There are various Cisco 400-101 training materials on the market. But Pass4sure features all the Cisco 400-101 exam practice supplies you need. The 400-101 dumps cover everything that appears within the real exam. The Cisco Cisco 400-101 training program is a shortcut with a quickly pace in which assist an individual in receiving certified. The Cisco 400-101 exam questions together with accurate as well as trustworthy answers are created and revised simply by our knowledgeable IT professionals.

2021 Apr 400-101 exam fees

Q371. Refer to the exhibit. 

Which statement about the route target for 192.168.1.0/24 is true? 

A. Its route target is 64512:100010051. 

B. Its route targets are 64512:100010051, 64512:2002250, and 64512:3002300. 

C. Its route target is 64512:3002300. 

D. Its route targets are 64512:100010051 and 64512:3002300. 

E. Its route targets are 64512:2002250 and 64512:3002300. 

Answer:

Explanation: 

Here we are using route maps to change the route target for the 192.168.1.0/24 network from the default route target of 64512:100010051 to 64512:3002300. 


Q372. Which BGP feature allows BGP routing tables to be refreshed without impacting established BGP sessions? 

A. BGP synchronization 

B. soft reconfiguration 

C. confederations 

D. hard reset 

Answer:

Explanation: 

Clearing a BGP session using a hard reset invalidates the cache and results in a negative impact on the operation of networks as the information in the cache becomes unavailable. Soft reset is recommended because it allows routing tables to be reconfigured and activated without clearing the BGP session. Soft reset is done on a per-neighbor basis. 

Reference: http://www.cisco.com/en/US/products/ps6599/products_data_sheet09186a0080087b3a.ht ml 


Q373. DRAG DROP 

Drag each routing protocol on the left to the matching statement on the right. 

Answer: 


Q374. What two values are required to implement an EIGRP named configuration? (Choose two.) 

A. virtual-instance-name 

B. address-family 

C. router-id 

D. subnet-mask 

E. process-id 

Answer: A,B 


Q375. Which three statements about GET VPN are true? (Choose three.) 

A. It encrypts WAN traffic to increase data security and provide transport authentication. 

B. It provides direct communication between sites, which reduces latency and jitter. 

C. It can secure IP multicast, unicast, and broadcast group traffic. 

D. It uses a centralized key server for membership control. 

E. It enables the router to configure tunnels. 

F. It maintains full-mesh connectivity for IP networks. 

Answer: A,B,D 

Explanation: 

Cisco GET VPN Features and Benefits 

Feature 

Description and Benefit 

Key Services 

Key Servers are responsible for ensuring that keys are granted to authenticated and authorized devices only. They maintain the freshness of the key material, pushing re-key messages as well as security policies on a regular basis. The chief characteristics include: 

. Key Servers can be located centrally, granting easy control over membership. 

. Key Servers are not in the "line of fire" - encrypted application traffic flows directly between VPN end points without a bottleneck or an additional point of failure. 

. Supports both local and global policies, applicable to all members in a group - such as "Permit any any", a policy to encrypt all traffic. 

. Supports IP Multicast to distribute and manage keys, for improved efficiency; Unicast is also supported where IP Multicast is not possible. 

Scalability and Throughput 

. The full mesh nature of the solution allows devices to communicate directly with each other, without requiring transport through a central hub; this minimizes extra encrypts and decrypts at the hub router; it also helps minimize latency and jitter. 

. Efficient handling of IP Multicast traffic by using the core network for replication can boost effective throughput further 

Security 

Provides data security and transport authentication, helping to meet security compliance and internal regulation by encrypting all WAN traffic 

Reference: http://www.cisco.com/c/en/us/products/collateral/security/group-encrypted-transport-vpn/product_data_sheet0900aecd80582067.html 


Leading 400-101 practice exam:

Q376. Refer to the exhibit. 

Which statement is true? 

A. 2001:DB8::1/128 is a local host route, and it can be redistributed into a dynamic routing protocol. 

B. 2001:DB8::1/128 is a local host route, and it cannot be redistributed into a dynamic routing protocol. 

C. 2001:DB8::1/128 is a local host route that was created because ipv6 unicast-routing is not enabled on this router. 

D. 2001:DB8::1/128 is a route that was put in the IPv6 routing table because one of this router's loopback interfaces has the IPv6 address 2001:DB8::1/128. 

Answer:

Explanation: 

The local routes have the administrative distance of 0. This is the same adminstrative distance as connected routes. However, when you configure redistributed connected under any routing process, the connected routes are redistributed, but the local routes are not. This behavior allows the networks to not require a large number of host routes, because the networks of the interfaces are advertised with their proper masks. These host routes are only needed on the router that owns the IP address in order to process packets destined to that IP address. 

It is normal for local host routes to be listed in the IPv4 and IPv6 routing table for IP addresses of the router's interfaces. Their purpose is to create a corresponding CEF entry as a receive entry so that the packets destined to this IP address can be processed by the router itself. These routes cannot be redistributed into any routing protocol. 

Reference: http://www.cisco.com/c/en/us/support/docs/ip/ip-routing/116264-technote-ios-00.html 


Q377. Which two statements about the command distance bgp 90 60 120 are true? (Choose two.) 

A. Implementing the command is a Cisco best practice. 

B. The external distance it sets is preferred over the internal distance. 

C. The internal distance it sets is preferred over the external distance. 

D. The local distance it sets may conflict with the EIGRP administrative distance. 

E. The internal distance it sets may conflict with the EIGRP administrative distance. 

F. The local distance it sets may conflict with the RIP administrative distance. 

Answer: C,F 

Explanation: 

To allow the use of external, internal, and local administrative distances that could be a better route than other external, internal, or local routes to a node, use the distance bgp command in address family or router configuration mode. To return to the default values, use the no form of this command. distance bgp external-distance internal-distance local-distance no distance bgp 

. Syntax Description 

external-distance 

Administrative distance for BGP external routes. External routes are routes for which the best path is learned from a neighbor external to the autonomous system. Accept table values are from 1 to 255. The default is 20. Routes with a distance of 255 are not installed in the routing table. 

internal-distance 

Administrative distance for BGP internal routes. Internal routes are those routes that are learned from another BGP entity within the same autonomous system. Accept table values are from 1 to 255. The default is 200. Routes with a distance of 255 are not installed in the routing table. 

local-distance 

Administrative distance for BGP local routes. Local routes are those networks listed with a network router configuration command, often as back doors, for that router or for networks that are being redistributed from another process. Accept table values are from 1 to 255. The default is 200. Routes with a distance of 255 are not installed in the routing table. 

Defaults 

external-distance: 20 

internal-distance: 200 

local-distance: 200 

In this case, the internal distance is 60 and the external is 90, and the local distance is 120 (same as RIP). 

Reference: http://www.cisco.com/c/en/us/td/docs/ios/12_2/iproute/command/reference/fiprrp_r/1rfbgp1. html#wp1113874 


Q378. Which configuration sets a minimum quality of service on a Layer 2 access switch? 

A. mls qos cos override 

mls qos cos 2 

B. mls qos cos 2 

C. mls qos trust cos 

mls qos cos 2 

D. mls qos trust cos 

E. mls qos trust dscp 

Answer:

Explanation: 

The mls qos cos override interface command must be used to ensure that untrusted CoS values are explicitly set 0 (default). 

Reference: http://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/WAN_and_MAN/QoS_SRND/Qo S-SRND-Book/QoSDesign.html 


Q379. Which two statements about static NAT are true? (Choose two.) 

A. An outside local address maps to the same outside global IP address. 

B. An inside local address maps to a different inside global IP address. 

C. An outside local address maps to a different outside global IP address. 

D. An inside local address maps to the same inside global IP address. 

Answer: A,D 

Explanation: 

Example found at the reference link below: Reference: http://www.cisco.com/c/en/us/support/docs/ip/network-address-translation-nat/4606-8.html 


Q380. DRAG DROP 

Answer: