Is this exam completely free?

Examcademy offers a free preview for every exam, covering around 20% of the total questions. Full access is available with a paid upgrade.

Can I practice IT certification exams from Microsoft, AWS, or CompTIA?

Yes! Examcademy supports a wide range of IT certification exams including Microsoft Azure, AWS Cloud Practitioner, and CompTIA A+ and Security+.

How accurate are the mock exams?

Our mock exams are built and reviewed with the help of AI and community contributions, staying aligned with real-world exam objectives.

Free preview mode

Enjoy the free questions and consider upgrading to gain full access!

300-115Free trial

By cisco

Verified

25Q per page

Question 26

SIMULATION -
SWITCH.com is an IT company that has an existing enterprise network comprised of two layer 2 only switches; DSW1 and ASW1. The topology diagram indicates their layer 2 mapping. VLAN 20 is a new VLAN that will be used to provide the shipping personnel access to the server. Corporate polices do not allow layer 3 functionality to be enabled on the switches. For security reasons, it is necessary to restrict access to VLAN 20 in the following manner:
✑ Users connecting to VLAN 20 via port f0/1 on ASW1 must be authenticated before they are given access to the network. Authentication is to be done via a
Radius server:

Radius server host: 172.120.40.46
Radius key: rad123
Authentication should be implemented as close to the host as possible.
✑ Devices on VLAN 20 are restricted to the subnet of 172.120.40.0/24.
Packets from devices in the subnet of 172.120.40.0/24 should be allowed on VLAN 20.
Packets from devices in any other address range should be dropped on VLAN 20.
Filtering should be implemented as close to the server farm as possible.
The Radius server and application servers will be installed at a future date. You have been tasked with implementing the above access control as a pre-condition to installing the servers. You must use the available IOS switch features.
Note: Named access list is not supported.

—

Question 27

A network engineer wants to ensure Layer 2 isolation of customer traffic using a private VLAN. Which configuration must be made before the private VLAN is configured?

A: Disable VTP and manually assign VLANs.
B: Ensure all switches are configured as VTP server mode.
C: Configure VTP Transparent Mode.
D: Enable VTP version 3.

—

Question 28

A DHCP configured router is connected directly to a switch that has been provisioned with DHCP snooping. IP Source Guard with the ip verify source port-security command is configured under the interfaces that connect to all DHCP clients on the switch. However, clients are not receiving an IP address via the DHCP server.
Which option is the cause of this issue?

A: The DHCP server does not support information option 82.
B: The DHCP client interfaces have storm control configured.
C: Static DHCP bindings are not configured on the switch.
D: DHCP snooping must be enabled on all VLANs, even if they are not utilized for dynamic address allocation.

—

Question 29

ABC, Inc. is a medium sized company, with an enterprise network (access, distribution and core switches) that provides LAN connectivity from user PCs to corporate servers. The distribution switches are configured to use HSRP to provide a high availability solution.
✑ DSW1 primary device for VLAN 101 VLAN 102 and VLAN 105
✑ DSW2 primary device for VLAN 103 and VLAN 104
✑ A failure of GigabitEthemet1/0/1 on primary device should cause the primary device to release its status as the primary device, unless GigabitEthernet1/0/1 on backup device has also failed.
Troubleshooting has identified several issues. Currently all interfaces are up. Using the running configurations and show commands, you have been asked to investigate and respond to the following question.

All interfaces are active. DSW2 has not become the active device for the VLAN 103 HSRP group. As related to the VLAN 103 HSRP group, what can be done to make the group function properly?

A: On DSW1, disable preempt.
B: On DSW1, decrease the priority value to a value less than 190 and greater than 150.
C: On DSW2, increase the priority value to a value greater 200 and less than 250.
D: On DSW2, increase the decrement value in the track command to a value greater than 10 and less than 50.

—

Question 30

Refer to the exhibit.

When troubleshooting a network problem, a network analyzer is connected to Port f0/1 of a LAN switch. Which command can prevent BPDU transmission on this port?

A: spanning-tree portfast bpduguard enable
B: spanning-tree bpduguard default
C: spanning-tree portfast bpdufilter default
D: no spanning-tree link-type shared

—

Question 31

DRAG DROP -
Select and Place:
Prioritize the traffic types by dragging them from the left to the appropriate Cisco priority level on the right. Put the highest priority at the bottom.
Select and Place:

—

Question 32

DRAG DROP -
Match the HSRP states on the left with the correct definition on the right.
Select and Place:
Select and Place:

—

Question 33

Which statement about HSRP, GLBP, and VRRP is true?

A: VRRP group members communicate using multicast address 224.0.0.102.
B: MAC address 0000.0c07.acOc indicates that default gateway redundancy is provided through GLBP.
C: HSRP group members communicate using multicast address 224.0.0.18.
D: GLBP uses UDP port 3222 (source and destination) for hello messages.

—

Question 34

What is the effect of configuring the following command on a switch?
Switch(config) # spanning-tree portfast bpdufilter default

A: If BPDUs are received by a port configured for PortFast, then PortFast is disabled and the BPDUs are processed normally.
B: If BPDUs are received by a port configured for PortFast, they are ignored and none are sent.
C: If BPDUs are received by a port configured for PortFast, the port transitions to the forwarding state.
D: The command enables BPDU filtering on all ports regardless of whether they are configured for BPDU filtering at the interface level.

—

Question 35

Which protocol will enable a group of routers to form a single virtual router and will use the real IP address of a router as the gateway address?

A: Proxy ARP
B: HSRP
C: IRDP
D: VRRP
E: GLBP D

—

Question 36

What two things occur when an RSTP edge port receives a BPDU? (Choose two.)

A: The port immediately transitions to the forwarding state.
B: The switch generates a Topology Change Notification BPDU.
C: The port immediately transitions to the err-disable state.
D: The port becomes a normal STP switch port.

—

Question 37

In the hardware address 0000.0c07.ac0a, what does 07.ac represent?

A: vendor code
B: HSRP group number
C: HSRP router number
D: HSRP well-known physical MAC address
E: HSRP well-known virtual MAC address

—

Question 38

Which statement is true about RSTP topology changes?

A: Any change in the state of the port generates a TC BPDU.
B: Only nonedge ports moving to the forwarding state generate a TC BPDU.
C: If either an edge port or a nonedge port moves to a block state, then a TC BPDU is generated.
D: Only edge ports moving to the blocking state generate a TC BPDU.
E: Any loss of connectivity generates a TC BPDU.

—

Question 39

What condition was match during etherchannel configuration.

A: Spanning tree port priority
B: Spanning tree cost
C: Interface Description
D: Trunk mode
E: Trunk allow vlan

—

Question 40

In a switch stack where is the SDM template stored?

A: All switches in stack
B: Master switch
C: Flash memory

—

Question 41

Refer to exhibit, which two statements correctly indicate when an SNMP trap is set to the switch? (Choose two.)

A: When a new workstation connects to port F0/1
B: When 61 MAC address are in the switch
C: When 61 percent of the Address table capacity is used
D: When the switch loses power and reboots
E: When the phone previously on Fa0/2 is now connect to Fa0/5

—

Question 42

What is the command for configuring root guard?

A: (config)#spanning-tree guard root
B: (config-if)#spanning-tree guard root
C: (config-if)#spanning-tree root guard
D: (config-if)#spanning tree guard root
E: (config)#spanning-tree root guard

—

Question 43

What is cisco recommendation for RSPAN best practice?

A: you should configure remote vlan first
B: use different vlan for multiple/different switches
C: use different portchannel

—

Question 44

What happens if you apply this command "vlan dot1q tag native"?

A: packet will be dropped
B: packet go to default vlan
C: packet go to native vlan

—

Question 45

What happens spoofed packet or something like untrusted packet is detected? (Choose three)

A: log
B: deletes
C: intercepts
D: accepts
E: discad

—

That’s the end of your free questions

You’ve reached the preview limit for 300-115

Consider upgrading to gain full access!

Page 2 of 9 • Questions 26-50 of 224

←

1 2 3 4 5

→

Free preview mode

Enjoy the free questions and consider upgrading to gain full access!