Share your ARCH Experience

hello @intaact : mega.nz/#F!O3JwzYjC

Requesting Decryption key for the link.

Hello

3 of my students passed today too, here is it for who have not received it by email

4sync.com/office/AATKek7K/300-320.html

key : NDJirkSTjKAVnTTcnp6aPg

Thank you, dotcom!

Thanks dotcom, seems like you found post from other forum. Thanks for sharing it here. Wish me luck soon going to sit.

Good luck, New_Questions_Collector!

Hello guys. Passed with ~950 scores and now I’m CCDP.
All Q’s except ~6 was from Gon’s 180 and PassLeader May’s updates. I suggest you to find answers to all Qs by yourself in the off. cert. guide and cisco.com.
I think there are ~15 wrong answers in dumps.
IMHO DESIGN and ARCH exam content are stupid and not shows your knowledge in modern networks. I’m very disappoited.
Thank you all for your help and good luck

@ak: Congrats! Can you please share with us your dump with the corrected questions?

Free to share a trusted Cisco exam materials website, it helped me pass the CCNP 300-101 exam and cissp exam, I am very fortunate to choose it, instead of choosing those sites that are cheap but are out of date. If you are worried about preparing for the exam now, please see my name, it can help you

@ak
Please share your version of answers for the question, for us verify the answer and prepare accordingly.

hi Dotcom,

thank for sharing,
Did you study Gon180 + Passleader May’s update or Gon180 + all Passleader?
A lot of Questions in Passleader, and nobody want to waste the time.

Congratulations!

Finally passed the 300-320 exam recently!

Scored 9xx!!!

I mainly learned the new version PassLeader 300-320 dumps (628Q Version, YES!), new PL 628Q truly has all of the new questions in complete.

Special thanks guys for sharing!

@Scott Welsh (May 21st, 2019)

Good luck, all!

What two sensor types exist in an IDS/IPS solution?
A. host
B. anomaly based
C. policy based
D. network based
E. signature

Answer shows B & C , but in explaination Signature based also exist as sensor types in IDS /IPS, can someone explainwhy signature is not the right answer

There are several different methods that sensors
can be configured to use to identify malicious traffic, including the following:
■ Signature-based IPS/IDS
■ Policy-based IPS/IDS
■ Anomaly-based IPS/IDS
■ Reputation-based IPS/IDS

hello @cloud Ju, i study Gon180 + Passleader update only. everything is in my sharing

Thank Dotcom!

Hello guys, share latest exam questions Good luck, all!
Look My Name

@HSN_CCDA: I think there should be 3 answers not 2.

Hi Guys, as far as i looked about the new questions we should focus on trying to check what questions are correct.
Most people say they studied from the new questions posted, GON and new questions from PL 628.

New questions from PL and new questions posted here have different answers.

Lets see:

Q9 During an upgrade of an existing data center, a network team must design segmentation into existing networks, Due to legacy applications, the IP address cannot change. Which firewall deployment model meets these requirements?

A. Mutlicontext mode
B. cluster mode
C. routed mode
D. transparent mode

Answer: D

Based on new questions posted by New_Questions_Collector the answer is D (transparent),
But based on PL 628 it says it is B (Cluster)

Q10 How to do web proxy using APIC without changing web setting?

A. Transparent with Files
B. Transparent without files
C. Transparent with WCCP
D. Transparent without WCCP

Based on new questions posted by New_Questions_Collector the answer is D (transparent without WCCP),
But based on PL 628 it says it is C (with WCCP)

If anyone that took already the exame helped clear out the wrong answers (not just this but in general ( GON + new questions) would help alot.

Q9 During an upgrade of an existing data center, a network team must design segmentation into existing networks, Due to legacy applications, the IP address cannot change. Which firewall deployment model meets these requirements?

A. Mutlicontext mode
B. cluster mode
C. routed mode
D. transparent mode

I am following a big project which migrate customer Data center, I got the same context, customer need to deploy new firewall but cannot change IP address in their network because of legacy applications. So I deployed the firewall in transparent mode, it was really good for this case. I make sure D is correct!

I agree D is corrrect, in transparent mode IPs do not change

@Cloud and @GK

tnx for the answers, i agree. i had the same thought.
but is much better when we share with every1, many think heads is always better then 1 :D

about question 10 is it really needed to forward the traffic to the WCCP?

based on what cisco says we have 3 options inside the transparent mode

Deployment Method Description
Transparent Layer 4 Switch (PBR) A Layer 4 switch is used to redirect based on destination port 80
Transparent WCCP A WCCP v2 enabled device (typically a router, switch, PIX, or ASA) redirects port 80
Transparent Bridged mode Dual NICs, virtually paired. Traffic goes in one NIC and out the other (not available)

as far as i have seen normaly is always deployed with WCCP, but in this cenario im not sure it is what “cisco want”.
What you guys can tell about this?

@Ctut

Can you please share the PL 628 dump?
Thank you!

Here u go

Remove the “*”
https:*//*drive.google*.com*/open?id=1sTnQcUgOm0vymA4Zz42fYBtMD2FPukAa

Congratulations!

Finally passed the 300-320 exam on 6/June/2019!

Scored 9xx!!!

I mainly learned the new version PassLeader 300-320 dumps (628Q Version, YES!), new PL 628Q truly has all of the new questions in complete.

Special thanks guys for sharing!

@Scott Welsh (May 21st, 2019)

Good luck, all!

+1

Congratulations Riccardo Lo,

Can you help fill the blanks of the questions posted by New_Questions_Collector?

And what questions appeared to you that weren’t in GON 180?

Anyone took the exame today and remember some new questions?

Finally i Passed 300-320 with score 937.

Dotcom, Collector, scott, luffy, sammy, and many friends, Thanks for the sharing.

i studied GON180, PL update version april and may.

this is what i remember question that without gon and PL
(i am not 100% sure the answer)

– Which tech can use VPN config. with “multivender”
A: i choose ipsec vpn

other question was in the gon and PL, or very similar.

good luck guys!

If you are still worried about CCNP or CCIE exams, maybe I can help you, please see my name, it will enable you to pass the exam quickly.

Congratz @JUN for passing the exame.

Thanks for sharing the questions with us.

Do you remember what where the other options?

Where there more questions out of GON and PL?

im looking for some training vids, does anyone has it?please share. thanks

Where do you get GON 180 Q Ican’t find them I do have PL 628 Questions though…..Thanks

@Anonymous: please share your PL 628q and I will give you GON 180Q. Thx!

JUNE 2019 update
Passed with 9XX score. I used GON 180 and additional questions below. I put additional choices on the questions.

1. An engineer is designing an OSPF network with multiple nonbackbone areas connected to the backbone area via a hub-and-spoke topology. Each hub-and-spoke area has a large number of spoke routers connected to the hub that is functioning as an ABR to provide better segmentation. Which two actions improve the stability of this design? (Choose two.)

A. Configure hub-and-spoke areas as stub.
B. Use External Type 2 metric: across the OSPF domain.
C. Configure hub-and-spake areas as totally stubby.
D. Implement summarization on the ABR routers of hub-and-spoke areas.
E. Implement summarization on the ASBR routers in the backbone area.

ANSWERS: D and E

2. A network engineer is evaluating an architecture that utilizes VSS for the data center module. Which two advantages of using VSS technology are true? (Choose two.)

A. It removes the need for Hot Standby Router Profocol.
B. It removes the need to configure redundant switches with identical policies.
C. Each switch has a separate control plane.
D. It is capable of supporting live migration of

ANSWERS: A and B

3. What protocol is used by MSTP?

a. 802.1q
b. 802.1d
c. 802.1w
d. 802.1s

Answer. D

4. To scale iBGP solution what can be used to mitigate the full mesh without increasing the number of BGP neighbor

a. route reflector
b. as-path prepend
c. one to one bgp neighbor
d. as-path preferred

Answer A

5. What are the advantages of top of the rack design?

a. decreasing cable cost
b. fewer switch to manage
c. easier to upgrade rack
d. directly connected Rack in the row

Answer A&C

6. How to prevent the DDOS on the LAN (Choose 2)

A. Enable IP source guard
B. Disable the STP
C. Drop the BPDU
D. Enable IP DHCP Snooping

Answer: A and D

7. What feature can be used to enable BGP load balance manually (…)?

A-maximum-path
B-maximum-prefix
C- maximum-gre
C- maximum-xxxx

Answer: A

8. On which type of port is STP disabled?

A – Etherchannel
B – P2P Edge
C – Porfast
D – Flexlink

Answer: D

9. 2 RR and 5 Clients in 65000AS – how much BGP sessions do you need for full mesh?

Answer: 11

10. In a large hub and spoke EIGRP network, which solution would be for resource minimal usage?

A stub routing
B network summarization

Answer: B

11. During an upgrade of an existing data center, a network team must design segmentation into existing networks, Due to legacy applications, the IP address cannot change. Which firewall deployment model meets these requirements?

A. Mutlicontext mode
B. cluster mode
C. routed mode
D. transparent mode

Answer: D

12. How to do web proxy using APIC without changing web setting?

A. Transparent with Files
B. Transparent without files
C. Transparent with WCCP
D. Transparent without WCCP

Answer is D

13. WCCP encapsulation?

A. xdn or sth
B. IPSec
C. …..
D. ….

Answer is A

14. What VPN solution for hub & spoke, spoke are talking to each other dynamically, easy encryption key change, no changes in header

A – GETVPN
B – DMVPN

Answer: A

15. Which VPN solution is better, and this technique always change header, 80% is spoke to spoke and minimum requirement?

A. DMVPN
B. GETVPN
C. IPSEC
D. ….

Answer is A

16. VPN minimum configuration. Easy to deploy vpn in multivendor site Spoke to spoke.

A. DMVPN
B. IPSec fast encapsulation
C. Ip sec vpn
D. Get vpn

Answer is B

17. What encapsulation used by ACI to visualize the infra.

A. VXLAN
B. NSX
C. IPsec
D. Fabric loopback TEP/TEP

Answer: A

18. Something about FabricPath encapsulation? (don’t remember answers)

Ans: ?
FabricPath encapsulation facilitates MAC mobility and server virtualization, which can physically move the Layer 2 node but retain the same MAC address and VLAN association for the virtual machine
FabricPath network, do not need to run the Spanning Tree Protocol (STP)
FabricPath also allows LAN extensions across data centers at Layer 2, which is useful in disaster recovery operations,
FabricPath, you use the Layer 2 intermediate System-to-Intermediate System (IS-IS) protocol for a single control plane

19. vPC peer link role
A virtual PortChannel (vPC) allows links that are physically connected to two different datacenter access switch to appear as a single PortChannel to a third device.

20. related to redistribution sorry not remember

21. NAT question with a diagram Scenario with two companies merging and need to create an outside NATpool as a solution. The options were to select the right command for the scenario.

Answer: As one to one static mapping is the solution in this case. #ip nat pool MonPool 1.1.1.2 1.1.1.254 netmask 255.255.255.0

22. BGP security between peering whilst connected to an Ethernet network. BGP peering mechanism to protect from attack from a different network segment when the BGP peers are already known.

Answer: BGP Time to Live Security check.

23. FabricPath is based on which protocol
A – IS-IS
B- EIGRP
C- BGP
Answer: A

24. QOS screenshots question 1 saying Voice has 100 megs of QOS, SIP 50 megs of QOS BW.
The usage is 50 megs voice and 25 megs for SIP. What will the extra bandwidth for voice and sip be used for?

Answer: it will be shared with the other classes because there is no congestion.

25. OSPF in a hub & spoke connection, what to do to make the benefit/improving out of design

Answer: summarization in ABR and ASBR

26. Transit AS. To avoid being transit AS, there are possible answers that include BGP regular expression. The ^$ regular expression ensures that we will only advertise locally originated prefixes. We’ll have to apply this to both ISPs.

originatedccess list 13 with the expression ^$

A. 11
B. 12
C. 13
D. 14

ANSWER: 13

27. How to avoid your router to be transit between two ISP, you have config of the router, they used route map and match with AS-path, with different ACLs. Q: what ACL that you should use with route map.

Answer: use the one that deny AS Number of two ISPs

28. Services that needed external access on a DMZ (DNS ,public web)

Answer: external DNS

29. 3 DC to connect, which virtualization technology that allow to encapsulate the traffic between DCs
A- NSX
B- VXLAN
C-
D-

Answer: B?

30. router command lines presented about access list. You need to select the answer on which command you will add for two overlapping networks to continue communicating
without changing much of the configuration

A. Ip nat acl 10.x.30.x 255.255.255.X
B. Long command line with no subnets and ip’s
C. Ip nat acl 10.x.10.x 255.255.255.X
D. Ip nat acl 10.x.20.x 255.255.255.X

ANSWER: B. I chose the long command line with outbound acl that doesn’t include any ip address and subnets since it doesn’t require changing the subnets.

31. Router config presented about QoS. You need to choose what the router will do based on the config presented.

A. It will drop the packets
B. It will set it back to default DSCP
C. It will queue the packets
D. It will set it to Qos 1

ANSWER: B

32. Drag and drop question 1 – East/North traffic
33. Drag and drop question 2 – VPLS
34. Multivendor vpn question

A. DMVPN
B. Ipsec VPN
C. Get VPN
D. GRE

ANSWER: B. Ipsec Vpn

35. New question – can’t remember
36. New question – can’t remember
37. New question – can’t remember

KUDOS to GON, Scott, Mostofakalam, New Exam Colletor and others who contributed!!!! Goodluck Guys! Cheers!!!

AWESOME TEAM UNITED!

From TEAM UNITED:

1. An engineer is designing an OSPF network with multiple nonbackbone areas connected to the backbone area via a hub-and-spoke topology. Each hub-and-spoke area has a large number of spoke routers connected to the hub that is functioning as an ABR to provide better segmentation. Which two actions improve the stability of this design? (Choose two.)

A. Configure hub-and-spoke areas as stub.
B. Use External Type 2 metric: across the OSPF domain.
C. Configure hub-and-spake areas as totally stubby.
D. Implement summarization on the ABR routers of hub-and-spoke areas.
E. Implement summarization on the ASBR routers in the backbone area.

ANSWERS: D and E

is it not: C and D? thanks!

I believe there are approximately 40 new questions not included on GON 180. If we can find the correct answers for these 40 questions, we can increase our chances of nailing this exam. 20 of these new questions most likely will appear in the exam. Thank you guys for sharing!!! Keep researching we can do this!!!

Congrats and Thank you for sharing, Team United!

@Anonymous: Please share the PL 628q dump…

Hello guys, how can please share the link to download the dumps from Gon? the link that he provided is not longer working… thanks in advance.

Guys, I have a Telegram group for CCDP, here is the link in case you want to join us.
https**://t.me/ciscodesignccdp

I going take arch exam but Cisco will change Cert track next year, which CCDA, CCDP is no longer in this. so confuse about that.

@Team United
Thanks alot for sharing

about your questions 31 is it the same as this 1?

Q10 There is a classmap definition and a policymap definition (code). The policymap is applied on the interface. The question was. What will the SIP traffic do? Policed at this speed, dropped, shaped?
Answer:
ClassMap-> identify the traffic
PolicyMap (inbound interface) -> what to do with the traffic
ServicePolicy -> Apply policy to outbound interface

(config)# class-map larry
(config-cmap)# match access-group 2
(config-cmap)# exit
(config)# policy-map bird
(config-pmap)# class larry
(config-pmap-c)# police 8000 2000 4000 conform-action transmit exceed-action set-qos-transmit 1
(config-pmap-c)# exit
(config-pmap)# exit
(config)# interface fastethernet 0/0
(config-if)# service-policy input bird

logic is to identify class defining Signaling traffic which covers SIP and the class will have a police policy similar to below which defines exceed-action in case of congestion. For example:
police 8000 2000 4000 conform-action transmit exceed-action [set-qos-transmit 1/violate-action drop/transmit]
Answer: action set for exceed-action […these part…]

test

The best is the best

I successfully passed the ccna 200-125 exam, which is a great news for me. It turns out that my expenses are worthwhile. I didn’t choose the cheap expired materials. My pay is not in vain.
twitter.com/chen051989/status/1118431240468570112

I successfully passed the ccna 200-125 exam, which is a great news for me. It turns out that my expenses are worthwhile. I didn’t choose the cheap expired materials. My pay is not in vain.
twitter.com/chen051989/status/1118431240468570112

@Ctut

Yes for questions 30 and 31

Hello,

How does OTV provide STP isolation?
A. By using STP root optimization
B. By using BPDU guard
C. By dropping BPDU packets
D. By using BPDU filtering

I think the correct answer is D not C as it is in the dumps, because they say on

cisco.com/c/en/us/td/docs/solutions/Enterprise/Data_Center/DCI/whitepaper/DCI3_OTV_Intro/DCI_1.html

STP Isolation
Figure 1-18 shows how OTV, by default, does not transmit STP Bridge Protocol Data Units (BPDUs) across the overlay. This is a native function that does not require the use of an explicit configuration, such as BPDU filtering, and so on. This allows every site to become an independent STP domain: STP root configuration, parameters, and the STP protocol flavor can be decided on a per-site basis.

What do you think?

Which two technologies can be used to interconnect data centers over an IP network and provide Layer 2 LAN
extension? (Choose two.)
A. IS-IS
B. VXLAN
C. TRILL
D. Fabric Path
E. OTV

From my point of view the correct answer should be A&E not B&E as it is in the dumps, because they say in “Foundation Learning Guide CCDP ARCH 300-320, 4th Edition”:

VXLAN is not a DCI technology in its current state. You should use other technologies, such as OTV
[…]
The routing protocol used to implement the OTV control plane is IS-IS.

What do you think?

WCCP encapsulation?
A. xdn or sth
B. IPSec
C. …..
D. ….

The answer should be “GRE” not “xdn or sth”

cisco.com/c/en/us/td/docs/ios-xml/ios/ipapp/configuration/xe-3s/iap-xe-3s-book/iap-wccp.html

WCCP uses either generic routing encapsulation (GRE) or Layer 2 (L2) to redirect or return IP traffic. When WCCP forwards traffic via GRE, the redirected packets are encapsulated within a GRE header. The packets also have a WCCP redirect header. When WCCP forwards traffic using L2, the original MAC header of the IP packet is overwritten and replaced with the MAC header for the WCCP client.

What do you think?