ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 300-410 All Questions

View all questions & answers for the 300-410 exam
Go to Exam

Exam 300-410 topic 1 question 387 discussion

Actual exam question from Cisco's 300-410
Question #: 387
Topic #: 1
[All 300-410 Questions]

The network administrator configured CoPP so that all routing protocol traffic toward the router CPU is limited to 1 mbps. All traffic that exceeds this limit must be dropped. The router is running BGP and OSPF. Management traffic for Telnet and SSH must be limited to 500 kbps.

access-list 100 permit tcp any any eq 179
access-list 100 permit tcp any any range 22 23
access-list 100 permit ospf any any
!
class-map CM-ROUTING
match access-group 100
class-map CM-MGMT
match access-group 100
!
policy-map PM-COPP
class CM-ROUTING
police 1000000 conform-action transmit
class CM-MGMT
police 500000 conform-action transmit
!
control-plane
service-policy output PM-COPP

No traffic is filtering through CoPP, which is resulting in high CPU utilization. Which configuration resolves the issue?

  • A. control-plane
    no service-policy output PM-COPP
    service-policy input PM-COPP
  • B. no access-list 100
    access-list 100 permit tcp any any eq 179
    access-list 100 permit ospf any any
    access-list 101 permit tcp any any range 22 23
    !
    !
    class-map CM-MGMT
    no match access-group 100
    match access-group 101
  • C. no access-list 100
    access-list 100 permit tcp any any eq 179
    access-list 100 permit ospf any any
    access-list 101 permit tcp any any range 22 23
    !
    !
    class-map CM-MGMT
    no match access-group 100
    match access-group 101
    !
    control-plane
    no service-policy output PM-COPP
    service-policy input PM-COPP
  • D. No access-list 100 -
    access-list 100 permit tcp any any eq 179
    access-list 100 permit tcp any any range eq 22
    access-list 100 permit tcp any any range eq 23
    access-list 100 permit ospf any any
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by Zizu007 at Jan. 7, 2023, 3:43 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
CiscoTerminator
3 months ago
Selected Answer: A
how is C correct when its matching on only ACL 101. match access-group 101 got only SSH and Telnet?
upvoted 1 times
...
[Removed]
9 months, 1 week ago
Selected Answer: C
C is correct
upvoted 1 times
...
[Removed]
9 months, 2 weeks ago
Selected Answer: C
C is correct
upvoted 1 times
...
d740f62
1 year ago
C - not the most optimal but works somehow, compared to the other options. Has the "service-policy output" and ACLs are separate.
upvoted 3 times
...
[Removed]
1 year, 9 months ago
Selected Answer: C
Yes, standard access list doesn’t allow range keyword, policy map is in the wrong direction
upvoted 2 times
[Removed]
9 months, 2 weeks ago
what are you talking about? the ACL 100 is already an extended ACL
upvoted 1 times
...
...
Zizu007
2 years, 4 months ago
Selected Answer: C
Correct!
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago