- (Exam Topic 4)
Simulation 04


Solution:
R1
Router ospf 1 Int loop0
Ip ospf 1 area 0 Int et0/0
Ip ospf 1 area 0
Ip ospf network point-to-point Copy run start
R2
Router ospf 1 Int loop0
Ip ospf 1 area 0 Int et0/0
Ip ospf 1 area 0
Ip ospf network point-to-point Copy run start
Verification:



Does this meet the goal?

1. A. Yes
2. B. No

Correct Answer: A

- (Exam Topic 3)
An engineer must configure a router to leak routes between two VRFs Which configuration must the engineer apply?

1. A. Option A
2. B. Option B
3. C. Option C
4. D. Option D

Correct Answer: B

- (Exam Topic 1)
Refer to the exhibit.

An engineer must deny Telnet traffic from the loopback interface of router R3 to the loopback interface of router R2 during the weekend hours. All other traffic between the loopback interfaces of routers R3 and R2 must be allowed at all times. Which command accomplish this task?
A)

B)

C)

D)

1. A. Option A
2. B. Option B
3. C. Option C
4. D. Option D

Correct Answer: C
We cannot filter traffic that is originated from the local router (R3 in this case) so
we can only configure the ACL on R1 or R2. “Weekend hours” means from Saturday morning through Sunday night so we have to configure: “periodic weekend 00:00
to 23:59”.
Note: The time is specified in 24-hour time (hh:mm), where the hours range from 0 to 23 and the minutes range from 0 to 59.

- (Exam Topic 3)
Refer to the exhibit.

An engineer must set up connectivity between a campus aggregation layer and a branch office access layer. The engineer uses dynamic trunking protocol to establish this connection, however, management traffic on VLAN1 is not passing. Which action resolves the issue and allow communication for all configured VLANs?

1. A. Allow all VLANs on the trunk links
2. B. Disable Spanning Tree for the native VLAN.
3. C. Configure the correct native VLAN on the remote interface
4. D. Change both interfaces to access ports.

Correct Answer: C

- (Exam Topic 1)
Which algorithms are used to secure REST API from brute attacks and minimize the impact?

1. A. SHA-512 and SHA-384
2. B. MD5 algorithm-128 and SHA-384
3. C. SHA-1, SHA-256, and SHA-512
4. D. PBKDF2, BCrypt, and SCrypt

Correct Answer: D
One of the best practices to secure REST APIs is using password hash. Passwords must always be hashed to protect the system (or minimize the damage) even if it is compromised in some hacking attempts. There are many such hashing algorithms which can prove really effective for password security e.g. PBKDF2, bcrypt and scrypt algorithms.
Other ways to secure REST APIs are: Always use HTTPS, Never expose information on URLs (Usernames, passwords, session tokens, and API keys should not appear in the URL),
Adding Timestamp in Request, Using OAuth, Input Parameter Validation. Reference: https://restfulapi.net/security-essentials/