600-210 Online Practice Questions and Answers

Which description of a smurf attack is true?

A. A smurf attack is an attack in which small TCP packets are sent toward a server from thousands of subscribers, which causes the server network buffer to overflow and drop packets and results in a denial of service.

B. A smurf attack is an attack in which the attacker sends ICMP echo request packets using a spoofed source IP address destined to remote network broadcast addresses, which results in all recipients replying back to the spoofed source IP address in an attempt to cause a denial of service to the targeted spoofed IP address.

C. A smurf attack is an attack in which the attacker sends UDP echo packets using a spoofed source IP address destined to remote network broadcast addresses, which results in all recipients replying back to the spoofed source IP address in an attempt to cause a denial of service to the targeted spoofed IP address.

D. A smurf attack is an attack in which the attacker attempts to change the TCP MSS value to a small value for all TCP flows destined to the target device, which results in many small packets having to be processed by the target, which causes buffer overflows and denial of service.

Your company is adding additional subscriber IP network ranges and requires many-to-one NAT to be configured on the Cisco ASR 5000 for the subscriber IP network 10.11.23.0/24. The public IP range is 172.20.21.20 172.20.21.110, and each IP has no more than 100 subscribers. Which configuration option accomplishes this task?

A. active-charging service ACS_ACME access-ruledef apn_cisco ip src-address = 10.11.23.0/24 fw-and-nat policy base_1 access-rule priority 1 access-ruledef apn_cisco permit nat-realm nat_pool1 nat policy nat-required default-nat-realm nat_pool1 rulebase acme_rulebase fw-and-nat default-policy base_1 context cisco ip pool nat_pool1 range 172.20.21.20 172.20.21.110 napt-users-per-ip-address 100

B. active-charging service ACS_ACME access-ruledef apn_cisco ip src-address = 10.11.0.0/16 fw-and-nat policy base_1 access-rule priority 1 access-ruledef apn_cisco permit nat-realm nat_pool1 nat policy nat-required default-nat-realm nat_pool1 rulebase acme_rulebase fw-and-nat default-policy base_1 context cisco ip pool nat_pool1 range 172.20.21.20 172.20.21.110 napt-users-per-ip-address 1000

C. active-charging service ACS_ACME access-ruledef apn_cisco ip src-address = 10.11.23.0/24 nat-and-pat policy nat_1 access-rule priority 1 access-ruledef apn_cisco permit nat-realm nat_pool1 nat policy nat-required default-nat-realm nat_pool1 context cisco ip pool nat_pool1 range 172.20.21.20 172.20.21.29 napt-users-per-ip-address 100

D. active-charging service ACS_ACME access-ruledef apn_cisco ip src-address = 10.11.23.0/24 fw-and-nat policy base_1 access-rule priority 1 access-ruledef apn_cisco permit nat-realm nat_pool1 nat policy nat-required default-nat-realm nat_pool1 rulebase acme_rulebase fw-and-nat default-policy base_1 context cisco ip pool nat_pool1 range 172.20.21.20 172.20.21.29 napt-users-per-ip-address 100

In MGT-based routing, which option is the GT address format of the called party?

A. E.212

B. E.164

C. E.412

D. E.214

E. E.216

Which version of GTP supports piggybacking of GTP messages?

A. GTPv0

B. Gn-prime

C. GTPv1

D. GTPv2

E. GTPv1-prime

Which two functionalities does an update PDP context request sent from the GGSN to the SGSN provide? (Choose two.)

A. Provide a PDP address to the MS.

B. Check that the PDP context is active.

C. Delete a PDP context from the SGSN.

D. Establish a network-requested secondary PDP context activation procedure.

E. Establish a network-requested primary PDP context activation procedure.

Which two options are benefits of Port Resource Pooling? (Choose two.)

A. allows for increased number of network-requested PDP activations

B. reduces the number of GGSN initiated deactivate procedure

C. provides resiliency

D. reduces the signaling towards the SMSC

E. reduces the number of inter-SGSN RAU procedures

How does an S4-SGSN identify a peer node as an SGSN or MME when GUTI-to-RAI mapping is unavailable?

A. MSB of the LAC value

B. MSB of the RAC value

C. LSB of the LAC value

D. LSB of RAC value

Which two transport protocols does the Diameter base protocol run on? (Choose two.)

A. UDP

B. TCP

C. DCCA

D. SCTP

E. GRE

F. DCCP

Which option describes how the Diameter relay agent routes messages to Diameter servers?

A. based on IP address

B. based on destination realm

C. based on application used (Gx, Gy)

D. based on source realm

Refer to the exhibit.

The locally configured Diameter peer does not seem to be communicating with its remote peer. Which option describes the problem?

A. Ports are not correctly configured.

B. No common AVP was found during capabilities exchange procedure.

C. The transport layer connection is not established.

D. Diameter does not support TCP as a transport protocol.