Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home Cisco® 640-878

Cisco® 640-878 Exam Practice Questions (P. 2)

  • Full Access (126 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #6
Which IP addresses are matched by the permit 192.168.80.64 0.0.0.15 access-list entry?
  1. A
    192.168.80.64 to 192.168.80.255
  2. B
    192.168.80.64 to 192.168.80.96
  3. C
    192.168.80.64 to 192.168.80.95
  4. D
    192.168.80.64 to 192.168.80.80
  5. E
    192.168.80.64 to 192.168.80.79

Correct Answer:
E

Question #7
Which two statements about NAT444 are true? (Choose two.)
  1. A
    NAT444 packets are translated three times.
  2. B
    NAT packets traverse three IPv4 addressing domains.
  3. C
    NAT444 needs to work together with DNS64.
  4. D
    There are two types of NAT444 (stateful or stateless).
  5. E
    NAT is performed by the CPE and also by the service provider router.

Correct Answer:
BE
Carrier-grade NAT (CGN), also known as large-scale NAT (LSN), is an approach to IPv4 network design in which end sites, in particular residential networks, are configured with private network addresses that are translated to public IPv4 addresses by middlebox network address translator devices embedded in the network operator's network, permitting the sharing of small pools of public addresses among many end sites. This shifts the NAT function and configuration thereof from the customer premises to the Internet service provider network.
Carrier-grade NAT has been proposed as an approach for mitigating IPv4 address exhaustion.[1]
Critics of carrier-grade NAT argue the following aspects:
Like any form of NAT, it breaks the end-to-end principle.[2]
It has significant security, scalability, and reliability problems, by virtue of being stateful.
It makes record keeping for law-enforcement operations more difficult.
It makes it impossible to host services on well known ports.
It does not solve the IPv4 address exhaustion problem when a routable IP address is needed, such as in web hosting.
One use scenario of CGN can be described as NAT444,[3] because some customer's connections to public servers would pass through three different IPv4 addressing domains: the customer's own private network, the carrier's private network, and the public Internet.
Another CGN scenario is Dual-Stack Lite, in which the carrier's network uses IPv6 and thus only two IPv4 addressing domains are needed.

Question #8
Refer to the exhibit.


The access list has been configured on the Gi0/0/0/0 interface in the inbound direction. Which four packets that are sourced from 10.1.1.1 TCP port 1060, if they are routed to the Gi0/0/0/0 interface, will be permitted? (Choose four)
  1. A
    destination IP address: 192.168.15.37, destination TCP port: 8080
  2. B
    destination IP address: 192.168.15.41, destination TCP port: 8080
  3. C
    destination IP address: 192.168.15.49, destination TCP port: 8080
  4. D
    destination IP address: 192.168.15.36, destination TCP port: 80
  5. E
    destination IP address: 192.168.15.46, destination TCP port: 80
  6. F
    destination IP address: 192.168.15.49, destination TCP port: 80

Correct Answer:
CDEF

Question #9
Which two statements about NAT64 are true? (Choose two.)
  1. A
    NAT64 packets traverse two IPv4 addressing domains.
  2. B
    NAT64 packets are translated two times.
  3. C
    There are two types of NAT64 (stateful or stateless).
  4. D
    NAT is performed by the CPE and also by the service provider edge router.
  5. E
    The DNS64 server embeds the IPv4 address from the DNS A record with a preconfigured IPv6 translation prefix.

Correct Answer:
CE
http://www.cisco.com/en/US/prod/collateral/iosswrel/ps6537/ps6553/white_paper_c11-676278.html
All viable translation scenarios are supported by NAT64, and therefore NAT64 is becoming the most sought translation technology. AFT using NAT64 technology can be achieved by either stateless or stateful means:
Stateless NAT64, defined in RFC 6145, is a translation mechanism for algorithmically mapping IPv6 addresses to IPv4 addresses, and IPv4 addresses to IPv6 addresses. Like NAT44, it does not maintain any bindings or session state while performing translation, and it supports both IPv6-initiated and IPv4-initiated communications.
Stateful NAT64, defined in RFC 6146, is a stateful translation mechanism for translating IPv6 addresses to IPv4 addresses, and IPv4 addresses to IPv6 addresses. Like NAT44, it is called stateful because it creates or modifies bindings or session state while performing translation. It supports both IPv6-initiated and
IPv4-initiated communications using static or manual mappings.
DNS64, an optional component defined in RFC 6147, when used in conjunction with NAT64, would trick the IPv6 hosts into thinking that the IPv4 destination as an
IPv6 address, by synthesizing AAAA (quad A) resource records from A resource records.

Question #10
Refer to the exhibit.


The access list has been configured on the Gi0/0/0/0 interface in the inbound direction. Which two packets that are sourced from 172.16.1.1 TCP port 1050, if they are routed to the Gi0/0/0/0 interface, will be permitted? (Choose two)
  1. A
    destination IP address: 10.10.192.201, destination TCP port: 80
  2. B
    destination IP address: 10.10.193.255, destination TCP port: 80
  3. C
    destination IP address: 10.10.196.1, destination TCP port: 80
  4. D
    destination IP address: 10.10.195.254, destination TCP port: 23
  5. E
    destination IP address: 10.10.193.145, destination TCP port: 23
  6. F
    destination IP address: 10.10.197.32, destination TCP port: 23

Correct Answer:
AB

Previous Questions Next Questions

All Pages