R1 has two interfaces labeled E0/0

an ospf stub area only prevents external routes.  Type-3 (summary LSAs) are permitted in an ospf stub area.

you need the command 'area 1 stub no-summary'

Tough question.

A permit any statement is modifying the acl, which is prohibited.

a continue statement on the route map does nothing


A permit 20 is route-map syntax (20 permit would be for an ACL).  Adding a route-map entry to permit anything not matched by route-map entry 10  is the correct option.

Keywords here are 'only ever uses the MPLS B Network'. Any option that sets a preferences is invalid.

Modifying the weight, local preference or AS Path prepending allows traffic to go through MPLS A during an outage.

AS Path filtering is the only option.  It allows connectivity to Branch A, but would prevent Branch b from learning routes from MPLS A.

Exhibit shows that the acl is applied to the interface

Inbound access list ENARSI-ACL

Not sure what the correct answer is but applying the acl to the interface is wrong

Diagram is misleading , the two circles suggest eBGP but path in neighbor table suggests iBGP.

RB is clearly in AS65101

the two circles and the answer choices suggest RD, RE, and RF are in AS65201.

i think there is an issue with the "correct" answer.

It should be:

"no sequence 30" and then put this entry as sequence 5. 
Otherwise you put the same entry as sequence 5 as already set in sequence 30

How do you configure a different interface to send netflow records?  

The destination is on the same subnet as the mgmt interface (gig 0).

Gig 0 is isolated from other vrf's it is unlikely that other interfaces will be able to send traffic to 192.168.100.17.  This is a private ip address on the Mgmt-intf vrf.  

The more likely solution is to fix a connectivity problem between two devices on the same vrf and network segment.

IP addressing problem in diagram. Are both devices directly connected but in different subnets?


It is not the filename.
Switch is a tftp client, no need to configure it for server function.


Not sure about the other two.  
Adding a route in the switch won't help if there is no router.  I suppose you could specify an exit interface of e0/1 but then you would have to do the same in the server.

Using TFTP Server IP address 10.0.0.0.1?  THats the switch address but who knows the ip addressing in the exhibit seems wrong.

IF this is how the question is intended than an better explanation is warranted.

SNMPv3 is the only version that supports authentication.


ACL related problems would deny traffic.  You would not see an AUTHFAIL if the ACL was a problem.

the community strings are valid.

You cannot configure SNMP authentication on SNMPv2 and below

Only option to support authentication failures is to update to SNMP v3