200-301 Exam Questions
1,744 real 200-301 exam questions with expert-verified answers and explanations. Page 1 of 35.
- Question #1
Which statement correctly compares traditional networks and controller-based networks?
SDN architectureTraditional networkingControl plane separation - Question #2
How does HSRP provide first hop redundancy?
HSRPFirst Hop Redundancy - Question #3
Which two actions influence the EIGRP route selection process? (Choose two)
EIGRP route selectionFeasible DistanceEIGRP metric - Question #4
Which two capabilities of Cisco DNA Center make it more extensible as compared to traditional campus device management? (Choose two.)
Cisco DNA CenterNetwork programmabilityREST APIsSDKs - Question #5
Refer to the exhibit. What does router R1 use as its OSPF router-ID?
OSPFOSPF Router-ID - Question #6
Which 802.11 frame type is association response?
802.11 framesWi-Fi associationManagement frames - Question #7Automation and Programmability
Which API is used in controller-based architectures to interact with edge devices?
SDN APIsSouthbound API - Question #8
Which statement identifies the functionality of virtual machines?
Hypervisor functionalityVirtualization concepts - Question #9IP Connectivity
Which type of address is the public IP address of a NAT device?
NAT address typesNetwork Address TranslationIP addressingCisco NAT terminology - Question #10Automation and Programmability
Which option about JSON is true?
JSON structureData formats - Question #11IP Connectivity
Which attribute does a router use to select the best path when two or more different routes to the same destination exist from two different routing protocols?
Routing protocolsAdministrative DistanceRoute selection - Question #12Network Access
Which two values or settings must be entered when configuring a new WLAN in the Cisco Wireless LAN Controller GUI? (Choose two)
Cisco WLCWLAN configurationSSIDProfile name - Question #13Automation and Programmability
What are two benefits of network automation? (Choose two)
Network automation - Question #14Security Fundamentals
Which command prevents passwords from being stored in the configuration as plaintext on a router or switch?
Cisco password encryptionconfiguration security - Question #15Automation and Programmability
Drag and Drop Question Drag drop the descriptions from the left on to the correct configuration-management technologies on the right. Answer:
Configuration ManagementNetwork Automation ToolsPuppetAnsible - Question #16Network Fundamentals – Explain the role and function of network components and common file transfer protocols (FTP vs. TFTP), typically covered in CompTIA Network+ or Cisco CCNA Domain 1 (Network Fundamentals)
Drag and Drop Question Drag and drop the descriptions of file-transfer protocols from the left onto the correct protocols on the right. Answer:
FTPTFTPFile Transfer ProtocolsNetwork Services - Question #17Cisco ENCOR / CCNA Wireless - Describe the components and architecture of a centralized WLAN deployment, including WLC interface types and their functions
Drag and Drop Question Drag and drop the WLAN components from the left onto the correct descriptions on the right. Answer:
WLAN ArchitectureWireless LAN ControllerCisco WLC InterfacesEnterprise Wireless - Question #18Infrastructure Security / LAN Security and Threat Mitigation (Cisco CCNA/CCNP - Network Security or Enterprise)
Drag and Drop Question Drag and drop the threat-mitigation techniques from the left onto the types of threat or attack they mitigate on the right. Answer:
Layer 2 SecuritySTP SecurityARP InspectionVLAN Security - Question #19CompTIA Network+ / IT Fundamentals – Network Services and Infrastructure (Identify the functions of common network services including DNS and DHCP)
Drag and Drop Question Drag and drop the functions from the left onto the correct network components on the right. Answer:
DNSDHCPNetwork ServicesTCP/IP - Question #20Security Fundamentals - Understanding AAA (Authentication, Authorization, and Accounting) services and their roles in network access control, commonly tested in CompTIA Security+, CCNA Security, and similar certifications.
Drag and Drop Question Drag and drop the AAA functions from the left onto the correct AAA services on the right. Answer:
AAA FrameworkNetwork SecurityAccess ControlRADIUS/TACACS+ - Question #21Network Fundamentals
Drag and Drop Question Drag and drop the IPv4 network subnets from the left onto the correct usable host ranges on the right Answer:
IPv4 SubnettingCIDR NotationNetwork AddressingHost Range Calculation - Question #22Infrastructure Security – Wireless LAN Controller Security Policies and Mechanisms (CCNA / ENCOR)
Drag and Drop Question Drag and drop the Cisco Wireless LAN Controller security settings from the left onto the correct security mechanism categories on the right. Answer:
Cisco WLCWireless SecurityLayer 2 vs Layer 3 SecurityWLAN Configuration - Question #23Network Access
What is a benefit of using a Cisco Wireless LAN Controller?
Cisco WLCWireless LAN ControllerAP management - Question #24Network Fundamentals
Which network allows devices to communicate without the need to access the Internet?
Private IP addressesIPv4 addressingRFC 1918 - Question #25
Which result occurs when PortFast is enabled on an interface that is connected to another switch?
PortFastSTPswitching loopsbroadcast storms - Question #26Network Access
When configuring a WLAN with WPA2 PSK in the Cisco Wireless LAN Controller GUI, which two formats are available to select? (Choose two)
WLAN configurationWPA2 PSKCisco WLCPSK format - Question #27Network Access
Two switches are connected and using Cisco Dynamic Trunking Protocol SW1 is set to Dynamic Desirable What is the result of this configuration?
Cisco DTPSwitch trunking - Question #28IP Connectivity
When configuring IPv6 on an interface, which two IPv6 multicast groups are joined?(Choose two)
IPv6 multicast groupsIPv6 interface configuration - Question #29IP Services
Which MAC address is recognized as a VRRP virtual address?
VRRPVirtual MAC address - Question #30Network Fundamentals
in Which way does a spine and-leaf architecture allow for scalability in a network when additional access ports are required?
Spine-leaf architectureNetwork scalabilityNetwork topology - Question #31Security Fundamentals
Which type of wireless encryption is used for WPA2 in pre-shared key mode?
WPA2-PSKWireless EncryptionAES-256 - Question #32
What makes Cisco DNA Center different from traditional network management applications and their management of networks?
Cisco DNA CenterNetwork AutomationPolicy abstractionSDN - Question #33IP Services
Which two actions are performed by the Weighted Random Early Detection mechanism? (Choose two)
WREDQoS congestion management - Question #34IP Services
A network engineer must back up 20 network router configurations globally within a customer environment. Which protocol allows the engineer to perform this function using the Cisco...
SNMPMIBsNetwork configuration management - Question #35IP Connectivity
Refer to the exhibit. An engineer is bringing up a new circuit to the MPLS provider on the Gi0/1 interface of Router1. The new circuit uses eBGP and teams the route to VLAN25 from...
eBGPRouting table updatesTraffic forwarding - Question #36
Which action is taken by a switch port enabled for PoE power classification override?
PoEPoE power managementPort shutdown - Question #37
Refer to the exhibit. Which type of route does R1 use to reach host 10.10.13.10/32?
IP routingRouting table lookupRoute types - Question #38Network Access
Which mode must be used to configure EtherChannel between two switches without using a negotiation protocol?
EtherChannelLink AggregationSwitch ConfigurationInterface Modes - Question #39IP Connectivity
An engineer configured an OSPF neighbor as a designated router. Which state verifies the designated router is in the proper mode?
OSPF DROSPF adjacency states - Question #40
Which configuration is needed to generate an RSA key for SSH on a router?
SSH configurationRSA key generation - Question #41Cloud Computing Concepts
An organization has decided to start using cloud-provided services. Which cloud service allows the organization to install its own operating system on a virtual machine?
Cloud service modelsIaaSVirtual machines - Question #42
Refer to Exhibit. Which action do the switches take on the trunk link?
802.1Q TrunkingNative VLANVLAN MismatchBroadcast Domain - Question #43Network Access
Which design element is a best practice when deploying an 802.11b wireless infrastructure?
Wireless designWi-Fi channel planning802.11bAccess point configuration - Question #44
Refer to the exhibit. If OSPF is running on this network, how does Router 2 handle traffic from Site B to 10.10.13.128/25 at Site A?
OSPF routingIP routingNetwork reachability - Question #45Network Access
A frame that enters a switch fails the Frame Check Sequence. Which two interface counters are incremented? (Choose two)
FCS errorsSwitch interface countersEthernet frames - Question #46
Which two conditions must be met before SSH operates normally on a Cisco IOS switch? (Choose two.)
Cisco SSH configurationIOS SSH prerequisitesk9 imageip domain-name - Question #47
Refer to the exhibit. If configuring a static default route on the router with the ip route 0.0.0.0 0.0.0.0 10.13.0.1 120 command, how does the router respond?
Static routingAdministrative distanceDefault routeOSPF routing - Question #48IP Connectivity
Refer to the exhibit. A network engineer must block access for all computers on VLAN 20 to the web server via HTTP. All other computers must be able to access the web server. Which...
Access Control Lists (ACLs)Extended ACLsVLANsACL Application - Question #49
A router running EIGRP has learned the same route from two different paths. Which parameter does the router use to select the best path?
EIGRPRoute selectionRouting metrics - Question #505.0 Security Fundamentals
Refer to the exhibit. An extended ACL has been configured and applied to router R2. The configuration failed to work as intended. Which two changes stop outbound traffic on TCP por...
Extended ACLsACL troubleshootingACL placementTCP port filtering