2017 Sep New 200-601 Exam Dumps with PDF and VCE Free Updated Today! Following are some new 200-601 Questions:

1.|2017 New 200-601 Exam Dumps (PDF & VCE) 88Q&As Download:

https://www.braindump2go.com/200-601.html

 

2.|2017 New 200-601 Exam Questions & Answers Download:

https://drive.google.com/drive/folders/0B75b5xYLjSSNWTIxdF9WZmZqMms?usp=sharing

 

QUESTION 51
Refer to the exhibit. You are required to implement traffic segmentation in the network. See the table for relevant device details:
 
L2SW4, L2SW5, and L2SW6 are connected to L3SW1 with 802.1Q trunks with VLAN 191 and VLAN 398 allowed on the trunk.
You have the following information from L3SW1:
L3SW1# show run interfaces
interface Vlan1
no ip address
shutdown
!
interface Vlan2
ip address 10.2.2.2 255.255.255.248
!
interface Vlan191
ip address 10.10.27.126 255.255.255.192
!
interface Vlan200
ip address 10.20.20.1 255.255.255.248
!
interface Vlan398
ip address 10.15.153.1 255.255.255.0
L3SW1# show ip route
*** Output Omitted ***
10.0.0.0/8 is variably subnetted, 5 subnets, 3 masks
C 10.2.2.1/29 is directly connected, Vlan2
C 10.10.27.64/26 is directly connected, Vlan191
C 10.15.153.0/24 is directly connected, Vlan398
C 10.20.20.0/29 is directly connected, Vlan200
S 10.200.200.0/24 [1/0] via 10.20.20.2
S* 0.0.0.0/0 [1/0] via 10.2.2.1
You are required to implement a configuration that will meet the following connectivity requirements:
– The Administrator’s Station must have full access to PanelView
– PanelView should have limited access, based on specific TCP ports, to PLC#1 and I/O#1
– The Administrator’s Station should have no access to PLC#1 and I/O#1
– PLC#1 and I/O#1 should be able to communicate with each other on any port
Which action will allow you to meet the connectivity requirements?

A.    Put interface VLAN 191 and interface VLAN 398 into different Virtual Routing and Forwarding (VRF) instances on L3SW1
B.    Deploy an inbound ACL on interface VLAN 191 to control the traffic from the Administrator’s Station and PanelView to PLC#1 and I/O#1
C.    No change is required, the traffic is already limited appropriately by the VLAN segmentation
D.    Implement an ACL on Firewall1 to control the traffic flow between VLAN 191 and VLAN

Answer: B

QUESTION 52
It is determined that an intermittent high packet loss event is occurring within a segment of the network. The assigned task is to determine the cause.
Which of these conditions should be suspected?

A.    Missing
B.    Missing
C.    Missing
D.    Missing

Answer: D

QUESTION 53
You have been tasked to design an Ethernet network capable of Motion control with cycle times not to exceed 1ms. In order to create a more deterministic network, what characteristic/s should you primarily focus on?

A.    Lattency and Jitter
B.    Redundancy and high availability
C.    Explicit and Implicit messaging
D.    This cycle time is not possible on an Ethernet network
E.    Gigabit port speed

Answer: A

QUESTION 54
ProfiNET has been disabled on a Cisco Industrial Ethernet switch. Which CLI command will correctly enable ProfiNET on the switch?

A.    switch(config)#profinet
B.    switch(config-if)#switchport profinet vlan 10
C.    switch(config)#vlan 10 profinet
D.    switch#enable profinet

Answer: A

QUESTION 55
Which describes a best practice rule for controlling traffic between the corporate network and the controls network?

A.    Outbound traffic from the control network to the corporate network and outbound traffic from the corporate network to the control network can be restricted based on source and destination address only.
B.    Outbound traffic from the corporate network to the control network should be restricted but outbound traffic from the control network to the corporate network should not be restricted.
C.    Outbound traffic from the control network to the corporate network should be restricted based on source and destination address and service only.
D.    Outbound traffic from the control network to the corporate network should be restricted based on source and destination address, service, and port.

Answer: D

QUESTION 56
Which statement is true regarding ProfiSAFE?

A.    ProfiSAFE traffic must be carried on a network that is physically separated from automation traffic
B.    ProfiSAFE relies on the error detection mechanisms of Ethernet and TCP/IP to determine if there are network errors
C.    ProfiSAFE can be used in safety applications up to Safety Integrity Level 3 (SIL3)
D.    ProfiSAFE is only used by ProfiBUS PA and ProfiBUS DA devices

Answer: C

QUESTION 57
Refer to the exhibit. L3SW1 has a spanning-tree priority of 8192 set on VLANs 1, 300, and 301, and these VLANs are configured on and trunked between all switches.
 
Executing the command show spanning-tree blockedports on L2SW5 results in:
L2SW5# show spanning-tree blockedports
Name Blocked Interfaces List
——————– ————————————
VLAN0001 Gi1/1
VLAN0300 Gi1/1
VLAN0301 Gi1/1
An additional VLAN, VLAN302, is defined on all switches and trunked between them. VLAN302 access ports are set up on each of the switches and PLC#1, I/O#1, and the PanelView are attached. You expect the new VLAN to be listed as blocked on interface GigabitEthernet1/1 of L2SW5 but it is not. The three new devices are able to communicate with each other.
After executing the same command on all switches you see this output on L2SW4:
L2SW4# show spanning-tree blockedports
Name Blocked Interfaces List
——————– ————————————
VLAN0001 Gi1/2
VLAN0300 Gi1/2
VLAN0301 Gi1/2
Why is VLAN302 forwarding on L2SW5 interface GigabitEthernet 1/1 and L2SW4 interface GigabitEthernet 1/1 and 1/2?

A.    VLAN302 is not configured in the VLAN database on L2SW5
B.    VLAN302 is not in the allowed list on the L2SW5 interface GigabitEthernet1/1 trunk
C.    L2SW4 is the spanning tree root for VLAN 302
D.    The FO3 fiber-optic cable between L2SW4 and L2SW5 is damaged

Answer: C

QUESTION 58
Which two are possible solutions to control which devices can communicate between industrial zones? (Choose two)

A.    Use per zone private IP addressing and deploy NAT to control traffic between zones
B.    Put access control lists on switches connecting industrial zones to control traffic
C.    Attach each zone to a firewall to control intra-zone traffic
D.    Deploy QoS traffic shaping to limit the volume of traffic between industrial zones
E.    Deploy an IDS system between the zones to control intra-zone traffic

Answer: BC

QUESTION 59
Refer to the exhibit. Which three options are needed to configure NAT on router GW so PC1 and PC2 will be able to ping 203.0.113.1? (Choose three)
 

A.    interface Ethernet0
ip nat inside
interface Ethernet1
ip nat outside
B.    ip access-list standard ACL_NAT
permit 10.1.1.0 0.0.0.255
C.    ip nat inside source static tcp 10.1.1.0 80 interface Ethernet1 80
D.    interface Ethernet0
ip nat outside
interface Ethernet1
ip nat inside
E.    ip nat inside source list ACL_NAT interface Ethernet1 overload
F.    ip access-list extended ACL_NAT
permit tcp 10.1.1.0 0.0.0.255 any eq 80

Answer: ABE

QUESTION 60
Which selection is a reason why IGMP snooping should be configured on a switched network?

A.    IGMP snooping populates the snooping table with the results of DHCP requests and can be used by Dynamic ARP Inspection to block IP spoofing attacks at Layer-2.
B.    IGMP snooping verifies the source IP address of every IPv4 packet to ensure that it hasn’t been originated from a port different than its return path.
C.    IGMP snooping is used to filter ping requests and results to avoid overflowing the MAC address table of the switch.
D.    IGMP snooping allows a Layer-2 switch to limit the transmission of multicast frames to only the ports that have members of the relevant IGMP group.

Answer: D


!!!RECOMMEND!!!

 

1.|2017 New 200-601 Exam Dumps (PDF & VCE) 88Q&As Download:

https://www.braindump2go.com/200-601.html

 

2.|2017 New 200-601 Study Guide Video:

https://youtu.be/Qccgh1NYzVg