It is impossible to pass Cisco 200-125 exam without any help in the short term. Come to Ucertify soon and find the most advanced, correct and guaranteed Cisco 200-125 practice questions. You will get a surprising result by our Up to the immediate present CCNA Cisco Certified Network Associate CCNA (v3.0) practice guides.

2021 Apr 200-125 dumps

Q151.  - (Topic 3)

What are two enhancements that OSPFv3 supports over OSPFv2? (Choose two.)

A. It requires the use of ARP.

B. It can support multiple IPv6 subnets on a single link.

C. It supports up to 2 instances of OSPFv3 over a common link.

D. It routes over links rather than over networks.

Answer: B,D


Here is a list of the differences between OSPFv2 and OSPFv3:

✑ They use different address families (OSPFv2 is for IPv4-only, OSPFv3 can be used for IPv6-only or both protocols

✑ OSPFv3 introduces new LSA types

✑ OSPFv3 has different packet format

✑ OSPFv3 uses different flooding scope bits (U/S2/S1)

✑ OSPFv3 adjacencies are formed over link-local IPv6 communications

✑ OSPFv3 runs per-link rather than per-subnet

✑ OSPFv3 supports multiple instances on a single link, Interfaces can have multiple IPv6 addresses

✑ OSPFv3 uses multicast addresses FF02::5 (all OSPF routers), FF02::6 (all OSPF DRs)

✑ OSPFv3 Neighbor Authentication done with IPsec (AH)

✑ OSPFv2 Router ID (RID) must be manually configured, still a 32-bit number

Reference: ipv6.html

Q152. CORRECT TEXT - (Topic 7)

A network associate is adding security to the configuration of the Corp1 router. The user on host C should be able to use a web browser to access financial information from the Finance Web Server. No other hosts from the LAN nor the Core should be able to use a web browser to access this server. Since there are multiple resources for the corporation at this location including other resources on the Finance Web Server, all other traffic should be allowed.

The task is to create and apply an access-list with no more than three statements that will allow ONLY host C web access to the Finance Web Server. No other hosts will have web access to the Finance Web Server. All other traffic is permitted.

Access to the router CLI can be gained by clicking on the appropriate host.

All passwords have been temporarily set to "cisco".

The Core connection uses an IP address of

The computers in the Hosts LAN have been assigned addresses of -

✑ host A

✑ host B

✑ host C


Corp1#conf t

Corp1(config)# access-list 128 permit tcp host host eq www Corp1(config)# access-list 128 deny tcp any host eq www

Corp1(config)# access-list 128 permit ip any any Corp1(config)#int fa0/1

Corp1(config-if)#ip access-group 128 out Corp1(config-if)#end

Corp1#copy run startup-config

Q153.  - (Topic 7)

Refer to the exhibit.

Hosts in network are unable to reach hosts in network Based on the output from RouterA, what are two possible reasons for the failure? (Choose two.)

A. The cable that is connected to S0/0 on RouterA is faulty.

B. Interface S0/0 on RouterB is administratively down.

C. Interface S0/0 on RouterA is configured with an incorrect subnet mask.

D. The IP address that is configured on S0/0 of RouterB is not in the correct subnet.

E. Interface S0/0 on RouterA is not receiving a clock signal from the CSU/DSU.

F. The encapsulation that is configured on S0/0 of RouterB does not match the encapsulation that is configured on S0/0 of RouterA.

Answer: E,F


From the output we can see that there is a problem with the Serial 0/0 interface. It is enabled, but the line protocol is down. There could be a result of mismatched encapsulation or the interface not receiving a clock signal from the CSU/DSU.

Q154.  - (Topic 8)

Which protocol is the Cisco proprietary implementation of FHRP?





Answer: A

Q155.  - (Topic 8)

Which two security appliances will you use in a network? (Choose two.)







Answer: B,E

Up to date 200-125 exam question:

Q156.  - (Topic 6)

Refer to the exhibit.

An attempt to deny web access to a subnet blocks all traffic from the subnet. Which interface command immediately removes the effect of ACL 102?

A. no ip access-class 102 in

B. no ip access-class 102 out

C. no ip access-group 102 in

D. no ip access-group 102 out

E. no ip access-list 102 in

Answer: D


The “ip access-group” is used to apply and ACL to an interface. From the output shown, we know that the ACL is applied to outbound traffic, so “no ip access-group 102 out” will

remove the effect of this ACL.

Q157.  - (Topic 7)

What Cisco IOS feature can be enabled to pinpoint an application that is causing slow network performance?


B. Netflow



Answer: B


Netflow can be used to diagnose slow network performance, bandwidth hogs and bandwidth utilization quickly with command line interface or reporting tools.

Reference: netflow/prod_white_paper0900aecd80406232.html

Q158. DRAG DROP - (Topic 3)

Drag the Cisco default administrative distance to the appropriate routing protocol or route. (Not all options are used.)


Q159.  - (Topic 5)

What is the default Syslog facility level?

A. local4

B. local5

C. local6

D. local7

Answer: D


By default, Cisco IOS devices, CatOS switches, and VPN 3000 Concentrators use facility local7 while Cisco PIX Firewalls use local4 to send syslog messages. Moreover, most Cisco devices provide options to change the facility level from their default value.


Q160.  - (Topic 8)

Which command can you use to set the hostname on a switch?

A. switch-mdf-c1(config)#hostname switch-mdf1

B. switch-mdf-c1>hostname switch-mdf1

C. switch-mdf-c1#hostname switch-mdf1

D. switch-mdf-c1(config-if)#hostname switch-mdf1

Answer: A