• Home
  • Articles
  • [Q10-Q32] Full JN0-664 Practice Test and 67 Unique Questions, Get it Now!

[Q10-Q32] Full JN0-664 Practice Test and 67 Unique Questions, Get it Now!

Share

Full JN0-664 Practice Test and 67 Unique Questions, Get it Now!

The Best JN0-664 Exam Study Material Premium Files  and Preparation Tool

NEW QUESTION # 10
Exhibit

A network designer would like to create a summary route as shown in the exhibit, but the configuration is not working.
Which three configuration changes will create a summary route? (Choose three.)

  • A. set policy-options policy-statement leak-v6 term DC-routes from route-filter 2001:db9:a:faOO::/61 exact
  • B. set protocols isis import summary-v6
  • C. delete protocols isis export summary-v6
  • D. delete policy-options policy-statement leak-v6 term DC-routes from route-filter 2001: db9 :a: fa00 : :/6l longer
  • E. set policy-options policy-statement leak-v6 term DC-routes then reject

Answer: A,C,D

Explanation:
Explanation
To create a summary route for IS-IS, you need to configure a policy statement that matches the prefixes to be summarized and sets the next-hop to discard. You also need to configure a summary-address statement under the IS-IS protocol hierarchy that references the policy statement. In this case, the policy statement leak-v6 is trying to match the prefix 2001:db9:a:fa00::/61 exactly, but this prefix is not advertised by any router in the network. Therefore, no summary route is created. To fix this, you need to delete the longer keyword from the route-filter term and change the prefix length to /61 exact. This will match any prefix that falls within the /61 range. You also need to delete the export statement under protocols isis, because this will export all routes that match the policy statement to other IS-IS routers, which is not desired for a summary route.


NEW QUESTION # 11
Exhibit

You are attempting to summarize routes from the 203.0.113.128/25 IP block on R8 to AS 64500. You implement the export policy shown in the exhibit and all routes from the routing table stop being advertised.
In this scenario, which two steps would you take to summarize the route in BGP? (Choose two.)

  • A. Add the set routing-options static route 203.0.113.123/25 discard command.
  • B. Replace exact in the export policy with orlonger.
  • C. Add the set protocols bgp family inet unicast add-path command to allow additional routes to the RIB tables. -
  • D. Remove the from protocol bgp command from the export policy.

Answer: A,B

Explanation:
Explanation
To summarize routes from the 203.0.113.128/25 IP block on R8 to AS 64500, you need to do the following:
* Add the set routing-options static route 203.0.113.128/25 discard command. This creates a static route for the summary prefix and discards any traffic destined to it. This is necessary because BGP can only advertise routes that are present in the routing table.
* Replace exact in the export policy with orlonger. This allows R8 to match and advertise any route that is equal or more specific than the summary prefix. The exact term only matches routes that are exactly equal to the summary prefix, which is not present in the routing table.


NEW QUESTION # 12
An interface is configured with a behavior aggregate classifier and a multifield classifier How will the packet be processed when received on this interface?

  • A. The packet will be discarded.
  • B. The packet will be processed by the MF classifier first, then the BA classifier.
  • C. The packet will be forwarded with no classification changes.
  • D. The packet will be processed by the BA classifier first, then the MF classifier.

Answer: C

Explanation:
Explanation
behavior aggregate (BA) classifiers and multifield (MF) classifiers are two types of classifiers that are used to assign packets to a forwarding class and a loss priority based on different criteria. The forwarding class determines the output queue for a packet. The loss priority is used by a scheduler to control packet discard during periods of congestion.
A BA classifier maps packets to a forwarding class and a loss priority based on a fixed-length field in the packet header, such as DSCP, IP precedence, MPLS EXP, or IEEE 802.1p CoS bits. A BA classifier is computationally efficient and suitable for core devices that handle high traffic volumes. A BA classifier is useful if the traffic comes from a trusted source and the CoS value in the packet header is trusted.
An MF classifier maps packets to a forwarding class and a loss priority based on multiple fields in the packet header, such as source address, destination address, protocol type, port number, or VLAN ID. An MF classifier is more flexible and granular than a BA classifier and can match packets based on complex filter rules. An MF classifier is suitable for edge devices that need to classify traffic from untrusted sources or rewrite packet headers.
You can configure both a BA classifier and an MF classifier on an interface. If you do this, the BA classification is performed first and then the MF classification. If the two classification results conflict, the MF classification result overrides the BA classification result.
Based on this information, we can infer the following statements:
* The packet will be discarded. This is not correct because the packet will not be discarded by the classifiers unless it matches a filter rule that specifies discard as an action. The classifiers only assign packets to a forwarding class and a loss priority based on their match criteria.
* The packet will be processed by the BA classifier first, then the MF classifier. This is correct because if both a BA classifier and an MF classifier are configured on an interface, the BA classification is performed first and then the MF classification. If they conflict, the MF classification result overrides the BA classification result.
* The packet will be forwarded with no classification changes. This is not correct because the packet will be classified by both the BA classifier and the MF classifier if they are configured on an interface. The final classification result will determine which output queue and which discard policy will be applied to the packet.
* The packet will be processed by the MF classifier first, then the BA classifier. This is not correct because if both a BA classifier and an MF classifier are configured on an interface, the BA classification is performed first and then the MF classification. If they conflict, the MF classification result overrides the BA classification result.


NEW QUESTION # 13
When building an interprovider VPN, you notice on the PE router that you have hidden routes which are received from your BGP peer with family inet labeled-unica3t configured.
Which parameter must you configure to solve this problem?

  • A. Under the protocols mpls hierarchy, add the traffic-engineering parameter
  • B. Under the family inet labeled-unicast hierarchy, add the explicit null parameter.
  • C. Under the protocols ospf hierarchy, add the traffic-engineering parameter.
  • D. Under the family inet labeled-unicast hierarchy, add the resolve-vpn parameter.

Answer: D

Explanation:
Explanation
The resolve-vpn parameter is a BGP option that allows a router to resolve labeled VPN-IPv4 routes using unlabeled IPv4 routes received from another BGP peer with family inet labeled-unicast configured. This option enables interprovider VPNs without requiring MPLS labels between ASBRs or using VRF tables on ASBRs. In this scenario, you need to configure the resolve-vpn parameter under [edit protocols bgp group external family inet labeled-unicast] hierarchy level on both ASBRs.


NEW QUESTION # 14
Exhibit

Which two statements about the configuration shown in the exhibit are correct? (Choose two.)

  • A. This VPN connects customer sites that use different AS numbers.
  • B. This VPN connects customer sites that use the same AS number
  • C. A Layer 3 VPN is configured.
  • D. A Layer 2 VPN is configured.

Answer: A,C

Explanation:
Explanation
The configuration shown in the exhibit is for a Layer 3 VPN that connects customer sites that use different AS numbers. A Layer 3 VPN is a type of VPN that uses MPLS labels to forward packets across a provider network and BGP to exchange routing information between PE routers and CE routers. A Layer 3 VPN allows customers to use different routing protocols and AS numbers at their sites, as long as they can peer with BGP at the PE-CE interface. In this example, CE-1 is using AS 65530 and CE-2 is using AS 65531, but they can still communicate through the VPN because they have BGP sessions with PE-1 and PE-2, respectively.


NEW QUESTION # 15
Exhibit

Referring to the exhibit, a working L3VPN exists that connects VPN-A sites CoS is configured correctly to match on the MPLS EXP bits of the LSP, but when traffic is sent from Site-1 to Site-2, PE-2 is not classifying the traffic correctly What should you do to solve the problem?

  • A. Configure the explicit-null statement on PE-1.
  • B. Configure the explicit-null statement on PE-2
  • C. Set a static CoS value for the PE-1_to_PE-2 LSP
  • D. Configure VPN prefix mapping for the PE-1_to_PE-2 LSP

Answer: A

Explanation:
Explanation
The explicit-null statement enables the PE router to send an MPLS label with a value of 0 (explicit null) instead of an IP header for packets destined to the VPN customer sites. This allows the penultimate hop router (the router before the egress PE router) to preserve the EXP bits of the MPLS label and pass them to the egress PE router. The egress PE router can then use these EXP bits to classify the traffic according to the CoS policy2
. In this example, PE-1 should configure the explicit-null statement under [edit protocols mpls label-switched-path PE-1_to_PE-2] hierarchy level.


NEW QUESTION # 16
Which two statements are correct about a sham link? (Choose two.)

  • A. The PEs exchange Type 1 OSPF LSAs instead of Type 3 OSPF LSAs for the L3VPN routes
  • B. It creates an OSPF multihop neighborship between two PE routers.
  • C. It creates a BGP multihop neighborship between two PE routers.
  • D. The PEs exchange Type 3 OSPF LSAs instead of Type 1 OSPF LSAs for the L3VPN routes.

Answer: A,B

Explanation:
Explanation
A sham link is a logical link between two PE routers that belong to the same OSPF area but are connected through an L3VPN. A sham link makes the PE routers appear as if they are directly connected, and prevents OSPF from preferring an intra-area back door link over the VPN backbone. A sham link creates an OSPF multihop neighborship between the PE routers using TCP port 646. The PEs exchange Type 1 OSPF LSAs instead of Type 3 OSPF LSAs for the L3VPN routes, which allows OSPF to use the correct metric for route selection1.


NEW QUESTION # 17
When using OSPFv3 for an IPv4 environment, which statement is correct?

  • A. OSPFv3 supports both IPv6 and IPv4, but not in the same routing instance.
  • B. OSPFv3 only supports IPv4.
  • C. OSPFv3 supports IPv4 only on interfaces with family inet6 defined
  • D. OSPFv3 is not backward compatible with IPv4

Answer: D

Explanation:
Explanation
OSPFv3 is an extension of OSPFv2 that supports IPv6 routing and addressing. OSPFv3 is not backward compatible with IPv4 because it uses a different packet format and a different link-state advertisement (LSA) structure than OSPFv2. OSPFv3 also uses IPv6 link-local addresses as router IDs and neighbor addresses, instead of IPv4 addresses. To use OSPFv3 for an IPv4 environment, you need to enable the IPv4 unicast address family under [edit protocols ospf3] hierarchy level and configure IPv4 addresses on the interfaces.


NEW QUESTION # 18
Exhibit

Referring to the exhibit, which three statements are correct about route 10 0 0.0/16 when using the default BGP advertisement rules'? (Choose three.)

  • A. R4 will advertise 10 0.0 0/16 to R6 with 172.16 1 1 as the next hop
  • B. R1 will advertise 10.0.0.0/16 to R2 with 192 168 1 1 as the next hop.
  • C. R1 will prepend AS 65531 when advertising 10 0.0 0/16 to R2.
  • D. R2 will advertise 10.0.0.0/16 to R4 with 172.16.1.1 as the next hop
  • E. R2 will advertise 10.0.0.0/16 to R3 with 192.168.1 1 as the next hop

Answer: A,B,D

Explanation:
Explanation
The problem in this scenario is that R1 and R8 are not receiving each other's routes because of private AS numbers in the AS path. Private AS numbers are not globally unique and are not advertised to external BGP peers. To solve this problem, you need to do the following:
* Configure loops on routers in AS 65412 and advertise-peer-as on routers in AS 64498. This allows R5 and R6 to advertise their own AS number (65412) instead of their peer's AS number (64498) when sending updates to R7 and R8. This prevents a loop detection issue that would cause R7 and R8 to reject the routes from R5 and R62
* Configure remove-private on advertisements from AS 64497 toward AS 64498 and from AS 64500 toward AS 64499. This removes any private AS numbers from the AS path before sending updates to external BGP peers. This allows R2 and R3 to receive the routes from R1 and R4, respectively3.


NEW QUESTION # 19
Exhibit

You want to use both links between R1 and R2 Because of the bandwidth difference between the two links, you must ensure that the links are used as much as possible.
Which action will accomplish this goal?

  • A. Disable multipath.
  • B. Enable per-prefix load balancing.
  • C. Ensure that the metric-out parameter on the Gigabit Ethernet interface is higher than the 10 Gigibit Ethernet interface.
  • D. Define a policy to tag routes with the appropriate bandwidth community.

Answer: B

Explanation:
Explanation
VPLS is a Layer 2 VPN technology that allows multiple sites to connect over a shared IP/MPLS network as if they were on the same LAN. VPLS tunnels can be signaled using either Label Distribution Protocol (LDP) or Border Gateway Protocol (BGP). In this question, we have two links between R1 and R2 with different bandwidths (10 Gbps and 1 Gbps). We want to use both links as much as possible for VPLS traffic. To achieve this, we need to enable per-prefix load balancing on both routers. Per-prefix load balancing is a feature that allows a router to distribute traffic across multiple equal-cost or unequal-cost paths based on the destination prefix of each packet. This improves the utilization of multiple links and provides better load sharing than per-flow load balancing, which distributes traffic based on a hash of source and destination addresses4. Per-prefix load balancing can be enabled globally or per interface using the load-balance per-packet command.


NEW QUESTION # 20
Exhibit

You have MAC addresses moving in your EVPN environment
Referring to the exhibit, which two statements are correct about the sequence number? (Choose two)

  • A. It identifies MAC addresses that should be discarded.
  • B. It resolves conflicting MAC address ownership claims.
  • C. It is advertised using a Type 2 message
  • D. It helps the local PE to identify the latest advertisement.

Answer: B,D

Explanation:
Explanation
The sequence number is a field in the MAC mobility extended community that is used to resolve conflicting MAC address ownership claims and to help the local PE to identify the latest advertisement. The sequence number is incremented by one for every MAC address mobility event, such as when a host moves from one Ethernet segment to another segment in the EVPN network. The PE device that receives multiple MAC advertisements for the same MAC address chooses the one with the highest sequence number as the most recent and valid advertisement.


NEW QUESTION # 21
Exhibit

Referring to the exhibit, what do the brackets [ ] in the AS path identify?

  • A. They identify the local AS number associated with the AS path if configured on the router, or if AS path prepending is configured
  • B. They identify that a BGP confederation is being used to ensure that there are no routing loops.
  • C. They identify that the autonomous system number is incomplete and awaiting more information from the BGP protocol.
  • D. They identify an AS set, which are groups of AS numbers in which the order does not matter

Answer: D

Explanation:
Explanation
The brackets [ ] in the AS path identify an AS set, which are groups of AS numbers in which the order does not matter. An AS set is used when BGP aggregates routes from different ASs into a single prefix. For example, if BGP aggregates routes 10.0.0.0/16 and 10.1.0.0/16 from AS 100 and AS 200, respectively, into a single prefix 10.0.0.0/15, then the AS path for this prefix will be [100 200]. An AS set reduces the length of the AS path and prevents routing loops.


NEW QUESTION # 22
After a recent power outage, your manager asks you to investigate ways to automatically reduce the impact caused by suboptimal routing in your OSPF and OSPFv3 network after devices reboot.
Which three configuration statements accomplish this task? (Choose three.)

  • A. set protocols ospf overload
  • B. set protocols ospf3 overload
  • C. set protocols ospf3 realm ipv4-unicast overload timeout 900
  • D. set protocols ospf overload timeout 900
  • E. set protocols oapf3 overload timeout 900

Answer: B,D

Explanation:
Explanation
To reduce the impact of suboptimal routing in OSPF and OSPFv3 after devices reboot, you can use the overload feature to prevent a router from being used as a transit router for a specified period of time. This allows the router to stabilize its routing table before forwarding traffic for other routers. To enable the overload feature, you need to do the following:
* For OSPF, configure the overload statement under [edit protocols ospf] hierarchy level. You can also specify a timeout value in seconds to indicate how long the router should remain in overload state after it boots up. For example, set protocols ospf overload timeout 900 means that the router will be in overload state for 15 minutes after it boots up.
* For OSPFv3, configure the overload statement under [edit protocols ospf3] hierarchy level. You can also specify a realm (ipv4-unicast or ipv6-unicast) and a timeout value in seconds to indicate how long the router should remain in overload state after it boots up for each realm. For example, set protocols ospf3 realm ipv4-unicast overload timeout 900 means that the router will be in overload state for 15 minutes after it boots up for IPv4 unicast routing.


NEW QUESTION # 23
Which two statements are correct regarding bootstrap messages that are forwarded within a PIM sparse mode domain? (Choose two.)

  • A. Bootstrap messages are forwarded only to routers that explicitly requested the messages within the PIM sparse-mode domain
  • B. Bootstrap messages are used to notify which router is the PIM RP
  • C. Bootstrap messages distribute RP information dynamically during an RP election.
  • D. Bootstrap messages are forwarded to all routers within a PIM sparse-mode domain.

Answer: C,D

Explanation:
Explanation
Bootstrap messages are PIM messages that are used to distribute rendezvous point (RP) information dynamically during an RP election. Bootstrap messages are sent by bootstrap routers (BSRs), which are routers that are elected to perform the RP discovery function for a PIM sparse-mode domain. Bootstrap messages contain information about candidate RPs and their multicast groups, as well as BSR priority and hash mask length. Bootstrap messages are forwarded to all routers within a PIM sparse-mode domain using hop-by-hop flooding.


NEW QUESTION # 24
Exhibit

Based on the configuration contents shown in the exhibit, which statement is true?

  • A. Joins for group 224.7.7.7 are accepted if the group count is less than 25
  • B. Joins for group 224.7.7.7 are always rejected, regardless of the group count.
  • C. Joins for any group are accepted if the group count value is less than 25.
  • D. Joins for group 224.7.7.7 are rejected if the source address is 192.168.100.10

Answer: A

Explanation:
Explanation
BGP policy framework is a set of tools that allows you to control the flow of routing information and apply routing policies based on various criteria. BGP policy framework consists of several components, such as route maps, prefix lists, community lists, AS path lists, and route filters. Route maps are used to define routing policies by matching certain conditions and applying certain actions. Prefix lists are used to filter routes based on their prefixes. Community lists are used to filter routes based on their community attributes. AS path lists are used to filter routes based on their AS path attributes. Route filters are used to filter routes based on their prefix length or range3. In this question, we have a route map named ISP-A that has two clauses: clause 10 and clause 20. Clause 10 matches any route with a prefix length between 8 and 24 bits and sets the local preference to 200. Clause 20 matches any route with a prefix of 224.7.7.7/32 and rejects it. The route map is applied inbound on the BGP neighborship with ISP-A. Based on this configuration, the correct statement is that joins for group 224.7.7.7 are always rejected, regardless of the group count. This is because clause 20 explicitly denies any route with a prefix of 224.7.7.7/32, which corresponds to the multicast group 224.7.7.7.


NEW QUESTION # 25
You want to ensure that L1 IS-IS routers have only the most specific routes available from L2 IS-IS routers.
Which action accomplishes this task?

  • A. Configure all routers to allow wide metrics.
  • B. Configure the ignore-attached-bit parameter on all L1 routers
  • C. Configure the ignore-attached-bit parameter on all L2 routers.
  • D. Configure all routers to be L1.

Answer: B

Explanation:
Explanation
The attached bit is a flag in an IS-IS LSP that indicates whether a router is connected to another area or level (L2) of the network. By default, L2 routers set this bit when they advertise their LSPs to L1 routers, and L1 routers use this bit to select a default route to reach other areas or levels through L2 routers. However, this may result in suboptimal routing if there are multiple L2 routers with different paths to other areas or levels.
To ensure that L1 routers have only the most specific routes available from L2 routers, you can configure the ignore-attached-bit parameter on all L1 routers. This makes L1 routers ignore the attached bit and install all interarea routes learned from L2 routers in their routing tables.


NEW QUESTION # 26
Exhibit

You must ensure that the VPN backbone is preferred over the back door intra-area link as long as the VPN is available. Referring to the exhibit, which action will accomplish this task?

  • A. Enable OSPF traffic-engineering.
  • B. Create an OSPF sham link between the PE routers.
  • C. Configure an import routing policy on the CE routers that rejects OSPF routes learned on the backup intra-area link.
  • D. Configure the OSPF metric on the backup intra-area link that is higher than the L3VPN link.

Answer: B

Explanation:
Explanation
A sham link is a logical link between two PE routers that belong to the same OSPF area but are connected through an L3VPN. A sham link makes the PE routers appear as if they are directly connected, and prevents OSPF from preferring an intra-area back door link over the VPN backbone. To create a sham link, you need to configure the local and remote addresses of the PE routers under the [edit protocols ospf area area-id] hierarchy level1.


NEW QUESTION # 27
You are configuring a BGP signaled Layer 2 VPN across your MPLS enabled core network. In this scenario, which statement is correct?

  • A. This type of VPN only supports Ethernet interfaces when connecting to CE devices.
  • B. You must use the same route-distinguiaher value on both PE devices.
  • C. You must assign a unique site number to each attached site's configuration.
  • D. This type of VPN requires the support of the inet-vpn NLRI on all core BGP devices

Answer: D

Explanation:
Explanation
BGP signaled Layer 2 VPN is a type of VPN that uses BGP to distribute VPN labels and information for Layer 2 connectivity between sites over an MPLS network. BGP signaled Layer 2 VPN requires the support of the l2vpn NLRI on all core BGP devices . The l2vpn NLRI is a new address family that carries Layer 2 VPN information such as the VPN identifier, the attachment circuit identifier, and the route distinguisher. The l2vpn NLRI is used for both auto-discovery and signaling of Layer 2 VPNs . In this scenario, we are configuring a BGP signaled Layer 2 VPN across an MPLS enabled core network. Therefore, we need to ensure that all core BGP devices support the l2vpn NLRI.
References: 1:
https://www.juniper.net/documentation/us/en/software/junos/vpn-l2/topics/concept/vpn-layer-2-overview.html
2:
https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/mp_l2_vpns/configuration/xe-16/mp-l2-vpns-xe-16-book/vpl


NEW QUESTION # 28
Exhibit

Referring to the exhibit, PIM-SM is configured on all routers, and Anycast-RP with Anycast-PIM is used for the discovery mechanism on RP1 and RP2. The interface metric values are shown for the OSPF area.
In this scenario, which two statements are correct about which RP is used? (Choose two.)

  • A. Source1 will use RP1 and Receiver1 will use RP2 for group 224.1 1 1
  • B. Source2 will use RP1 and Receiver2 will use RP1 for group 224.2.2.2.
  • C. Source2 will use RP2 and Received will use RP2 for group 224.2.2.2.
  • D. Source1 will use RP1 and Receiver1 will use RP1 for group 224.1.1.1.

Answer: C,D

Explanation:
Explanation
A sham link is a logical link between two PE routers that belong to the same OSPF area but are connected through an L3VPN. A sham link makes the PE routers appear as if they are directly connected, and prevents OSPF from preferring an intra-area back door link over the VPN backbone. A sham link creates an OSPF multihop neighborship between the PE routers using TCP port 646. The PEs exchange Type 1 OSPF LSAs instead of Type 3 OSPF LSAs for the L3VPN routes, which allows OSPF to use the correct metric for route selection1.


NEW QUESTION # 29
Exhibit

The network shown in the exhibit is based on IS-IS
Which statement is correct in this scenario?

  • A. The NSEL byte for Area 0001 is 00.
  • B. The routers are using unnumbered interfaces
  • C. The area address is two bytes.
  • D. The system IDofR1_2 is 192.168.16.1

Answer: A

Explanation:
Explanation
IS-IS is an interior gateway protocol that uses link-state routing to exchange routing information among routers within a single autonomous system. IS-IS uses two types of addresses to identify routers and areas:
system ID and area address. The system ID is a unique identifier for each router in an IS-IS domain. The system ID is 6 octets long and can be derived from the MAC address or manually configured. The area address is a variable-length identifier for each area in an IS-IS domain. The area address can be 1 to 13 octets long and is composed of high-order octets of the address. An IS-IS instance may be assigned multiple area addresses, which are considered synonymous. Multiple synonymous area addresses are useful when merging or splitting areas in the domain1. In this question, we have a network based on IS-IS with four routers (R1_1, R1_2, R2_1, and R2_2) belonging to area 0001. The area address for area 0001 is 49.0001. The NSEL byte for area 0001 is the last octet of the address, which is 01. The NSEL byte stands for Network Service Access Point Selector (NSAP Selector) and indicates the type of service requested from the network layer2. Therefore, the correct statement in this scenario is that the NSEL byte for area 0001 is 01.
References: 1:
https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/iproute_isis/configuration/xe-16/irs-xe-16-book/irs-ovrvw-cf.
2:
https://www.juniper.net/documentation/us/en/software/junos/is-is/topics/concept/is-is-routing-overview.html


NEW QUESTION # 30
Which statement is true regarding BGP FlowSpec?

  • A. It uses dynamically created routing policies to protect a network from denial-of-service attacks
  • B. It uses a remote triggered black hole to protect a network from a denial-of-service attack.
  • C. It verifies that the source IP of the incoming packet has a resolvable route in the routing table
  • D. It is used to protect a network from denial-of-service attacks dynamically

Answer: A

Explanation:
Explanation
BGP FlowSpec is a feature that extends the Border Gateway Protocol (BGP) to enable routers to exchange traffic flow specifications, allowing for more precise control of network traffic. The BGP FlowSpec feature enables routers to advertise and receive information about specific flows in the network, such as those originating from a particular source or destined for a particular destination. Routers can then use this information to construct traffic filters that allow or deny packets of a certain type, rate limit flows, or perform other actions1. BGP FlowSpec can also help in filtering traffic and taking action against distributed denial of service (DDoS) attacks by dropping the DDoS traffic or diverting it to an analyzer2. BGP FlowSpec rules are internally converted to equivalent Cisco Common Classification Policy Language (C3PL) representing corresponding match and action parameters2. Therefore, BGP FlowSpec uses dynamically created routing policies to protect a network from denial-of-service attacks.
References: 1: https://www.networkingsignal.com/what-is-bgp-flowspec/ 2:
https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/iproute_bgp/configuration/xe-16/irg-xe-16-book/bgp-flowspe


NEW QUESTION # 31
By default, which statement is correct about OSPF summary LSAs?

  • A. The area-range command must be installed on all routers.
  • B. All Type 2 and Type 7 LSAs will be summanzed into a single Type 5 LSA
  • C. The metric associated with a summary route will be equal to the lowest metric associated with an individual contributing route
  • D. Type 3 LSAs are advertised for routes in Type 1 LSAs.

Answer: D

Explanation:
Explanation
OSPF uses different types of LSAs to describe different aspects of the network topology. Type 1 LSAs are also known as router LSAs, and they describe the links and interfaces of a router within an area. Type 3 LSAs are also known as summary LSAs, and they describe routes to networks outside an area but within the same autonomous system (AS). By default, OSPF will summarize routes from Type 1 LSAs into Type 3 LSAs when advertising them across area boundaries .


NEW QUESTION # 32
......

Get Instant Access to JN0-664 Practice Exam Questions: https://www.prep4sureguide.com/JN0-664-prep4sure-exam-guide.html

Reliable Study Materials & Testing Engine for JN0-664 Exam Success!: https://drive.google.com/open?id=1ef6EwShaX_VA3YNoF8KvmsBstVFI3s-I

Related Articles

more
Juniper JN0-664 Certification Practice Exam

Our sure prep material equipped with the highest experts team and the most authoritative exam items plus the best service, which can ensure you 100% pass. Besides, our exam training guide can support both the fastest delivery speed and the shortest time to get all knowledge.

Contact Us

Our Working Time: ( GMT 0:00-15:00 )   From Monday to Saturday

Contact now

Copyright © 2026 Prep4sureGuide NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy