Share your ARCH Experience
Please share with us your experience after taking the ARCH v2.1 642-874 exam, your materials, the way you learned, your recommendations…
Your posts are warmly welcome!
Please don’t ask for links to download copyright materials here…
@Whiplash
THANKS!
what technologies were the DnD based on?
Guys, what is the correct answer? A or B?
An ISP is offering two MPLS circuits to an office when one of the links fails. Which routing feature provides the fastest possible convergence to the failover link?
A. BFD
B. UDLD
C. Multipath
D. TTL
An ISP is offering two MPLS circuits to an office when one of the links fails. Which routing feature provides the fastest possible convergence to the failover link?
A. BFD
B. UDLD
C. Multipath
D. TTL
answere: A
Thanks @Whiplash
when you get a chance, can you please share the Q221 that you used to pass?
@@@@nugen
I faintly remeber the D&D but I did get for sure
2 tier and 3tier
Iacl, ip source guard etc but all D&D are from the Q221 only or from the above posts
@ ER… I could mail it to you and then you could share it please?
@whiplash thank you,
@er & whiplash you can share the q221 to
benninugen at gmail dot com
@nugen….. Check your mails… all the best….
@ Er and Nugen
only 1 question incorrect i could find in Q221 so far was
You are designing a NAC security solution that must group machines into objects and provision security policies
based on those objects Which technology do you use?
A. VXLAN
B. 802.1Q
C. RBAC
D. Cisco TrustSec
Correct Answere: D. Cisco TrustSec
@whiplash,
Thank you. will take a look and research
@whiplash and @ER
could you please share 221 q with me too.
edris.rajabygmail.com
@ed…mailed you
@whiplash please share the dumps link over here?!
@whiplash and @ER
could you please share 221 q with me too.
{email not allowed}
@whiplash and @ER
could you please share 221 q with me too.
Fedoda 889900 @ Gmail.com
@whiplash and @ER
could you please share 221 q with me too.
Fedoda 889900 @ Gmail.com (Remove spaces )
@whiplash and @ER
could you please share 221 q with me too.
Fedoda 889900 @ Gmail.com
@Dump Link…..
Shared with ER and nugen…. could you’ll please share or create the link for others?
guys, key is to find those questions we likely to see which have wrong answers in the dumps, I will bring some to your attention, please do the same… the following is one that I found:
Which two options regarding the Cisco TrustSec Security Group Tag are true? (Choose Two.)
A . It is assigned by the Cisco ISE to the user or endpoint session upon login
B . Best practice dictates it should be statically created on the switch
C . It is removed by the Cisco ISE before reaching the endpoint.
D . Best Practice dictates that deployments should include a guest group allowing access to minimal services
E . Best Practice dictates that deployments should include a security group for common services such as DNS and DHCP
correct answers: A and D, dumps call for E instead of D, however, DHCP and DNS are both prerequisite for TRUSTSEC to work, such traffic does not go to the ISE, bypasses and preceeds TRUSTSEC policy implementation, therefore we can’t have them on a group which will restrict access immediately. Also looking at show cts environment-data in example in cisco.com it shows they did configure a GUEST SECURITY GROUP:
Security Group Name Table:
0001-31 :
0-00:Unknown
2-00:TrustSec_Devices
3-00:Network_Services
4-00:Employees
5-00:Contractors
6-00:Guests
7-00:BYODemployees
@whiplash
could you please share 221 q with me too.
Fedoda 889900 @ Gmail.com
@ER, @Nugen, @ whiplash, pls share the 221 to usc_carlos @ GMX com
I will try to contribute here as much as possible
GUYS WE NEED TO BE QUICK ITS A COUPLE OF HOURS
www dot datafilehost dot com /d / 17110ec3
@CV check your email
Thank you for sharing are these answers are totally correct.
they are correct
Thank you guys, good luck you all… I am validating answers and will report if I find some more “wrong answers” in the dump
@Whiplash can you please send 221Q to my email erroxas @ yahoo .com?
@Ed if you got the 221q from Whiplash please forward to my email also erroxas@ yahoo. com? Thank you.
I passed 922. My exam 65questions.3 DD. Subnet calc. 10-15 new question.
I used prepaway346q and yellow marked 195q final pdf +few free source (vceguide, ExamTopics etc)
Thanks for previous sharing. Good lucks.
Guys, what is the correct answer? BD or BE?
Which two security measures must an engineer follow when implementing
Layer 2 and Layer 3 network design? (Choose two)
A. Utilize an access list to prevent the use of ARP to modify entries to the table
B. Utilize the ARP inspection feature to help prevent the misuse of gARP
C. Utilize private VLANs an ensure that all ports are part of the isolated port group
D. Utilize the native VLAN only on trunk ports to reduce the risk of an Double- Tagged 802.1q VLAN hopping
attack
E. Utilize DHCP snooping on a per VLAN basis and apply ip dhcp snooping untrusted on all ports
Which two security measures must an engineer follow when implementing
Layer 2 and Layer 3 network design? (Choose two)
A. Utilize an access list to prevent the use of ARP to modify entries to the table
B. Utilize the ARP inspection feature to help prevent the misuse of gARP
C. Utilize private VLANs an ensure that all ports are part of the isolated port group
D. Utilize the native VLAN only on trunk ports to reduce the risk of an Double- Tagged 802.1q VLAN hopping
attack
E. Utilize DHCP snooping on a per VLAN basis and apply ip dhcp snooping untrusted on all ports
Answer B, D… Gratuitous ARP and double-tagging are known vulnerabilities; E is wrong, ” untrusted” is not valid on INT config (ports are by default untrusted unless you type TRUST at the end), plus is you UNTRUST everything, your switch will not provide connectivity
Are the dump answers are correct.
@johnson_dijikstra share your exam questions please .
passed 980/1000, no new questions, took the exam today in Singapore, the prepaway June 2019 is legit, word per worquestion and answer. no need to waste time with passleader 850Q. the question pool is just somewhere 100 Qs.
thanks to all that contributed here.
Share your questions?
Passed today with 917 in South Africa.
The 221q dump had pretty much all the questions.
Good luck everyone!
Could copy and past questions if exams you got??? And answers
@sa are these answers on dump 122 are correct?
Answers are correct.????
Please share June dump?
Any could share. It please time is running out …
passed today, q221 has all the questions
65, 3 drag and drop. all the best to those writing
Could you share your exam questions?
www dot datafilehost dot com /d / 17110ec3
they are available on nugen comment on the 20th February
Are answrws are correct or need to be edited?
Which two benefits are achieved when GRE tunnels are selected over IPsec tunnels?
Q221 is correct enough to get above 950+ marks in the exam…. I used as it is and passed. its editted and corrected….
An engineer is designing a campus network with dedicated VLANs per access layer switch and wants to ensure that load sharing is supported. Which type of distribution to access link must be implemented to accomplish this configuration?
A. shared
B. spanned
C. Layer 3
D. Layer 2
Correct Answer: Layer 3, all dumps say “A”, which is not one of the models for the A-D block: layer 2 loop-free, layer 2 looped and layer 3… of those only layer 3 guarantees load sharing, drawback for L3 and L2 loop-free is “VLAN per switch”, or no VLAN spanning, which is actually what they are asking for.