Exam 350-401 topic 1 question 853 discussion

A and B cannot be correct because the python code is not using the print function/ display information. based on the code, I believe the answer is C because the last line is reference Sequence numbers ["access-list-seq-rule"]

The output would look something like this. { '10': { 'sequence': '10', 'action': 'permit', 'source': '192.168.1.0 0.0.0.255', 'destination': 'any', 'protocol': 'ip', 'description': 'Allow traffic from 192.168.1.0/24 to any' }, '20': { 'sequence': '20', 'action': 'deny', 'source': 'any', 'destination': 'any', 'protocol': 'icmp', 'description': 'Deny all ICMP traffic' }, ... }

I say D, the script return entire ACL

I will go with option 'C.' Towards the end of the exhibit, we see the command "['access-list-seq-rule']" which indicates that we're specifically accessing the value for the 'sequence-number' key. All rules will share the same parent keys, only the value for the 'access-list-seq-rule' key will be unique, therefore; it's the only item which was parsed into a python list.

It parses the returned XML result into a dictionary and extracts the access control list's serial number information from the command's output into a list of dictionaries.

The XML configuration uses a <get-config> RPC call to retrieve the running configuration related to the specified access list (flp). The filter specifies that it only retrieves information related to the ip and access-list with the name flp. The Python code further processes the RPC reply by parsing it into a dictionary (d1) and specifically looks for the access list sequence rule numbers in the response ('access-list-seq-rule').

correct c

correct D

My vote is for D. The "access-list-seq-rule" is NOT just the value of the sequence number. The command would require the sub-tag <sequence> to pull the sequence number separately. Here's a sample XML format of an <access-list-seq-rule> block: <access-list-seq-rule> <sequence>10</sequence> <ace-rule> <action>permit</action> <protocol>tcp</protocol> <any/> <dst-any/> <dst-range1>5060</dst-range1> <dst-range2>5061</dst-range2> </ace-rule> </access-list-seq-rule> With that, if the most drilled-down block is the "access-list-seq-rule" then D makes sense since it's listing out each entire rule per sequence number, rather than just the sequence numbers themselves like option C specifies. If anyone disagrees, please correct me if I'm wrong.

D is correct the code does parse the access list sequence rules into a dictionary, but it doesn't specify that only sequence numbers are extracted.

im going with C

The correct answer will depend on the exact functionality of the NETCONF library and functions being used (like xmltodict.parse). If the functions xmltodict.parse and md.dispatch are being used as typically intended, they would parse the NETCONF response into a dictionary (D). So, based on the typical use of these functions, Option D is the most likely correct answer. It reads the output of the command into a dictionary list, allowing for structured access to the data within the application or script.

• The Python code establishes a NETCONF session with a Cisco IOS XE device and sends a <get-config> RPC payload to retrieve the running configuration of an extended ACL named "fip". • It then parses the XML response received from the device and extracts the access list sequence numbers from the configuration data of the extended ACL rules. • This sequence numbers are then read into a dictionary list.

pl1 = [ <get-config xmlns="urn.ietf.params.xml.ns.netconf base:1.0"> <source> <running/> </source> <filter> <native xmlns="http://cisco.com/ns/yang/Cisco-IOS-XE-native"> <ip> <access-list> <extended xmlns="http://cisco.com/ns/yang/Cisco-IOS-XE-acl"> <name>fip</name> </extended> </access-list> </ip> </native> </filter> </get-config> ] with manager.connect(host=10.1.1.1, port=830, username=cisco, password=cisco, timeout=90, hostkey_verify=False) as m for rpc in pl1. r1=m.dispatch(et.fromstring(rpc)) d1=xmitodict.parse(r1.xml)['rpc-reply']['data']['native']['ip']['access-list']['extended']['access-list-seq-rule']

Answer C This is based on the line d1= xmltodict.parse(r1.xml)['rpc-reply']['data']['native']['ip']['access-list']['extended']['access-list-seq-rule'], which indicates that the XML response is parsed, and the specific information about access list sequence rules is extracted into a dictionary.

xmitodict that means C.