Explore all topics
Start Free Trial
Need Help? Contact us
back arrowfull exam logo
search
ai logoChat with AI
Servicesarrow
Discoverarrow

Topics

Explore all topics
Discover more topics

Deck 11: Designing Cisco Enterprise Wireless Networks (300-425 ENWLSD)

Full screen (f)
exit full mode
Question
An engineer changed the TCP Power Threshold for a wireless deployment from the default value to -65 dBm. The engineer conducts a new post deployment survey to validate the results. What is the expected outcome?

A) decreased channel overlap
B) increased cell size
C) increased received sensitivity
D) decreased client signal strength
Use Space or
up arrow
down arrow
to flip the card.
Question
An engineer performs a Layer 1 survey by using Metageek Chanalyzer only on the current operating channel. Which operating mode is configured for a Cisco CleanAir AP?

A) monitor
B) local
C) sniffer
D) SE-connect
Question
An engineer has performed a predictive site survey for high-speed data and voice in an indoor office. What is the recommended data rate with ?67 dBm signal level for optimal VoWLAN design?

A) 6 Mbps on 802.11 bgn
B) 24 Mbps on 802.11 bgn
C) 12 Mbps on 802.11 an
D) 24 Mbps on 802.11 an
Question
<strong> Refer to the exhibit. During a post Mesh deployment survey, an engineer notices that frame collisions occur when MAP-1 and MAP-3 talk to RAP-2. Which type of issue does the engineer need to address in the design?</strong> A) co-channel interference B) hidden node C) backhaul latency D) exposed node <div style=padding-top: 35px> Refer to the exhibit. During a post Mesh deployment survey, an engineer notices that frame collisions occur when MAP-1 and MAP-3 talk to RAP-2. Which type of issue does the engineer need to address in the design?

A) co-channel interference
B) hidden node
C) backhaul latency
D) exposed node
Question
An engineer is designing a wireless network that will support many different types of wireless clients. When conducting the survey, which client must be used to ensure a consistent experience for all of the wireless clients?

A) the client that has the highest RF properties
B) the client that is used most by the company
C) the client that is used least by the company
D) the client with the worst RF characteristics
Question
During a post deployment site survey, issues are found with non-Wi-Fi interference. What should the engineer use to identify the source of the interference?

A) wireless intrusion prevention
B) Cisco Spectrum Expert
C) Wireshark
D) network analysis module
Question
An engineer must decide the cell overlap for a wireless voice deployment. Which Cisco measurement recommendation should be considered?

A) The edge of the cell should be ?67 dBm.
B) The edge of the cell should be below 35 RSSI.
C) The measurement should be done on the 2.4-GHz band.
D) One AP should be deployed per 3000 square feet.
Question
A network administrator of a global organization is collapsing all controllers to a single cluster located in central Europe. Which concern must be addressed?

A) Some channels may not be available consistently across the organization.
B) Different RF policies per office are not available in this configuration.
C) Syslog must be configured to the time-zone of the NMS platform.
D) Centralized controllers cannot uniformly authenticate global users.
Question
An engineer is performing a predictive wireless design for a medical treatment environment, which requires data and voice services. What is the minimum requirement for the design?

A) overlapping ?72 dBm coverage from two access points
B) continuous ?67 dBm coverage from one access point
C) continuous ?72 dBm coverage from one access point
D) overlapping ?67 dBm coverage from two access points
Question
A network engineer is preparing for an office site survey with a height of 2.5 meters. Which three components are recommended to complete the survey? (Choose three.)

A) Use a battery pack to power APs.
B) Use a drawing of the office space to draw AP and client placements.
C) Use DoS attack on APs while measuring the throughput.
D) Use APs with directional antennas.
E) Use APs with external antennas.
F) Use APs with built-in antennas.
Question
A customer is concerned about mesh backhaul link security. Which level of encryption does the backhaul link use?

A) hash
B) AES
C) WEP
D) 3DES
Question
<strong> Refer to the exhibit. Which two statements about Cisco Prime Infrastructure are true? (Choose two.)</strong> A) It presents the recommended number of APs for the selected coverage area based on the selections made. B) Planning mode requires a special license in Cisco Prime Infrastructure. C) It shows the map editor feature in Cisco Prime Infrastructure. D) Controllers must be synchronized with Cisco Prime Infrastructure for planning mode to work. E) It shows the planning mode feature in Cisco Prime Infrastructure. <div style=padding-top: 35px> Refer to the exhibit. Which two statements about Cisco Prime Infrastructure are true? (Choose two.)

A) It presents the recommended number of APs for the selected coverage area based on the selections made.
B) Planning mode requires a special license in Cisco Prime Infrastructure.
C) It shows the map editor feature in Cisco Prime Infrastructure.
D) Controllers must be synchronized with Cisco Prime Infrastructure for planning mode to work.
E) It shows the planning mode feature in Cisco Prime Infrastructure.
Question
Where must the APs be mounted when used in a high-density wireless network to provide 6 dB to 20 dB of attenuation to a cell?

A) in the aisle
B) under the seat
C) above the stage
D) under the stage
Question
A customer has restricted the AP and antenna combinations for a design to be limited to one model integrated antenna AP for carpeted spaces and one morel external antenna AP, with high gain antennas for industrial, maintenance, or storage areas. When moving between a carpeted area to an industrial area, the engineer forgets to change survey devices and surveys several APs. Which strategy will reduce the negative impact of the design?

A) Deploy unsurveyed access points to the design.
B) Increase the Tx power on incorrectly surveyed access points.
C) Deploy the specified access points per area type.
D) Resurvey and adjust the design.
Question
A wireless engineer is utilizing the voice readiness tool in Cisco Prime for a customer that wants to deploy Cisco IP phones. Which dBm range is the network inspected against?

A) ?78 to ?65 dBm
B) ?72 to ?67 dBm
C) ?85 to ?65 dBm
D) ?85 to ?67 dBm
Question
An engineer is conducting a Layer 2 site survey. Which type of client must the engineer match to the survey?

A) best client available
B) phone client
C) normal client
D) worst client available
Question
<strong> Refer to the exhibit. What is the main reason why the Wi-Fi design engineer took a different approach than installing the APs in the offices, even though that installation provides better coverage?</strong> A) aesthetics B) transmit power considerations C) antenna gain D) power supply considerations <div style=padding-top: 35px> Refer to the exhibit. What is the main reason why the Wi-Fi design engineer took a different approach than installing the APs in the offices, even though that installation provides better coverage?

A) aesthetics
B) transmit power considerations
C) antenna gain
D) power supply considerations
Question
A wireless engineer is using Ekahau Site Survey to validate that an existing wireless network is operating as expected. Which type of survey should be used to identify the end-to-end network performance?

A) GPS assisted
B) spectrum analysis
C) passive
D) active ping
Question
A medium-sized hospitality company with 50 hotels needs to upgrade the existing WLAN in each hotel to 802.11n. During the site surveys for each hotel, what needs to be taken into consideration when determining the locations for each AP?

A) Selecting APs that can be hidden in ceiling panels to provide a secure and clean aesthetic look.
B) Selecting locations that make visual assessment of the AP operation easy.
C) Selecting locations that are easily accessed so maintenance and upgrades can be performed quickly.
D) Selecting AP locations where power is already available.
Question
A wireless engineer is designing a wireless network to support real time applications over wireless. Which IEEE protocol must the engineer enable on the WLC so that the number of packets that are exchanged between an access point and client are reduced and fast roaming occurs?

A) 802.11w
B) 802.11r
C) 802.11i
D) 802.11k
Question
A high-density wireless network is designed. Which Cisco WLC configuration setting must be incorporated in the design to encourage clients to use the 5 GHz spectrum?

A) Band Select
B) RRM
C) Cisco Centralized Key Management
D) load balancing
Question
A network engineer is working on a predictive WLAN design. The new wireless network must support access to Internet, email, voice, and the inventory database. To successfully support these services, which configuration must the engineer use for the signal strength levels and SNR on the planning tool?

A) signal strength of -67 dBm, 20-dB SNR, and maximum 5 percent packet loss
B) signal strength of -70 dBm, 30-dB SNR, and maximum 10 percent packet loss
C) signal strength of 67 dBm, 20-dB SNR, and maximum 1 percent packet loss
D) signal strength of -67 dBm, 25-dB SNR, and maximum 1 percent packet loss
Question
A customer has determined that aesthetics is a primary concern for their upcoming guest deployment. Which design consideration can be leveraged to address this concern?

A) Paint the access point to cover the LED from being noticeable.
B) Use enclosures to hide the wireless infrastructure in the surrounding environment.
C) Use AIR-AP-BRACKET-1 to allow for greater mounting locations
D) Deploy environmentally friendly cabling components to blend into the environment.
Question
How should the concept of mobility domains and mobility groups be explained to a customer?

A) A mobility group does not constrain the distribution of security context of a client and also does not constrain AP fail-over between controllers when the WLC is in the same mobility domain.
B) If WLCs are in the same mobility domain, they communicate with each other but, if an anchor WLC is present, it must be in the same mobility domain for communication to be possible.
C) If WLCs are in the same mobility domain, they communicate with each other. Mobility groups constrain the distribution of security context of a client and also constrain AP fail-over between controllers.
D) WLCs do not need to be in the same mobility domain to communicate with each other. Mobility groups constrain the distribution of security context of a client and also constrain AP fail-over between controllers.
Question
A wireless engineer is designing a wireless network to support real time applications over wireless. Which IEEE protocol must the engineer enable on the WLC so that neighbor list radio management packets are sent to the wireless devices?

A) 802.11w
B) 802.11r
C) 802.11i
D) 802.11k
Question
An engineer must speed up the reauthentication delays that are being experienced on the wireless infrastructure by deploying a key-caching mechanism. Which mechanism must be configured?

A) PEAP
B) FT
C) PMF
D) GTK-randomization
Question
A network engineer is working on a design for a wireless network that must support data, voice, and location services. To support these services, which access point placement must the engineer use?

A) corner only
B) perimeter and corner
C) perimeter only
D) indoor and outdoor
Question
An engineer is designing a new wireless network. The network needs to meet these requirements: support a high wireless client concentration support data over wireless support voice over wireless avoid interference Which design approach should be taken?

A) 5 GHz frequency band with channel bonding, to support 40 MHz channels
B) 5 GHz frequency band without channel bonding, to support 20 MHz channels
C) 2.4 GHz frequency band without channel bonding, to support 20 MHz channels
D) 5 GHz frequency band with channel bonding, to support 80 MHz channels
Question
An engineer has deployed a group of APs in an auditorium and notices that the APs are showing high co-channel interference. Which profile is used to adjust the parameters for these high-density APs?

A) QoS profile
B) AVC profile
C) RF profile
D) ISE profile
Question
Which UDP port numbers are used for exchange mobility packets in an AireOS wireless deployment?

A) UDP 16666 for control plane, EoIP (IP protocol 97) for data plane
B) UDP 16668 for control plane, UDP 16667 for data plane
C) UDP 16667 for control plane, UDP 16666 for data plane
D) UDP 16666 for control plane, UDP 16667 for data plane
Question
An engineer is reducing the subnet size of the corporate WLAN by segmenting the VLAN into smaller subnets. Clients will be assigned a subnet by location. Which type of groups should the engineer use to map the smaller subnets to the corporate WLAN?

A) WLC port groups
B) RF groups
C) AP groups
D) interface groups
Question
A customer is looking for a network design with Cisco Hyperlocation using AP4800 for location tracking via a custom mobile app. Issues appeared in the past with refresh rates for location updates. What needs to be implemented to meet these requirements?

A) Cisco CMX SDK in the location app
B) device Bluetooth via the app
C) Cisco FastLocate technology
D) redundant CMX and fetch location in round-robin fashion
Question
During a wireless network design, a customer requires wireless coverage on the perimeter of a building but also wants to minimize signal leakage from the wireless network. Which antenna should be used to accomplish this design?

A) omnidirectional
B) patch
C) monopole
D) dipole
Question
What is the 9800 Series Wireless Controller mobility tunnel on a Cisco Catalyst 9800 controller?

A) It is an IPsec tunnel with control path only.
B) It is a CAPWAP tunnel with data path only.
C) It is a CAPWAP tunnel with control path and data path.
D) It is an IPsec tunnel with control path and data path.
Question
An enterprise is using the wireless network as the main network connection for corporate users and guests. To ensure wireless network availability, two standalone controllers are installed in the head office. APs are connected to the controllers using a round-robin approach to load balance the traffic. After a power cut, the wireless clients disconnect while roaming. An engineer tried eping from the controller but fails. Which protocol needs to be allowed between the networks that the controllers are installed?

A) IP Protocol 67
B) IP Protocol 77
C) IP Protocol 87
D) IP Protocol 97
Question
A company wants to replace its existing PBX system with a new VoIP System that will include wireless IP phones. The CIO has concerns about whether the company's existing wireless network can support the new system. Which tool in Cisco Prime can help ensure that the current network will support the new phone system?

A) Location Readiness
B) Site Calibration
C) Map Editor
D) Voice Readiness
Question
An engineer must perform an assessment of a customer LAN for a future IEEE 802.11ac Wave 2 wireless deployment. All access switches are Fast Ethernet-capable only, and the wired infrastructure between existing APs and access switches is based on the CAT 6A standard. Which two actions provide maximum support of Cisco 3800 Series access points? (Choose two.)

A) Replace the existing switches with mGig switches.
B) Ensure that cable distances between access switches and APs are not longer that 55 meters.
C) Replace the existing switches with gigabit switches with 10 G uplinks.
D) Ensure that cable distance between access switches and APs are not longer than 100 meters.
E) Replace the existing wiring infrastructure with the CAT-7E wiring standard.
Question
A technician connects a Cisco Aironet 3700 Series access point to a switch and realizes that the AP is coming up with 3x3 MIMO. What explains this behavior?

A) A redundant power supply is unavailable on the switch.
B) The switch is 802.3af capable.
C) The AP is getting power from a power injector.
D) The switch is PoE+ capable.
Question
What is the attenuation value of a human body on a wireless signal?

A) 3 dB
B) 4 dB
C) 6 dB
D) 12 dB
Question
An engineer must configure the virtual IP address on multiple controllers in a mobility group. Which rule must the engineer follow to ensure proper roaming?

A) Ensure that the DNS entry is tied to the virtual IP address of the WLC.
B) Use a unique IP address for each WLC.
C) Ensure that the DNS Host Name field is defined.
D) Use the same IP address for each WLC.
Question
An engineer is designing a wireless deployment for a university auditorium. Which two features can be used to help deal with the issues introduced by high AP count? (Choose two.)

A) TSPEC
B) RXSOP
C) TPC
D) LSS
E) DFS
Question
A wireless network consultant must assess an existing wireless LAN controller. Which section must the consultant check before replacing the old APs with APs that are IEEE 802.11ac-capable?

A) number of AP licenses
B) controller PSU
C) throughput capacity
D) software version
Question
An engineer must ensure that the wireless network accomplishes fast, secure roaming by way of caching keys on the access points. Which key caching mechanism is enabled by default on a Cisco AireOS WLC?

A) SKC
B) OKC
C) 802.11r
D) CCKM
Question
An engineer is trying to determine the most cost-effective way to deploy high availability for a campus enterprise wireless network that currently leverages three wireless LAN controllers. Which architecture should the engineer deploy?

A) N+N with SSO
B) N+1 solution without SSO
C) N+N solution without SSO
D) N+1 with SSO
Question
An enterprise has moved most services to the cloud, including email applications and real-time communication. Which feature must be enabled on the wireless network to improve the user experience?

A) radio management
B) fast secure roaming
C) QoS
D) interference mitigation
Question
Which non-Wi-Fi interferer can be identified by Metageek Chanalyzer?

A) PDAs
B) jammers
C) smartphones
D) printers
Question
A customer is running a guest WLAN with a foreign/export-anchor setup. There is one anchor WLC in the US and two in Europe. Anchor WLC priorities are used to prefer local anchors. During a routine network audit, it is discovered that a large number of guest client sessions in the US are anchored to the WLCs in Europe. Which reason explains this behavior?

A) The foreign WLC failed and recovered.
B) The US anchor WLC failed and recovered.
C) The US anchor WLC is anchored to itself with a priority value of zero.
D) The anchor WLC is in the same mobility group.
Question
A wireless engineer must optimize RF performance for multiple buildings with multiple types of construction and user density. Which two actions must be taken? (Choose two.)

A) Configure FlexConnect groups for each building.
B) Configure WMM profiles for each building.
C) Configure AP groups for each area type.
D) Configure RF profiles for each area type.
E) Enable DTPC on the network.
Question
Which two criteria must be considered when conducting an outdoor bridge site survey? (Choose two.)

A) near-far effect
B) weather
C) traffic lights
D) power lines
E) Fresnel zone
Question
As part of a wireless site survey in a hospital, an engineer needs to identify potential Layer 1 interferers. In which two areas is the engineer most likely to find sources of 2.4 GHz and 5 GHz RF noise? (Choose two.)

A) magnetic resonance imaging
B) kitchen
C) Gamma Knife radiation treatment
D) X-ray radiography
E) patient room
Question
The wireless team must configure a new voice SSID for optimized roaming across multiple WLCs with Cisco 8821 phones. Which two WLC settings accomplish this goal? (Choose two.)

A) Configure AVC profiles on the SSID.
B) Configure mobility groups between WLCs.
C) Use AVC to tag traffic voice traffic as best effort.
D) Configure AP groups between WLCs.
E) Use Cisco Centralized Key Management for authentication.
Question
An engineer is designing a wireless network to support high availability. The network will need to support the total number of APs and client SSO. Live services should continue to work without interruption during the failover. Which two requirements need to be incorporated into the design to meet these needs? (Choose two.)

A) controller high availability pair with one of the WLCs having a valid AP count license
B) WLC 7.5 code or more recent
C) redundant vWLC
D) 10 sec RTT
E) back-to-back direct connection between WLCs
Question
An engineer has successfully configured high availability and SSO using two Cisco 5508 Wireless LAN Controllers. The engineer can access the Active Primary WLC, but the Secondary Standby WLC is not accessible. Which two methods allow access to the standby unit? (Choose two.)

A) via the console connection
B) SSH to the redundancy management interface of the primary WLC
C) SSH to the service port interface
D) SSH to the virtual interface of the secondary WLC
E) SSH to the management interface of the primary WLC
Question
A customer has noticed that Client Band Select is enabled and no clients are utilizing the 5 GHz band. Which three parameters must be met to ensure that wireless clients use the 5 GHz band? (Choose three.)

A) Ensure that channel bonding is enabled on the WLAN.
B) Ensure that the co-channel interference has not exceeded ?85 dBm.
C) Ensure that the UNII-2 extended channels are enabled on the 802.11a radios.
D) Ensure that the client is receiving RSSI above the minimum band select RSSI threshold.
E) Ensure that the client is dual-band capable.
F) Ensure that the WLAN has 802.11a enabled.
Question
What is the recommended cell overlap when designing a wireless network for Cisco Hyperlocation?

A) 20%
B) 30%
C) 40%
D) 50%
Question
Multiple WLCs are implemented in a high-availability configuration in a mobility group. APs are deployed with only a primary controller assigned. By default, which mobility group member controller do the orphaned APs join in the event of a failed controller?

A) controller with the most available AP free license capacity
B) controller with the lowest percent of associated APs per license capacity
C) controller with the least CPU utilization over the last reporting period
D) controller with the least number of associated APs
Question
An engineer is using two wireless controllers to support the wireless network. The data center is located in the head office. Each controller has a corporate WLAN configured with the name Copr-NET392267230WLC-1 and Corp-NET68371638WLC-2. The APs are installed using a round-robin approach to load balance the traffic. What should be changed on the cofiguration to optimize roaming?

A) Use the same WLAN name for the corporate network on both controllers.
B) Move all access points to one controller and use the other as N+1 HA.
C) Move the controllers to an external data center with higher internet speeds.
D) Place the access points per floor on the same controller.
Question
How does AP failover priority for access points function when configured with priority 1 or 4?

A) When configured with priority 1, the access point is assigned with the highest priority level, and it is marked as critical. This access point fails over before other access points with the lower priority when there is primary controller failure.
B) When configured with priority 4, the access point is assigned with the highest priority level, and it is marked as critical. This access point fails over before other access points with the lower priority when there is primary controller failure.
C) When configured with priority 4, the access point is assigned with the lowest priority level, and it is marked as low. This access point fails over after other access points with the higher priority when there is primary controller failure.
D) When configured with priority 1, the access point is assigned with the medium priority level, and it is marked as medium. This access point fails over after other access points with the higher priority when there is primary controller failure.
Question
<strong> Refer to the exhibit. An enterprise is using wireless as the main network connectivity for clients. To ensure service continuity, a pair of controllers will be installed in a datacenter. An engineer is designing SSO on the pair of controllers. What needs to be included in the design to avoid having the secondary controller go into maintenance mode?</strong> A) The redundancy port must be the same subnet as the redundancy mgmt. B) The keep alive timer is too low, which causes synchronization problems. C) The connection between the redundancy ports is missing. D) The Global Configuration of SSO is set to Disabled on the controller. <div style=padding-top: 35px> Refer to the exhibit. An enterprise is using wireless as the main network connectivity for clients. To ensure service continuity, a pair of controllers will be installed in a datacenter. An engineer is designing SSO on the pair of controllers. What needs to be included in the design to avoid having the secondary controller go into maintenance mode?

A) The redundancy port must be the same subnet as the redundancy mgmt.
B) The keep alive timer is too low, which causes synchronization problems.
C) The connection between the redundancy ports is missing.
D) The Global Configuration of SSO is set to Disabled on the controller.
Question
When conducting a site survey for real-time traffic over wireless, which two design capabilities of smartphones and tablets must be considered? (Choose two.)

A) no support for 802.11ac
B) higher data rates than laptops
C) fewer antennas than laptops
D) no support for 802.11r
E) lower data rates than laptops
Question
An engineer has deployed a group of APs in an auditorium and notices that the APs are showing high co-channel interference. Which profile can be used to adjust the parameters for these high-density APs?

A) QoS profile
B) AVC profile
C) RF profile
D) ISE profile
Question
Which Cisco IOS VPN technology leverages Ipsec, mGRE, dynamic routing protocol, NHRP, and Cisco Express Forwarding?

A) FlexVPN
B) DMVPN
C) GETVPN
D) Cisco Easy VPN
Question
Which Cisco VPN technology can use multipoint tunnel, resulting in a single GRE tunnel interface on the hub, to support multiple connections from multiple spoke devices?

A) DMVPN
B) GETVPN
C) Cisco Easy VPN
D) FlexVPN
Question
What is the purpose of configuring the router as a PPPoE client? Select the best response.

A) To provide VPN access over L2TP
B) To enable PPP session from the router to the termination device at the headend for metro Ethernet connectivity
C) For DSL connectivity and removing the need for the end-user PC to run the PPPoE client software
D) For connecting the router to a cable modem, which bridges the Ethernet frames from the router to the cable modem termination system
Question
A user is having issues accessing file shares on a network. The network engineer advises the user to open a web browser, input a prescribed IP address, and follow the instructions. After doing this, the user is able to access company shares. Which type of remote access did the engineer enable?

A) EZVPN
B) Ipsec VPN client access
C) VPDN client access
D) SSL VPN client access
Question
Which statement about the 9800 Series Wireless Controller mobility tunnel on a Cisco Catalyst 9800 controller is true?

A) It is an IPsec tunnel with control path only.
B) It is a CAPWAP tunnel with data path only.
C) It is a CAPWAP tunnel with control path and data path.
D) It is an IPsec tunnel with control path and data path.
Question
A company has 10 access point licenses available on their backup Cisco WLC and their primary Cisco WLC is at full capacity. 5 access points are set to high failover priority and 7 access points are set to critical failover priority. During a failure, not all critical access points failed over to the backup Cisco WLC. Which configuration is the cause of this issue?

A) The high priority access point is oversubscribed.
B) network ap-priority is set to enable.
C) The critical priority access point count is oversubscribed.
D) network ap-priority is set to disable.
Question
Which common issue causes intermittent DMVPN tunnel flaps?

A) a routing neighbor reachability issue
B) a suboptimal routing table
C) interface bandwidth congestion
D) that the GRE tunnel to hub router is not encrypted
Question
Which Cisco VPN technology uses AAA to implement group policies and authorization and is also used for the XAUTH authentication method?

A) DMVPN
B) Cisco Easy VPN
C) GETVPN
D) GREVPN
Question
Which two statements indicate a valid association mode for NTP synchronization? (Choose two.)

A) The client polls NTP servers for time.
B) The client broadcasts NTP requests.
C) The client listens to NTP broadcasts.
D) The client creates a VPN tunnel to an NTP server.
E) The client multicasts NTP requests.
Question
An engineer must ensure that the wireless network can accomplish fast secure roaming by way of caching keys on the access points. Which key caching mechanism is enabled by default on a Cisco AireOS WLC?

A) SKC
B) OKC
C) 802.11r
D) CCKM
Question
A network administrator is troubleshooting a DMVPN setup between the hub and the spoke. Which action should the administrator take before troubleshooting the IPsec configuration?

A) Verify the GRE tunnels.
B) Verify ISAKMP.
C) Verify NHRP.
D) Verify crypto maps.
Question
What is the purpose of the autonomous-system {autonomous-system-number} command?

A) It sets the EIGRP autonomous system number in a VRF.
B) It sets the BGP autonomous system number in a VRF.
C) It sets the global EIGRP autonomous system number.
D) It sets the global BGP autonomous system number.
Question
A network engineer is asked to configure a "site-to-site" Ipsec VPN tunnel. One of the last things that the engineer does is to configure an access list (access-list 1 permit any) along with the command ip nat inside source list 1 int s0/0 overload. Which functions do the two commands serve in this scenario?

A) The command access-list 1 defines interesting traffic that is allowed through the tunnel.
B) The command ip nat inside source list 1 int s0/0 overload disables "many-to-one" access for all devices on a defined segment to share a single IP address upon exiting the external interface.
C) The command access-list 1 permit any defines only one machine that is allowed through the tunnel.
D) The command ip nat inside source list 1 int s0/0 overload provides "many-to-one" access for all devices on a defined segment to share a single IP address upon exiting the external interface.
Question
Which protocol is used in a DMVPN network to map physical IP addresses to logical IP addresses?

A) BGP
B) LLDP
C) EIGRP
D) NHRP
Question
A network administrator uses GRE over IPSec to connect two branches together via VPN tunnel. Which one of the following is the reason for using GRE over IPSec?

A) GRE over IPSec provides better QoS mechanism and is faster than other WAN technologies
B) GRE over IPSec decreases the overhead of the header.
C) GRE supports use of routing protocol, while IPSec supports encryption.
D) GRE supports encryption, while IPSec supports use of routing protocol.
Question
Prior to enabling PPPoE in a virtual private dialup network group, which task must be completed?

A) Disable CDP on the interface.
B) Execute the vpdn enable command.
C) Execute the no switchport command.
D) Enable QoS FIFO for PPPoE support.
Question
An engineer has configured guest anchoring for a newly created SSID however, the mobility tunnels are not up, and EPING is failing from the foreign WLC to the anchor WLC. Which traffic flow must be allowed at the firewall to enable the communication?

A) UDP port 16666
B) IP protocol 97
C) UDP port 97
D) TCP port 97
Question
An engineer must ensure that the new wireless LAN deployment can support seamless roaming between access points using a standard based on an amendment to the 802.11 protocol. Which protocol must the engineer select?

A) 802.11i
B) 802.11ac
C) 802.11r
D) 802.11e
Question
A customer asks an engineer to explain the concept of mobility domains and mobility groups. Which statement does the engineer respond with?

A) A mobility group does not constrain the distribution of security context of a client and also does not constrain AP fail-over between controllers when the WLC are in the same mobility domain.
B) If WLCs are in the same mobility domain, they communicate with each other but, if an anchor WLC is present, it must be in the same mobility domain for communication to be possible.
C) If WLCs are in the same mobility domain, they communicate with each other. Mobility groups constrain the distribution of security context of a client and also constrain AP fail-over between controllers.
D) WLCs do not need to be in the same mobility domain to communicate with each other. Mobility groups constrain the distribution of security context of a client and also constrain AP fail-over between controllers.
Unlock Deck
Sign up to unlock the cards in this deck!
Unlock Deck
Unlock Deck
1/106
auto play flashcards
Play
simple tutorial
Full screen (f)
exit full mode
Deck 11: Designing Cisco Enterprise Wireless Networks (300-425 ENWLSD)
1
An engineer changed the TCP Power Threshold for a wireless deployment from the default value to -65 dBm. The engineer conducts a new post deployment survey to validate the results. What is the expected outcome?

A) decreased channel overlap
B) increased cell size
C) increased received sensitivity
D) decreased client signal strength
increased cell size
2
An engineer performs a Layer 1 survey by using Metageek Chanalyzer only on the current operating channel. Which operating mode is configured for a Cisco CleanAir AP?

A) monitor
B) local
C) sniffer
D) SE-connect
local
3
An engineer has performed a predictive site survey for high-speed data and voice in an indoor office. What is the recommended data rate with ?67 dBm signal level for optimal VoWLAN design?

A) 6 Mbps on 802.11 bgn
B) 24 Mbps on 802.11 bgn
C) 12 Mbps on 802.11 an
D) 24 Mbps on 802.11 an
24 Mbps on 802.11 bgn
4
<strong> Refer to the exhibit. During a post Mesh deployment survey, an engineer notices that frame collisions occur when MAP-1 and MAP-3 talk to RAP-2. Which type of issue does the engineer need to address in the design?</strong> A) co-channel interference B) hidden node C) backhaul latency D) exposed node Refer to the exhibit. During a post Mesh deployment survey, an engineer notices that frame collisions occur when MAP-1 and MAP-3 talk to RAP-2. Which type of issue does the engineer need to address in the design?

A) co-channel interference
B) hidden node
C) backhaul latency
D) exposed node
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
5
An engineer is designing a wireless network that will support many different types of wireless clients. When conducting the survey, which client must be used to ensure a consistent experience for all of the wireless clients?

A) the client that has the highest RF properties
B) the client that is used most by the company
C) the client that is used least by the company
D) the client with the worst RF characteristics
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
6
During a post deployment site survey, issues are found with non-Wi-Fi interference. What should the engineer use to identify the source of the interference?

A) wireless intrusion prevention
B) Cisco Spectrum Expert
C) Wireshark
D) network analysis module
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
7
An engineer must decide the cell overlap for a wireless voice deployment. Which Cisco measurement recommendation should be considered?

A) The edge of the cell should be ?67 dBm.
B) The edge of the cell should be below 35 RSSI.
C) The measurement should be done on the 2.4-GHz band.
D) One AP should be deployed per 3000 square feet.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
8
A network administrator of a global organization is collapsing all controllers to a single cluster located in central Europe. Which concern must be addressed?

A) Some channels may not be available consistently across the organization.
B) Different RF policies per office are not available in this configuration.
C) Syslog must be configured to the time-zone of the NMS platform.
D) Centralized controllers cannot uniformly authenticate global users.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
9
An engineer is performing a predictive wireless design for a medical treatment environment, which requires data and voice services. What is the minimum requirement for the design?

A) overlapping ?72 dBm coverage from two access points
B) continuous ?67 dBm coverage from one access point
C) continuous ?72 dBm coverage from one access point
D) overlapping ?67 dBm coverage from two access points
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
10
A network engineer is preparing for an office site survey with a height of 2.5 meters. Which three components are recommended to complete the survey? (Choose three.)

A) Use a battery pack to power APs.
B) Use a drawing of the office space to draw AP and client placements.
C) Use DoS attack on APs while measuring the throughput.
D) Use APs with directional antennas.
E) Use APs with external antennas.
F) Use APs with built-in antennas.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
11
A customer is concerned about mesh backhaul link security. Which level of encryption does the backhaul link use?

A) hash
B) AES
C) WEP
D) 3DES
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
12
<strong> Refer to the exhibit. Which two statements about Cisco Prime Infrastructure are true? (Choose two.)</strong> A) It presents the recommended number of APs for the selected coverage area based on the selections made. B) Planning mode requires a special license in Cisco Prime Infrastructure. C) It shows the map editor feature in Cisco Prime Infrastructure. D) Controllers must be synchronized with Cisco Prime Infrastructure for planning mode to work. E) It shows the planning mode feature in Cisco Prime Infrastructure. Refer to the exhibit. Which two statements about Cisco Prime Infrastructure are true? (Choose two.)

A) It presents the recommended number of APs for the selected coverage area based on the selections made.
B) Planning mode requires a special license in Cisco Prime Infrastructure.
C) It shows the map editor feature in Cisco Prime Infrastructure.
D) Controllers must be synchronized with Cisco Prime Infrastructure for planning mode to work.
E) It shows the planning mode feature in Cisco Prime Infrastructure.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
13
Where must the APs be mounted when used in a high-density wireless network to provide 6 dB to 20 dB of attenuation to a cell?

A) in the aisle
B) under the seat
C) above the stage
D) under the stage
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
14
A customer has restricted the AP and antenna combinations for a design to be limited to one model integrated antenna AP for carpeted spaces and one morel external antenna AP, with high gain antennas for industrial, maintenance, or storage areas. When moving between a carpeted area to an industrial area, the engineer forgets to change survey devices and surveys several APs. Which strategy will reduce the negative impact of the design?

A) Deploy unsurveyed access points to the design.
B) Increase the Tx power on incorrectly surveyed access points.
C) Deploy the specified access points per area type.
D) Resurvey and adjust the design.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
15
A wireless engineer is utilizing the voice readiness tool in Cisco Prime for a customer that wants to deploy Cisco IP phones. Which dBm range is the network inspected against?

A) ?78 to ?65 dBm
B) ?72 to ?67 dBm
C) ?85 to ?65 dBm
D) ?85 to ?67 dBm
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
16
An engineer is conducting a Layer 2 site survey. Which type of client must the engineer match to the survey?

A) best client available
B) phone client
C) normal client
D) worst client available
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
17
<strong> Refer to the exhibit. What is the main reason why the Wi-Fi design engineer took a different approach than installing the APs in the offices, even though that installation provides better coverage?</strong> A) aesthetics B) transmit power considerations C) antenna gain D) power supply considerations Refer to the exhibit. What is the main reason why the Wi-Fi design engineer took a different approach than installing the APs in the offices, even though that installation provides better coverage?

A) aesthetics
B) transmit power considerations
C) antenna gain
D) power supply considerations
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
18
A wireless engineer is using Ekahau Site Survey to validate that an existing wireless network is operating as expected. Which type of survey should be used to identify the end-to-end network performance?

A) GPS assisted
B) spectrum analysis
C) passive
D) active ping
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
19
A medium-sized hospitality company with 50 hotels needs to upgrade the existing WLAN in each hotel to 802.11n. During the site surveys for each hotel, what needs to be taken into consideration when determining the locations for each AP?

A) Selecting APs that can be hidden in ceiling panels to provide a secure and clean aesthetic look.
B) Selecting locations that make visual assessment of the AP operation easy.
C) Selecting locations that are easily accessed so maintenance and upgrades can be performed quickly.
D) Selecting AP locations where power is already available.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
20
A wireless engineer is designing a wireless network to support real time applications over wireless. Which IEEE protocol must the engineer enable on the WLC so that the number of packets that are exchanged between an access point and client are reduced and fast roaming occurs?

A) 802.11w
B) 802.11r
C) 802.11i
D) 802.11k
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
21
A high-density wireless network is designed. Which Cisco WLC configuration setting must be incorporated in the design to encourage clients to use the 5 GHz spectrum?

A) Band Select
B) RRM
C) Cisco Centralized Key Management
D) load balancing
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
22
A network engineer is working on a predictive WLAN design. The new wireless network must support access to Internet, email, voice, and the inventory database. To successfully support these services, which configuration must the engineer use for the signal strength levels and SNR on the planning tool?

A) signal strength of -67 dBm, 20-dB SNR, and maximum 5 percent packet loss
B) signal strength of -70 dBm, 30-dB SNR, and maximum 10 percent packet loss
C) signal strength of 67 dBm, 20-dB SNR, and maximum 1 percent packet loss
D) signal strength of -67 dBm, 25-dB SNR, and maximum 1 percent packet loss
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
23
A customer has determined that aesthetics is a primary concern for their upcoming guest deployment. Which design consideration can be leveraged to address this concern?

A) Paint the access point to cover the LED from being noticeable.
B) Use enclosures to hide the wireless infrastructure in the surrounding environment.
C) Use AIR-AP-BRACKET-1 to allow for greater mounting locations
D) Deploy environmentally friendly cabling components to blend into the environment.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
24
How should the concept of mobility domains and mobility groups be explained to a customer?

A) A mobility group does not constrain the distribution of security context of a client and also does not constrain AP fail-over between controllers when the WLC is in the same mobility domain.
B) If WLCs are in the same mobility domain, they communicate with each other but, if an anchor WLC is present, it must be in the same mobility domain for communication to be possible.
C) If WLCs are in the same mobility domain, they communicate with each other. Mobility groups constrain the distribution of security context of a client and also constrain AP fail-over between controllers.
D) WLCs do not need to be in the same mobility domain to communicate with each other. Mobility groups constrain the distribution of security context of a client and also constrain AP fail-over between controllers.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
25
A wireless engineer is designing a wireless network to support real time applications over wireless. Which IEEE protocol must the engineer enable on the WLC so that neighbor list radio management packets are sent to the wireless devices?

A) 802.11w
B) 802.11r
C) 802.11i
D) 802.11k
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
26
An engineer must speed up the reauthentication delays that are being experienced on the wireless infrastructure by deploying a key-caching mechanism. Which mechanism must be configured?

A) PEAP
B) FT
C) PMF
D) GTK-randomization
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
27
A network engineer is working on a design for a wireless network that must support data, voice, and location services. To support these services, which access point placement must the engineer use?

A) corner only
B) perimeter and corner
C) perimeter only
D) indoor and outdoor
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
28
An engineer is designing a new wireless network. The network needs to meet these requirements: support a high wireless client concentration support data over wireless support voice over wireless avoid interference Which design approach should be taken?

A) 5 GHz frequency band with channel bonding, to support 40 MHz channels
B) 5 GHz frequency band without channel bonding, to support 20 MHz channels
C) 2.4 GHz frequency band without channel bonding, to support 20 MHz channels
D) 5 GHz frequency band with channel bonding, to support 80 MHz channels
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
29
An engineer has deployed a group of APs in an auditorium and notices that the APs are showing high co-channel interference. Which profile is used to adjust the parameters for these high-density APs?

A) QoS profile
B) AVC profile
C) RF profile
D) ISE profile
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
30
Which UDP port numbers are used for exchange mobility packets in an AireOS wireless deployment?

A) UDP 16666 for control plane, EoIP (IP protocol 97) for data plane
B) UDP 16668 for control plane, UDP 16667 for data plane
C) UDP 16667 for control plane, UDP 16666 for data plane
D) UDP 16666 for control plane, UDP 16667 for data plane
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
31
An engineer is reducing the subnet size of the corporate WLAN by segmenting the VLAN into smaller subnets. Clients will be assigned a subnet by location. Which type of groups should the engineer use to map the smaller subnets to the corporate WLAN?

A) WLC port groups
B) RF groups
C) AP groups
D) interface groups
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
32
A customer is looking for a network design with Cisco Hyperlocation using AP4800 for location tracking via a custom mobile app. Issues appeared in the past with refresh rates for location updates. What needs to be implemented to meet these requirements?

A) Cisco CMX SDK in the location app
B) device Bluetooth via the app
C) Cisco FastLocate technology
D) redundant CMX and fetch location in round-robin fashion
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
33
During a wireless network design, a customer requires wireless coverage on the perimeter of a building but also wants to minimize signal leakage from the wireless network. Which antenna should be used to accomplish this design?

A) omnidirectional
B) patch
C) monopole
D) dipole
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
34
What is the 9800 Series Wireless Controller mobility tunnel on a Cisco Catalyst 9800 controller?

A) It is an IPsec tunnel with control path only.
B) It is a CAPWAP tunnel with data path only.
C) It is a CAPWAP tunnel with control path and data path.
D) It is an IPsec tunnel with control path and data path.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
35
An enterprise is using the wireless network as the main network connection for corporate users and guests. To ensure wireless network availability, two standalone controllers are installed in the head office. APs are connected to the controllers using a round-robin approach to load balance the traffic. After a power cut, the wireless clients disconnect while roaming. An engineer tried eping from the controller but fails. Which protocol needs to be allowed between the networks that the controllers are installed?

A) IP Protocol 67
B) IP Protocol 77
C) IP Protocol 87
D) IP Protocol 97
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
36
A company wants to replace its existing PBX system with a new VoIP System that will include wireless IP phones. The CIO has concerns about whether the company's existing wireless network can support the new system. Which tool in Cisco Prime can help ensure that the current network will support the new phone system?

A) Location Readiness
B) Site Calibration
C) Map Editor
D) Voice Readiness
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
37
An engineer must perform an assessment of a customer LAN for a future IEEE 802.11ac Wave 2 wireless deployment. All access switches are Fast Ethernet-capable only, and the wired infrastructure between existing APs and access switches is based on the CAT 6A standard. Which two actions provide maximum support of Cisco 3800 Series access points? (Choose two.)

A) Replace the existing switches with mGig switches.
B) Ensure that cable distances between access switches and APs are not longer that 55 meters.
C) Replace the existing switches with gigabit switches with 10 G uplinks.
D) Ensure that cable distance between access switches and APs are not longer than 100 meters.
E) Replace the existing wiring infrastructure with the CAT-7E wiring standard.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
38
A technician connects a Cisco Aironet 3700 Series access point to a switch and realizes that the AP is coming up with 3x3 MIMO. What explains this behavior?

A) A redundant power supply is unavailable on the switch.
B) The switch is 802.3af capable.
C) The AP is getting power from a power injector.
D) The switch is PoE+ capable.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
39
What is the attenuation value of a human body on a wireless signal?

A) 3 dB
B) 4 dB
C) 6 dB
D) 12 dB
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
40
An engineer must configure the virtual IP address on multiple controllers in a mobility group. Which rule must the engineer follow to ensure proper roaming?

A) Ensure that the DNS entry is tied to the virtual IP address of the WLC.
B) Use a unique IP address for each WLC.
C) Ensure that the DNS Host Name field is defined.
D) Use the same IP address for each WLC.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
41
An engineer is designing a wireless deployment for a university auditorium. Which two features can be used to help deal with the issues introduced by high AP count? (Choose two.)

A) TSPEC
B) RXSOP
C) TPC
D) LSS
E) DFS
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
42
A wireless network consultant must assess an existing wireless LAN controller. Which section must the consultant check before replacing the old APs with APs that are IEEE 802.11ac-capable?

A) number of AP licenses
B) controller PSU
C) throughput capacity
D) software version
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
43
An engineer must ensure that the wireless network accomplishes fast, secure roaming by way of caching keys on the access points. Which key caching mechanism is enabled by default on a Cisco AireOS WLC?

A) SKC
B) OKC
C) 802.11r
D) CCKM
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
44
An engineer is trying to determine the most cost-effective way to deploy high availability for a campus enterprise wireless network that currently leverages three wireless LAN controllers. Which architecture should the engineer deploy?

A) N+N with SSO
B) N+1 solution without SSO
C) N+N solution without SSO
D) N+1 with SSO
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
45
An enterprise has moved most services to the cloud, including email applications and real-time communication. Which feature must be enabled on the wireless network to improve the user experience?

A) radio management
B) fast secure roaming
C) QoS
D) interference mitigation
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
46
Which non-Wi-Fi interferer can be identified by Metageek Chanalyzer?

A) PDAs
B) jammers
C) smartphones
D) printers
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
47
A customer is running a guest WLAN with a foreign/export-anchor setup. There is one anchor WLC in the US and two in Europe. Anchor WLC priorities are used to prefer local anchors. During a routine network audit, it is discovered that a large number of guest client sessions in the US are anchored to the WLCs in Europe. Which reason explains this behavior?

A) The foreign WLC failed and recovered.
B) The US anchor WLC failed and recovered.
C) The US anchor WLC is anchored to itself with a priority value of zero.
D) The anchor WLC is in the same mobility group.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
48
A wireless engineer must optimize RF performance for multiple buildings with multiple types of construction and user density. Which two actions must be taken? (Choose two.)

A) Configure FlexConnect groups for each building.
B) Configure WMM profiles for each building.
C) Configure AP groups for each area type.
D) Configure RF profiles for each area type.
E) Enable DTPC on the network.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
49
Which two criteria must be considered when conducting an outdoor bridge site survey? (Choose two.)

A) near-far effect
B) weather
C) traffic lights
D) power lines
E) Fresnel zone
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
50
As part of a wireless site survey in a hospital, an engineer needs to identify potential Layer 1 interferers. In which two areas is the engineer most likely to find sources of 2.4 GHz and 5 GHz RF noise? (Choose two.)

A) magnetic resonance imaging
B) kitchen
C) Gamma Knife radiation treatment
D) X-ray radiography
E) patient room
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
51
The wireless team must configure a new voice SSID for optimized roaming across multiple WLCs with Cisco 8821 phones. Which two WLC settings accomplish this goal? (Choose two.)

A) Configure AVC profiles on the SSID.
B) Configure mobility groups between WLCs.
C) Use AVC to tag traffic voice traffic as best effort.
D) Configure AP groups between WLCs.
E) Use Cisco Centralized Key Management for authentication.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
52
An engineer is designing a wireless network to support high availability. The network will need to support the total number of APs and client SSO. Live services should continue to work without interruption during the failover. Which two requirements need to be incorporated into the design to meet these needs? (Choose two.)

A) controller high availability pair with one of the WLCs having a valid AP count license
B) WLC 7.5 code or more recent
C) redundant vWLC
D) 10 sec RTT
E) back-to-back direct connection between WLCs
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
53
An engineer has successfully configured high availability and SSO using two Cisco 5508 Wireless LAN Controllers. The engineer can access the Active Primary WLC, but the Secondary Standby WLC is not accessible. Which two methods allow access to the standby unit? (Choose two.)

A) via the console connection
B) SSH to the redundancy management interface of the primary WLC
C) SSH to the service port interface
D) SSH to the virtual interface of the secondary WLC
E) SSH to the management interface of the primary WLC
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
54
A customer has noticed that Client Band Select is enabled and no clients are utilizing the 5 GHz band. Which three parameters must be met to ensure that wireless clients use the 5 GHz band? (Choose three.)

A) Ensure that channel bonding is enabled on the WLAN.
B) Ensure that the co-channel interference has not exceeded ?85 dBm.
C) Ensure that the UNII-2 extended channels are enabled on the 802.11a radios.
D) Ensure that the client is receiving RSSI above the minimum band select RSSI threshold.
E) Ensure that the client is dual-band capable.
F) Ensure that the WLAN has 802.11a enabled.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
55
What is the recommended cell overlap when designing a wireless network for Cisco Hyperlocation?

A) 20%
B) 30%
C) 40%
D) 50%
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
56
Multiple WLCs are implemented in a high-availability configuration in a mobility group. APs are deployed with only a primary controller assigned. By default, which mobility group member controller do the orphaned APs join in the event of a failed controller?

A) controller with the most available AP free license capacity
B) controller with the lowest percent of associated APs per license capacity
C) controller with the least CPU utilization over the last reporting period
D) controller with the least number of associated APs
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
57
An engineer is using two wireless controllers to support the wireless network. The data center is located in the head office. Each controller has a corporate WLAN configured with the name Copr-NET392267230WLC-1 and Corp-NET68371638WLC-2. The APs are installed using a round-robin approach to load balance the traffic. What should be changed on the cofiguration to optimize roaming?

A) Use the same WLAN name for the corporate network on both controllers.
B) Move all access points to one controller and use the other as N+1 HA.
C) Move the controllers to an external data center with higher internet speeds.
D) Place the access points per floor on the same controller.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
58
How does AP failover priority for access points function when configured with priority 1 or 4?

A) When configured with priority 1, the access point is assigned with the highest priority level, and it is marked as critical. This access point fails over before other access points with the lower priority when there is primary controller failure.
B) When configured with priority 4, the access point is assigned with the highest priority level, and it is marked as critical. This access point fails over before other access points with the lower priority when there is primary controller failure.
C) When configured with priority 4, the access point is assigned with the lowest priority level, and it is marked as low. This access point fails over after other access points with the higher priority when there is primary controller failure.
D) When configured with priority 1, the access point is assigned with the medium priority level, and it is marked as medium. This access point fails over after other access points with the higher priority when there is primary controller failure.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
59
<strong> Refer to the exhibit. An enterprise is using wireless as the main network connectivity for clients. To ensure service continuity, a pair of controllers will be installed in a datacenter. An engineer is designing SSO on the pair of controllers. What needs to be included in the design to avoid having the secondary controller go into maintenance mode?</strong> A) The redundancy port must be the same subnet as the redundancy mgmt. B) The keep alive timer is too low, which causes synchronization problems. C) The connection between the redundancy ports is missing. D) The Global Configuration of SSO is set to Disabled on the controller. Refer to the exhibit. An enterprise is using wireless as the main network connectivity for clients. To ensure service continuity, a pair of controllers will be installed in a datacenter. An engineer is designing SSO on the pair of controllers. What needs to be included in the design to avoid having the secondary controller go into maintenance mode?

A) The redundancy port must be the same subnet as the redundancy mgmt.
B) The keep alive timer is too low, which causes synchronization problems.
C) The connection between the redundancy ports is missing.
D) The Global Configuration of SSO is set to Disabled on the controller.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
60
When conducting a site survey for real-time traffic over wireless, which two design capabilities of smartphones and tablets must be considered? (Choose two.)

A) no support for 802.11ac
B) higher data rates than laptops
C) fewer antennas than laptops
D) no support for 802.11r
E) lower data rates than laptops
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
61
An engineer has deployed a group of APs in an auditorium and notices that the APs are showing high co-channel interference. Which profile can be used to adjust the parameters for these high-density APs?

A) QoS profile
B) AVC profile
C) RF profile
D) ISE profile
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
62
Which Cisco IOS VPN technology leverages Ipsec, mGRE, dynamic routing protocol, NHRP, and Cisco Express Forwarding?

A) FlexVPN
B) DMVPN
C) GETVPN
D) Cisco Easy VPN
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
63
Which Cisco VPN technology can use multipoint tunnel, resulting in a single GRE tunnel interface on the hub, to support multiple connections from multiple spoke devices?

A) DMVPN
B) GETVPN
C) Cisco Easy VPN
D) FlexVPN
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
64
What is the purpose of configuring the router as a PPPoE client? Select the best response.

A) To provide VPN access over L2TP
B) To enable PPP session from the router to the termination device at the headend for metro Ethernet connectivity
C) For DSL connectivity and removing the need for the end-user PC to run the PPPoE client software
D) For connecting the router to a cable modem, which bridges the Ethernet frames from the router to the cable modem termination system
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
65
A user is having issues accessing file shares on a network. The network engineer advises the user to open a web browser, input a prescribed IP address, and follow the instructions. After doing this, the user is able to access company shares. Which type of remote access did the engineer enable?

A) EZVPN
B) Ipsec VPN client access
C) VPDN client access
D) SSL VPN client access
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
66
Which statement about the 9800 Series Wireless Controller mobility tunnel on a Cisco Catalyst 9800 controller is true?

A) It is an IPsec tunnel with control path only.
B) It is a CAPWAP tunnel with data path only.
C) It is a CAPWAP tunnel with control path and data path.
D) It is an IPsec tunnel with control path and data path.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
67
A company has 10 access point licenses available on their backup Cisco WLC and their primary Cisco WLC is at full capacity. 5 access points are set to high failover priority and 7 access points are set to critical failover priority. During a failure, not all critical access points failed over to the backup Cisco WLC. Which configuration is the cause of this issue?

A) The high priority access point is oversubscribed.
B) network ap-priority is set to enable.
C) The critical priority access point count is oversubscribed.
D) network ap-priority is set to disable.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
68
Which common issue causes intermittent DMVPN tunnel flaps?

A) a routing neighbor reachability issue
B) a suboptimal routing table
C) interface bandwidth congestion
D) that the GRE tunnel to hub router is not encrypted
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
69
Which Cisco VPN technology uses AAA to implement group policies and authorization and is also used for the XAUTH authentication method?

A) DMVPN
B) Cisco Easy VPN
C) GETVPN
D) GREVPN
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
70
Which two statements indicate a valid association mode for NTP synchronization? (Choose two.)

A) The client polls NTP servers for time.
B) The client broadcasts NTP requests.
C) The client listens to NTP broadcasts.
D) The client creates a VPN tunnel to an NTP server.
E) The client multicasts NTP requests.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
71
An engineer must ensure that the wireless network can accomplish fast secure roaming by way of caching keys on the access points. Which key caching mechanism is enabled by default on a Cisco AireOS WLC?

A) SKC
B) OKC
C) 802.11r
D) CCKM
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
72
A network administrator is troubleshooting a DMVPN setup between the hub and the spoke. Which action should the administrator take before troubleshooting the IPsec configuration?

A) Verify the GRE tunnels.
B) Verify ISAKMP.
C) Verify NHRP.
D) Verify crypto maps.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
73
What is the purpose of the autonomous-system {autonomous-system-number} command?

A) It sets the EIGRP autonomous system number in a VRF.
B) It sets the BGP autonomous system number in a VRF.
C) It sets the global EIGRP autonomous system number.
D) It sets the global BGP autonomous system number.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
74
A network engineer is asked to configure a "site-to-site" Ipsec VPN tunnel. One of the last things that the engineer does is to configure an access list (access-list 1 permit any) along with the command ip nat inside source list 1 int s0/0 overload. Which functions do the two commands serve in this scenario?

A) The command access-list 1 defines interesting traffic that is allowed through the tunnel.
B) The command ip nat inside source list 1 int s0/0 overload disables "many-to-one" access for all devices on a defined segment to share a single IP address upon exiting the external interface.
C) The command access-list 1 permit any defines only one machine that is allowed through the tunnel.
D) The command ip nat inside source list 1 int s0/0 overload provides "many-to-one" access for all devices on a defined segment to share a single IP address upon exiting the external interface.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
75
Which protocol is used in a DMVPN network to map physical IP addresses to logical IP addresses?

A) BGP
B) LLDP
C) EIGRP
D) NHRP
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
76
A network administrator uses GRE over IPSec to connect two branches together via VPN tunnel. Which one of the following is the reason for using GRE over IPSec?

A) GRE over IPSec provides better QoS mechanism and is faster than other WAN technologies
B) GRE over IPSec decreases the overhead of the header.
C) GRE supports use of routing protocol, while IPSec supports encryption.
D) GRE supports encryption, while IPSec supports use of routing protocol.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
77
Prior to enabling PPPoE in a virtual private dialup network group, which task must be completed?

A) Disable CDP on the interface.
B) Execute the vpdn enable command.
C) Execute the no switchport command.
D) Enable QoS FIFO for PPPoE support.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
78
An engineer has configured guest anchoring for a newly created SSID however, the mobility tunnels are not up, and EPING is failing from the foreign WLC to the anchor WLC. Which traffic flow must be allowed at the firewall to enable the communication?

A) UDP port 16666
B) IP protocol 97
C) UDP port 97
D) TCP port 97
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
79
An engineer must ensure that the new wireless LAN deployment can support seamless roaming between access points using a standard based on an amendment to the 802.11 protocol. Which protocol must the engineer select?

A) 802.11i
B) 802.11ac
C) 802.11r
D) 802.11e
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
80
A customer asks an engineer to explain the concept of mobility domains and mobility groups. Which statement does the engineer respond with?

A) A mobility group does not constrain the distribution of security context of a client and also does not constrain AP fail-over between controllers when the WLC are in the same mobility domain.
B) If WLCs are in the same mobility domain, they communicate with each other but, if an anchor WLC is present, it must be in the same mobility domain for communication to be possible.
C) If WLCs are in the same mobility domain, they communicate with each other. Mobility groups constrain the distribution of security context of a client and also constrain AP fail-over between controllers.
D) WLCs do not need to be in the same mobility domain to communicate with each other. Mobility groups constrain the distribution of security context of a client and also constrain AP fail-over between controllers.
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Unlock Deck
k this deck
locked card icon
Unlock Deck
Unlock for access to all 106 flashcards in this deck.
Examlex
Examlex
Work With Us
Policies
Download the App
Scan to downloadDownload the App
qr-code
Links
Links
Work With Us
Download the App

Scan to downloadDownload the App
qr-code

Copyright © 2025 Examlex LLC.
  • facebook-footer
  • instagram-footer
  • x-footer
  • tiktok
  • Linktree