642-081 Free Sample Download, Cisco Certification Exam Demos

	Adobe
	Apple
	Avaya
	BlackBerry
	Check Point
	Cisco
	Citrix
	CIW
	CompTIA
	CWNP
	EC-Council
	EMC
	Exin
	Hewlett Packard
	IBM
	ISC
	ISEB
	Juniper Networks
	LPI
	Microsoft
	Network Appliance
	Nortel
	Novell
	Oracle
	PMI
	RedHat
	RSA Security
	SAP
	Sun
	Symantec
	Tibco
	VMWare

Cisco 642-081 Exam - Cheat-Test.com

Free 642-081 Sample Questions:

1.Due to limitations affecting voice quality, which of the broadband speeds shown is preferred in order to achieve highest voice quality on a converged data and voice teleworker connection?
A.DSL with 128k uplink /128k downlink
B.cable with 256k uplink /256k downlink
C.DSL with 128k uplink /768k downlink
D.cable with 256k uplink /1.4M downlink
Answer: D

2.Refer to the exhibit. Which of the following statements is a reason the DHCP server is enabled on the Teleworker home router?

A.allows for workstations to have network values hardcoded
B.IP network settings cannot be assigned if the VPN tunnel is down
C.provides IP network settings to be dynamically assigned
D.requires HTTP access to initiate assignment
Answer: C

3.Which integrated security feature is not provided by the Cisco Business Ready Teleworker solution?
A.Stateful Inspection Firewall
B.Intrusion Detection System
C.Spam Filtering
D.802.1based Authentication
E.Proxy Authentication
F.URL Filtering
Answer: C

4.Why would the network manager elect to implement a configuration that includes GRE tunnels for a teleworker deployment? Choose two.
A.GRE can use transport mode and save up to twenty bytes per packet.
B.The corporate network includes many discontinuous blocks of IP networks and requires split tunneling.
C.The corporation's primary application is based on IP multicast.
D.Without GRE, there is no means to detect a headend failure.
E.GRE would enable path MTU discovery.
Answer: B, C

5.Refer to the exhibit. Assume Router A is configured for split tunneling. If the Internet Service provider was asked by the customer to provide a guarantee of at least 60 percent of the WAN link between Router A and Router C for encrypted traffic, what would be the best means of identifying this traffic to their QoS Service Policy?

A.permit esp any permit udp any eq 500 any eq 500
B.permit udp any eq isakmp any eq isakmp
C.permit ip 10.81.7.0 0.0.0.7 any
D.tcp any any eq 22
Answer: A

6.What is the best way to ensure that IKE/ISAKMP packets are not dropped when QoS is enabled on the uplink interface of the Teleworker router?
A.QoS and IPSec should never be used together.
B.IKE/ISAKMP packets are DiffSERV codepoint CS6, so the traffic is never dropped.
C.Source IKE/ISAKMP packets off the loopback address.
D.Classify IKE/ISAKMP packets so they are appropriately prioritized.
Answer: D

7.Refer to the exhibit. Given this deployment model and the Enterprise applications, the Teleworker Router provides which functions? Choose two.

A.Broadband access termination
B.IPSec tunnel termination
C.H.323 Signaling termination
D.Traffic Shaping
E.Compressed RTP(cRTP)for bandwidth optimization
Answer: B, D

8.Easy VPN operates in two modes. Although Client Mode has advantages, there are environments where it should not be used. Choose two.
A.Teleworker devices must be accessed from the central site (server, printers).
B.IP addressing is simplified.
C.The Teleworker LAN is a transit networking for routing.
D.An Enterprise application does not function with Network Address Translation.
E.The Teleworker router is an MPLS PE node.
Answer: A

9.Refer to the exhibit. A customer indicates their teleworkers plan to use IP phones in their home offices. The IT department has surveyed the planned teleworkers, resulting in the user groupings shown in the exhibit. To provide the highest voice quality, the best recommendations to this customer are _________. Choose two.

A.Deploy all three groups with a QoS service policy, choosing the parameters for Traffic Shaping based on the average uplink speed across the three groups.
B.Teleworkers in Groups A and B should inquire with their DSL providers for subscriptions with higher uplink bandwidths.
C.Teleworkers in Group C should change their subscriptions to DSL for deployment consistency.
D.Teleworkers in Group A should upgrade their subscription to obtain static IP addresses
E.Teleworkers in Group A should inquire with their DSL providers for subscriptions with higher downlink bandwidths.
Answer: B, E

10.When should you enable Network Address Translation Transparency (NATT) on the Teleworker?
A.when a router between the Teleworker router and the headend VPN router is doing NAT/pNAT and does not support IPSec passthrough
B.when the Teleworker router itself is doing NAT/pNAT
C.always
D.never
Answer: A

11.Choose the true statement regarding QoS preclassify.
A.QoS preclassify permits making QoS decisions based on elements from the unencrypted IP packet.
B.QoS preclassify is required when encrypting voice.
C.QoS preclassify is an advantage to Service Providers transporting encrypted packets.
D.QoS preclassify is not designed for IPSec/GRE configurations.
Answer: A

12.The LANside of the Teleworker router is assigned private IP address space (RFC1918), and the VPN topology is IPSeconly (no GRE protocol). When is it required to configure NAT/pNAT on the Teleworker router?
A.when all access to the Internet is through the IPSec tunnel
B.when there is direct Internet access via splittunneling
C.when there is no Internet access configured through the Teleworker router
D.whenever you have IOSFirewall (CBAC) configured
Answer: B

13.Refer to the exhibit. Asymmetric broadband service with significantly greater downstream bandwidth is recommended for Teleworker deployment. Which reason is the most accurate?

A.Most ISPs do not provide QoS for residential broadband. Asymmetric bandwidth reduces the chance of downstream congestion when traffic from Internet sites competes for bandwidth with IP voice traffic.
B.Additional downstream bandwidth compensates for insufficient upstream bandwidth. The aggregate bandwidth provides the same result.
C.The additional bandwidth is needed to access more than one site. Most HTTP traffic is downstream.
D.The additional downstream bandwidth allows the Enterprise VPN device to send the IP voice packets much faster, allowing them to reach the Teleworker network with less latency.
Answer: A

14.Select a key benefit of DSL.
A.TCP packet sizes can be optimized by the router so there is no IPSec or AAL5 padding.
B.The local loop is a dedicated connection for a single subscriber to the DSLAM.
C.Access to the WAN media uses a poll/response mechanism so no two subscribers transmit at the same time.
D.There are no distance requirements from the Central Office (CO).
Answer: B

15.Refer to the exhibit. Given the CPE deployment model, the Enterprise applications shown, and the functions being provided as designated, the appropriate product choice is _______________.

A.Cisco PIX 501 Firewall
B.Cisco 831 router
C.Cisco 837 router
D.Cisco VPN3002 Hardware Client
E.Cisco ubr925 cable modem
F.Cisco SW VPN Client
Answer: B

16.Refer to the exhibit. Assume Router A is configured for split tunneling. For Host A to download a file from Server A, what would best describe the path the packets would traverse from the server to the host?

A.Server A to Router B, unencrypted to Router A to Host A.
B.Server A to Router B, encrypted to Router A to Host A.
C.The packets are encrypted between Server A and Router A.
D.Unencrypted from Server A through Router A to Host A.
E.Host A could not download a file from Server A.
Answer: D

17.Your Service Provider does not support Link Fragmentation and Interleave, but upstream serialization delay on your broadband link is affecting voice quality. Which two mitigation strategies are viable? Choose two.
A.Upgrade your residential broadband service to at least 768kbps uplink.
B.Switch your home router to use PPP encapsulation.
C.Use the ip tcp adjustmss interface command.
D.Employ QoS techniques to drop large data packets.
E.Use traffic shaping to interrupt large data packets.
Answer: A, C

18.Authentication for user data traffic is important, but so is authentication for IP voice traffic. The Cisco 830 802.1 feature provides an easier method for allowing IP voice traffic through the VPN, because it __________. Choose two.
A.requires access lists to identify the voice traffic
B.can allow traffic from a device without 802.1X authentication, by MAC address
C.can allow traffic from Cisco IP phones by listening to their CDP advertisements
D.allows all packets marked with a ToS of 5 to bypass authentication
E.allows all IP voice packets to bypass authentication via stateful inspection
Answer: B, C