Exam 300-410 All QuestionsBrowse all questions from this exam
Go to Exam
Question 163

The network administrator configured CoPP so that all HTTP and HTTPS traffic from the administrator device located at 172.16 1.99 toward the router CPU is limited to 500 kbps. Any traffic that exceeds this limit must be dropped. access-list 100 permit ip host 172.16.1.99 any

!

class-map CM-ADMIN

match access-group 100

!

policy-map PM-COPP

class CM-ADMIN

police 500000 conform-action transmit

!

interface E0/0

service-policy input PM-COPP

CoPP failed to capture the desired traffic and the CPU load is getting higher.

Which two configurations resolve the issue? (Choose two.)

    Correct Answer: A, D

    To resolve the issue, the correct configurations would be to apply the policy to the control plane rather than the interface (option A) and to update the access list to specifically permit HTTP and HTTPS traffic (option D). Option A ensures that the service policy accurately limits traffic to the router's CPU, and option D refines the access list to match the specified traffic types (HTTP and HTTPS), thus capturing the desired traffic effectively.

Discussion
rogabor81Options: AD

I would say A an D as well. but should not we add an exceed-action drop at the and as well? it says that any exceeding traffic should be dropped....

HungarianDish

That seems to be missing, too. A+D, plus exceed-action drop.

Muste

The default policing action if you only configured conformed-action is to drop the packets that exceed the configured rate limit.

dapardo

Agree on this, it doesnt make sense to me without the drop action.

[Removed]Option: D

Choose two, A&D, configure the Control Plane to reference the Policy Map inbound. and the access list needs to reference por 80 and 443 for HTTP and HTTPS respectively.

Coffee_bean_master

Side note: Other traffic that may be important will get dropped if not allowed through the ACL 100. This is to include control plane traffic that is important to the router. I choose A and D for the answers.

Coffee_bean_master

If CoPP is changed from the interface to the CPU, then other important traffic will need to be allowed through as well or else get dropped. (BGP, EIGRP, SNMP, etc.)

GramterreOption: A

A&D choose two please fix

tubirubsOption: A

Choose two, A&D

SAMAKEMMOptions: AD

Correct answer: A & D

DacusaiOptions: AD

A&D, question says choose 2. But to restrict traffic to 500 kb we need to add the exceed-action drop command in order to do real control

Noproblem22Options: AD

A D are correct answer

xziomal9Options: AD

The correct answer is: A D

PietjeplukgelukOption: A

A seems OK, but D seems fully wrong as command == bits per second, so 500 is wrong. Require 500 kilobits per second it should police at a 500.000 cir. so i do not see any correct answer in D. Furthermore, the ACL is wrong as the destination of packets destined at the router will always have the router in the destination and not the source. Again, really bad question.

inteldarvidOption: D

are two option: A and D

forccnpOption: D

A&D are correct answers

XerathOptions: AD

The answer is: A & D.

ChillingAgainOption: A

A and D are correct. Please correct the answers!

Hack4Options: AD

A AND D

piojoOptions: AD

A and D (choose two)