Home > Multiple Choice Questions

Multiple Choice Questions

April 2nd, 2015 in TSHOOT v2 Go to comments

Question 1

Explanation

First we need some basic knowledge about GRE tunnel:

GRE tunnels are designed to be completely stateless. This means that each tunnel endpoint does not keep any information about the state or availability of the remote tunnel endpoint. A consequence of this is that, by default, the local tunnel endpoint router does not have the ability to bring the line protocol of the GRE Tunnel interface down if the remote end of the tunnel is unreachable. The ability to mark an interface as down when the remote end of the link is not available is used in order to remove any routes (specifically static routes) in the routing table that use that interface as the outbound interface. Specifically, if the line protocol for an interface is changed to down, then any static routes that point out that interface are removed from the routing table. This allows for the installation of an alternate (floating) static route or for Policy Based Routing (PBR) in order to select an alternate next-hop or interface.

(Reference: http://www.cisco.com/c/en/us/support/docs/ip/generic-routing-encapsulation-gre/118361-technote-gre-00.pdf)

An example of configuring a GRE tunnel:

interface Tunnel1
ip address 1.1.1.1 255.255.255.0
tunnel source Loopback1
tunnel destination 10.0.0.1
end

In order to make this interface up/up, a valid tunnel source and tunnel destination must be configured.
+ A valid tunnel source means any interface that is itself in the up/up state and has an IP address configured on it. For example, if the tunnel source was changed to Loopback0 (which has not been assigned an IP address), the tunnel interface would go down even though Loopback0 is in the up/up state.
+ A valid tunnel destination is one which is routable. However, it does not have to be reachable, which can be seen from this ping test:

Router# show ip route 10.0.0.1
% Network not in table
Router# show ip route | inc 0.0.0.0
Gateway of last resort is 172.16.52.100 to network 0.0.0.0
S* 0.0.0.0/0 [1/0] via 172.16.52.100
Router#ping 10.0.0.1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.0.0.1, timeout is 2 seconds:
…..
Success rate is 0 percent (0/5)

In this case the tunnel1 is still up/up because it has a default route. From this we can deduce answer C is not correct but answer D is correct.

GRE tunnel keepalives timers on each side are independent and do not have to match (answer E is not correct). The problem with the configuration of keepalives only on one side of the tunnel is that only the router that has keepalives configured marks its tunnel interface as down if the keepalive timer expires. The GRE tunnel interface on the other side, where keepalives are not configured, remains up even if the other side of the tunnel is down. The tunnel can become a black-hole for packets directed into the tunnel from the side that did not have keepalives configured.

Answer A is not correct because normal GRE tunnel is always required to be in up/up state.

Question 2

Explanation

OSPF routers go through the seven states while building neighbor relationship with other routers.

+ Down state: no Hellos have been received on the interface. All OSPF routers begin in this state. It begins by sending a hello packet through each of its interfaces participating in OSPF, even though it does not know the identity of the DR or of any other routers. The hello packet is sent out using the multicast address 224.0.0.5.
+ Attempt/Init state: Hello packet received
+ 2-way state: the router received the Hello message and replied with a Hello message of his own. Receiving a Database Descriptor (DBD) packet from a neighbor in the init state will also a cause a transition to 2-way state.
+ Exstart state: beginning of the LSDB exchange between both routers. Routers will start to exchanging link state information. This state specifies that DR and BDR have been elected and master-slave relation is determined.
+ Exchange state: DBD packets are exchanged. DBDs contain LSAs headers. Routers will use this information to see what LSAs need to be exchanged.
+ Loading state: one neighbor sends LSRs (Link State Requests) for every network it doesn’t know about. The other neighbor replies with the LSUs (Link State Updates) which contain information about requested networks. After all the requested information have been received, other neighbor goes through the same process.
+ Full state: both routers have synchronized the link state database and are fully adjacent with each other. OSPF routing can now begin.

In the above output we see that R4 received the first DBD from 192.168.1.3 (line 4) which cause it to move from INIT to 2-way state (line 5). Then it received the second DBD from 192.168.1.3. That means it is in Exstart state and two OSPF routers are exchanging DBD packets. In fact the DBD packets are also exchanged in Exchange state but they have to pass the Exstart state first so Exstart state is the best answer in this case.

Question 3

Question 4

Explanation

Two GRE tunnels (190.0.4.1 & 190.0.4.2) are considered directly connected so no routing protocol needs to be used so that they can see each other. But we have to configure a routing protocol (static routing in this case) so that they R1 can reach 10.0.3.0/24 network via Tunnel1.

Note: The “U” letter (short for Unreachable) we see above when pinging typically means there is no available route to the destination.

Question 5

Explanation

From the “show ip route ospf” output on R2 we notice that it does not know how to reach Lo0 of R5 (5.5.5.5). Therefore we need to advertise this prefix on R5 to R2 via:
+ Redistribute connected routes (which includes Loopback’s IP addresses) to OSPF on R5
+ Advertise Lo0 interface to OSPF on R5 (via the “network” command under OSPF process on R5)

Question 6

Explanation

From the outputs above we can imagine the topology of them

OSPF_Broadcast.jpgIn this topology:
+ There are only two routers and a loopback interface -> A is not correct.
+ R1 learn route to 2.2.2.2/32 as O IA as they are in different OSPF area -> B is not correct, E is correct.
+ R2 is an OSPF ABR -> C is not correct
+ E0/0 of R1 is elected DR so it was configured as OSPF type broadcast, not point-to-point (which does not elect DR/BDR) -> D is not correct
+ R1 is DR and R2 is BDR as seen in “State” column of above outputs -> F is correct.

—————————————————Old Questions————————————————–

Question 1

Explanation

From the last line “K-value mismatch” we learn that the K values of two EIGRP routers are mismatched and EIGRP neighborship between two routers will not be formed.

Note: EIGRP K values are the metrics that EIGRP uses to calculate routes. Mismatched K values can prevent neighbor relationships from being established. By default K1 & K3 are set to 1 while K2, K4 and K5 are set to 0. We can change the EIGRP K values via the “metric weights tos k1 k2 k3 k4 k5” command under EIGRP router mode (tos: type of service must always be zero). For example:

Router(config-router)#metric weights 0 20 10 50 40 40

Question 2

Explanation

The following list of parameters must match between EIGRP neighbors in order to successfully establish neighbor relationships:

+ Autonomous System number.
+ K-Values (look at the previous lesson).
+ If authentication is used both: the key number, the password, and the date/time the password is valid must match.
+ The neighbors must be on common subnet (all IGPs follow this rule).

Therefore we don’t need to check EIGRP hello and hold timers because they don’t have to match. We should check if appropriate networks are included in the “network …” command of EIGRP on both routers.

Question 3

Explanation

For example in the topology below, R1 learned the Loopback0 interface of R6 via two equal paths R2-R4 and R3-R5:

traceroute_load_balance_topology.jpg

The routing table of R1 is shown below:

R1_show_ip_route.jpg

And the traceroute command from R1 to R6’s loopback0:

R1_traceroute.jpg

Traceroute works by sending packets with gradually increasing Time-To-Live (TTL) value, starting with TTL value of 1. The first router receives the packet, decrements the TTL value and drops the packet because it then has TTL value zero. The router sends an ICMP Time Exceeded message back to the source. The next set of packets are given a TTL value of 2, so the first router forwards the packets, but the second router drops them and replies with ICMP Time Exceeded. Proceeding in this way, traceroute uses the returned ICMP Time Exceeded messages to build a list of routers that packets traverse, until the destination is reached and returns an ICMP Echo Reply message.

The “1”, “2” and “3” in the traceroute output stands for the hop number. Therefore with the first hop (TTL is set to 1) we can see the packets are sent through 12.12.12.2 (R2) and 13.13.13.3 (R3). For the second hop (TTL is set to 2) they are 35.35.35.5 (R5) and 24.24.24.4 (R4)…

In conclusion we can use the traceroute command to check if the load-balancing is actually occurring.

Question 4

Explanation

IPSec transport mode (encrypting an IP GRE tunnel) is a commonly deployed option because it provides all the advantages of using IP GRE, such as IP Multicast protocol support (and, thus, also the support of routing protocols that utilize IP Multicast) and multiprotocol support. Furthermore, this option saves 20 bytes per packet over IPSec tunnel mode (encrypting an IP GRE tunnel) because an additional IP header is not required.

Reference: http://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/WAN_and_MAN/QoS_SRND/QoS-SRND-Book/IPSecQoS.html#pgfId-56035

Question 5

Explanation

IPSec alone does not support multicast which many dynamic routing protocols use. GRE tunnels helps IPSec overcome this disadvantage by handling the transportation of multiprotocol and IP multicast traffic (from site-to-site VPNs, for example).

With the p2p GRE over IPsec solution, all traffic between sites is encapsulated in a p2p GRE packet before the encryption process, simplifying the access control list used in the crypto map statements. The crypto map statements need only one line permitting GRE (IP Protocol 47).

Reference:

http://www.cisco.com/c/en/us/td/docs/security/vpn_modules/6342/vpn_cg/6342site3.html

http://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/WAN_and_MAN/P2P_GRE_IPSec/P2P_GRE_IPSec/2_p2pGRE_Phase2.html

Question 6

Explanation

With the p2p GRE over IPsec solution, all traffic between sites is encapsulated in a p2p GRE packet before the encryption process, simplifying the access control list used in the crypto map statements.

Reference: http://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/WAN_and_MAN/P2P_GRE_IPSec/P2P_GRE_IPSec/2_p2pGRE_Phase2.html

Comments (40) Comments
Comment pages
1 3 4 5 707
  1. Mau
    November 25th, 2016

    Anyone please share MCQs..
    Thanks in advance :)

  2. Carl
    November 30th, 2016

    Hi , please share MCQS thanks a lot

  3. In1
    November 30th, 2016

    You don’t need the MCQ’s, if you memorize this concepts you will be able to answer correctly all of them. I passed the exam today with perfect score.

  4. Carl
    November 30th, 2016

    Thanks In1, but I refer the six MCQS. Thk

  5. Isabella
    December 13th, 2016

    Hey guys, I just wrote now in Canada. I Passed CCNP Routing and Switching 300-135 exam with 96%. This dumps http://www.grades4sure.com/300-135-exam-questions.html is valid but a few answers are wrong. Although I don’t expect to pass with a full score, right? If your aim is just to pass the exam, only by memorizing the dumps is enough. But if you want to master skills, you really need to practice more.

  6. MarxKnowswine
    December 15th, 2016

    Hi all
    I passed the exam today with 1000/1000.
    I had the 13 tickets and the 6 MCQ.
    Just a couple of things:
    in some of the tickets, for no apparent reason clients cannot ping anything (including themselves).
    Ping for ipv6 is “ping ipv6”.
    By the way, everything you need you can find it in the premium section.

  7. farne
    December 19th, 2016

    Hello, I have some questions about TSHOOT:

    1. The values (IP, devices names…) of the dumps are the same as in real exam?
    2. Need I configure something? Or just use “show …” commands?
    3. In the dumps are 6 MCQ, are the same as in real exam?

    I will really appreciate your help.

    Best regards.

  8. Anonymous
    December 25th, 2016

    Hello

    Anyone has the exam prep in VCE?

  9. Ahmed
    December 28th, 2016

    Hello
    i passed T_SHOOT today score 951
    6 Multiple Choice questions and 13 tickets NO Simlets
    all questions are here
    Good luck

  10. KIKO
    December 29th, 2016

    Hi Ahmed, Congratulations, did you answer just the questions without configs or you went through your configs and did them then selected your answers. Coz I saw you asking this questions before and need to confirm plz.

  11. user12
    January 10th, 2017

    Good Day!
    I passed exam on 6 January.
    There were 13 tickets and 6 Multiple Choice Questions.
    Thanks for you help.

  12. martinez
    January 20th, 2017

    Hello friends, I wanted to prepare the certification of CNNP SWITCH AND ROUTER if someone can help me by sending me the dump in my mail box {email not allowed} thank you

  13. ABCDE
    January 22nd, 2017

    Any one recently appeared for tshoot exam,please share the experience that how many Tickets, Sims and MCQs in the exam ?

    Thank you so much.

  14. ABCDE
    January 22nd, 2017

    @ martinez

    for route there is no need of dumps pls go to route website “digitaltut” and checkout the posts. U will get all recent questions and answers of exam posted by me and other guys who successfully cleared the exam In the PDF format. Just go through that. You will also get lab details for route exam on same site.

    all the best !

  15. Amro Salah
    January 26th, 2017

    i need to know howmany MCQs question theory in the exam no the question of the lab

  16. Jay
    January 26th, 2017

    Why aren’t there any questions or answers? Just explanations.

  17. Anonymous
    January 28th, 2017

    @Jay

    You have to be a premium member to see them, along with the detailed info on the tickets.

  18. Passed
    January 30th, 2017

    100% guaranteed passing material get Download package, (AllinONE) that you need to clear exam.
    13 Tickets in Packet Tracer
    68 Qs VCE Player and PDF

    http://rebrand.ly/ccnac5f48

  19. Raghav
    February 2nd, 2017

    Passed today. MCQs changed, New exhibits, not so difficult iBGP & eBGP Simulation. Trouble tickets remained unchanged though.

    Read the Scenario for iBGP & eBGP Simulation your answers will be there if you pay attention when looking at the configuration.

    12 tickets
    6 MCQs
    1 Simulation for iBGP & eBGP

  20. Tshoot
    February 3rd, 2017

    @raghav – what are the trouble tickets you got?? out of 13 you got only 12 what is the other one?
    and please post if you know the correct answers for the MCQ?

  21. Ram1z
    February 3rd, 2017

    We all waiting to update the question in the sites, so please when the site it is going to be update ??

  22. Brute
    February 3rd, 2017

    I took the exam on Feb 2nd and passed with 963/1000. I got most of the trouble tickets that are documented here. Some didn’t come through, but what I got instead is another simlet that asked you to correct the BGP (Internal and External setup) and what the table should look like (show ip bgp) when you are done. Make sure you know your BGP configuration and theory.

    The main thing though, the multiple choice, there was quite a bit of new questions compared to what is documented under networktut, and from what I remember, there were 2 questions on Tunneling (GRE and IPsec), so make sure you know your rudiments about types of tunnels, what happens during negotiations, etc…
    and the other 3-4 multiple choice questions were on OSPF (DR/BDR, neighbor adjacency, etc..), so make sure you know your OSPF rudiments, as well. I apologize that I couldn’t remember what exactly the questions are, but I remember thinking at the moment that if a person knew basic theory on Tunnels and OSPF, they would have no problem answering the questions.

  23. Acton
    February 4th, 2017

    Which statement is true about an IPsec/GRE tunnel?

    A. The GRE tunnel source and destination addresses are specified within the IPsec transform set.
    B. An IPsec/GRE tunnel must use IPsec tunnel mode.
    C. GRE encapsulation occurs before the IPsec encryption process.
    D. Crypto map ACL is not needed to match which traffic will be protected.

    Correct Answer: C

    If any need newest Cisco 300-135 dumps question then you can visit
    http://www.dumps4download.com/300-135-dumps.html

  24. ahemd erlrofaie
    February 5th, 2017

    Hi guys finnally I pass the tshoot exam with 1000 score , it really was so easy , actually the 6 new questions are valid, and the EBGP IBGP lab also is valid and it was so easy.
    regarding to the trouble ticket , they are the same as here in the networktut site :
    http://www.networktut.com/share-your-tshoot-v2-0-experience
    My exam consist of:
    12 trouble tickets
    6 multi-choices quesins
    1 EBGP AND IBGP lab

    How to prepare yourself of tshoot exam:
    1-study all the 16 ticket in networktut
    2-after that practice them blindly, you can download the tickets as packet-tracer format and you can play with them 
    3-you have to study the 6 new multi-choices-questions (don’t worry I will share them with you with the correct answers )
    4-and also you have to study pass4sure dump 79q , they have about 26 multi-choices questions , actually in my exam non of them came, but any way it better to study them(I will share it with you too)
    5-you have also to study the lab of EBGP IBGP it easy
    6-and for the trouble ticket, after you study and practice the 16 tickets in networktut , there is a ping plan pdf file that I will share it with you , that contain a plan of who to use the pings correctly in order to isolate the faults fast, the ping-plan pdf provide you with fast a technique to find the errors in the trouble tickets, I use it in the exam , and I finished before the half of the time , it save me a lot of time in the exam , and it was valid in my exam.
    6-lastly in my exam I only depended on the ping command and the show commands , and ping-plan pdf file. I think they are enough for solving the tickets .

    That all what you need guys believe me this exam is so easy

    Regarding to materials for the tshoot exam you will find them all in the links below, you will find the new questions with correct answers , these are my answer in the exam and I got 1000/1000
    Also in the link below you will find the other dumps for the other exams , routing and switching exams, you will find the references that I also used for the understanding of ccnp , guys you don’t have only to depended on the dumps  , you have to study references too , this not for pass, but for understand ccnp genuinely .

    The links:
    https://drive.google.com/drive/folders/0B21TuNHP-x2dc2U5MUlNOXFkd2c?usp=sharing

    And for farther query
    You can ping me on my email 
    Ahmedelrofaie at gmail dot com

    Goodluck for you in your exams 3

  25. nishboss
    February 5th, 2017

    @ahemd erlrofaie Thanks a lot man much appreciated, :-)

  26. Riz
    February 7th, 2017

    All six questions changed altogather .No Simulator.
    Also BGP Neighbour ticket didnt appeared in exam today.Instead there is BGP configuration through config terminal which i couldnt do and skipped.
    Luckly i passed based on my work experience,common sense and prep all tickets through networktut premium membership.

    I passed with 891/1000 marks.But this exam was a nightmare.

  27. CCNP-GUY
    February 7th, 2017

    this seems to be the minimal cli set for the BGP questions

    conf t
    router bgp 64520
    neighbor internal remote-as 64520
    no neighbor 209.165 201.226 remote-as 64525
    neighbor 209.165.201.2 remote-as 64525

  28. maut
    February 7th, 2017

    I agree you are correct, I also got the BGP term monitor lab were configuration is necessary, ate up a lot of time, questions are for EBGP and IBGP several config changes required. Two EBGP neighbors and three IBGP routers using ospf config.

  29. maut
    February 7th, 2017

    did anyone notice questions for IPV6 OSPF6 was configured on loopback 6, router 2 and 3 through me off wasted time here too.

  30. #JD
    February 8th, 2017

    Hey Guys ,

    Today i have cleared Tshoot !! New Questions are same which was posted by mob and Tickets remain the same like here and i think i screwed up 1 ticket on IPV6 .
    BGP sim which i got was to change the AS in IBGP and IP in EBGP thats all.

    All ok ! you can depend only on those new 6 questions , tickets here and BGP Sim ! Write and clear soon Guys

    All the best .

    Thank you ALL !! yOu guys are amazing !!

    Catch you guys for CCIE !!

  31. Hossam
    February 8th, 2017

    please i need the 1 EBGP AND IBGP lab for tshoot exam

  32. AD
    February 10th, 2017

    Write Memory command is necessary at end of BGP configuration done or just BGP configuration in IBGP/EBGP simulator ?

  33. CCNP-GUY
    February 11th, 2017

    no write cmds are needed or allowed

  34. Anonymous
    February 13th, 2017

    is using of multiple commands for troubleshooting will impact score ?

    cmds:
    sh vlan
    sh int trunk
    sh ip int breif
    sh ipv6 route ospf
    sh ipv6 ospf neigbor
    sh ip eigrp neighbor
    sh ip ospf int XX
    show ip nat translation

    or do we need to just use ping and sh run commands ?

  35. Anonymous
    February 16th, 2017

    Any chance of an explanation for new question 3?
    Thanks.

  36. Anonymous
    February 17th, 2017

    Ok, I will make some comments about Q3.

    We can ignore the option about the device learning routes from two different protocols. If that happens only the one with the lowest AD is installed in the routing table.

    We can ignore the option about excessive delay. Nothing in the exhibit shows that.

    The traceroute is showing load balancing. It used two different first hop addresses.

    The device has been able to resolve the URL into an ip address.

  37. Passed
    February 17th, 2017

    Download New Update: My student passed today using this 13 Tickets and 68 Qs VCE. Latest 100% VALID CCNP TSHOOT 300-135 Exam Questions Dumps at below page including all labs in Packet Tracer format. Working VCE player also included in package.

    https://rebrand.ly/tshooa882

  38. Heena
    February 20th, 2017

    Passed exam today 975/1000. Thanks to Ahmad elrofei. All that he gave came. But exam pattern has been changed. It’s not like we have to choose tickets. But it’s coming one by one,like other CCNP exams. Check in top right corner to see , in which question you are.

    Also there is a bug in ibgp/ebgp sim.
    Able to remove neighbor command and fix ebgp issue.
    But unable to rewrite/remove neighbor ibgp remote-as 64550. Even if u remove this command it’s not removing. I asked examiner, she told I need to contact Cisco. So I just added a comment to that question, which is available in top left corner. And did below and gave next.

    Router bgp 64520
    Corrected neighbor IP for ebgp
    Neighbor ibgp peer-group
    Neighbor ibgp remote-as 64520
    (Above will be like extra command in that bgp)

    All the best folks!!

  39. Me
    February 24th, 2017

    Are These All MCQ’s only 6 questions ?

Comment pages
1 3 4 5 707