Free Cheat-test Samples and Demo Questions Download
Adobe exams Adobe
Apple exams Apple
Avaya exams Avaya
Check Point exams Check Point
Cisco exams Cisco
Citrix exams Citrix
CIW exams CIW
CompTIA exams CompTIA
EC-Council exams EC-Council
EMC exams EMC
Exin exams Exin
Fortinet exams Fortinet
Hitachi exams Hitachi
HP exams HP
IBM exams IBM
Isaca exams Isaca
ISC exams ISC
Juniper exams Juniper
LPI exams LPI
McAfee exams McAfee
Microsoft exams Microsoft
Oracle exams Oracle
PMI exams PMI
Riverbed exams Riverbed
SNIA exams SAP
Sun exams SAS
Symantec exams Symantec
VMware exams VMware
All certification exams

Nortel 920-449 Exam -

Free 920-449 Sample Questions:

1. Contivity Stateful Firewall has been enabled on a customer's Contivity system. The customer wants to extend user authentication on traffic between branch office connections in their VPN environment and a technician has set up Firewall User Authentication (FWUA). How will this affect system users?
A. Users will now have transparent access to the Contivity Stateful Firewall.
B. Users will be automatically authenticated for internal authorization services such as LDAP.
C. Users will be automatically authenticated for external authorization services such as RADIUS.
D. Users will be required to log into the Contivity Stateful Firewall before they are granted network access.
Answer: D

2. Assume that the integrated Firewall (Contivity Interface Filters or Contivity Stateful Firewall) on a Contivity is disabled. What is the status of the public static route?
A. not redistributed
B. redistributed into RIP only
C. redistributed into OSPF only
D. redistributed into RIP and OSPF
Answer: A

3. You are tasked with configuring a Branch Office Tunnel on a Contivity 2700. If the two devices establishing the tunnel have different encryption settings (due to either export laws or administrative configuration), how will the two devices react?
A. They will default to DES with SHA1 Integrity.
B. They will negotiate upward until each has a compatible encryption capability.
C. They will negotiate downward until each has a compatible encryption capability.
D. They will negotiate upward until each has a compatible encryption capability..
Answer: C

4. You are tasked with configuring a Contivity 4600 to connect to a frame relay gateway. You want the gateway type to be user configurable, with the gateway type determining both the LMI format and the FECN/BECN processing. When configuring the frame relay interface, how must the connection type be set?
A. direct
B. looped
C. switched
D. non-switched
Answer: C

5. You are tasked with configuring a new Point-to-Point Protocol over Ethernet (PPPoE) connection on the public interface of a Contivity 1100. Which PPPoE usage restriction do you NOT need to consider?
A. PPPoE changes are dynamically applied.
B. You must set the appropriate filter (deny all by default).
C. Cannot use dynamic routing on PPPoE interfaces (unless tunneling).
D. PPPoE has a Maximum Transmission Unit (MTU) limitation of 1492 bytes.
Answer: A

6. You have configured an IPsec peer to peer branch office tunnel between a Contivity 4600 and a Contivity 1700. When the tunnel tries to initiate, you receive the following message in the Contivity 4600's event log:
ISAKMP [13] No proposal chosen in message from X.X.X.X
Which condition will generate this message?
A. A remote branch office gateway rejected your gateway's attempt to authenticate.
B. The encryption types proposed by the remote branch office do not match the encryption types configured locally.
C. One side of the connection is configured to support dynamic routing while the other side is configured for static routing.
D. The proposal made by the local gateway has been rejected by a remote branch office gateway, or by an IPsec implementation from another vendor.
Answer: B

7. You are attempting to establish a VPN user tunnel to a Contivity 1700 using the Contivity VPN Client. When trying to login, a popup window appears with the following message:
“Login Failure due to: Remote host not responding”
What are two probable causes for this Login Failure? (Choose two.)
A. The user password is not correct.
B. The Contivity 1700 is not accessible.
C. User Datagram Protocol (UDP) port 500 is blocked.
D. The Group Security Authorization is mis-configured.
Answer: BC

8. Users at a remote location can not access their local mail server or print locally when they are tunneled into their corporate LAN via a gateway Contivity 1700. The elements have the following addresses:
-mail server (
-print locally (
-corporate LAN (
To allow access to the local servers and remain tunneled into the corporate LAN, which accessible address(es) should be used if split tunneling is configured?
D. and
Answer: B

9. Your customer has asked for your assistance in configuring a PPPoE interface on a Contivity 1050. You have researched PPPoE specifications and determined that PPPoE enforces an MTU size of 1492 bytes. For this reason, all PC's that connect to the Contivity also need to enforce an MTU of 1492 bytes, instead 1500 bytes. What are two ways to set the parameters on the Contivity to address this need? (Choose two.)
A. Use the “pppoe ip tcp adjust-mss enable” command in the CLI.
B. Use the adjust MTU size setting on the interface being used by PPPoE.
C. Enable the TCP MSS Option in the GUI under System > LAN > Add PPPoE Interface.
D. Enable the UDP MTU Option in the GUI under System > LAN > Add PPPoE Interface.
Answer: AC

10. For planning purposes, bandwidth often equals the expected or current use plus a growth potential of:
A. 0%
B. 50%
C. 100%
D. 10-20%
Answer: D

© 2014, All Rights Reserved