A. allows APs to detect rogues
B. allows the Cisco MSE or location appliance to calculate the location of rogues C. allows APs to determine whether undetected rogue APs or clients are in the area
D. makes APs stop servicing clients and tries to associate to the unsecured AP, to send special UDP packet to the Cisco WLC E. makes APs try to break the security of rogue APs, to allow better containment
Correct Answer: D Section: (none) Explanation
Explanation/Reference:
QUESTION 239
You are designing a wireless guest anchoring solution for a large company. Forty-five Cisco WLCs running 7.0.116.0 code are deployed in the corporate network. You expect about 3000 devices to use the guest network at any one time. A junior wireless administrator has suggested using a single 4402-12 WLC running 7.0.116.0 as the anchor controller. What is your response?
A. Using a 4402-12 WLC is the best option, based on the design requirements, because it is currently the least expensive WLC that supports auto-anchoring. B. Using a 4402 WLC is not feasible because 4402 WLCs do not support the 7.0 release of code.
C. A single 4402 WLC supports only 2500 client database entries and therefore does not meet the design requirements.
D. A single 4402-12 WLC, regardless of code. supports only 40 simultaneous EoIP tunnels and therefore does not meet the design requirements. Correct Answer: C
Section: (none) Explanation
Explanation/Reference:
QUESTION 240
You are going to create a new WLAN on your production 5508 WLC running 7.0.116.0 code. You do not want this WLAN to be in the default AP group on the Cisco WLC until you have thoroughly tested it. How can you achieve this goal when creating the WLAN on the production controller?
A. Create the new WLAN on the Cisco WLC by using WLAN ID 13.
B. A new WLAN will always be in the default AP group until you move the WLAN to a different AP group on the Cisco WLC. C. Use a Cisco WCS to create the WLAN by using WLAN ID 17.
D. Create the new WLAN on the Cisco WLC using WLAN ID 20. Correct Answer: D
Section: (none) Explanation
Explanation/Reference: well exhibited answer. QUESTION 241 Refer to the exhibit.
Two Cisco WLCs on a Cisco WiSM and in the same mobility group are both running 4.2.209.0 code. All the WLANs on both Cisco WLCs are configured for H- REAP local switching. Based on the configurations that are shown, which WLAN or WLANs will still be correctly mapped to a local VLAN if an H-REAP mode AP moves between the two controllers?
A. WLANs 2, 3, 4, and 5 B. All the WLANs C. WLAN 1
D. WLANs 2 and 5 E. WLANs 1, 2, 4, and 5 F. WLAN 5 Correct Answer: D Section: (none) Explanation Explanation/Reference: good answer. QUESTION 242 Refer to the exhibit.
You have just configured multicast on the wired network and the controller. You configured the multicast address on the Cisco WLC to be 239.0.1.25, with IGMP snooping disabled. Clients 1 and 3 are associated to AP1, and Client 2 is associated to AP2. All three clients are associated and authenticated to WLAN 1. Using Client 1, you send an IGMP join request to test the multicast application on the wireless network.
Which client or clients will need to process the multicast traffic? A. none of the clients
B. Client 1 C. Clients 1 and 2 D. Clients 1, 2, and 3 E. Clients 1 and 3 Correct Answer: D Section: (none) Explanation Explanation/Reference: QUESTION 243
_________ is classified as an 802.11i RSN with _________ as the mandatory encryption protocol. A. WEP, TKIP B. WPA2,TKIP C. WPA, AES D. WPA2, AES Correct Answer: D Section: (none) Explanation Explanation/Reference: fine answer. QUESTION 244
You are designing an autonomous wireless network for an office building that is located near a local airport. The customer requires the use of 802.11a/n clients only, and the APs must never change their channel after they are configured. Which two UNII bands and channels should you restrict the APs to use on the 5 GHz radios? (Choose two.)
A. UNII-1 and UNII-3
B. UNII-1 and UNII-2 extended C. 36-52 and 149-161 D. 36-48 and 100-140 E. 52-64 and 149-161 F. 36-48 and 149-161 Correct Answer: AF Section: (none) Explanation Explanation/Reference: well answered. QUESTION 245
Which three security threats require the Cisco Adaptive wIPS service for mitigation? (Choose three.) A. on/off-channel rogue
B. spectrum intelligence C. man-in-the-middle attack D. rogue switch-port tracing E. zero-day attack
F. network reconnaissance Correct Answer: CEF Section: (none) Explanation
Explanation/Reference:
QUESTION 246
Which of the following statements are true regarding RLDP? (Choose two) A. RLDP works only on APs configured in Open Authentication mode. B. RLDP only works if the AP is in Monitor Mode.
E. RLDP only works if the AP is in Local Mode. Correct Answer: AD Section: (none) Explanation Explanation/Reference: QUESTION 247
Which of the below parameters are used in calculating the range - maximum distance - of an outdoor link between two bridges? Choose two. A. The cable length between bridge and the connecting switch.
B. The bridge transmission power. C. The outside temperature. D. The modulation type. E. The length of the antenna. Correct Answer: BD Section: (none) Explanation Explanation/Reference: reliable answer. QUESTION 248
When viewed from the side (in the H-plane), which two of the below statements describe the radiation pattern of a patch and a Yagi antenna? (Choose two.) A. the patch patterns are egg-shaped.
B. the patch patterns are conical.
C. the patch patterns are doughnut-shaped. D. the Yagi patterns are conical.
E. the Yagi patterns are egg-shaped. F. the Yagi patterns are doughnut-shaped. Correct Answer: AD
Section: (none) Explanation
Explanation/Reference:
QUESTION 249
The transmit power level on an 802.11a radio is configured for 25 mW. What is the corresponding value in decibels? A. 2.5 dBm
B. 3 dBm C. 14 dBm D. 18 dBm
E. none of the above Correct Answer: C Section: (none) Explanation
Explanation/Reference:
QUESTION 250
Users complain about intermittent wireless connectivity issues. You see the following message on your Cisco WCS, corresponding the time the connectivity issues occurred.
AP 'building-1-entrance', interface '802.11b/g' on Controller '10.1.1.2'. Noise threshold violated. What do you do?
A. Increase the interference threshold from the default 10%. B. Use a spectrum analyzer to discover the noise source.
C. Check the logs for rogues in the area, and turn on rogue mitigation. D. Increase the power of the APs in the entrance hall.
Correct Answer: B Section: (none) Explanation
Explanation/Reference: actual answer.
QUESTION 251
You were hired as a wireless consultant to plan and design a secure WLAN on a Cisco Unified Wireless Network, allowing access only by the employees of the company. The requirements are as follows:
Authenticate employees based on their existing Active Directory user domain credentials.
The username/password credentials need to be protected during the authentication handshake by using a PKI. Encrypt data traffic using the strongest encryption method defined by the 802.11i standard.
Implement a standard authentication method that is supported by most wireless clients and RADIUS servers What option meets these requirements?
A. EAP-TLS with WPA2-AES
B. PEAPv0/EAP-MS-CHAPv2 with WPA2-AES
C. EAP-FAST/EAP-MS-CHAPv2 (anonymous PAC provisioning) with WPA2-TKIP D. EAP-FAST/EAP-MS-CHAPv2 (anonymous PAC provisioning) with WPA2-AES Correct Answer: B
Section: (none) Explanation
Explanation/Reference:
QUESTION 252
Which association certifies product interoperability between different vendors so that users are not locked into a single brand of Wi-Fi products? A. IEEE
B. IETF
C. Wi-Fi Alliance D. FCC
E. Wireless Networking Alliance F. Cisco Compatible Extensions Correct Answer: C
Section: (none) Explanation
Explanation/Reference:
QUESTION 253
What is the role of the IEEE regarding WLANs?
A. IEEE conducts certification testing to ensure that products from different vendors can interoperate.
B. IEEE provides guidance and creates regulations for each regulatory authority concerning spectrum usage, including frequency and power settings. C. IEEE maintains and creates technical standards and protocols used by wireless LAN devices.
D. IEEE enforces standards and regulations within each regulatory domain and reports violations to appropriate authorities. Correct Answer: C
Section: (none) Explanation
Explanation/Reference:
QUESTION 254
Which RRM feature increases the AP radio Tx power when the client SNR levels pass below a given threshold? A. Dynamic Channel Assignment
B. Transmit Power Control
C. Dynamic Transmit Power Control D. Coverage Hole Detection
Correct Answer: D Section: (none) Explanation
Explanation/Reference:
QUESTION 255
It is recommended that you use channels 1-6-11 on a 2.4-GHz WLAN deployment with three or more APs, because only channels 1 to 11 are available on the 2.4- GHz Cisco ISM band due to the regulatory domain. Which one of these statements explains why this channel usage is recommended?
B. They are the only non-overlapping channels available on the 2.4-GHz ISM band. Channels other than 1-6-11 overlap each other.
C. This is the highest channel usage combination available (allowing three different channels to be used), combining channels that are separated enough on the 2.4-GHz ISM band to avoid co- channel interference.
D. The channels are separated 30-MHz away, and the energy radiated by an 802.11b/g device can only extend up to 25-MHz within the bandwidth of the channels due to regulations. Correct Answer: C Section: (none) Explanation Explanation/Reference: QUESTION 256
Which two of the below protocols must a client support in order to use client MFP? (Choose two.) A. 802.1x
B. CCXv4 C. CCXv5 D. WEP
E. WPA1 with TKIP or AES-CCMP F. WPA2 with TKIP or AES-CCMP Correct Answer: CF
Section: (none) Explanation
Explanation/Reference:
QUESTION 257
Which three of the below values does a wireless client use, when operating in DCF mode, to calculate the duration field in the 802.11 MAC header for transmitting a non-fragmented unicast data packet? (Choose three.)
A. MPDU length B. SIFS interval C. DIFS interval D. PIFS interval
E. transmit rate F. ACK length Correct Answer: BEF Section: (none) Explanation
Explanation/Reference:
QUESTION 258
The 802.11e standard defines mechanisms for providing QoS treatment to wireless frames. Which three of these mechanisms enable the 802.11e EDCA standard to achieve differentiated treatment for wireless frames? (Choose three.)
A. priority queuing B. 802.3af tag mapping C. four access categories D. AP controlled access phase E. differentiated back-off timers Correct Answer: ACE
Section: (none) Explanation
Explanation/Reference:
QUESTION 259
The IEEE 802.11i standard defines mechanisms for wireless client authentication and data encryption. During 802.1X EAP authentication, a number of keys are used in order to establish a secure encrypted link between the access point and the client. Which two of these keys are derived via the WPA four-way handshake? (Choose two.) A. PMK B. PTK C. MSK D. GMK E. GTK
Section: (none) Explanation
Explanation/Reference: nice answer.