[May-2018-New]High Quality Braindump2go 200-601 Exam Dumps and 200-601 Exam Questions 90Q Free Share[57-67]

2018 May New Cisco 200-601 Exam Dumps with PDF and VCE Just Updated Today! Following are some new 200-601 Real Exam Questions:

1.|2018 Latest 200-601 Exam Dumps (PDF & VCE) 90Q Download:

2.|2018 Latest 200-601 Exam Questions & Answers Download:

Refer to the exhibit. L3SW1 has a spanning-tree priority of 8192 set on VLANs 1, 300, and 301, and these VLANs are configured on and trunked between all switches.

Executing the command show spanning-tree blockedports on L2SW5 results in:
L2SW5# show spanning-tree blockedports
Name Blocked Interfaces List
——————– ————————————
VLAN0001 Gi1/1
VLAN0300 Gi1/1
VLAN0301 Gi1/1
An additional VLAN, VLAN302, is defined on all switches and trunked between them. VLAN302 access ports are set up on each of the switches and PLC#1, I/O#1, and the PanelView are attached. You expect the new VLAN to be listed as blocked on interface GigabitEthernet1/1 of L2SW5 but it is not. The three new devices are able to communicate with each other.
After executing the same command on all switches you see this output on L2SW4:
L2SW4# show spanning-tree blockedports
Name Blocked Interfaces List
——————– ————————————
VLAN0001 Gi1/2
VLAN0300 Gi1/2
VLAN0301 Gi1/2
Why is VLAN302 forwarding on L2SW5 interface GigabitEthernet 1/1 and L2SW4 interface GigabitEthernet 1/1 and 1/2?

A. VLAN302 is not configured in the VLAN database on L2SW5
B. VLAN302 is not in the allowed list on the L2SW5 interface GigabitEthernet1/1 trunk
C. L2SW4 is the spanning tree root for VLAN 302
D. The FO3 fiber-optic cable between L2SW4 and L2SW5 is damaged

Answer: C

Which two are possible solutions to control which devices can communicate between industrial zones? (Choose two)

A. Use per zone private IP addressing and deploy NAT to control traffic between zones
B. Put access control lists on switches connecting industrial zones to control traffic
C. Attach each zone to a firewall to control intra-zone traffic
D. Deploy QoS traffic shaping to limit the volume of traffic between industrial zones
E. Deploy an IDS system between the zones to control intra-zone traffic

Answer: BC

Refer to the exhibit. Which three options are needed to configure NAT on router GW so PC1 and PC2 will be able to ping (Choose three)

A. interface Ethernet0
ip nat inside
interface Ethernet1
ip nat outside
B. ip access-list standard ACL_NAT
C. ip nat inside source static tcp 80 interface Ethernet1 80
D. interface Ethernet0
ip nat outside
interface Ethernet1
ip nat inside
E. ip nat inside source list ACL_NAT interface Ethernet1 overload
F. ip access-list extended ACL_NAT
permit tcp any eq 80

Answer: ABE

Which selection is a reason why IGMP snooping should be configured on a switched network?

A. IGMP snooping populates the snooping table with the results of DHCP requests and can be used by Dynamic ARP Inspection to block IP spoofing attacks at Layer-2.
B. IGMP snooping verifies the source IP address of every IPv4 packet to ensure that it hasn’t been originated from a port different than its return path.
C. IGMP snooping is used to filter ping requests and results to avoid overflowing the MAC address table of the switch.
D. IGMP snooping allows a Layer-2 switch to limit the transmission of multicast frames to only the ports that have members of the relevant IGMP group.

Answer: D

Refer to the exhibit. An expansion project added an E-Tap and Device Level Ring to interface FastEthernet1/1 of L2SW1. The administrator has looked at the logs of L2SW1 and found that FastEthernet1/1 was in an error-disabled state.Using command line access on L2SW1, the administrator issued the following commands in configuration mode:

L2SW1(config)# interface FastEthernet 1/1
L2SW1(config-if)# shutdown
L2SW1(config-if)# no shutdown
The administrator checked the logs of L2SW1 and found the following:
Mar 30 02:23:17.588: %PM-4-ERR_DISABLE: bpduguard error detected on Fa1/1, putting Fa1/1 in err-disable state
The administrator checked the software configuration of the switch port and found the following:
interface FastEthernet1/1
switchport access vlan 310
switchport mode access
speed 100
duplex full
no mdix auto
spanning-tree portfast
spanning-tree bpduguard enable
Why has the port gone error-disabled?

A. interface FastEthernet1/1 is configured as an access port on the wrong VLAN.
B. There is a duplex mismatch between interface FastEthernet1/1 and the E-Tap.
C. The E-Tap is not configured as a ring supervisor causing a loop on interface FastEthernet1/1.
D. The E-Tap is configured at 10Mbps and the switch port is configured at 100Mbps.
E. Automatic MDI Crossover detection is disabled.

Answer: C

Which in-depth approach is used when deploying defense in an industrial zone?

A. Besides using a dedicated firewall / DMZ construction use an IOS based firewall on the WAN router connecting the industrial site to the Internet.
B. Use NTP to make sure that time stamps of log messages are synchronized such that you can do root cause analysis.
C. Deploy an IDS solution with knowledge about industrial protocols in the industrial zone in combination with a firewall.
D. Use multiple firewalls from different vendors in such a way that network traffic will have to traverse both firewalls so that security holes of one firewall is caught by the other firewall.

Answer: C

Which statement is correct regarding Media Redundancy Protocol (MRP) in a ring of ProfiNET devices?

A. When a link fault is detected, MRP rings must converge in less than 100 milliseconds
B. MRP defines two device roles, Media Redundancy Master and Media Redundancy Client
C. MRP can support rings of up to 250 devices
D. MRP is only supported on network switches

Answer: B

Refer to the exhibit. What issue does this topology present for the represented traffic flow?

A. Standard Produce/Consume traffic is not suitable for an 802.11 wireless environment.
B. Only one of the Work Group Bridges can transmit at a time, because 802.11 is half duplex.
C. The Converged Plant-wide Ethernet best practices for 802.11 wireless don’t allow for PAC to PAC traffic.
D. I/O control traffic should utilize the 2.4 GHz band based on best practices.

Answer: B

A ProfiNET management system operator is unable to add a ProfiNET Conformance Class B device to a SIMATIC management station. The device is connected to interface FastEthernet1/3. Based on the provided CLI output, which statement is correct?
switch#show profinet lldp
Fa1/1 port-003-00000 On
Fa1/2 port-004-00000 On
Fa1/3 port-005-00000 Off
Fa1/4 port-006-00000 Off
Fa1/5 port-007-00000 On
Fa1/6 port-008-00000 Off
Fa1/7 port-009-00000 On
Fa1/8 port-010-00000 Off

A. LLDP has been disabled on this switch
B. The connected device is not sending LLDP packets with ProfiNET extensions
C. The port label needs to be changed on interface FastEthernet 1/3 to “port-003-00000”
D. ProfiNET is disabled on this switch

Answer: B

A cookie cutter machine requires 2 standard controllers and a safety controller. All of these controllers and machine level I/O have been placed on VLAN 104. The safety controller must monitor an emergency stop connected to an I/O adapter on an adjacent machine (VLAN 105). Which packet type will be used?

A. UDP Multicast TTL = 1
B. UDP Multicast TTL = 2
C. UDP Unicast
D. TCP Unicast

Answer: C

Profinet has been disabled on a Cisco Industrial Ethernet switch, which CLI commands correctly enable ProfiNET on VLAN 10?

A. switch(config)#profinet
switch(config)#profinet vlan 10
B. switch#enable profinet
switch(config)#profinet vlan 10
C. switch(config)#profinet
switch(config)#vlan 10
D. switch#enable profinet
switch(config)#vlan 10

Answer: A


1.|2018 Latest 200-601 Exam Dumps (PDF & VCE) 90Q Download:

2.|2018 Latest 200-601 Study Guide Video: