advertised by the Border Gateway
Protocol (BGP) and multiprotocol BGP routing processes.
Syntax: network network-number [mask network-mask] [route-map map-name]
Mask and route-map are optional. If the mask keyword is configured, then an exact match must
exist in the routing table.
Incorrect Answers:
A: If we do not specify the subnet mask then additional networks are allowed to be advertised.
The classful subnet mask of 154.2.1.0 is 255.255.0.0 - a Class B network.
B: This is using the incorrect IP address, as well as a missing subnet mask.
C: The network-advertise is an invalid command.
QUESTION 313
You are the administrator of a company with BGP connections to multiple ISP's. How
could you configure BGP to make it favor one particular ISP for outbound traffic?
A. Configure weight
B. Enable route reflector
C. Create a distribute list
D. Enable the Longer Autonomous System path option.
E. All of the above.
Answer: A
Explanation:
If the router learns about more than one route to the same destination, the route with the highest
weight will be preferred. Weight is a Cisco BGP parameter that is local to the router. When
terminating multiple ISP connections into the same router, weight can be used to affect which
path is chosen for outbound traffic.
Incorrect Answers:
B: A route reflector cannot be used to influence outbound traffic. A route reflector modifies the
BGP split horizon rule by allowing the router configured as the route reflector to propagate
routes learned by IBGP to other IBGP peers. This saves on the number of BGP TCP sessions
that must be maintained, and also reduces the BGP routing traffic.
C: Distribute lists restrict the routing information that the router learns or advertises. By itself a
distribute list cannot make routes from one ISP be preferred to routers from another ISP.
D: This choice describes ASD path pre-pending, which would be used to influence the path that
incoming traffic takes, not outgoing.

Actualtests.com - The Power of Knowing

642-801
QUESTION 314
What are two solutions to overcome the full mesh requirement with iBGP? (Choose two)
A. BGP groups
B. BGP local preference
C. Route reflector
D. Confederation
E. Aggregate-address
Answer: C, D
Explanation:
In general, all IBGP peers must be configured to be fully meshed. If they are not, then all of the
IBGP routers will not have the updated information from the external BGP routers. There are
two ways to overcome the scalability issues of a full IBGP mesh: route reflectors and
confederations. With route reflectors, internal BGP routers peer only with the route reflector.
With confederations, the AS is broken up into smaller, more manageable sub autonomous
systems.
QUESTION 315
An ISP is running a large IBPG network with 25 routers. The full mesh topology that is
currently in place is inefficiently using up bandwidth from all of the BGP traffic.
What can the administrator configure to reduce the number of BGP neighbor relationships
within the AS?
A. Route reflectors
B. Route maps
C. Route redistribution
D. Peer groups
E. Aggregate addresses
Answer: A, D
Explanation:
In general, all IBGP peers must be configured to be fully meshed. If they are not, then all of the
IBGP routers will not have the updated information from the external BGP routers. There are
two ways to overcome the scalability issues of a full IBGP mesh: route reflectors and
confederations. With route reflectors, internal BGP routers peer only with the route reflector,
and then the route reflectors connect with each other. This can considerably reduce the number
of IBGP sessions. Another solution to the scalability problem of IBGP is the use of
confederations. With confederations, the AS is broken up into smaller, more manageable sub
autonomous systems.
QUESTION 316
Arrange the BGP attributes on the left in order or priority.

Actualtests.com - The Power of Knowing

642-801

Answer:

Explanation:
How the Best Path Algorithm Works:
BGP assigns the first valid path as the current best path. It then compares the best path with the
next path in list, until it reaches the end of the list of valid paths. The following is a list of rules
used to determine the best path.
1. Prefer the path with the highest WEIGHT.
Note: WEIGHT is a Cisco-specific parameter, local to the router on which it's configured.
2. Prefer the path with the highest LOCAL_PREF. Note the following:
o Path without LOCAL_PREF is considered as having the value set with the bgp
default local-preference command, or 100 by default.
3. Prefer the path that was locally originated via a network or aggregate BGP subcommand,
or through redistribution from an IGP. Local paths sourced by network or redistribute
commands are preferred over local aggregates sourced by the aggregate-address
command.
4. Prefer the path with the shortest AS_PATH. Note the following:
o The AS_CONFED_SEQUENCE and AS_CONFED_SET are not included in the
AS_PATH length.
5. Prefer the path with the lowest origin type: IGP is lower than EGP, and EGP is lower
than INCOMPLETE.
6. Prefer the path with the lowest multi-exit discriminator (MED). Note the following:
o This comparison is only done if the first (neighboring) AS is the same in the two
paths; any confederation sub-ASs are ignored. In other words, MEDs are
compared only if the first AS in the AS_SEQUENCE is the same for multiple
paths. Any preceding AS_CONFED_SEQUENCE is ignored.
o If bgp always-compare-med is enabled, MEDs are compared for all paths. This
option needs to be enabled over the entire AS, otherwise routing loops can occur.
Actualtests.com - The Power of Knowing

642-801
o If bgp bestpath med-confed is enabled, MEDs are compared for all paths that
consist only of AS_CONFED_SEQUENCE (paths originated within the local
confederation).
o Paths received from a neighbor with a MED of 4,294,967,295 will have the MED
changed to 4,294,967,294 before insertion into the BGP table.
o Paths received with no MED are assigned a MED of 0, unless bgp bestpath
missing-as-worst is enabled, in which case they are assigned a MED of
4,294,967,294.
o The bgp deterministic med command can also influence this step as demonstrated
in the How BGP Routers Use the Multi-Exit Discriminator for Best Path
Selection.
7. Prefer external (eBGP) over internal (iBGP) paths. If bestpath is selected, go to Step 9
(multipath).
Note: Paths containing AS_CONFED_SEQUENCE and AS_CONFED_SET are local to the
confederation, and therefore treated as internal paths. There is no distinction between
Confederation External and Confederation Internal.
8. Prefer the path with the lowest IGP metric to the BGP next hop. Continue, even if
bestpath is already selected.
9. Check if multiple paths need to be installed in the routing table for BGP Multipath.
Continue, if bestpath is not selected yet.
10. When both paths are external, prefer the path that was received first (the oldest one). This
step minimizes route-flap, since a newer path will not displace an older one, even if it
would be the preferred route based on the next decision criteria (Steps 11, 12, and 13).
Skip this step if any of the following is true:
o The bgp best path compare-routerid command is enabled.
Note: This command was introduced in Cisco IOS(r) Software Releases 12.0.11S, 12.0.11SC,
12.0.11S3, 12.1.3, 12.1.3AA, 12.1.3.T, and 12.1.3.E.
o The router ID is the same for multiple paths, since the routes were received from
the same router.
o There is no current best path. An example of losing the current best path occurs
when the neighbor offering the path goes down.
11. Prefer the route coming from the BGP router with the lowest router ID. The router ID is
the highest IP address on the router, with preference given to loopback addresses. It can
also be set manually using the bgp router-id command.
Note: If a path contains route-reflector (RR) attributes, the originator ID is substituted for the
router ID in the path selection process.
12. If the originator or router ID is the same for multiple paths, prefer the path with the
minimum cluster list length. This will only be present in BGP route-reflector
environments. It allows clients to peer with RRs or clients in other clusters. In this
scenario, the client must be aware of the RR-specific BGP attribute.
13. Prefer the path coming from the lowest neighbor address. This is the IP address used in
the BGP neighbor configuration, and corresponds to the remote peer used in the TCP
connection with the local router.
QUESTION 317
The Certkiller BGP routing table consists of the following network routes:
Actualtests.com - The Power of Knowing

642-801

What is the correct command to summarize these prefixes into a single summary prefix of
192.168.12.0/22 while also allowing for the advertisement of the more specific prefixes?
A. network 192.168.12.0 mask 255.255.252.0
B. network 192.168.12.0 mask 0.0.3.255
C. network 192.168.12.0
D. aggregate-address 192.168.12.0 255.255.252.0
E. aggregate-address 192.168.12.0 255.255.252.0 summary-only
F. aggregate-address 192.168.12.0 255.255.252.0 as-set
Answer: D
Explanation:
To summarize BGP prefixes into one aggregated route, use the "aggregate-address" command.
When used alone, this will advertise the aggregate route, along with the individual specific
routing entries. To advertise only the aggregated route, use the "summary-only" keyword, as
specified in choice E.
QUESTION 318
The Certkiller BGP network is displayed below:

Certkiller 3 is the hub router and Certkiller 1 and Certkiller 2 are the spokes. There are no
virtual circuits between the spoke locations. Each router is in a separate AS. What is
needed to successfully route traffic to the 11.11.11.0/24 network from Certkiller 1?
A. The neighbor 10.10.10.1 next-hop-self command on Certkiller 1.
B. The neighbor 10.10.10.1 next-hop-self command on Certkiller 2.
C. The neighbor 10.10.10.1 next-hop-self command on Certkiller 3.
D. Nothing is required. This is the default behavior on this topology
Answer: C
Explanation:
Actualtests.com - The Power of Knowing

642-801
The following example illustrates the issue:
BGP Next Hop (NBMA)

If the common media as you see in the shaded area above is a frame relay or any NBMA cloud
then the exact behavior will occur as if we were connected via Ethernet. RTC will advertise
180.20.0.0 to RTA with a next hop of 170.10.20.3.
The problem is that RTA does not have a direct PVC to RTD, and cannot reach the next hop. In
this case routing will fail.
In order to remedy this situation a command called next-hop-self is created.
The next-hop-self Command
Because of certain situations with the next hop as we saw in the previous example, a command
called next-hop-self is created. The syntax is:
neighbor {ip-address|peer-group-name} next-hop-self
The next-hop-self command allows us to force BGP to use a specified IP address as the next hop
rather than letting the protocol choose the next hop.
In the previous example, the following configuration solves our problem:
RTC#
router bgp 300
neighbor 170.10.20.1 remote-as 100
neighbor 170.10.20.1 next-hop-self
RTC advertises 180.20.0.0 with a next hop = 170.10.20.2
Reference: http://www.cisco.com/warp/public/459/bgp-toc.html#bgpnexthop
QUESTION 319
Exhibit

Based on the show ip bgp summary output in the exhibit, which two statements are true?
Select two?
A. The BGP session to the 10.1.1.1 neighbor is established.
B. The BGP session to the 10.2.2.2 neighbor is established.
Actualtests.com - The Power of Knowing

642-801
C. The BGP session to the 10.3.3.3 neighbor is established.
D. The router is attempting is attempting to establish a BGP peering to the 10.1.1.1
neighbor.
E. The BGP session to the 10.3.3.3 neighbor is established, but the router has not received
any BGP routing updates from the 10.3.3.3 neighbor.
F. The router is attempting to establish BGP peering with the 10.2.2.2 neighbor.
Answer: C, D
QUESTION 320
You want to hide some of your internal IP subnets from outside networks. By what means
can you conceal the details of your IP addressing scheme to the outside world?
A. Subnetting
B. Supernetting
C. Challenge Handshake Protocol
D. Usernames and passwords
Answer: B
Explanation:
In large internetworks, hundreds or even thousands of networks can exist. In these environments,
it is often not desirable for routers to maintain all these routes in their routing table. Route
summarization (also called route aggregation or supernetting) can reduce the number of routes
that a router must maintain because is it a method of representing a series of network numbers in
a single summary address. By advertising only one large supernet to the outise world, the details
of your IP network scheme can remain hidden.
QUESTION 321
The Certkiller network will be using a new ISP for their Internet connection. The new
Internet provider will be allocating a new registered class C IP address subnet to use. In
order to not have to change out the entire internal IP addressing scheme on your network,
you plan to use NAT to translate all of the internal IP address to the new IP addresses that
are being assigned to Certkiller . You have been assigned the task of making changes so that
the following requirements are met:
Maintain the current IP addressing scheme
Configure Certkiller 's router for network address translation (NAT) so all the
internal computers use the same external IP address
Configure a static translation so Certkiller employees can access their email from the
internet.
Privileged mode password: Certkiller
The IP Addresses are shown below:
Name: Certkiller NAT
SO 192.168.15.1/24
E0 10.100.5.1/24
E-mail Server's External Address
Actualtests.com - The Power of Knowing

642-801
192.168.15.5/24
E-mail Server's Internal Address
10.100.5.5/24
To configure the router click on a host icon that is connected to a router by a serial console
cable.

Answer:
Certkiller NAT#Conf t
Certkiller NAT(config)#Access-list 5 permit 10.100.5.0 0.0.0.255
Certkiller NAT(config)#Ip nat pool lan 192.168.15.1 192.168.15.1 netmask 255.255.255.0
Certkiller NAT(config)#Ip nat inside source list 5 pool lan overload
Certkiller NAT(config)#Ip nat inside source static 10.100.5.5 192.168.15.5
Certkiller NAT(config-if)#Int S0
Certkiller NAT(config-if)#Ip nat outside
Certkiller NAT(config-if)#Int E0
Certkiller NAT(config-if)#Ip nat inside
Certkiller NAT(config-if)#exit
Certkiller NAT(config)#exit
Certkiller NAT#copy run start
QUESTION 322
The Certkiller network is using RIP and IGRP for routing as shown below:

You have been assigned the task of configuring the routers to meet the following
Actualtests.com - The Power of Knowing

642-801
requirements:
In the unlikely event that a link goes down, you have to ensure a backup link exists
The proper metrics must be distributed through the IGRP portion of the network
Based on this information, which of the following should you do? (Select two)
A. Apply the distance command to Main
B. Apply the distance command to CK2
C. Apply the distribute-list command to Main
D. Apply the distribute-list command to CK2
Answer: B, C
Explanation:
B: Most routing protocols, including IGRP and RIP, use the distance command to modify the
administrative distance. We need to change the metric of the RIP routes learned by CK2 .
C: To control the advertising and processing of routes in routing updates the distribute-list
command is used.
Incorrect Answers:
A: We change the administrative distance of RIP routes on CK2 .
D: We should apply the distribute-list command to Main, not to CK2 .
QUESTION 323
Network topology exhibit

Certkiller .com is changing ISPs. As a result, they will need to install an Email server and
utilize network address translation (NAT) for the internal network. Certkiller .com does not
want to change the IP Addresses on all of the internal routers and servers. The new ISP,
Foo Services, will allocate a registered class C address for Certkiller to use. The internal IP
Address scheme will remain the same. Configure the router to provide NAT so that all
internal Certkiller PCs will use the single external IP Address assigned to the router
interface. Configure a static translation so that Certkiller .com's Email server will be
accessible from the Internet.
Name: Certkiller NAT
S0: 192.168.17.1/24
E0: 10.0.216.1/24
Secret Password: Certkiller
Answer:
Actualtests.com - The Power of Knowing

642-801
Certkiller 2> en
Certkiller 2# config t
Certkiller nat(config)#access-list 2 deny host 10.0.216.5
Certkiller nat(config)#access-list 2 permit 10.0.216.0 0.0.0.255
Certkiller nat(config)#ip nat pool nat 192.168.17.1 192.168.17.1 netmask 255.255.255.0
Certkiller nat(config)#ip nat inside source list 2 pool nat overload
Certkiller nat(config)#ip nat inside source static 10.0.216.5 192.168.17.5
Certkiller nat(config)#interface ethernet 0
Certkiller nat(config-if)#ip address 10.0.216.1 255.255.255.0
Certkiller nat(config-if)#ip nat inside
Certkiller nat(config-if)#interface serial 0
Certkiller nat(config-if)#ip address 192.168.17.1 255.255.255.0
Certkiller nat(config-if)#ip nat outside
Certkiller nat(config-if)# ^ z
Certkiller nat#copy running-config startup-config
Note, variation:
Name: Certkiller NAT
S0: 192.168.212.1/24
E0: 10.0.243.1/24
Secret Password: Certkiller
Web Server's External Address
192.168.212.5/24
Web Server's Internal Address
10.0.243.5/24
QUESTION 324
One of the virtues of a Link-State routing protocol is its hierarchical design. What
advantages does this equate to in network design? (Select two)
A. It allows link-state protocols to support VLSM.
B. It allows them to support address summarization.
C. It reduces the need to flood LSAs to all devices in the internetwork.
D. Routers are no longer required to keep track of the topology of the entire area.
Answer: C, D
Explanation:
Hierarchical design can limit the requirement to notify all devices. The use of areas restricts the
flooding to the logical boundary of the area rather than to all devices in the OSPF domain.
Another advantage of hierarchical network design is that the entire network is divided into
multiple smaller sections, so that much of the routing information is kept within a small area. In
a non-hierarchical network, each router is required to maintain routing information for all other
routers within the entire network.
Incorrect Answers:
A: Although link state protocols do indeed support VLSM, it is not due to a hierarchical network
design. For example, RIP version 2 supports VLSM, but it is not hierarchical.
Actualtests.com - The Power of Knowing

642-801
B: Although address summarization can indeed be configured on routers configured in a
hierarchical design, it is an independent function and is not related to the fact that a tiered
network design is being used.
QUESTION 325
In regards to the three layered hierarchical network design, which of the following are
responsibilities of the distribution layer? (Choose 2)
A. Reliable transport structure
B. Route redistribution
C. Optimized transport structure
D. Address aggregation
E. Unauthorized entry access control lists
Answer: B, D
Explanation:
The distribution layer is responsible for what enters and exits a network, including the
consolidation of traffic from multiple subnets into a core connection. Route redistribution and
address aggregation happen at this layer.
Incorrect Answers:
A, C: This is a function of the core layer.
E. This is a function of the access layer.
QUESTION 326
Which of the following are advantages of implementing a hierarchical IP addressing
scheme when designing a large network? (Select two)
A. Smaller routing tables
B. Efficient address allocation
C. Translation of private addresses
D. Support for link-state routing protocols
Answer: A, B
Explanation:
Hierarchical IP addressing uses the addresses more conservatively, by planning for the correct
use of subnet masks and route summarization. A hierarchical network design facilitates the use
of IP routing summarization, which will reduce the size of the routing tables.
QUESTION 327
The Certkiller frame relay network is shown in the diagram below:

Actualtests.com - The Power of Knowing

642-801

Based on the information given in this diagram, which of the following are true??
A. The network is using a two-layer full-mesh hierarchical design.
B. The network is using a two-layer hub-and-spoke hierarchical design.
C. To improve scalability, route summarization at Routers CK1 , CK2 , CK3 , CK4 , CK5 , and
CK6 should be performed.
D. Routers A and B are the distribution layer routers.
E. Routers CK1 , CK2 , CK3 , CK4 , CK5 and CK6 are the access layer routers.
Answer: C
Routers CK1 , CK2 , CK3 , CK4 , CK5 and CK6 are the distribution layer routers. Route
summarization should occur at the distribution layer.
Incorrect Answers:
A: The network shown here is using a 3 level tiered approach: Core, Distribution, and Access.
B: Three layers are used, not two.
D: Routers A and B are the Core routers here.
E: These routers make up the Distribution layer.
QUESTION 328
You are trying to determine the best routing protocol to use for the large Certkiller
network. Which routing protocols should you avoid when deploying a large network?
(Select two)
A. IGRP
B. OSPF
C. EIGRP
D. RIP v.2
E. RIP v.1
Answer: D, E
Explanation:
Both RIP version 1 and version 2 should only be used in relatively small networks. A large
network would be congested by RIP broadcasts. These frequent broadcasts contain the entire
routing table, and could saturate links.

Actualtests.com - The Power of Knowing

642-801
QUESTION 329
What are some of the features that are important for designing large, scalable networks?
(Select three)
A. A tiered network design model.
B. Sufficient memory on the router.
C. Multiple EIGRP autonomous systems.
D. Good address space allocation scheme.
Answer: A, B, D
Explanation:
A: A tiered network design model such as Core, Distribution, and Access is also needed for
large networks.
B: Sufficient capacity of the routers, in particular the memory, is required for large networks.
D: Good allocation of address space is required- Each region should have a unique address
space so route summarization is possible.
Incorrect Answers:
C: Configuring multiple EIGRP autonomous systems can add extra overhead and it provides no
additional benefits.
QUESTION 330
Two of the following routing protocols require a tiered, hierarchical topology. Which ones
are they? (Select two)
A. IS-IS
B. IGRP
C. OSPF
D. EIGRP
E. RIP v2
Answer: A, C
Explanation:
IS-IS and OSPF both require a hierarchical topology. The use of multiple areas and a core
backbone area means that they are hierarchical by nature.
QUESTION 331
What has become the leading Interior Routing Protocol (IGP) in use by Internet service
providers?
A. IS-IS
B. OSPF
C. EIGRP
D. RIPv2
E. BGP4
Actualtests.com - The Power of Knowing

642-801

Answer: A
Explanation:
In recent years, the IS-IS routing protocol has become increasingly popular, with widespread use
among Service Providers. It is a link state protocol, which enables very fast convergence with
large scalability. It is also a very flexible protocol and has been extended to incorporate leading
edge features such as MPLS Traffic Engineering. It is also chosen because it is an IETF standard
based protocol, rather than a proprietary protocol such as IGRP or EIGRP.
Reference:
http://www.cisco.com/en/US/tech/ CK3 65/ CK3 81/technologies_white_paper09186a00800a3e6f.sht
ml
QUESTION 332
Two of the following routing protocols support load balancing over unequal cost links.
Which ones are they? (Select two)
A. IGRP
B. OSPF
C. EIGRP
D. RIP v2
E. RIP v1
Answer: A, C
Explanation:
IGRP and EIGRP support unequal cost path load balancing, which is known as variance. OSPF,
RIP v1 and RIP v2 do not support this.
Reference: http://www.cisco.com/warp/public/103/19.html
QUESTION 333
You are required to choose a routing protocol that supports variable length subnet masks
(VLSM) for your network. Which of the following would meet this requirement? (Choose
three)
A. IS-IS
B. IGRP
C. OSPF
D. EIGRP
E. RIP v1
Answer: A, C, D
Explanation:
IS-IS, EIGRP, OSPF, RIP V2 and static routes all support VLSM.
Incorrect Answers:
Actualtests.com - The Power of Knowing

642-801
B: IGRP is the predecessor to EIGRP and does not support VLSM.
E: RIP version 1 is a distance vector routing protocol that does not support VLSM.
QUESTION 334
Cisco routers automatically perform route summarization for various protocols. Which
three of the following routing protocols are they? (Select three)
A. IS-IS
B. IGRP
C. OSPF
D. EIGRP
E. RIP v.1
Answer: B, D, E
Explanation:
Sending route summaries - Routing information advertised out an interface is automatically
summarized at major (classful) network address boundaries by RIP, IGRP, and EIGRP.
Specifically, this autonomous summarization occurs for those routes whose classful network
address differs from the major network address of the interface to which the advertisement is
being sent.
Reference: Building Scalable Cisco Networks (Cisco Press) page 79
QUESTION 335
In some situations, static routing is preferred over dynamic routing. In which situations
would it be better to use a static routing protocol? (Select two)
A. Medium to large networks with redundant paths.
B. Networks with a single entry point.
C. Low maintenance routing is required.
D. Highly adaptable networks.
E. High degree of control in path selection is required.
Answer: B, E
Explanation:
Networks with a single entry point only have one possible path to take for all networks, so it
generally makes the most sense to simply add a single static default route out of that link. With
static routes, there is not routing protocol overhead. Static routes may also be preferred when a
high degree of control is required, since the entries are static and can not be overridden by a
dynamic protocol.
Incorrect Answers:
A: Larger networks with multiple links are best suited for dynamic routing protocols, since there
would be too much administrative overhead with the use of static routes.
C: Static routes require the most administrative maintenance, since everything is done manually.
D: Statically routed networks are not adaptable, since static routes never change, regardless of
Actualtests.com - The Power of Knowing

642-801
any changes to the network topology. Only dynamic protocols can adapt to changing network
conditions.
QUESTION 336
One routing protocol considers different path attributes based on preconfigured network
policies. Which of the protocols below is it?
A. EIGRP
B. OSPF
C. RIPv2
D. BGP4
E. IS-IS
F. IGRP
Answer: D
Explanation:
BGP uses numerous attributes. They are: origin, AS_path, next hop, MED, local preference,
atomic aggregate, aggregator, community, originator ID, cluster list, and weight. Some of these
values can be adjusted to give the administrator flexibility in creating a network routing policy.
BGP differs in other routing protocols in that it is used for external use, so the attributes of paths
are considered, rather than just the individual routes.
QUESTION 337
You are the network administrator at Certkiller . You are in the planning stages of
upgrading the Certkiller network, and need to decide which protocol to use. You need to
choose a protocol that will meet the following goals:
Supports classless routing
Supports VLSM
Does not rely on TCP/IP to exchange routing information
Performs auto-summarization by default
Allows for manual route summarization
Which routing protocol should you implement on the Certkiller network?
A. BGP
B. EIGRP
C. OSPF
D. IS-IS
E. IGRP
F. RIPv2
Answer: B
Explanation:
EIGRP is a classless protocol that supports VLSM and performs auto-summarization of subnets
by default. The subnet routes are summarized into a single network number aggregate. In
Actualtests.com - The Power of Knowing

642-801
addition, IP-EIGRP will allow aggregation on any bit boundary in an IP address and can be
configured on a network interface for additional granularity. EIGRP also supports automatic
summarization of network addresses at major network borders. There is an automatic
redistribution mechanism used so IGRP routes are imported into EIGRP and vice versa. Since
the metrics for both protocols are directly translatable, they are easily comparable as if they were
routes that originated in their own AS.
QUESTION 338
Which routing protocol: (1) is intended to support large routing domains consisting of
combinations of many media types, (2) may be used as an IGP, and (3) supports multiple
routed protocols in an integrated manner rather than "Ships in the Night" method?
A. EIGRP
B. OSPF
C. IS-IS
D. BGP
E. None of the above
Answer: A
Explanation:
EIGRP is a very scalable Interior Routing Protocol (IGP) that supports large networks. In
addition to support for IP, EIGRP can be used for routing IPX and Appletalk networks.
Incorrect Answers:
B, C: Although OSPF and IS-IS are link state protocols that are used as IGPs and are highly
scalable, they do not provide support for routed networks such as those used by Novell and
Apple.
D: BGP only supports IP, and is generally used only for external routing.
QUESTION 339
Match the correct routing protocol on the left to its characteristics on the right side. Note
that not all answer choices will be used.

Answer

QUESTION 340
ODR is being used as the routing protocol for a new Certkiller network. Which network
Actualtests.com - The Power of Knowing

642-801
topology is best suited for ODR?
A. highly redundant
B. fully meshed
C. dual self-healing ring
D. hub and spoke
E. NBMA
Answer: D
Explanation:
On Demand Routing (ODR) is a mechanism that provides minimum-overhead IP routing for stub
sites. The overhead of a general dynamic routing protocol is avoided, without incurring the
configuration and management overhead of using static routing.
A stub router is the peripheral router in a hub and spoke network topology. Stub routers
commonly have a WAN connection to the hub router and a small number of LAN network
segments (stub networks) that are connected directly to the stub router. To provide full
connectivity, the hub routers can be statically configured to know that a particular stub network
is reachable via a specified access router. However, if there are multiple hub routers, many stub
networks, or asynchronous connections between hubs and spokes, the overhead required to
statically configure knowledge of the stub networks on the hub routers becomes too great.
ODR simplifies installation of IP stub networks in which the hub routers dynamically maintain
routes to the stub networks. This is accomplished without requiring the configuration of an IP
routing protocol at the stub routers. With ODR, the stub advertises IP prefixes corresponding to
the IP networks that are configured on its directly connected interfaces. Because ODR advertises
IP prefixes, rather than IP network numbers, ODR is able to carry Variable Length Subnet Mask
(VLSM) information. Once ODR is enabled on a hub router, the router begins installing stub
network routes in the IP forwarding table. The hub router can also be configured to redistribute
these routes into any configured dynamic IP routing protocols. IP does not need to be configured
on the stub router. With ODR, a router is automatically considered to be a stub when no IP
routing protocols have been configured on it.
QUESTION 341
Your company, Certkiller Inc, has a central office and a remote branch office. Each site has
a separate autonomous system (AS) as well as a separate Internet connection. In this
network, what is the best method to route Internet traffic.
A. IGP routing
B. BGP routing
C. Configure "ip route prefix mask"
D. Configure "ip default-gateway ip address"
E. Configure IS-IS
Answer: B
Explanation:
Actualtests.com - The Power of Knowing

642-801
Border Gateway Protocol (BGP) is used to exchange routing information for the Internet and is
the protocol used between Internet service providers (ISP). In order to take full advantage of
multiple Internet connections, as well as multiple Internet providers, BGP is the best choice to
ensure full redundancy.
Reference: http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/bgp.htm
Incorrect Answers:
A: Customer networks usually employ an Interior Gateway Protocol (IGP) such as RIP or OSPF
for the exchange of routing information within their networks.
C, D: Using statically assigned default routes and default gateways is a simplistic approach that
works well in many situations, but will not provide for automatic failover and does not
provide the routing options that BGP provides.
E: IS-IS is used exclusively as an IGP.
QUESTION 342
The Certkiller network is in the process of migrating the IP address scheme to use IPv6.
Which of the following address types are associated with IPv6? (Select three)
A. Unicast
B. Private
C. Broadcast
D. Public
E. Multicast
F. Anycast
Answer: A, E, F
Explanation:
IP version 6 introduced the concet of anycasts. The three IP address types used for IPv6 are:
Unicast - An IPv6 unicast address is an identifier for a single interface, on a single node.
A packet that is sent to a unicast address is delivered to the interface identified by that
address.
Anycast - An anycast address is an address that is assigned to a set of interfaces that
typically belong to different nodes. A packet sent to an anycast address is delivered to the
closest interface-as defined by the routing protocols in use-identified by the anycast
address.
Multicast - An IPv6 multicast address is an IPv6 address that has a prefix of FF00::/8
(11111111). An IPv6 multicast address is an identifier for a set of interfaces that typically
belong to different nodes.
Reference:
http://www.cisco.com/en/US/products/sw/iosswrel/ps1839/products_feature_guide_chapter0918
6a0080110dd2.html#99899
QUESTION 343
What number is a valid representation for the 200F:0000:AB00:0000:0000:0000:0000/56
IPv6 prefix?

Actualtests.com - The Power of Knowing

642-801
A. 200F:0:0:AB/56
B. 200F:0:0:AB00:/56
C. 200F::AB00/56
D. 200F:AB/56
Answer: B
QUESTION 344
You have the binary IP address, {11000000.10100100.11000000.00000001 }. What class of
IP address is it, and what is a characteristic of that class?
A. It is a Class B public address.
B. It is a Class C public address.
C. It is a Class B private address
D. It is a Class C private address.
E. It is a Class D experimental address.
Answer: B
Explanation:
11000000.10100100.11000000.00000001 = 192.164.192.1 = A public Class C address
Incorrect Answers:
A, C: Class B addresses begin with a "10" in the first octet.
D. Class C private (RFC 1918) addresses are in the IP range 192.168.0.0-192.168.255.255
Reference: Building Scalable Cisco Networks (Cisco Press) page 66
QUESTION 345
You are the network administrator at Certkiller . Certkiller is assigned a network of
200.10.5.0/24. You want to create 5 subnets from the assigned address.
Which subnet mask will give you 5 subnets and the most possible hosts per subnet?
A. /21
B. /23
C. /26
D. /27
E. /29
Answer: D
Explanation:
We need 5 subnets from the given address 200.10.5.0/24. It means we will do 3 bits of
subnetting which will provide us 8 subnets as 2N = 23 =8 subnets where n=number of subnet bits.
So, we will have a total of 24+3 = 27 network bits.
QUESTION 346
You are the network engineer at Certkiller . Certkiller has a branch office with five devices
Actualtests.com - The Power of Knowing

642-801
that require public IP addresses.
Which of the following subnet masks will provides the most efficient allocation of
addresses?
A. 255.255.255.128
B. 255.255.255.248
C. 255.255.255.252
D. 255.255.255.254
Answer: B
Explanation:
Requirement = 5 public IP addresses to connect 5 devices
3-bits of subnetting in the host portion will provide 23= 8 addresses. After we subtract 2 of these
addresses, for the network and broadcast IP address, we are still left with 6 useable IP addresses
for each network.
QUESTION 347
Which three are characteristics of IPv6? Select three.
A. An IPv6 address is 128 bits long.
B. An IPv6 header is 20 bits long.
C. An IPv6 header contains the next header field.
D. An IPv6 header contains the next protocol field.
E. IPv6 routers send RA messages.
F. An IPv6 header contains the header checksum field.
Answer: A, C, E
Explanation:
In IPv6, the 128 bit IP address is separated to two: network prefix, which identifies network, and
interface ID, which identifies a node (interface). Interface ID is configured by the node on its
own, and prefix is notified by the network (usually router). These two are combined to form an
IPv6 address. IPv6 packet headers contain many of the fields found in IPv4 packet headers;
some of these fields have been modified from IPv4. The next header field is the next extension
header to examine. This was previously the protocol field in IPv4.
RA stands for router advertisements, used by IPv6 routers for the purpose of automatic address
configuration.
QUESTION 348
Which address type does the IPv6 address FF05:0:0:0:0:0:0:2 specify?
A. unspecified
B. aggregable glocal unicast
C. link local
D. site local unicast
Actualtests.com - The Power of Knowing

642-801
E. multicast
Answer: E
Explanation:
All IPv6 multicast addresses start with the first 8 bits of the address set to 1. Thus all multicast
addresses start with the hexadecimal notation FF (1111 1111). The multicast range is as follows:
FF00::/8
FFFF::/8
The second octet, following to the first octet of FF, identifies both the scope and the lifetime of
the multicast address. In this way, IPv6 has millions of group multicast addresses to use in
current and emerging technologies.
Reference: CCNP Self-Study CCNP BSCI Exam Certification Guide p.112
QUESTION 349
Which command must be globally enabled on a Cisco router to support IPv6?
A. ip routing ipv6
B. ipv6 unicast routing
C. ipv6 routing
D. ip classless
E. ipv6 cef
Answer: B
QUESTION 350
Route aggregation is a way of reducing the number of entries in a routing table. Three of
the routing protocols below support automatic route summarization. Which ones are they?
(Select three)
A. IS-IS
B. EIGRP
C. OSPF
D. IGRP
E. RIP v.1
Answer: B, D, E
Explanation:
B: IGRP automatically summarize routes on the class network boundary.
D: EIGRP support both manual and automatic route summarization.
E: RIPv1 automatically summarize routes on the class network boundary.
Incorrect Answers:
A, C: IS-IS and OSPF only support manual route summarization.

Actualtests.com - The Power of Knowing

642-801
QUESTION 351
The Certkiller network consists of the following IP subnets:
Network
Number
192.168.31.0/24
192.168.32.0/24
192.168.33.0/24
192.168.34.0/24
192.168.35.0/24
192.168.36.0/24
192.168.37.0/24
192.168.38.0/24
192.168.39.0/24
192.168.40.0/24
How many CIDR blocks will be needed to summarize these subnets in the Certkiller
network?
A. Two
B. Three
C. Four
D. Five
E. None of the above
Answer: A
Explanation:
To properly summarize 10 contiguous networks, they will have to broken into two separate
advertisements: one will consist of 8 subnets and the second will consist of the last 2 subnets.
Reference: Building Scalable Cisco Networks (Cisco Press) page 85
QUESTION 352
You are in the process of manually summarizing some routes within your network. Which
of the addresses below would be included in the manual route summarization of
153.25.200.0/21?
A. 153.25.198.0
B. 153.25.206.0
C. 153.25.208.0
D. 153.25.224.0
Answer: B
Explanation:
The 21 leftmost bits must match. In particular we should study the 3rd octet.
Decimal
1st Octet
2nd Octet
3rd Octet
4th Octet
153.25.200.0 10011001
00011001
11001000
00000000
Actualtests.com - The Power of Knowing

642-801
153.25.198.0
153.25.206.0
153.25.208.0
153.25.224.0

10011001
10011001
10011001
10011001

00011001
00011001
00011001
00011001

11000110
11001110
11010000
11100000

00000000
00000000
00000000
00000000

QUESTION 353
Which of the following statements about route summarization are true? (Select two)
A. Private addresses cannot be summarized.
B. Summarization is not compatible with VLSM.
C. RIP v.1 automatically summarizes routes on network class boundaries.
D. Classless routing protocols support summarization on any address bit boundary.
Answer: C, D
Explanation:
C: RIP V.1 is only able to summarize routes on network class boundaries.
D: Classless routing protocols support summarization on any address bit boundary.
Incorrect Answers:
A: Private address ranges can indeed be summarized.
B: Summarization is indeed compatible with VLSM.
QUESTION 354
Some of the terms below are synonymous with route summarization? Which ones are they?
(Select two)
A. supernetting
B. route aggregation
C. address translation
D. Classful inter-domain routing
Answer: A, B
Explanation:
Route summarization, also called route aggregation or supernetting, can reduce the number of
routes that a router must maintain because it is a method of representing a series of network
numbers in a single summary address.
QUESTION 355
Your network is using the Class B private IP address scheme, as defined in RFC 1918. If
you wanted to summarize this entire private address space into one single supernet, which
prefix should you use?
A. /8
B. /12
C. /16
Actualtests.com - The Power of Knowing

642-801
D. /24
Answer: B
Explanation:
In Class B, the private address is 172.16.0.0 to 172.31.255.255
Four bits are required to take care of the range 16-31. So, from the default subnet mask of 16,
four more taken out and so, it becomes 12.
QUESTION 356
In an EIGRP network using VLSM, where in the network does the process of route
summarization occur?
A. Manually on any router interface.
B. Only at classless network boundaries.
C. Only at classful network boundaries.
D. Dynamically at the supernet boundary.
Answer: A
Explanation:
EIGRP automatically summarizes at the network boundary by default, but it can also be
configured manually on any of the routed interfaces.
Incorrect Answers:
B, C: Since the word "only" is used, these two choices are incorrect. EIGRP can be configured
to summarize automatically at the network boundary, or manually.
D: EIGRP provides no means for summarizing routes dynamically.
QUESTION 357
Which one of the following addresses can be included in the route summarization of
172.17.200.0/21?
A. 172.17.198.0
B. 172.17.206.0
C. 172.17.217.0
D. 172.17.224.0
Answer: B
Explanation:
Here, we list the network addresses in binary form and see which subnet address match the 21
leftmost bits of the route summarization.
Decimal
1st Octet
2nd Octet
3rd Octet
4th Octet
172.17.200.0 10101100
00010001
11001000
00000000
172.17.198.0 10101100
00010001
11000110
00000000
172.17.206.0 10101100
00010001
11001110
00000000 Match!
Actualtests.com - The Power of Knowing

642-801
172.17.217.0
172.17.224.0

10101100
10101100

00010001
00010001

11011001
11100000

00000000
00000000

QUESTION 358
The Certkiller network contains the following 4 IP subnets:
172.18.129.0/24
172.18.130.0/24
172.18.132.0/24
172.18.133.0/24
You want to summarize these networks into a single supernet. Which one of the following
route summarizations is capable of summarizing every one of the networks in the above
exhibit?
A. 172.18.128.0/21
B. 172.18.128.0/22
C. 172.18.130.0/22
D. 172.18.132.0/20
Answer: A
Explanation:
To illustrate, we list the network addresses in binary form and see how many leftmost bits match.
Decimal
1st Octet
2nd Octet
3rd Octet
4th Octet
172.18.129.0 10101100
00010010
10000001
00000000
172.18.130.0 10101100
00010010
10000010
00000000
172.18.132.0 10101100
00010010
10000100
00000000
172.18.133.0 10101100
00010010
10000101
00000000
172.18.128.0 10101100
00010010
10000000
00000000
We see that the 21 leftmost bits match and that 172.18.128.0/21 can summarize the four
networks.
Incorrect Answers:
B, C: Only the 21 leftmost bits match, not 22.
D: This is an illegal summarization. It is host address, not a network address.
QUESTION 359
The Certkiller network is using the 172.19.100.0/24 IP address range for its entire network
and wishes to summarize these routes. How many Class C IP subnets could be
summarized in the 172.19.100.0/22 supernet?
A. 2
B. 4
C. 8
D. 16
E. 255
F. None of the above

Actualtests.com - The Power of Knowing

642-801
Answer: B
Explanation:
As the summarized route is /22 the first 22 bits must be the same. A Class C subnet mask has 24
bits so the lower 2 bits in the 3rd octet can be changed. There are 4 possible combinations (00, 01,
10, 11) so 172.19.100.0/22 can summarize 4 class C addresses.
Reference: Source: Cisco Press, CCNP Self-Study Building Scalable Cisco Internetworks
(BSCI). Chapter 2 Extending IP Addresses, Calculating VLSMs, page 73
QUESTION 360
You are administrating a network with subnets ranging from 172.16.94.0/24 172.16.118.0/24. A summary statement with the network 172.16.96.0 and the mask of
255.255.240.0 have summarized some of your subnets.
Which subnet is the last subnet to be included in the summary network?
Answer: 172.16.111.0
Explanation:
We can verify this answer as follows:
111 (3rd octet) decimal is 01101111. This is within the summarization. However, 172.16.112.0
would not be ok: 112 decimal is 01110000 (see below).
Decimal
1st Octet
2nd Octet
3rd Octet
4th Octet
255.255.240.0 11111111 11111111
11110000
00000000
subnet mask
172.16.96.0
10101100
10101100
01100000
00000000
summarized network
172.16.111.0 10101100
10101100
01101111
00000000
Included in summary element
172.16.112.0 10101100
10101100
01110000
00000000
Not included in summary element
Therefore, 172.16.111.0 is the last IP subnet that can be included in this summary route.
QUESTION 361
What strategy can a network administrator use to minimize the effect of routing table
updates on internal routers when a single WAN interface frequently changes its state from
up to down?
A. Use a distance vector routing protocol.
B. Use private IP addresses.
C. Use dial-on-demand routing.
D. Use route summarization.
E. Use a routing protocol that tolerates route flapping.
F. All of the above.
Answer: D
Explanation:
When using route summarization, multiple IP networks are advertised to downstream routers as a
single route. As long as any of the IP subnets included within the summarized route are up and

Actualtests.com - The Power of Knowing

642-801
active, the summary route will be used, so any single link problem will not have to be propagated
to the rest of the network.
QUESTION 362
The Certkiller EIGRP network is shown below:

Router Certkiller 1 was configured in the following manner:

Certkiller 1(config)# router eigrp 2000
Certkiller 1(config-router)# network 2.0.0.0
Certkiller 1(config-router)# exit
Certkiller 1(config)# interface serial 2
Certkiller 1(config-if)# ip summary-address eigrp 2000 2.1.0.0 255.255.0.0
Based on the above information, how many routes will Certkiller 2 receive from router
Certkiller 1?
A. None
B. One
C. Two
D. Three
E. Four
Answer: B
Explanation:
Router Certkiller 1 was configured to summarize the network routes when advertising to the
neighbor Certkiller 2. Because of this, router Certkiller 2 will only receive the 2.1.0.0/16 EIGRP
route from router Certkiller 1.
QUESTION 363
Which of the following statements are true regarding EIGRP manual summarization?
(Select two)
A. Manual summarization is configured on a per interface basis.
B. Manual summaries can be configured with the classful mask only.
C. When manual summarization is configured, auto-summarization is automatically disabled
by default.
D. The summary address is assigned an administrative distance of 10 by default.
Actualtests.com - The Power of Knowing

642-801
E. The summary address is entered into the routing table and is shown to be sourced from
the Null0 interface.
Answer: A, E
Explanation:
By default, EIGRP routers summarize routes at the classful boundary. When routes are manually
summarized, they are done so while in interface configuration mode. After the manual
summarization is done, the logical null 0 interface is created, and the summary network is
installed into the routing table via this interface.
QUESTION 364
The CK1 and CK2 networks are consolidating into one large network. To accommodate
this, the IP network was separated in the middle by a different major network boundary,
creating a discontigous network. With EIGRP being used as the routing protocol, what
can be done to provide full connectivity across these non-contiguous networks? (Select
two)
A. Use private addresses on LAN links.
B. Use static route redistribution.
C. Use the no auto-summary command.
D. Use route summarization.
E. All of the above
Answer: C
Explanation:
Redistributing static route information could be used to advertise the routes across the network,
since these static routes will not be automatically summarized.
By default, EIGRP summarizes IP subnets at the network boundary. However, in order to
support the use of non-contiguous networks, the "no auto-summary" command can be used to
disable the feature.
Incorrect Answers:
A: Using private of public addresses on any of the links will not correct this issue.
B: This is the feature of EIGRP that is on by default, and needs to be disabled.
QUESTION 365
You are troubleshooting an OSPF problem and you need to view the OSPF neighbor
information. Which of the following commands should you enter to examine neighbor
adjacencies? (Select two)
A. show ip ospf database
B. show ip ospf neighbors
C. show ip ospf protocols
D. show ip ospf interfaces

Actualtests.com - The Power of Knowing

642-801
Answer: B, D
Explanation:
B: Using the show ip ospf neighbor command, you can observe the neighbor data structure.
This command displays OSPF-related neighbor information. The Interface field shows the
interface on which the OSPF neighbor has formed adjacency.
Sample:
Router CK2 #show ip ospf neighbor
Neighbor ID Pri State Dead Time Address Interface
192.168.45.1 1 FULL/DR 00:00:36 10.0.0.1 Ethernet0
D: The show ip ospf interface command displays area ID and adjacency information
Incorrect Answers:
A: The "show ip ospf database" command displays the link-state database.
C: This is an invalid command.
Reference: http://www.cisco.com/warp/public/104/16.html
QUESTION 366
You are a network troubleshooter and you've been contracted to examine an OSPF
network. You feel that the CPU utilization of your routers is too high and want to figure
out how many SPF calculations have occurred. Which one of the commands below could
you use?
A. show ip ospf
B. show ip route
C. show ip ospf interface
D. show ip ospf protocols
Answer: A
Explanation:
The show ip ospf command displays summary information regarding the global OSPF
configuration. The output includes the number of times the Shortest Path First (SPF) algorithm
has been run.
Sample output:
router CertK #show ip ospf
OSPF is running, process id: 1, router id: 10.1.2.136
Number of areas: 1, normal: 1, stub: 0
Area: 1.2.3.4
Number of interfaces in this area is 1
Type of authentication none
SPF algorithm has run 3 times
SPF interval 5 seconds
Incorrect Answers:
B: The show ip route command displays IP routing table entries.
C: The show ip interface command displays information about one or more interfaces.
D: There is no such command.
Actualtests.com - The Power of Knowing

642-801

QUESTION 367
Which of the following IOS commands will allow you to view when a topological database
purges out of date routes?
A. show ip ospf
B. show ip route
C. show ip ospf interface
D. show ip ospf protocols
E. show ip ospf neighbor
F. None of the above
Answer: A
Explanation:
The following table displays the output of the "show ip ospf" command and their meanings:
Field
Routing process "ospf 201" with
ID 10.0.0.1
Supports...

Description
Process ID and OSPF router ID.
Number of types of service supported (Type 0
only).

SPF schedule delay

Minimum LSA interval

Delay time of SPF calculations.

LSA group pacing timer

Configured LSA group pacing timer (in

seconds).

Interface flood pacing timer

Configured LSA flood pacing timer (in

milliseconds).

Retransmission pacing timer

Configured LSA retransmission pacing timer

(in milliseconds).

Number of...

Number and type of link-state advertisements

that have been received.

Number of external LSA

Number of external link-state advertisements.

Number of opaque AS LSA

Number of opaque link-state advertisements.

Number of DCbitless external and

opaque AS LSA

Number of demand circuit external and opaque

link-state advertisements.

Minimum interval between link-state

advertisements.

Number of DoNotAge external and Number of do not age external and opaque
opaque AS LSA
link-state advertisements.
Number of areas in this router is

Number of areas configured for the router.

External flood list length

External flood list length.

Actualtests.com - The Power of Knowing

642-801
Reference:http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/iprrp_r/ip
2_s3g.htm#wp1036469

QUESTION 368
You are troubleshooting a convergence problem on an OSPF network. Which of the
following factors can affect the OSPF convergence time? (Select three)
A. Hold-down timers.
B. The size of the network.
C. The number of routing areas.
D. Maximum allowed hop count.
E. The route calculation algorithm.
Answer: B, C, E
Explanation:
B: The size of the network affects the size of the topology table on the routers. A larger topology
table will correspond to a higher convergence time.
C: Areas are introduced to put a boundary on the total number of link-state updates. The number
of areas affects the convergence time.
E: The route calculation algorithm used for OSPF affects the convergence time.
Incorrect Answers:
A: OSPF does not use hold-down timers. Instead topology changes are flooded immediately.
Distance vector routing protocols use hold-down timers.
D: OSPF does not use hop count. Distance vector routing protocols use hop counts.
QUESTION 369
Which IOS command could you use to see which networks are being routed by an OSPF
process?
A. show ospf
B. show ip route
C. show ip protocols
D. show ip ospf database
E. show ip ospf protocols
Answer: C
Explanation:
The show ip protocols command display current routing protocols. It displays the parameters
and current state of the active routing protocol process. The output includes a list of the networks
routing for individual ospf processes.
Sample output:
Rt Certkiller # show ip protocols
Routing Protocol is "ospf 200"
Actualtests.com - The Power of Knowing

642-801
Sending updates every 0 seconds
Invalid after 0 seconds, hold down 0, flushed after 0
Outgoing update filter list for all interfaces is not set
Incoming update filter list for all interfaces is not set
Redistributing: ospf 200
Routing for Networks:
172.6.31.5/32
Routing Information Sources:
Gateway Distance Last Update
Distance: (default is 110)
Incorrect Answers:
A: The show ospf command displays summary information regarding the global OSPF
configuration.
B: The show ip route command displays the IP routing table.
D: The show ip ospf database command displays the contents of the topological database
maintained by the router. The command also shows the router ID and the OSPF process ID.
However, the output does not include the networks routing for individual ospf processes.
E: This is an invalid command.
QUESTION 370
The Certkiller OSPF network is displayed in the following diagram.

In the Certkiller network, if the link to the designated router were to go down, what will
Router CK1 and Router CK3 do?
A. They send a flash update with poison reverse.
B. They perform the designated router election process.
C. They re-broadcast their routing tables to all other neighboring routers.
D. They send a query to neighboring routers for other routers to the failed link.
E. None of the above
Answer: B
Explanation:
The first step is an election of a new DR.
Note: A Designated Router (DR) router is elected by all other routers on the same LAN to
represent all the routers. Each network has one DR. Normally, in this case the BDR would take
over as the DR.
Incorrect Answers
A: IGRP and EIGRP use poison reverse. Poison reverse is not used by OSPF.
C, D: This is not the first step.
Actualtests.com - The Power of Knowing

642-801

QUESTION 371
When issuing the "show ip ospf neighbor" command on router CK1 , a neighbor is reported
as a DROTHER. Which of the following is true regarding this OSPF neighbor?
A. The neighbor is down and currently not forwarding traffic.
B. It is not in full state and is still exchange LSAs.
C. It is the backup DR:
D. It is neither the DR nor BDR.
E. It is acting as both the DR and the BDR
Answer: D
Explanation:
When viewing the OSPF neighbor relationships, a neighbor can be one of three different values:
DR - This neighbor is the DR
BDR - This neighbor is the backup DR
DROTHER - This neighbor is neither the DR nor the BDR.
QUESTION 372
You're troubleshooting a router that's running Integrated IS-IS and you suspect something
abnormal with the neighboring routers. Which IOS command would you enter to display
the adjacencies? (Select two)
A. show isis route
B. show clns route
C. show isis database
D. show clns neighbors
E. None of the above
Answer: D
Explanation:
The show clns neighbors command displays ES and IS neighbors. The output includes
adjacency information.
Example:
router CertK # show clns neighbors
System Id SNPA Interface State Holdtime Type Protocol
0000.0000.0007 aa00.0400.6408 Ethernet0 Init 277 IS ES-IS
0000.0C00.0C35 0000.0c00.0c36 Ethernet1 Up 91 L1 IS-IS
0800.2B16.24EA aa00.0400.2d05 Ethernet0 Up 29 L1L2 IS-IS
0800.2B14.060E aa00.0400.9205 Ethernet0 Up 1698 ES ES-IS
0000.0C00.3E51 *HDLC* Serial1 Up 28 L2 IS-IS
0000.0C00.62E6 0000.0c00.62e7 Ethernet1 Up 22 L1 IS-IS
0A00.0400.2D05 aa00.0400.2d05 Ethernet0 Init 24 IS ES-IS
Incorrect Answers
Actualtests.com - The Power of Knowing

642-801
A: The show isis routes command is used to display the IS-IS Level 1 forwarding table for ISIS
learned routes.
B: The show clns route command is used to display all of the destinations to which this router
knows how to route packets.
C: The show isis database command is used to display the Intermediate System-to-Intermediate
System (IS-IS) link state database.
QUESTION 373
The IS-IS routing table for Certkiller 1 is displayed in the diagram below:

Regarding the command output on Certkiller 1 in the exhibit, which statement is true?
A. The 10.1.0.0/23 route is an IS-IS external route
B. The Certkiller 1 IS-IS router is an ASBR.
C. The 10.1.0.0/23 route is a suppressed route.
D. The 10.1.0.0/23 route is a summary route.
E. The Certkiller 1 IS-IS router is an ASBR that belongs to multiple IS-IS areas.
F. The Certkiller 1 IS-IS router is performing route aggregation and is suppressing the more
specific 10.1.0.0/23 prefix.
Answer: D
Explanation:
The "su" in the routing table denotes an IS-IS summary null route. This route is automatically
created within the router when IS-IS route summarization is configured.
QUESTION 374
The "show isis route" command was issued on router Certkiller 3 as shown below:

Based on the information above, which statement is true?

A. Certkiller 1 is the exit point out of the area for Certkiller 3
B. Certkiller 1 is a level-1 only IS-IS router.
C. Certkiller 1 has been configured with a non-default IS-IS metric.
D. Certkiller 3 is a level-2 only IS-IS router.
Actualtests.com - The Power of Knowing

642-801
E. Certkiller 3 has been configured with a non-default IS-IS metric.
F. Certkiller 3 routing table should contain L2 entries.
G. None of the above
Answer: A
Explanation:
In the IS-IS routing table of router Certkiller 3, the default router is displayed as Certkiller 1,
which is a Level 2 router. Level 2 routers are used for routing inter-area traffic, so Certkiller 3
will use this router as the exit point for all traffic destined to another area.
Incorrect Answers:
B: Certkiller 1 is a Level 2 router.
C, E: The default IS-IS metric for all links is 10, which is the value shown here.
D, F: Certkiller 3 is a level 1 router.
QUESTION 375
The routing table of Certkiller 1 is displayed below:

Based on this information, how was network 140.140.66.0 discovered?

A. It is an IGRP route that has been redistributed in from an external protocol.
B. It is an IS-IS route via inter-area routing.
C. It is an IS-IS route via intra-area routing.
D. It is an IBGP route.
E. It is a static route.
Answer: B
Explanation:
Level-2 routers are used for routing traffic between areas (inter-area). Based on the routing table
of Certkiller 1, the 140.140.66.0/24 network is known via a Level 2 IS-IS router.
QUESTION 376
You have a multi-area OSPF network an you're concerned because one of the sites is
having connectivity problem to resources in a different area. Which IOS privileged mode
command you enter to confirm that your network: A) has a path to its ABR, B) has a path
to its ASBR, and C) the SPF calculation is functional?
A. show ip protocols
B. show running-config
C. show ip ospf neighbor
Actualtests.com - The Power of Knowing

642-801
D. show ip ospf border-routers
Answer: D
Explanation:
The show ip ospf border-routers command displays the internal OSPF routing table entries to
an area border router (ABR) and autonomous system boundary router (ASBR). The SPF No in
the output is te internal number of SPF calculation that installs this route.
Example:
Router Certkiller # show ip ospf border-routers
OSPF Process 109 internal Routing Table
Destination Next Hop Cost Type Rte Type Area SPF
No
160.89.97.53 144.144.1.53 10 ABR INTRA 0.0.0.3 3
160.89.103.51 160.89.96.51 10 ABR INTRA 0.0.0.3 3
160.89.103.52 160.89.96.51 20 ASBR INTER 0.0.0.3 3
160.89.103.52 144.144.1.53 22 ASBR INTER 0.0.0.3 3
Incorrect Answers:
A: The show ip protocols command only displays routing protocol parameters and current timer
values.
B: The show running-config command displays the currently used configuration mode. The
required information will not be displayed.
C: The show ip ospf neighbor command displays OSPF-neighbor information on a perinterface
basis. It does not include ABR, ASBR or SPF information.
QUESTION 377
You have logged onto the console of a router running OSPF, and for your analysis log you
need information on: the filters, default metric, maximum paths, and the number of areas
configured. Which of the IOS commands below should you use?
A. show ip protocol
B. show ip route
C. show ip ospf interface
D. show ip ospf
E. Show ip routing
Answer: A
Explanation:
The show ip protocols command, displays parameters about timers, filters, metrics, network,
and other information for the entire router.
Reference: Building Scalable Cisco Networks (Cisco Press) page 133
QUESTION 378
Which IOS command tells you how many times the OSPF shortest path first algorithm was
executed?
Actualtests.com - The Power of Knowing

642-801

A. show ip protocol
B. show ip ospf interface
C. show ip ospf
D. show ip ospf database
E. None of the above
Answer: C
Explanation:
The following table describes the output of the "show ip ospf" command and their meanings:
Table 52 show ip ospf Field Descriptions
Field
Routing process "ospf 201" with
ID
10.0.0.1
Supports...

Description
Process ID and OSPF router ID.

SPF schedule delay

Number of types of service supported (Type 0

only).
Delay time of SPF calculations.

Minimum LSA interval

Minimum interval between link-state

advertisements.

LSA group pacing timer

Configured LSA group pacing timer (in

seconds).

Interface flood pacing timer

Configured LSA flood pacing timer (in

milliseconds).

Retransmission pacing timer

Configured LSA retransmission pacing timer

(in milliseconds).

Number of...

Number and type of link-state advertisements

that have been received.

Number of external LSA

Number of external link-state advertisements.

Number of opaque AS LSA

Number of opaque link-state advertisements.

Number of DCbitless external and

opaque AS LSA

Number of demand circuit external and opaque

link-state advertisements.

Number of DoNotAge external and Number of do not age external and opaque
opaque AS LSA
link-state advertisements.
Number of areas in this router is

Number of areas configured for the router.

External flood list length

External flood list length.

Actualtests.com - The Power of Knowing

642-801
Reference:http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/iprrp_r/ip
2_s3g.htm#wp1036469

QUESTION 379
An OSPF link can be in multiple states at any given moment (ie. Exstart, exchange, full).
Which two IOS commands let you view the state of the link? (Select two)
A. show ip ospf
B. show ip protocols
C. show ip ospf neighbor
D. show ip ospf interface
Answer: C, D
Explanation:
The link state exstart is an OSPF link state (see note below). We need retrieve OSPF link state
information.
C: The output of the show ip ospf neighbor command is used To display OSPF-neighbor
information on a per-interface basis. It includes link state information.
D: The show ip ospf interface command is used to display OSPF-related interface information
for a particular interface. This includes the link state of the specified interface.
Note: exstart state: After two OSPF neighboring routers establish bi-directional communication
and complete DR/BDR election (on multi-access networks), the routers transition to the exstart
state.
Incorrect Answers:
A: The show ip ospf command is used to display general information about OSPF routing
processes. However, it does not include any link state information.
B: The command "show ip protocols" displays the parameters and current state of the active
routing protocol process. It does not show any link state information.
QUESTION 380
While performing a routine inspection of your OSPF network you come to the realization
that the Designated Router (DR) may be overloaded, and you're considering changing the
DR. What are three ways you could manipulate the election of the DR? (Select three)
A. Use of the priority command.
B. Use of the router-id command.
C. Assignment of the loopback address.
D. Assigning a lower IP address
E. By adding additional memory to the desired router.
Answer: A, B, C
Explanation:
A: The OSPF router priority is only used on multi-access networks such as LAN's. This
Actualtests.com - The Power of Knowing

642-801
establishes whether the router is eligible to become the Designated Router (DR) for the LAN.
A priority of zero means that the router is not eligible to become DR.
B: The router ID is used to break ties during the DR and BDR election processes if the priority
values are equal.
C: The loopback address is used in DR election. The highest IP address on the router is the
router ID. If a loopback address is configured, then it is the router ID.
Incorrect Answers:
D: The highest IP address is used as the router ID, not the lowest.
E: This would not make it a more likely DR candidate, did the DR election process does not
take into consideration the amount of memory.
QUESTION 381
You are the network engineer at Certkiller . The Certkiller network topology is shown in the
following graphic:

OSFP area 1 has been configured to receive only the intra-area routes and a default route
from the area 1 ABR. During routine maintenance, you issue the "show ip route" command
on area 1 internal routers and notice that O and O IA routes appear, but no O E2 routes
appear.
What is the probable cause of this problem?
A. At the ABR for area 1, the area 1 stub command is missing the no-summary option.
B. All the routers in area 1 are missing the area 1 stub no summary option.
C. At the internal routers in area 1, the area 1 stub command is missing.
D. At the ABR for area 1, the area 1 stub command is missing.
E. The virtual link that transits area 1 is configured incorrectly.
F. Area 1 should be configured as a not-so-stubby-area with the area 1 nssa command.
Answer: A
Explanation:
An autonomous system boundary router (ASBR) advertises external destinations throughout the
OSPF autonomous system. In many cases, external link states make up a large percentage of the
Actualtests.com - The Power of Knowing

642-801
link states in the databases of every router. A stub area is an area in which you don't allow
advertisements of external routes, thus reducing the size of the database even more. Instead, a
default summary route (0.0.0.0) is inserted into the stub area in order to reach these external
routes. If you have no external routes in your network, then you have no need to define stub
areas.
QUESTION 382
The complex Certkiller OSPF network topology is displayed in the following diagram:

The routing table of Certkiller 3 contains all the proper OSPF routes except the 10.4.4.0/24
OSPF route. Which show command on Certkiller 3 will be most useful to determine the
cause of this problem and why?
A. Perform show is ospf virtual-link to examine if the virtual link between Certkiller 3 and
Certkiller 4 is configured and in the up state.
B. Perform show run to examine if area 3 is configured as a stubby area.
C. Perform show run to examine if area 3 is configured as a nssa area.
D. Perform show ip ospf neighbor to examine which router is elected as the DR on the e2
interface.
E. Perform show ip ospf neighbor to examine the OSPF database entries.
Answer: A
Explanation:
All OSPF areas need to be directly connected to the backbone (area 0) in order to ensure proper
OSPF operation. If an area is not able to be directly connected with area 0, a virtual link needs to
be configured in order to logically connect that area to the backbone network. In this case, a
virtual link needs to be configured between routers Certkiller 3 and Certkiller 4. This will
logically extend the OSPF area 3 into area 4, connecting it into the backbone. In this example, if
the route to 10.4.4.0/24 is missing, a misconfigured or broken virtual link is the most likely cause
of the problem.
QUESTION 383
Which command would display OSPF parameters such as filters, default metric, maximum
paths, and number of areas configured on a router?

Actualtests.com - The Power of Knowing

642-801
A. show ip protocol
B. show ip route
C. show ip ospf interface
D. show ip ospf
E. show ip interface
F. None of the above
Answer: A
Explanation:
The "show ip protocol" command displays values about routing timers and network information
associated with the entire router. This includes, the AS number associated with the routing
process, number of areas configured on the router, the metric, and the maximum paths.
QUESTION 384
While troubleshooting a BGP problem on the Certkiller network you notice that the
10.10.10.0/24 prefix is not being injected into the local BGP table of CK1 . The relevant
configuration of router CK1 is shown below:
router bgp 65001
network 10.0.0.0
neighbor 172.16.1.1 remote-as 65002
no auto-summary
Routing table information:
show ip route | include 10
O 10.10.10.0/24 [110/11] via 192.168.1.1, 2d00h, Ethernet0/0
Why doesn't the local BGP table have the prefix?
A. This route is not a BGP learned route.
B. The network command is wrong.
C. The 172.16.1.1 neighbor is down.
D. The prefix 10.10.10.0/24 is not a connected route.
Answer: B
Explanation:
The correct syntax should be "network 10.10.10.0 mask 255.255.255.0" under the BGP routing
process. Without the correct subnet mask specified, the route will not get injected into the BGP
routing table, even if it is learned via an IGP. In this case, the route is known via OSPF.
QUESTION 385
What would happen if a full mesh of BGP sessions were configured within a single large
autonomous system? (Select two)
A. Many UDP sessions will be created.
B. More memory and CPU will be consumed.
C. This configuration is not permitted by default.
Actualtests.com - The Power of Knowing

642-801
D. A significant amount of bandwidth for BGP updates and retransmissions can be used.
E. Permanent Virtual Circuits (PVCs) must be created to link the fully meshed BGP
sessions.
Answer: B, D
Explanation:
The number of TCP connections that are required for a full mesh grows exponentially. The
formula for the total number of BGP sessions is N(N-1)/2. For example, for 10 IBGP routers to
become fully meshed 45 peering sessions will need to be configured.
B: More memory and CPU resources are required on the routers to support the full mesh BGP.
D: There will be many TCP sessions and a significant amount of bandwidth will be required for
BGP traffic.
Incorrect Answers:
A: Many TCP, not UDP, sessions will be created.
C: It is permitted.
E: PVCs are not required.
QUESTION 386
An ISP is running a large IBGP network with 25 routers. The full mesh topology that is
currently in place is inefficient on bandwidth and BGP traffic.
What can the administrator configure to reduce the number of BGP neighbor relationships
within the AS?
A. route reflector
B. route maps
C. route redistribution
D. peer groups
E. aggregate addresses
Answer: A
Explanation:
Route reflectors can be used to overcome this scalability issues with configuring a full IBGP
mesh within a network. With route reflectors, the clients need to only peer with one single router
(the route reflector). In this way, fewer peering sessions need to be configured and maintained
within the IBGP network.
QUESTION 387
To establish a full mesh IBGP between ten routers, how many IBGP sessions are required?
A. 10
B. 45
C. 50
D. 90
E. 100
Actualtests.com - The Power of Knowing

642-801

Answer: B
Explanation:
For full mesh n*(n-1)/2 connections are needed. So, (10-1)*9/2-45
QUESTION 388
While verifying the OSPF operation on your network, you issue the following command:
show ip ospf interface
What information parameters will you get after you execute this command? (Select two)
A. The router ID
B. The summary link counts
C. The neighbor adjacencies
D. The link-state update interval
Answer: A, C
Explanation:
A: The router ID is displayed.
C: Neighbor adjacencies are included in the output of this command.
D: OSPF use the hello interval as update interval. The hello interval is displayed by this
command.
QUESTION 389
You issue the "show ip route" command on router CK1 and receive the following output:
S 62.99.153.0/24 [1/0] via 209.177.64.130
172.209.12.0/32 is subnetted, 1 subnets
D EX 172.209.12.1
[170/2590720] via 209.179.2.114, 06:47:28,
Serial0/0/0.1239
62.113.17.0/24 is variably subnetted, 2 subnets, 2 masks
D 62.113.17.0/29 [90/30208] via 62.113.20.10, 07:35:24,
ATMO/1/0.130
S 62.113.17.0/24 [1/0] via 62.113.1.25
D EX 99.3.215.0/24
[170/27316] via 209.180.96.45, 09:52:10,
FastEthernet11/0/0
[170/27316] via 209.180.96.44, 09:52:10,
FastEthernet11/0/0
D 25.248.17.0/24
[90/1512111] via 209.179.66.25, 10:33:13,
Serial0/0/0.1400001
[90/1512111] via 209.179.66.41, 10:33:13,
Serial0/0/0.1402001
62.113.1.0/24 is variably subnetted, 12 subnets, 2 masks
Actualtests.com - The Power of Knowing

642-801
D 62.113.1.227/32
[90/24823552] via 209.180.96.45, 07:35:24,
FastEthernet1/0/0
[90/24823552] via 209.180.96.44, 07:35:24,
FastEthernet1/0/0
S* 0.0.0.0/0 [1/0] via 209.180.96.14
One of the routing entries in router CK1 was learned via a static route. Which one is it?
A. 99.3.215.0
B. 62.99.153.0
C. 172.209.12.1
D. 62.113.1.227
Answer: B
Explanation:
The S denotes a static router (see below).
S 62.99.153.0/24 [1/0] via 209.177.64.130
Incorrect Answers:
A, C: The D EX denotes a route learned through EIGRP external.
D: The D denotes a route learned through EIGRP.
QUESTION 390
While verifying BGP operation on the Certkiller router, you issue the "show ip bgp"
command as shown below:
routerTK>show ip bgp
BGP table version is 1046033, local router ID is 198.32.162.100
Status codes: s suppressed, d damped, h history, * valid, > best, i internal
Origin codes: i - IGP, e EGP, ? -incomplete
Network Next Hop Metric LocPrf Weight Path
* > 143.16.0.0 128.214.63.2 0 400 0 200 1
* 143.16.0.0 192.208.10.5 0 300 0 300 1
* 143.16.0.0 143.16.63.5 0 100 0 200 1
* 143.16.0.0 203.250.13.41 0 100 0 500 1
From the information above, which path will the network 128.213.0.0 prefer to take to exit
the AS?
A. 128.214.63.2
B. 192.208.10.5
C. 128.213.63.5
D. 203.250.13.41
E. All of the above will be used in a round robin fashion.
Answer: A

Actualtests.com - The Power of Knowing

642-801
Explanation:
Local preference (LocPref) is a well-known discretionary attribute that provides an indication to
routers in the AS about which path is preferred to exit the AS. A path with a higher local
preference is more preferred. In this scenario the following entry has the highest local preference value
of 400.
Network Next Hop Metric LocPrf Weight Path
* > 128.213.0.0 128.214.63.2 0 400 0 200 1
The preferred exit path of the AS is therefore 128.214.63.2, as noted by the">" which refers to
the best path for this destination.
QUESTION 391
Which IOS command would you use to find out which networks are routed by a particular
OSPF process?
A. show ospf
B. show ip route
C. show ip protocols
D. show ip ospf database
E. None of the above
Answer: C
Explanation:
The show ip protocols command display current routing protocols. It displays the parameters
and current state of the active routing protocol process. The output includes a list of the networks
routing for individual ospf processes.
Sample output:
Rt Certkiller # show ip protocols
Routing Protocol is "ospf 200"
Sending updates every 0 seconds
Invalid after 0 seconds, hold down 0, flushed after 0
Outgoing update filter list for all interfaces is not set
Incoming update filter list for all interfaces is not set
Redistributing: ospf 200
Routing for Networks:
172.6.31.5/32
Routing Information Sources:
Gateway Distance Last Update
Distance: (default is 110)
Incorrect Answers:
A: The show ospf command displays summary information regarding the global OSPF
configuration.
B: The show ip route command displays the IP routing table.
D: The show ip ospf database command displays the contents of the topological database
maintained by the router. The command also shows the router ID and the OSPF process ID.
However, the output does not include the networks routing for individual ospf processes.
Actualtests.com - The Power of Knowing

642-801

QUESTION 392
The routing table of router CK is shown below:
TK#show ip route
Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP
D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP
i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, * - candidate
default
<Some output deleted>
Gateway of last resort is 30.64.0.2 to network 0.0.0.0
30.0.0.0/8 is variably subnetted, 9 subnets, 2 masks
O IA 30.2.0.0/16 [110/74] via 30.64.0.2, 00:09:13, Ethernet0
C 30.1.3.0/24 is directly connected, Serial0
O IA 30.3.0.0/16 [110/148] via 30.64.0.2, 00:05:22, Ethernet0
C 30.1.2.0/24 is directly connected, Serial1
Based on the output above, which of the following statements are true regarding the
routing table? (Select two)
A. The area is a stub area.
B. The area is totally stubby.
C. Network 30 is using VLSM
D. The routing table is for an ABR
Answer: A, C
Explanation:
Incorrect Answers:
A: This is a stub area.
C: The exhibits states that the 30.0.0.0/8 subnet is variably subnetted and the networks used are
/16 and /24, so VLSM is used
Incorrect Answers:
B: The area is stub, not totally stubby.
D: This is not an ABR (Area border router) since there are no external routes, only internal and
directly connected.
QUESTION 393
While troubleshooting an OSPF routing issue you issue the "show ip ospf interface"
command. Which of the following parameters are provided from this? (Select two)
A. Router ID
B. Summary link counts
C. Neighbor adjacencies
D. Link-state update interval
Answer: A, C
Actualtests.com - The Power of Knowing

642-801

Explanation:
The show ip ospf interface command verifies that interfaces have been configured in the
intended areas. If no loopback address is specified, the interface with the highest address is the
taken router ID. It also gives the timer intervals, including the hello interval, and shows the
neighbor adjacencies.
Reference: Building Scalable Cisco Networks (Cisco Press) page 134.
QUESTION 394
Which command should you use to obtain information on OSPF link state advertisements?
In particular: which LSA's have been sent, which LSA's have been received, and the time
when the last LSA was received?
A. show ip ospf database
B. show ip ospf neighbors
C. show ip ospf protocols
D. show ip ospf interfaces
E. None of the above
Answer: A
Explanation:
The show ip ospf database command is used to display lists of information related to the OSPF
topological, the link state, database for a specific router.
Sample output:
R_ Certkiller #show ip ospf database
OSPF Router with ID (192.168.0.12) (Process ID 1)
Router Link States (Area 0)
Link ID ADV Router Age Seq# Checksum Link count
192.168.0.10 192.1680.10 817 0x80000003 0xFF56 1
192.168.0.11 192.1680.11 817 0x80000003 0xFD55 1
192.168.0.12 192.168.0.12 816 0x80000003 0xFB54 1
192.168.0.13 192.168.0.13 816 0x80000003 0xF953 1
192.168.0.14 192.168.0.14 817 0x80000003 0xD990 1
Net Link States (Area 0)
Link ID ADV Router Age Seq# Checksum
192.168.0.14 192.168.0.14 812 0x80000002 0x4AC8
Incorrect Answers:
B: The show ip ospf neighbor is used to display OSPF-neighbor information on a per-interface
basis. It does show the required information though.
Sample output:
Neighbor ID Pri State Dead Time Address Interface
192.168.0.13 1 2WAY/DROTHER 00:00:31 192.168.0.13 Ethernet0
192.168.0.14 1 FULL/BDR 00:00:38 192.168.0.14 Ethernet0
C: There is no such command.
D: The show ip ospf interface command is used to display OSPF-related interface information.
Actualtests.com - The Power of Knowing

642-801
It displays the circuit name and state, IP address, network mask, broadcast address,
redundancy, Internet Control Message Protocol (ICMP) settings, and RIP settings. However,
it does not display LSAs.
Sample output:
RouterTK# show ip interfaces
IP Interface Summary:
Circuit Name: VLAN2 State: active
IP Address: 172.16.1.200 Network Mask: 255.255.0.0
Broadcast Address: 172.16.255.255 Redundancy: disabled
ICMP Redirect: enabled ICMP Unreachable: enabled
RIP: enabled
QUESTION 395
You have a console connection on a router running RIP. Which IOS command would you
enter if you wanted to view the RIP routing transactions that are occurring?
A. show ip rip database
B. show ip route
C. show ip protocols rip
D. debug ip rip
E. debug ip routing
F. None of the above
Answer: D
Explanation:
debug ip rip
Use the debug ip rip EXEC command to display information on RIP routing transactions in real
time. The no form of this command disables debugging output.
Reference:
http://www.cisco.com/en/US/products/sw/iosswrel/ps1828/products_command_reference_chapte
r09186a008007ff66.html
QUESTION 396
While troubleshooting a problem on the Certkiller network, you issue the "show ip
protocol" as shown below:
CK1 #show ip protocol
Outgoing update filter list for all interface is
Incoming update filter list for all interface is
Default networks flagged in outgoing updates
Default networks accepted from incoming updates
EIGRP metric weight K1=1, K2=0, K3=1, K4=0, K5=0
EIGRP maximum hopcount 100
EIGRP maximum metric variance 1
Redistributing: eigrp 101, ospf 101 (internal, external 1, external 2)
Automatic network summarization is in effect
Actualtests.com - The Power of Knowing

642-801
Routing for Networks:
192.168.1.0
Routing Information Sources:
Gateway Distance Last Update
192.168.1.34 90 00:05:21
192.168.1.40 90 00:05:21
192.168.1.18 90 00:05:21
Distance: internal 90 external 170
Routing Protocol is "ospf 101"
Sending updates every 0 seconds
Invalid after 0 seconds, hold down 0, flushed after 0
Outgoing update filter list for all interfaces is
Incoming update filter list for all interfaces is
Redistributing: eigrp 101, ospf 101
Routing for Networks:
10.1.1.1/32
Routing Information Sources:
Gateway Distance Last Update
172.16.11.100 110 00:00:16
Based on this information, which of the following statements are true for Router CK1 ?
(Choose three)
A. Redistribution has been configured for EIGRP into OSPF.
B. Redistribution has been configured for OSPF into EIGRP.
C. EIGRP auto-summary has been disabled.
D. The OSPF process-id and the EIGRP autonomous system number can not be identical.
E. EIGRP has been configured for un-equal cost paths load balancing.
F. The router (p1r1) has received routing updates from three EIGRP neighbors and from one
OSPF neighbor.
Answer: A, B, F
Explanation:
A: Under the EIGRP configuration the line "Redistributing: eigrp 101, ospf 101" is present.
B: Under the OSPF configuration the line "Redistributing: eigrp 101, ospf 101' is present.
F: This is correct because of the three neighbor updates listed under the Gateway Distance Last
Update section of the EIGRP configuration
Incorrect Answers:
C: The output explicitly states that automatic network summarization is in effect.
D: This is not true. In this router, they are both configured for AS 101
E: is incorrect because under the EIGRP configuration the EIGRP maximum metric variance is
1, which is the default, specifying equal cost load balancing.
QUESTION 397
The Certkiller network is displayed below, along with the relevant router configurations for
CK1 and CK2 .
Actualtests.com - The Power of Knowing

642-801

PC1 is unable to ping PC2 successfully.

Given the above diagram and configurations, which solution would fix this problem?
A. Enable IP classless on CK1 and CK2 .
B. To support discontinuous subnet, enable RIPv2 on CK1 and CK2 then disable autosummary.
C. Enable both RIPv1 and RIPv2 on CK1 and CK2 .
D. Enable no auto-summary in RIP router configuration mode on CK1 and CK2 .
Answer: B
Explanation:
With RIP version 1 configured, both routers will summarize the LAN subnets and each will
advertise the 10.0.0.0/8 route to each other. If we enable use a routing protocol that supports
VLSM, such as RIPv2, and then disable the auto-summarization feature, then router CK1 will
advertise the 10.1.1.0/24 subnet to CK2 , and CK2 will advertise the 10.3.3.0/24 subnet to CK1 .
Incorrect Answers:
A: This will not solve the problem, since each router has a 10s network on each of their LANs.
C: This alone will not solve the problem, since we also need to disable the automatic
summarization of network routes.
D: This is not an option for RIP version 1 networks, since it is a classful routing protocol.
QUESTION 398
The IP BGP table of router P1R3 is displayed in the following diagram:

Based on the P1R2 show ip bgp output, which statement is true?

Actualtests.com - The Power of Knowing

642-801

A. The best path to reach the 192.168.11.0 prefix is via 10.200.200.11.

B. The best path to reach the 192.168.11.0 prefix is via 10.200.200.12.
C. The best path to reach the 192.168.11.0 prefix is via both 10.200.200.11 and
10.200.200.12; BGP will automatically load balance between the two.
D. The 192.168.11.0 and 192.168.12.0 prefixes were learned via EBGP from the
10.200.200.11 and 10.200.200.12 EBGP neighbors.
E. None of the above
Answer: B
Explanation:
The best path to any given destination is noted by the ">" in the IP BGP table. In this case, the
best path to 192.168.11.0 is via next hop 10.200.200.12 due to the fact that the weight is higher
(101) than the path via the alternative next hop. Weight is a Cisco proprietary method for path
determination and the weight value is used above all other values. Within a router, the path with
the highest weight will be preferred.
QUESTION 399
Which IOS command could you use to verify if a BGP router is or isn't a route reflector?
A. show bgp neighbor
B. show running-config
C. show route-reflector
D. show route-reflector-client
E. None of the above
Answer: A
Explanation:
The show bgp neighbor command indicates if a particular neighbor is a route reflector client.
Note: Route reflectors modify the BGP split horizon rule by allowing the router
configured as the route reflector to propagate routes learned by IBGP to other
IBGP peers.
Incorrect Answers:
B: Displaying the current configuration would not be useful in finding information in the route
reflector status.
C, D: There are no such commands.
QUESTION 400
Which IOS command would you enter if you wanted to view a list of IBGP and EBGP
neighbor relationships that are configured?
A. show ip bgp
B. show ip bgp paths
C. show ip bgp peers
Actualtests.com - The Power of Knowing

642-801
D. show ip bgp summary
E. show ip bgp protocols
Answer: D
Explanation:
The show ip bgp summary command displays the status of all BGP connections. Neighbors
with corresponding AS values will be listed; both interior and external.
Incorrect Answers:
A: The show ip bgp command displays routes in the BGP routing table, not the neighbors.
B: The show ip bgp paths command is used to display all the BGP paths in the database.
However, it does not list the neighbors.
C, E: There is no such command.
Reference:http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/np1_r/1rprt
1/1rbgp.htm

Actualtests.com - The Power of Knowing