• Home
  • Articles
  • Get Ready with JN0-664 Exam Dumps (2023) [Q15-Q36]

Get Ready with JN0-664 Exam Dumps (2023) [Q15-Q36]

Share

Get Ready with JN0-664 Exam Dumps (2023)

Realistic JN0-664 Dumps are Available for Instant Access

NEW QUESTION # 15
Which two statements are correct regarding bootstrap messages that are forwarded within a PIM sparse mode domain? (Choose two.)

  • A. Bootstrap messages are forwarded to all routers within a PIM sparse-mode domain.
  • B. Bootstrap messages are used to notify which router is the PIM RP
  • C. Bootstrap messages distribute RP information dynamically during an RP election.
  • D. Bootstrap messages are forwarded only to routers that explicitly requested the messages within the PIM sparse-mode domain

Answer: A,C

Explanation:
Explanation
Bootstrap messages are PIM messages that are used to distribute rendezvous point (RP) information dynamically during an RP election. Bootstrap messages are sent by bootstrap routers (BSRs), which are routers that are elected to perform the RP discovery function for a PIM sparse-mode domain. Bootstrap messages contain information about candidate RPs and their multicast groups, as well as BSR priority and hash mask length. Bootstrap messages are forwarded to all routers within a PIM sparse-mode domain using hop-by-hop flooding.


NEW QUESTION # 16
Exhibit

Referring to the exhibit, PIM-SM is configured on all routers, and Anycast-RP with Anycast-PIM is used for the discovery mechanism on RP1 and RP2. The interface metric values are shown for the OSPF area.
In this scenario, which two statements are correct about which RP is used? (Choose two.)

  • A. Source2 will use RP1 and Receiver2 will use RP1 for group 224.2.2.2.
  • B. Source1 will use RP1 and Receiver1 will use RP2 for group 224.1 1 1
  • C. Source2 will use RP2 and Received will use RP2 for group 224.2.2.2.
  • D. Source1 will use RP1 and Receiver1 will use RP1 for group 224.1.1.1.

Answer: C,D

Explanation:
Explanation
A sham link is a logical link between two PE routers that belong to the same OSPF area but are connected through an L3VPN. A sham link makes the PE routers appear as if they are directly connected, and prevents OSPF from preferring an intra-area back door link over the VPN backbone. A sham link creates an OSPF multihop neighborship between the PE routers using TCP port 646. The PEs exchange Type 1 OSPF LSAs instead of Type 3 OSPF LSAs for the L3VPN routes, which allows OSPF to use the correct metric for route selection1.


NEW QUESTION # 17
Exhibit

R4 is directly connected to both RPs (R2 and R3) R4 is currently sending all ,o,ns upstream to R3 but you want all joins to go to R2 instead Referring to the exhibit, which configuration change will solve this issue?

  • A. Change the default route in inet.2 on R4 from R3 as the next hop to R2
  • B. Change the group-range to be more specific on R2 than R3.
  • C. Change the local address on R2 to be higher than R3.
  • D. Change the bootstrap priority on R2 to be higher than R3

Answer: D

Explanation:
Explanation
PIM Bootstrap Router (BSR) is a mechanism that allows PIM routers to discover and announce rendezvous point (RP) information for multicast groups. BSR uses two roles: candidate BSR and candidate RP. Candidate BSR is the router that collects information from all available RPs in the network and advertises it throughout the network. Candidate RP is the router that wants to become the RP and registers itself with the BSR. There can be only one active BSR in the network, which is elected based on the highest priority or highest IP address if the priority is the same. The BSR priority can be configured manually or assigned automatically. The default priority is 0 and the highest priority is 2551. In this question, R4 is directly connected to both RPs (R2 and R3) and is currently sending all joins upstream to R3 but we want all joins to go to R2 instead. To achieve this, we need to change the BSR priority on R2 to be higher than R3 so that R2 becomes the active BSR and advertises its RP information to R4.


NEW QUESTION # 18
An interface is configured with a behavior aggregate classifier and a multifield classifier How will the packet be processed when received on this interface?

  • A. The packet will be forwarded with no classification changes.
  • B. The packet will be discarded.
  • C. The packet will be processed by the MF classifier first, then the BA classifier.
  • D. The packet will be processed by the BA classifier first, then the MF classifier.

Answer: A

Explanation:
Explanation
behavior aggregate (BA) classifiers and multifield (MF) classifiers are two types of classifiers that are used to assign packets to a forwarding class and a loss priority based on different criteria. The forwarding class determines the output queue for a packet. The loss priority is used by a scheduler to control packet discard during periods of congestion.
A BA classifier maps packets to a forwarding class and a loss priority based on a fixed-length field in the packet header, such as DSCP, IP precedence, MPLS EXP, or IEEE 802.1p CoS bits. A BA classifier is computationally efficient and suitable for core devices that handle high traffic volumes. A BA classifier is useful if the traffic comes from a trusted source and the CoS value in the packet header is trusted.
An MF classifier maps packets to a forwarding class and a loss priority based on multiple fields in the packet header, such as source address, destination address, protocol type, port number, or VLAN ID. An MF classifier is more flexible and granular than a BA classifier and can match packets based on complex filter rules. An MF classifier is suitable for edge devices that need to classify traffic from untrusted sources or rewrite packet headers.
You can configure both a BA classifier and an MF classifier on an interface. If you do this, the BA classification is performed first and then the MF classification. If the two classification results conflict, the MF classification result overrides the BA classification result.
Based on this information, we can infer the following statements:
* The packet will be discarded. This is not correct because the packet will not be discarded by the classifiers unless it matches a filter rule that specifies discard as an action. The classifiers only assign packets to a forwarding class and a loss priority based on their match criteria.
* The packet will be processed by the BA classifier first, then the MF classifier. This is correct because if both a BA classifier and an MF classifier are configured on an interface, the BA classification is performed first and then the MF classification. If they conflict, the MF classification result overrides the BA classification result.
* The packet will be forwarded with no classification changes. This is not correct because the packet will be classified by both the BA classifier and the MF classifier if they are configured on an interface. The final classification result will determine which output queue and which discard policy will be applied to the packet.
* The packet will be processed by the MF classifier first, then the BA classifier. This is not correct because if both a BA classifier and an MF classifier are configured on an interface, the BA classification is performed first and then the MF classification. If they conflict, the MF classification result overrides the BA classification result.


NEW QUESTION # 19
Which two statements describe PIM-SM? (Choose two)

  • A. Traffic is only forwarded to routers that request to join the distribution tree.
  • B. Routers with receivers send join messages to their upstream neighbors.
  • C. Routers without receivers must periodically prune themselves from the SPT.
  • D. Traffic is initially flooded to all routers and an S,G is maintained for each group

Answer: A,B

Explanation:
Explanation
PIM sparse mode (PIM-SM) is a multicast routing protocol that uses a pull model to deliver multicast traffic.
In PIM-SM, routers with receivers send join messages to their upstream neighbors toward a rendezvous point (RP) or a source-specific tree (SPT). The RP or SPT acts as the root of a shared distribution tree for a multicast group. Traffic is only forwarded to routers that request to join the distribution tree by sending join messages.
PIM-SM does not flood traffic to all routers or prune routers without receivers, as PIM dense mode does.


NEW QUESTION # 20
Which two statements are correct about IS-IS interfaces? (Choose two.)

  • A. If a broadcast interface is in both L1 and L2, one combined hello message is sent for both levels.
  • B. If a broadcast interface is in both L1 and L2, separate hello messages are sent for each level
  • C. If a point-to-point interface is in both L1 and L2, one combined hello message is sent for both levels.
  • D. If a point-to-point interface is in both L1 and L2, separate hello messages are sent for each level.

Answer: B,D

Explanation:
Explanation
IS-IS supports two levels of routing: Level 1 (intra-area) and Level 2 (interarea). An IS-IS router can be either Level 1 only, Level 2 only, or both Level 1 and Level 2. A router that is both Level 1 and Level 2 is called a Level 1-2 router. A Level 1-2 router sends separate hello messages for each level on both point-to-point and broadcast interfaces1. A point-to-point interface provides a connection between a single source and a single destination. A broadcast interface behaves as if the router is connected to a LAN.


NEW QUESTION # 21
Exhibit

Based on the configuration contents shown in the exhibit, which statement is true?

  • A. Joins for group 224.7.7.7 are always rejected, regardless of the group count.
  • B. Joins for any group are accepted if the group count value is less than 25.
  • C. Joins for group 224.7.7.7 are accepted if the group count is less than 25
  • D. Joins for group 224.7.7.7 are rejected if the source address is 192.168.100.10

Answer: C

Explanation:
Explanation
BGP policy framework is a set of tools that allows you to control the flow of routing information and apply routing policies based on various criteria. BGP policy framework consists of several components, such as route maps, prefix lists, community lists, AS path lists, and route filters. Route maps are used to define routing policies by matching certain conditions and applying certain actions. Prefix lists are used to filter routes based on their prefixes. Community lists are used to filter routes based on their community attributes. AS path lists are used to filter routes based on their AS path attributes. Route filters are used to filter routes based on their prefix length or range3. In this question, we have a route map named ISP-A that has two clauses: clause 10 and clause 20. Clause 10 matches any route with a prefix length between 8 and 24 bits and sets the local preference to 200. Clause 20 matches any route with a prefix of 224.7.7.7/32 and rejects it. The route map is applied inbound on the BGP neighborship with ISP-A. Based on this configuration, the correct statement is that joins for group 224.7.7.7 are always rejected, regardless of the group count. This is because clause 20 explicitly denies any route with a prefix of 224.7.7.7/32, which corresponds to the multicast group 224.7.7.7.


NEW QUESTION # 22
In which two ways does OSPF prevent routing loops in multi-area networks? (Choose two.)

  • A. The LFA algorithm prunes all looped paths within an area.
  • B. All areas are required to connect to area 0.
  • C. The SPF algorithm prunes looped paths within an area.
  • D. All areas are required to connect as a full mesh.

Answer: B,C

Explanation:
Explanation
OSPF is an interior gateway protocol that uses link-state routing to exchange routing information among routers within a single autonomous system. OSPF prevents routing loops in multi-area networks by using two methods: area hierarchy and SPF algorithm. Area hierarchy is the concept of dividing a large OSPF network into smaller areas that are connected to a backbone area (area 0). This reduces the amount of routing information that each router has to store and process, and also limits the scope of link-state updates within each area. All areas are required to connect to area 0 either directly or through virtual links2. SPF algorithm is the method that OSPF uses to calculate the shortest path to each destination in the network based on link-state information. The SPF algorithm runs on each router and builds a shortest-path tree that represents the topology of the network from the router's perspective. The SPF algorithm prunes looped paths within an area by choosing only one best path for each destination3.
References: 2:
https://www.juniper.net/documentation/us/en/software/junos/ospf/topics/concept/ospf-area-overview.html 3:
https://www.juniper.net/documentation/us/en/software/junos/ospf/topics/concept/ospf-spf-algorithm-overview.ht


NEW QUESTION # 23
By default, which statement is correct about OSPF summary LSAs?

  • A. Type 3 LSAs are advertised for routes in Type 1 LSAs.
  • B. The metric associated with a summary route will be equal to the lowest metric associated with an individual contributing route
  • C. All Type 2 and Type 7 LSAs will be summanzed into a single Type 5 LSA
  • D. The area-range command must be installed on all routers.

Answer: A

Explanation:
Explanation
OSPF uses different types of LSAs to describe different aspects of the network topology. Type 1 LSAs are also known as router LSAs, and they describe the links and interfaces of a router within an area. Type 3 LSAs are also known as summary LSAs, and they describe routes to networks outside an area but within the same autonomous system (AS). By default, OSPF will summarize routes from Type 1 LSAs into Type 3 LSAs when advertising them across area boundaries .


NEW QUESTION # 24
When building an interprovider VPN, you notice on the PE router that you have hidden routes which are received from your BGP peer with family inet labeled-unica3t configured.
Which parameter must you configure to solve this problem?

  • A. Under the protocols ospf hierarchy, add the traffic-engineering parameter.
  • B. Under the family inet labeled-unicast hierarchy, add the explicit null parameter.
  • C. Under the protocols mpls hierarchy, add the traffic-engineering parameter
  • D. Under the family inet labeled-unicast hierarchy, add the resolve-vpn parameter.

Answer: D

Explanation:
Explanation
The resolve-vpn parameter is a BGP option that allows a router to resolve labeled VPN-IPv4 routes using unlabeled IPv4 routes received from another BGP peer with family inet labeled-unicast configured. This option enables interprovider VPNs without requiring MPLS labels between ASBRs or using VRF tables on ASBRs. In this scenario, you need to configure the resolve-vpn parameter under [edit protocols bgp group external family inet labeled-unicast] hierarchy level on both ASBRs.


NEW QUESTION # 25
Exhibit

Which two statements about the configuration shown in the exhibit are correct? (Choose two.)

  • A. A Layer 3 VPN is configured.
  • B. A Layer 2 VPN is configured.
  • C. This VPN connects customer sites that use the same AS number
  • D. This VPN connects customer sites that use different AS numbers.

Answer: A,D

Explanation:
Explanation
The configuration shown in the exhibit is for a Layer 3 VPN that connects customer sites that use different AS numbers. A Layer 3 VPN is a type of VPN that uses MPLS labels to forward packets across a provider network and BGP to exchange routing information between PE routers and CE routers. A Layer 3 VPN allows customers to use different routing protocols and AS numbers at their sites, as long as they can peer with BGP at the PE-CE interface. In this example, CE-1 is using AS 65530 and CE-2 is using AS 65531, but they can still communicate through the VPN because they have BGP sessions with PE-1 and PE-2, respectively.


NEW QUESTION # 26
What is the correct order of packet flow through configurable components in the Junos OS CoS features?

  • A. Multifield Classifier -> Behavior Aggregate Classifier -> Input Policer -> Forwarding Policy Options -> Fabric Scheduler -> Output Policer -> Rewrite Marker -> Scheduler/Shaper/RED
  • B. Behavior Aggregate Classifier -> Multifield Classifier -> Input Policer -> Forwarding Policy Options -> Fabric Scheduler -> Scheduler/Shaper/RED -> Output Policer -> Rewrite Marker
  • C. Behavior Aggregate Classifier -> Input Policer -> Multifield Classifier -> Forwarding Policy Options -> Fabric Scheduler -> Output Policer -> Scheduler/Shaper/RED -> Rewrite Marker
  • D. Behavior Aggregate Classifier -> Multifield Classifier -> Input Policer -> Forwarding Policy Options -> Fabric Scheduler -> Output Policer -> Scheduler/Shaper/RED -> Rewrite Marker

Answer: C

Explanation:
Explanation
The correct order of packet flow through configurable components in the Junos OS CoS features is as follows:
* Behavior Aggregate Classifier: This component uses a single field in a packet header to classify traffic into different forwarding classes and loss priorities based on predefined or user-defined values.
* Input Policer: This component applies rate-limiting and marking actions to incoming traffic based on the forwarding class and loss priority assigned by the classifier.
* Multifield Classifier: This component uses multiple fields in a packet header to classify traffic into different forwarding classes and loss priorities based on user-defined values and filters.
* Forwarding Policy Options: This component applies actions such as load balancing, filtering, or routing to traffic based on the forwarding class and loss priority assigned by the classifier.
* Fabric Scheduler: This component schedules traffic across the switch fabric based on the forwarding class and loss priority assigned by the classifier.
* Output Policer: This component applies rate-limiting and marking actions to outgoing traffic based on the forwarding class and loss priority assigned by the classifier.
* Scheduler/Shaper/RED: This component schedules, shapes, and drops traffic at the egress interface based on the forwarding class and loss priority assigned by the classifier.
* Rewrite Marker: This component rewrites the code-point bits of packets leaving an interface based on the forwarding class and loss priority assigned by the classifier.


NEW QUESTION # 27
Exhibit

You are running a service provider network and must transport a customer's IPv6 traffic across your IPv4-based MPLS network using BGP You have already configured mpis ipv6-tunneling on your PE routers.
Which two statements are correct about the BGP configuration in this scenario? (Choose two.)

  • A. You must configure family inet6 unicaat between PE and CE routers.
  • B. You must configure family inet6 labcled-unicast between PE routers.
  • C. You must configure family inet6 unicast between PE routers
  • D. You must configure family inet6 add-path between PE and CE routers.

Answer: A,B

Explanation:
Explanation
To transport IPv6 traffic over an IPv4-based MPLS network using BGP, you need to configure two address families: family inet6 labeled-unicast and family inet6 unicast. The former is used to exchange IPv6 routes with MPLS labels between PE routers, and the latter is used to exchange IPv6 routes without labels between PE and CE routers. The mpis ipv6-tunneling command enables the PE routers to encapsulate the IPv6 packets with an MPLS label stack and an IPv4 header before sending them over the MPLS network.


NEW QUESTION # 28
Exhibit

CE-1 must advertise ten subnets to PE-1 using BGP Once CE-1 starts advertising the subnets to PE-1, the BGP peering state changes to Active.
Referring to the CLI output shown in the exhibit, which statement is correct?

  • A. The prefix limit has been reached on PE-1
  • B. CE-1 is unreachable
  • C. CE-1 is configured with an incorrect peer AS
  • D. CE-1 is advertising its entire routing table.

Answer: C

Explanation:
Explanation
The problem in this scenario is that CE-1 is configured with an incorrect peer AS number for its BGP session with PE-1. The CLI output shows that CE-1 is using AS 65531 as its local AS number and AS 65530 as its peer AS number. However, PE-1 is using AS 65530 as its local AS number and AS 65531 as its peer AS number. This causes a mismatch in the BGP OPEN messages and prevents the BGP session from being established. To solve this problem, CE-1 should configure its peer AS number as 65530 under [edit protocols bgp group external] hierarchy level.


NEW QUESTION # 29
Exhibit

The network shown in the exhibit is based on IS-IS
Which statement is correct in this scenario?

  • A. The routers are using unnumbered interfaces
  • B. The NSEL byte for Area 0001 is 00.
  • C. The system IDofR1_2 is 192.168.16.1
  • D. The area address is two bytes.

Answer: B

Explanation:
Explanation
IS-IS is an interior gateway protocol that uses link-state routing to exchange routing information among routers within a single autonomous system. IS-IS uses two types of addresses to identify routers and areas:
system ID and area address. The system ID is a unique identifier for each router in an IS-IS domain. The system ID is 6 octets long and can be derived from the MAC address or manually configured. The area address is a variable-length identifier for each area in an IS-IS domain. The area address can be 1 to 13 octets long and is composed of high-order octets of the address. An IS-IS instance may be assigned multiple area addresses, which are considered synonymous. Multiple synonymous area addresses are useful when merging or splitting areas in the domain1. In this question, we have a network based on IS-IS with four routers (R1_1, R1_2, R2_1, and R2_2) belonging to area 0001. The area address for area 0001 is 49.0001. The NSEL byte for area 0001 is the last octet of the address, which is 01. The NSEL byte stands for Network Service Access Point Selector (NSAP Selector) and indicates the type of service requested from the network layer2. Therefore, the correct statement in this scenario is that the NSEL byte for area 0001 is 01.
References: 1:
https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/iproute_isis/configuration/xe-16/irs-xe-16-book/irs-ovrvw-cf.
2:
https://www.juniper.net/documentation/us/en/software/junos/is-is/topics/concept/is-is-routing-overview.html


NEW QUESTION # 30
Your organization manages a Layer 3 VPN for multiple customers To support advanced route than one BGP community on advertised VPN routes to remote PE routers.
Which routing-instance configuration parameter would support this requirement?

  • A. vrf-import
  • B. vrf-target import
  • C. vrf-target export
  • D. vrf-export

Answer: C

Explanation:
Explanation
The vrf-target export parameter is used to specify one or more BGP extended community attributes that are attached to VPN routes when they are exported from a VRF routing instance to remote PE routers. This parameter allows you to control which VPN routes are accepted by remote PE routers based on their import policies. You can specify more than one vrf-target export value for a VRF routing instance to support advanced route filtering or route leaking scenarios.


NEW QUESTION # 31
Which statement is correct about IS-IS when it performs the Dijkstra algorithm?

  • A. The algorithm will stop processing once the tree database is empty.
  • B. The local router moves its own local tuples into the candidate database
  • C. When a new neighbor ID in the tree database matches a router ID in the LSDB, the neighbor ID is moved to the candidate database
  • D. Tuples with the lowest cost are moved from the tree database to the LSDB.

Answer: B

Explanation:
Explanation
IS-IS is a link-state routing protocol that uses the Dijkstra algorithm to compute the shortest paths between nodes in a network. The Dijkstra algorithm maintains three data structures: a tree database, a candidate database, and a link-state database (LSDB). The tree database contains the nodes that have been visited and their shortest distances from the source node. The candidate database contains the nodes that have not been visited yet and their tentative distances from the source node. The LSDB contains the topology information of the network, such as the links and their costs.
The Dijkstra algorithm works as follows:
* The local router moves its own local tuples into the tree database. A tuple consists of a node ID, a distance, and a parent node ID. The local router's tuple has a distance of zero and no parent node.
* The local router moves its neighbors' tuples into the candidate database. The neighbors' tuples have distances equal to the costs of the links to them and parent node IDs equal to the local router's node ID.
* The local router selects the tuple with the lowest distance from the candidate database and moves it to the tree database. This tuple becomes the current node.
* The local router updates the distances of the current node's neighbors in the candidate database by adding the current node's distance to the link costs. If a shorter distance is found, the parent node ID is also updated.
* The algorithm repeats steps 3 and 4 until either the destination node is reached or the candidate database is empty.


NEW QUESTION # 32
Exhibit

You must ensure that the VPN backbone is preferred over the back door intra-area link as long as the VPN is available. Referring to the exhibit, which action will accomplish this task?

  • A. Enable OSPF traffic-engineering.
  • B. Configure an import routing policy on the CE routers that rejects OSPF routes learned on the backup intra-area link.
  • C. Configure the OSPF metric on the backup intra-area link that is higher than the L3VPN link.
  • D. Create an OSPF sham link between the PE routers.

Answer: D

Explanation:
Explanation
A sham link is a logical link between two PE routers that belong to the same OSPF area but are connected through an L3VPN. A sham link makes the PE routers appear as if they are directly connected, and prevents OSPF from preferring an intra-area back door link over the VPN backbone. To create a sham link, you need to configure the local and remote addresses of the PE routers under the [edit protocols ospf area area-id] hierarchy level1.


NEW QUESTION # 33
Exhibit

Referring to the exhibit, CE-1 is providing NAT services for the hosts at Site 1 and you must provide Internet access for those hosts Which two statements are correct in this scenario? (Choose two.)

  • A. You must configure a static route in the main routing instance for the 10 1 2.0/24 prefix that uses the VPN-A.inet.0 table as the next hop
  • B. You must configure a RIB group on PE-1 to leak the 10 1 2.0/24 prefix from the VPN-A.inet.0 table to the inet.0 table.
  • C. You must configure a static route in the main routing instance for the 203.0.113.1/32 prefix that uses the VPN-A.inet.0 table as the next hop.
  • D. You must configure a RIB group on PE-1 to leak a default route from the inet.0 table to the VPN-A.inet.0 table.

Answer: A,C

Explanation:
Explanation
To provide Internet access for the hosts at Site 1, you need to configure static routes in the main routing instance on PE-1 that point to the VPN-A.inet.0 table as the next hop. This allows PE-1 to forward traffic from the Internet to CE-1 using MPLS labels and vice versa. You need to configure two static routes: one for the
10.1.2.0/24 prefix that represents the private network of Site 1, and one for the 203.0.113.1/32 prefix that represents the public IP address of CE-1.


NEW QUESTION # 34
Which three mechanisms are used by Junos platforms to evaluate incoming traffic for CoS purposes? (Choose three )

  • A. rewrite rules
  • B. traffic shapers
  • C. fixed classifiers
  • D. behavior aggregate classifiers
  • E. multifield classifiers

Answer: C,D,E

Explanation:
Explanation
Junos platforms use different mechanisms to evaluate incoming traffic for CoS purposes, such as:
* Behavior aggregate classifiers: These classifiers use a single field in a packet header to classify traffic into different forwarding classes and loss priorities based on predefined or user-defined values.
* Fixed classifiers: These classifiers use a fixed field in a packet header to classify traffic into different forwarding classes and loss priorities based on predefined values.
* Multifield classifiers: These classifiers use multiple fields in a packet header to classify traffic into different forwarding classes and loss priorities based on user-defined values and filters.
Rewrite rules and traffic shapers are not used to evaluate incoming traffic for CoS purposes, but rather to modify or shape outgoing traffic based on CoS policies.


NEW QUESTION # 35
Exhibit

You want to implement the BGP Generalized TTL Security Mechanism (GTSM) on the network Which three statements are correct in this scenario? (Choose three)

  • A. BGP GTSM requires a firewall filter to discard packets with incorrect TTL.
  • B. BGP GTSM requires a TTL of 255 to be configured between neighbors.
  • C. You can implement BGP GTSM between R2 and R1.
  • D. BGP GTSM requires a TTL of 1 to be configured between neighbors.
  • E. You can implement BGP GTSM between R2, R3, and R4

Answer: B,D,E

Explanation:
Explanation
BGP GTSM is a technique that protects a BGP session by comparing the TTL value in the IP header of incoming BGP packets against a valid TTL range. If the TTL value is within the valid TTL range, the packet is accepted. If not, the packet is discarded. The valid TTL range is from 255 - the configured hop count + 1 to
255. When GTSM is configured, the BGP packets sent by the device have a TTL of 255. GTSM provides best protection for directly connected EBGP sessions, but not for multihop EBGP or IBGP sessions because the TTL of packets might be modified by intermediate devices.
In the exhibit, we can see that R2, R3, and R4 are in the same AS (AS 20) and R1 is in a different AS (AS 10).
Based on this information, we can infer the following statements:
* You can implement BGP GTSM between R2, R3, and R4. This is not correct because R2, R3, and R4 are IBGP peers and GTSM does not provide effective protection for IBGP sessions. The TTL of packets between IBGP peers might be changed by intermediate devices or routing protocols.
* BGP GTSM requires a firewall filter to discard packets with incorrect TTL. This is not correct because BGP GTSM does not require a firewall filter to discard packets with incorrect TTL. BGP GTSM uses TCP option 19 to negotiate GTSM capability between peers and uses TCP option 20 to carry the expected TTL value in each packet. The receiver checks the expected TTL value against the actual TTL value and discards packets with incorrect TTL values.
* You can implement BGP GTSM between R2 and R1. This is correct because R2 and R1 are EBGP peers and GTSM provides effective protection for directly connected EBGP sessions. The TTL of packets between directly connected EBGP peers is not changed by intermediate devices or routing protocols.
* BGP GTSM requires a TTL of 1 to be configured between neighbors. This is not correct because BGP GTSM requires a TTL of 255 to be configured between neighbors. The sender sets the TTL of packets to 255 and the receiver expects the TTL of packets to be 255 minus the configured hop count.
* BGP GTSM requires a TTL of 255 to be configured between neighbors. This is correct because BGP GTSM requires a TTL of 255 to be configured between neighbors. The sender sets the TTL of packets to 255 and the receiver expects the TTL of packets to be 255 minus the configured hop count.


NEW QUESTION # 36
......


Juniper JN0-664 exam is a written exam and consists of 65 multiple-choice questions. The candidate has 120 minutes to complete the exam. JN0-664 exam is available in English and is administered worldwide by Pearson VUE. The passing score for the exam is 65%.


The JN0-664 exam is part of the Juniper Networks Certified Internet Professional (JNCIP-SP) certification track and is a stepping stone to becoming a Juniper Networks Certified Internet Expert (JNCIE-SP). JN0-664 exam consists of multiple-choice questions and hands-on lab exercises that test the candidate's knowledge and ability to configure and troubleshoot Juniper Networks service provider networks.


The JN0-664 exam is a comprehensive exam that covers a wide range of topics that are essential for service provider professionals. These topics include advanced routing technologies, IP multicast, Layer 2 switching, and Layer 3 VPNs. JN0-664 exam is designed to test the knowledge and skills of professionals who work with Juniper Networks technologies in a variety of service provider environments, including data centers, service provider networks, and enterprise networks.

 

Download Exam JN0-664 Practice Test Questions with 100% Verified Answers: https://passleader.free4dump.com/JN0-664-real-dump.html

Related Articles

more
Juniper JN0-664 Certification Practice Exam