Proper study guides for Improved Cisco CCNA Cisco Certified Network Associate CCNA (v3.0) certified begins with Cisco 200-125 preparation products which designed to deliver the Realistic 200-125 questions by making you pass the 200-125 test at your first time. Try the free 200-125 demo right now.

2021 Jul 200-125 exam cram

Q141. - (Topic 8) 

RouterA is unable to reach RouterB. Both routers are running IOS version 12.0. 


After reviewing the command output and graphic, what is the most likely cause of the problem? 

A. incorrect bandwidth configuration 

B. incorrect LMI configuration 

C. incorrect map statement 

D. incorrect IP address 

Answer: C 


Q142. - (Topic 4) 

Refer to the exhibit. 


What is the meaning of the output MTU 1500 bytes? 

A. The maximum number of bytes that can traverse this interface per second is 1500. 

B. The minimum segment size that can traverse this interface is 1500 bytes. 

C. The maximum segment size that can traverse this interface is 1500 bytes. 

D. The minimum packet size that can traverse this interface is 1500 bytes. 

E. The maximum packet size that can traverse this interface is 1500 bytes. 

F. The maximum frame size that can traverse this interface is 1500 bytes. 

Answer: E 


Q143. CORRECT TEXT - (Topic 6) 

A network associate is adding security to the configuration of the Corp1 router. The user on host C should be able to use a web browser to access financial information from the Finance Web Server. No other hosts from the LAN nor the Core should be able to use a web browser to access this server. Since there are multiple resources for the corporation at this location including other resources on the Finance Web Server, all other traffic should be allowed. 

The task is to create and apply an access-list with no more than three statements that will allow ONLY host C web access to the Finance Web Server. No other hosts will have web access to the Finance Web Server. All other traffic is permitted. 

Access to the router CLI can be gained by clicking on the appropriate host. 

All passwords have been temporarily set to "cisco". The Core connection uses an IP address of 198.18.196.65 The computers in the Hosts LAN have been assigned addresses of 192.168.33.1 -192.168.33.254 

Host A 192.168.33.1 

Host B 192.168.33.2 

Host C 192.168.33.3 

Host D 192.168.33.4 

The servers in the Server LAN have been assigned addresses of 172.22.242.17 -172.22.242.30 

The Finance Web Server is assigned an IP address of 172.22.242.23. 



Answer: Select the console on Corp1 router 

Configuring ACL 

Corp1>enable 

Corp1#configure terminal 

comment: To permit only Host C (192.168.33.3){source addr} to access finance server address (172.22.242.23) {destination addr} on port number 80 (web) 

Corp1(config)#access-list 100 permit tcp host 192.168.33.3 host 172.22.242.23 eq 80 

comment: To deny any source to access finance server address (172.22.242.23) {destination addr} on port number 80 (web) 

Corp1(config)#access-list 100 deny tcp any host 172.22.242.23 eq 80 

comment: To permit ip protocol from any source to access any destination because of the implicit deny any any statement at the end of ACL. 

Corp1(config)#access-list 100 permit ip any any 

Applying the ACL on the Interface 

comment: Check show ip interface brief command to identify the interface type and number by checking the IP address configured. 

Corp1(config)#interface fa 0/1 

If the ip address configured already is incorrect as well as the subnet mask. this should be corrected in order ACL to work 

type this commands at interface mode : 

no ip address 192.x.x.x 255.x.x.x (removes incorrect configured ipaddress and subnet mask) 

Configure Correct IP Address and subnet mask : 

ip address 172.22.242.30 255.255.255.240 ( range of address specified going to server is given as 172.22.242.17 - 172.22.242.30 ) 

Comment: Place the ACL to check for packets going outside the interface towards the finance web server. 

Corp1(config-if)#ip access-group 100 out 

Corp1(config-if)#end 

Important: To save your running config to startup before exit. 

Corp1#copy running-config startup-config 

Verifying the Configuration: 

Step1: show ip interface brief command identifies the interface on which to apply access list. 

Step2: Click on each host A, B, C, & D. Host opens a web browser page, Select address box of the web browser and type the ip address of finance web server (172.22.242.23) to test whether it permits /deny access to the finance web Server. 

Step 3: Only Host C (192.168.33.3) has access to the server. If the other host can also access then maybe something went wrong in your configuration. Check whether you configured correctly and in order. 

Step 4: If only Host C (192.168.33.3) can access the Finance Web Server you can click on NEXT button to successfully submit the ACL SIM. 


Q144. - (Topic 8) 

Refer to the exhibit. 


In the Frame Relay network, which IP addresses would be assigned to the interfaces with point-to-point PVCs? 

A. DLCI 16: 192.168.10.1 /24 

DLCI 17: 192.168.10.1 /24 

DLCI 99: 192.168.10.2 /24 

DLCI 28: 192.168.10.3 /24 

B. DLCI 16: 192.168.10.1 /24 

DLCI 17: 192.168.11.1 /24 

DLCI 99: 192.168.12.1 /24 

DLCI 28: 192.168.13.1 /24 

C. DLCI 16: 192.168.10.1 /24 

DLCI 17: 192.168.11.1 /24 

DLCI 99: 192.168.10.2 /24 

DLCI 28: 192.168.11.2 /24 

D. DLCI 16: 192.168.10.1 /24 

DLCI 17: 192.168.10.2 /24 

DLCI 99: 192.168.10.3 /24 

DLCI 28: 192.168.10.4 /24 

Answer: C 


Q145. - (Topic 6) 

Which item represents the standard IP ACL? 

A. access-list 110 permit ip any any 

B. access-list 50 deny 192.168.1.1 0.0.0.255 

C. access list 101 deny tcp any host 192.168.1.1 

D. access-list 2500 deny tcp any host 192.168.1.1 eq 22 

Answer: B 


200-125  free exam

Regenerate 200-125 exam topics:

Q146. - (Topic 2) 

Which command can be used from a PC to verify the connectivity between hosts that connect through a switch in the same LAN? 

A. ping address 

B. tracert address 

C. traceroute address 

D. arp address 

Answer: A 


Q147. - (Topic 5) 

What authentication type is used by SNMPv2? 

A. HMAC-MD5 

B. HMAC-SHA 

C. CBC-DES 

D. community strings 

Answer: D 


Q148. - (Topic 4) 

If IP routing is enabled, which two commands set the gateway of last resort to the default gateway? (Choose two.) 

A. ip default-gateway 0.0.0.0 

B. ip route 172.16.2.1 0.0.0.0 0.0.0.0 

C. ip default-network 0.0.0.0 

D. ip default-route 0.0.0.0 0.0.0.0 172.16.2.1 

E. ip route 0.0.0.0 0.0.0.0 172.16.2.1 

Answer: C,E 


Q149. - (Topic 9) 

Which command can you enter to view the ports that are assigned to VLAN 20? 

A. Switch#show vlan id 20 

B. Switch#show ip interface brief 

C. Switch#show interface vlan 20 

D. Switch#show ip interface vlan 20 

Answer: A 


Q150. - (Topic 4) 

Refer to the exhibit. 


What commands must be configured on the 2950 switch and the router to allow communication between host 1 and host 2? (Choose two.) 

A. Router(config)# interface fastethernet 0/0 

Router(config-if)# ip address 192.168.1.1 255.255.255.0 

Router(config-if)# no shut down 

B. Router(config)# interface fastethernet 0/0 

Router(config-if)# no shut down 

Router(config)# interface fastethernet 0/0.1 

Router(config-subif)# encapsulation dot1q 10 

Router(config-subif)# ip address 192.168.10.1 255.255.255.0 

Router(config)# interface fastethernet 0/0.2 

Router(config-subif)# encapsulation dot1q 20 

Router(config-subif)# ip address 192.168.20.1 255.255.255.0 

C. Router(config)# router eigrp 100 

Router(config-router)# network 192.168.10.0 

Router(config-router)# network 192.168.20.0 

D. Switch1(config)# vlan database 

Switch1(config-vlan)# vtp domain XYZ 

Switch1(config-vlan)# vtp server 

E. Switch1(config)# interface fastethernet 0/1 

Switch1(config-if)# switchport mode trunk 

F. Switch1(config)# interface vlan 1 

Switch1(config-if)# ip default-gateway 192.168.1.1 

Answer: B,E