Page: 1
/ 14
Total 277 questions
Cisco Implementing Cisco Enterprise Wireless Networks 300-430 ENWLSI Exam Questions
Question 1
A network administrator of a school district must implement a DNS-based ACL to block students from accessing certain teacher URLs where test papers are hosted. The infrastructure contains a Cisco Catalyst 9800 WLC with 25 9136 APs. The administrator configured the URL Filter List called urllist_flex_pre, applied the URL Filter List to the default Flex Profile, and defined Preauth called urllist_local_preauth and Postauth called urllist_local_postaut URL Filter List. Which configuration must the administrator apply to implement the ACL on the default policy profile?
Answer : C
Question 2
An engineer needs to provision certificates on a Cisco Catalyst 9800 Series Wireless Controller. The customer uses a third-party CA server. Which protocol must be used between the controller and CA server to request and install certificates?
Answer : A
The Simple Certificate Enrollment Protocol (SCEP) is used to securely issue certificates to network devices in a scalable manner. When provisioning certificates on a Cisco Catalyst 9800 Series Wireless Controller using a third-party CA server, SCEP is the protocol that facilitates this process. It allows the controller to request and install certificates automatically, which is essential for establishing secure communications within the network.Reference:= (CCNP Enterprise Wireless Design ENWLSD 300-425 and Implementation ENWLSI 300-430 Official Cert Guide)
Question 3
An engineer is following the proper upgrade path to upgrade a Cisco AireOS WLC from version 7.3 to 8.9. Which two ACLs for Cisco CWA must be configured when upgrading from the specified codes? (Choose two.)
Answer : B, E
When upgrading a Cisco AireOS WLC from version 7.3 to 8.9, it's crucial to configure ACLs that allow necessary traffic for Cisco Central Web Authentication (CWA). The correct ACLs to configure are:
B . Permit 0.0.0.0 0.0.0.0 UDP DNS any: This ACL allows DNS queries from any source to any destination, which is essential for resolving domain names during the upgrade process.
E . Permit 0.0.0.0 0.0.0.0 UDP any any: This ACL permits all UDP traffic from any source to any destination, ensuring that services relying on UDP can continue to function during the upgrade.
These ACLs ensure that critical services like DNS resolution are not interrupted during the upgrade process, which could otherwise lead to system instability or failure to access network resources.Reference:= ( CCNP Enterprise Wireless Design ENWLSD 300-425 and Implementation ENWLSI 300-430 Official Cert Guide )
Question 4
A network engineer is deploying 8865 IP phones with wireless clients connected to them. In order to apply the appropriate QoS, the IP voice traffic needs to be distinguished from client data traffic. Which switch configuration feature must be enabled?
Answer : A
The Voice VLAN feature on switches allows the network to distinguish between voice traffic and data traffic from wireless clients connected to IP phones. This is crucial for applying the appropriate QoS to ensure that voice traffic is prioritized over client data traffic.Reference: CCNP Enterprise Wireless Design ENWLSD 300-425 and Implementation ENWLSI 300-430 Official Cert Guide.
Question 5
Which configuration is applied to prevent the network from a Layer 2 flooding of multicast frames with a seamless transfer of multicast data to the client when roaming from one controller to another?
Answer : B
To prevent the network from a Layer 2 flooding of multicast frames and ensure a seamless transfer of multicast data to the client when roaming, IGMP snooping should be enabled on the WLC. This feature allows the WLC to monitor and control multicast traffic at Layer 2, preventing unnecessary multicast forwarding.
Question 6
An engineer is configuring a new wireless network for guest access. The Facebook page of the company must be viewed by the guest users before they get access to the network. A Cisco MSE is used as a wireless component. Which URL must be used in the configuration as the external redirection URL?
Answer : B
The correct URL to be used in the configuration as the external redirection URL for guests to view the company's Facebook page before accessing the network ishttp://<MSE>:8083/fbwifi/forward (B). This URL is associated with the Cisco MSE's Facebook Wi-Fi feature, which facilitates the redirection process.Reference: CCNP Enterprise Wireless Design ENWLSD 300-425 and Implementation ENWLSI 300-430 Official Cert Guide.
Question 7
The Cisco Hyperlocation detection threshold is currently set to -50 dBm. After reviewing the wireless user location, discrepancies have been noticed. To improve the Cisco Hyperlocation accuracy, an engineer attempts to change the detection threshold to -100 dBm. However, the Cisco Catalyst 9800 Series Wireless Controller does not allow this change to be applied. What actions should be taken to resolve this issue?
Answer : D
To resolve the issue of changing the Cisco Hyperlocation detection threshold, the engineer should shut down all radios on the controller, change the Cisco Hyperlocation detection range, and then enable the radios again. This process ensures that the new threshold settings are applied correctly across the network.
All Official Question Types