Cisco Exam 350-501 Topic 7 Question 78 Discussion

Actual exam question for Cisco's 350-501 exam

Question #: 78
Topic #: 7

Refer to the exhibit.

Refer to the exhbit. ISP A has a BGP peering with ISP C with the maximum-prefix 150 configuration on R1. After a recent security breach on the ISP A network, a network engineer has been asked to enable a lightweight security mechanism to protect the R1 CPU and BGP membership from spoofing attacks. Which solution must ISP A implement?

AConfigure bgp maxas-limit 1 in the IPv4 address family urateUhe global BGP configuration.

BConfigure neighbor 10.163.83.54 enable-connected-check under the BGP IPv4 address family.

CConfigure neighbor 10.163.83.55 password Cisco under the global BGP IPv4 address family.

DConfigure neighbor 10.163.83.55 ttl-stcurity hops 2 under the global BGP configuration.

Show Suggested Answer

Suggested Answer: D

by Jade at Dec 11, 2023, 12:07 PM

Limited Time Offer

25%

Off

Get Premium 350-501 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Celia

8 days ago

Haha, I bet the network engineer who had to deal with that security breach is not feeling too great right now. But hey, at least they get to test our BGP security knowledge!

upvoted 0 times

...

Bernardo

9 days ago

Hmm, I'm not sure about this one. The exhibit doesn't provide a lot of context, and I'm not familiar with the specific configuration on R1. But I'll give it my best shot.

upvoted 0 times

...

Nikita

10 days ago

I agree, this seems like a straightforward question. The key is understanding the different security mechanisms that can be used to protect the BGP control plane from spoofing attacks.

upvoted 0 times

...

Lavera

11 days ago

This question seems to be testing our understanding of BGP and security best practices. I think it's a pretty straightforward one, as long as we know the different options available for securing BGP sessions.

upvoted 0 times

...