• Home
  • Articles
  • Updated Nov 15, 2023 Verified Pass JN0-664 Exam in First Attempt Guaranteed [Q37-Q53]

Updated Nov 15, 2023 Verified Pass JN0-664 Exam in First Attempt Guaranteed [Q37-Q53]

Share

Updated Nov 15, 2023 Verified Pass JN0-664 Exam in First Attempt Guaranteed

Free JN0-664 Sample Questions and 100% Cover Real Exam Questions (Updated 67 Questions)


Juniper JN0-664 exam is a challenging test that requires a lot of preparation. Candidates must have hands-on experience with Juniper Networks Service Provider Routing and Switching technologies to pass JN0-664 exam. They must also have a deep understanding of the concepts covered in the exam and be able to apply them in real-world scenarios.

 

NEW QUESTION # 37
Exhibit
user@Rl show configuration interpolated-profile { interpolate {
fill-level [ 50 75 drop-probability [ > }
class-of-service drop-profiles
];
20 60 ];
Which two statements are correct about the class-of-service configuration shown in the exhibit? (Choose two.)

  • A. The drop probability gradually increases from 20% to 60% as the queue level increases from 50% full to
    75% full
  • B. The drop probability jumps immediately from 20% to 60% when the queue level reaches 75% full.
  • C. To use this drop profile, you apply it directly to an interface.
  • D. To use this drop profile, you reference it in a scheduler.

Answer: A,D

Explanation:
Explanation
class-of-service (CoS) is a feature that allows you to prioritize and manage network traffic based on various criteria, such as application type, user group, or packet loss priority. CoS uses different components to classify, mark, queue, schedule, shape, and drop traffic according to the configured policies.
One of the components of CoS is drop profiles, which define how packets are dropped when a queue is congested. Drop profiles use random early detection (RED) algorithm to drop packets randomly before the queue is full, which helps to avoid global synchronization and improve network performance. Drop profiles can be discrete or interpolated. A discrete drop profile maps a specific fill level of a queue to a specific drop probability. An interpolated drop profile maps a range of fill levels of a queue to a range of drop probabilities and interpolates the values in between.
In the exhibit, we can see that the class-of-service configuration shows an interpolated drop profile with two fill levels (50 and 75) and two drop probabilities (20 and 60). Based on this configuration, we can infer the following statements:
* The drop probability jumps immediately from 20% to 60% when the queue level reaches 75% full. This is not correct because the drop profile is interpolated, not discrete. This means that the drop probability gradually increases from 20% to 60% as the queue level increases from 50% full to 75% full. The drop probability for any fill level between 50% and 75% can be calculated by using linear interpolation formula.
* The drop probability gradually increases from 20% to 60% as the queue level increases from 50% full to
75% full. This is correct because the drop profile is interpolated and uses linear interpolation formula to calculate the drop probability for any fill level between 50% and 75%. For example, if the fill level is
60%, the drop probability is 28%, which is calculated by using the formula: (60 - 50) / (75 - 50) * (60 -
20) + 20 = 28.
* To use this drop profile, you reference it in a scheduler. This is correct because a scheduler is a component of CoS that determines how packets are dequeued from different queues and transmitted on an interface. A scheduler can reference a drop profile by using the random-detect statement under the
[edit class-of-service schedulers] hierarchy level. For example: scheduler test { transmit-rate percent 10; buffer-size percent 10; random-detect test-profile; }
* To use this drop profile, you apply it directly to an interface. This is not correct because a drop profile cannot be applied directly to an interface. A drop profile can only be referenced by a scheduler, which can be applied to an interface by using the scheduler-map statement under the [edit class-of-service interfaces] hierarchy level. For example: interfaces ge-0/0/0 { unit 0 { scheduler-map test-map; } }


NEW QUESTION # 38
Exhibit

You are attempting to summarize routes from the 203.0.113.128/25 IP block on R8 to AS 64500. You implement the export policy shown in the exhibit and all routes from the routing table stop being advertised.
In this scenario, which two steps would you take to summarize the route in BGP? (Choose two.)

  • A. Add the set routing-options static route 203.0.113.123/25 discard command.
  • B. Remove the from protocol bgp command from the export policy.
  • C. Add the set protocols bgp family inet unicast add-path command to allow additional routes to the RIB tables. -
  • D. Replace exact in the export policy with orlonger.

Answer: A,D

Explanation:
Explanation
To summarize routes from the 203.0.113.128/25 IP block on R8 to AS 64500, you need to do the following:
* Add the set routing-options static route 203.0.113.128/25 discard command. This creates a static route for the summary prefix and discards any traffic destined to it. This is necessary because BGP can only advertise routes that are present in the routing table.
* Replace exact in the export policy with orlonger. This allows R8 to match and advertise any route that is equal or more specific than the summary prefix. The exact term only matches routes that are exactly equal to the summary prefix, which is not present in the routing table.


NEW QUESTION # 39
Exhibit

Referring to the exhibit, you must provide Internet access for VPN-A using CE-1 as the hub CE.
Which two statements are correct in this situation? (Choose two.)

  • A. Internet traffic from Site 2 takes the path of PE-2 -> PE-1 -> CE-1 -> PE-1 -> GW-1.
  • B. You must use RIB groups to leak routes between the inet. o and vpn-a. inet. o tables.
  • C. RIB groups are not needed to leak routes between the inet. 0 and VPN-A. inet. 0 tables,
  • D. Internet traffic from Site 2 takes the path of PE-2 -> PE-1 -> GW-1.

Answer: A,B

Explanation:
Explanation
To provide Internet access for VPN-A using CE-1 as the hub CE, you need to do the following:
* You must use RIB groups to leak routes between the inet.0 and vpn-a.inet.0 tables on PE-1 and CE-1.
RIB groups are routing options that allow you to import routes from one routing table into another routing table based on certain criteria. In this scenario, you need to configure RIB groups on PE-1 and CE-1 to import Internet routes from inet.0 into vpn-a.inet.0 and vice versa.
* Internet traffic from Site 2 takes the path of PE-2 -> PE-1 -> CE-1 -> PE-1 -> GW-1. This is because Site 2 does not have direct Internet access and needs to use CE-1 as its default gateway for Internet traffic. Site 2 sends its Internet traffic to PE-2, which forwards it to PE-1 based on VPN-A routes. PE-1 then sends it to CE-1 based on RIB group import policy. CE-1 then sends it back to PE-1 based on its default route pointing to GW-1. PE-1 then forwards it to GW-1 based on RIB group import policy again.


NEW QUESTION # 40
You are configuring a BGP signaled Layer 2 VPN across your MPLS enabled core network. In this scenario, which statement is correct?

  • A. You must assign a unique site number to each attached site's configuration.
  • B. This type of VPN requires the support of the inet-vpn NLRI on all core BGP devices
  • C. You must use the same route-distinguiaher value on both PE devices.
  • D. This type of VPN only supports Ethernet interfaces when connecting to CE devices.

Answer: B

Explanation:
Explanation
BGP signaled Layer 2 VPN is a type of VPN that uses BGP to distribute VPN labels and information for Layer 2 connectivity between sites over an MPLS network. BGP signaled Layer 2 VPN requires the support of the l2vpn NLRI on all core BGP devices . The l2vpn NLRI is a new address family that carries Layer 2 VPN information such as the VPN identifier, the attachment circuit identifier, and the route distinguisher. The l2vpn NLRI is used for both auto-discovery and signaling of Layer 2 VPNs . In this scenario, we are configuring a BGP signaled Layer 2 VPN across an MPLS enabled core network. Therefore, we need to ensure that all core BGP devices support the l2vpn NLRI.
References: 1:
https://www.juniper.net/documentation/us/en/software/junos/vpn-l2/topics/concept/vpn-layer-2-overview.html
2:
https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/mp_l2_vpns/configuration/xe-16/mp-l2-vpns-xe-16-book/vpl


NEW QUESTION # 41
Exhibit

R4 is directly connected to both RPs (R2 and R3) R4 is currently sending all ,o,ns upstream to R3 but you want all joins to go to R2 instead Referring to the exhibit, which configuration change will solve this issue?

  • A. Change the group-range to be more specific on R2 than R3.
  • B. Change the local address on R2 to be higher than R3.
  • C. Change the default route in inet.2 on R4 from R3 as the next hop to R2
  • D. Change the bootstrap priority on R2 to be higher than R3

Answer: D

Explanation:
Explanation
PIM Bootstrap Router (BSR) is a mechanism that allows PIM routers to discover and announce rendezvous point (RP) information for multicast groups. BSR uses two roles: candidate BSR and candidate RP. Candidate BSR is the router that collects information from all available RPs in the network and advertises it throughout the network. Candidate RP is the router that wants to become the RP and registers itself with the BSR. There can be only one active BSR in the network, which is elected based on the highest priority or highest IP address if the priority is the same. The BSR priority can be configured manually or assigned automatically. The default priority is 0 and the highest priority is 2551. In this question, R4 is directly connected to both RPs (R2 and R3) and is currently sending all joins upstream to R3 but we want all joins to go to R2 instead. To achieve this, we need to change the BSR priority on R2 to be higher than R3 so that R2 becomes the active BSR and advertises its RP information to R4.


NEW QUESTION # 42
Exhibit

You must ensure that the VPN backbone is preferred over the back door intra-area link as long as the VPN is available. Referring to the exhibit, which action will accomplish this task?

  • A. Create an OSPF sham link between the PE routers.
  • B. Configure the OSPF metric on the backup intra-area link that is higher than the L3VPN link.
  • C. Enable OSPF traffic-engineering.
  • D. Configure an import routing policy on the CE routers that rejects OSPF routes learned on the backup intra-area link.

Answer: A

Explanation:
Explanation
A sham link is a logical link between two PE routers that belong to the same OSPF area but are connected through an L3VPN. A sham link makes the PE routers appear as if they are directly connected, and prevents OSPF from preferring an intra-area back door link over the VPN backbone. To create a sham link, you need to configure the local and remote addresses of the PE routers under the [edit protocols ospf area area-id] hierarchy level1.


NEW QUESTION # 43
Exhibit.

Referring to the exhibit; the 10.0.0.0/24 EBGP route is received on R5; however, the route is being hidden.
What are two solutions that will solve this problem? (Choose two.)

  • A. On R4, create a policy to change the BGP next hop to 172.16.1.1 and apply it to IBGP as an export policy
  • B. Add the external interface prefix to the IGP routing tables
  • C. Add the internal interface prefix to the BGP routing tables.
  • D. On R4, create a policy to change the BGP next hop to itself and apply it to IBGP as an export policy

Answer: B,D

Explanation:
Explanation
the default behavior for iBGP is to propagate EBGP-learned prefixes without changing the next-hop. This can cause issues if the next-hop is not reachable via the IGP. One solution is to use the next-hop self command on R4, which will change the next-hop attribute to its own loopback address. This way, R5 can reach the next-hop via the IGP and install the route in its routing table.
Another solution is to add the external interface prefix (120.0.4.16/30) to the IGP routing tables of R4 and R5.
This will also make the next-hop reachable via the IGP and allow R5 to use the route. According to 2, this is a possible workaround for a pure IP network, but it may not work well for an MPLS network.


NEW QUESTION # 44
Exhibit

Referring to the exhibit, you are receiving the 192.168 0 0/16 route on both R3 and R4 from your EBGP neighbor You must ensure that R1 and R2 receive both BGP routes from the route reflector In this scenario, which BGP feature should you configure to accomplish this behavior?

  • A. multipath
  • B. multihop
  • C. add-path
  • D. route-target

Answer: C

Explanation:
Explanation
BGP add-path is a feature that allows the advertisement of multiple paths through the same peering session for the same prefix without the new paths implicitly replacing any previous paths. This behavior promotes path diversity and reduces multi-exit discriminator (MED) oscillations. BGP add-path is implemented by adding a path identifier to each path in the NLRI. The path identifier can be considered as something similar to a route distinguisher in VPNs, except that a path ID can apply to any address family. Path IDs are unique to a peering session and are generated for each network3. In this question, we have a route reflector (RR) that receives two routes for the same prefix (192.168.0.0/16) from an EBGP neighbor. By default, the RR will only advertise its best path to its clients (R1 and R2). However, we want R1 and R2 to receive both routes from the RR. To achieve this, we need to configure BGP add-path on the RR and enable it to send multiple paths for the same prefix to its clients.


NEW QUESTION # 45
Which statement is true regarding BGP FlowSpec?

  • A. It uses a remote triggered black hole to protect a network from a denial-of-service attack.
  • B. It is used to protect a network from denial-of-service attacks dynamically
  • C. It uses dynamically created routing policies to protect a network from denial-of-service attacks
  • D. It verifies that the source IP of the incoming packet has a resolvable route in the routing table

Answer: C

Explanation:
Explanation
BGP FlowSpec is a feature that extends the Border Gateway Protocol (BGP) to enable routers to exchange traffic flow specifications, allowing for more precise control of network traffic. The BGP FlowSpec feature enables routers to advertise and receive information about specific flows in the network, such as those originating from a particular source or destined for a particular destination. Routers can then use this information to construct traffic filters that allow or deny packets of a certain type, rate limit flows, or perform other actions1. BGP FlowSpec can also help in filtering traffic and taking action against distributed denial of service (DDoS) attacks by dropping the DDoS traffic or diverting it to an analyzer2. BGP FlowSpec rules are internally converted to equivalent Cisco Common Classification Policy Language (C3PL) representing corresponding match and action parameters2. Therefore, BGP FlowSpec uses dynamically created routing policies to protect a network from denial-of-service attacks.
References: 1: https://www.networkingsignal.com/what-is-bgp-flowspec/ 2:
https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/iproute_bgp/configuration/xe-16/irg-xe-16-book/bgp-flowspe


NEW QUESTION # 46
Exhibit

Click the Exhibit button-Referring to the exhibit, which two statements are correct about BGP routes on R3 that are learned from the ISP-A neighbor? (Choose two.)

  • A. The BGP local-preference value that is used by ISP-A is not advertised to R3.
  • B. By default, the next-hop value for these routes is not changed by ISP-A before being sent to R3.
  • C. All BGP attribute values must be removed before receiving the routes.
  • D. The next-hop value for these routes is changed by ISP-A before being sent to R3.

Answer: A,B

Explanation:
Explanation
BGP is an exterior gateway protocol that uses path vector routing to exchange routing information among autonomous systems. BGP uses various attributes to select the best path to each destination and to propagate routing policies. Some of the common BGP attributes are AS path, next hop, local preference, MED, origin, weight, and community. BGP attributes can be classified into four categories: well-known mandatory, well-known discretionary, optional transitive, and optional nontransitive. Well-known mandatory attributes are attributes that must be present in every BGP update message and must be recognized by every BGP speaker.
Well-known discretionary attributes are attributes that may or may not be present in a BGP update message but must be recognized by every BGP speaker. Optional transitive attributes are attributes that may or may not be present in a BGP update message and may or may not be recognized by a BGP speaker. If an optional transitive attribute is not recognized by a BGP speaker, it is passed along to the next BGP speaker. Optional nontransitive attributes are attributes that may or may not be present in a BGP update message and may or may not be recognized by a BGP speaker. If an optional nontransitive attribute is not recognized by a BGP speaker, it is not passed along to the next BGP speaker. In this question, we have four routers (R1, R2, R3, and R4) that are connected in a full mesh topology and running IBGP. R3 receives the 192.168.0.0/16 route from its EBGP neighbor and advertises it to R1 and R4 with different BGP attribute values. We are asked which statements are correct about the BGP routes on R3 that are learned from the ISP-A neighbor. Based on the information given, we can infer that the correct statements are:
* By default, the next-hop value for these routes is not changed by ISP-A before being sent to R3. This is because the default behavior of EBGP is to preserve the next-hop attribute of the routes received from another EBGP neighbor. The next-hop attribute indicates the IP address of the router that should be used as the next hop to reach the destination network.
* The BGP local-preference value that is used by ISP-A is not advertised to R3. This is because the local-preference attribute is a well-known discretionary attribute that is used to influence the outbound traffic from an autonomous system. The local-preference attribute is only propagated within an autonomous system and is not advertised to external neighbors.
References: : https://www.cisco.com/c/en/us/support/docs/ip/border-gateway-protocol-bgp/13753-25.html :
https://www.cisco.com/c/en/us/support/docs/ip/border-gateway-protocol-bgp/13762-40.html :
https://www.cisco.com/c/en/us/support/docs/ip/border-gateway-protocol-bgp/13759-37.html


NEW QUESTION # 47
Exhibit

Which two statements about the configuration shown in the exhibit are correct? (Choose two.)

  • A. A Layer 3 VPN is configured.
  • B. This VPN connects customer sites that use different AS numbers.
  • C. A Layer 2 VPN is configured.
  • D. This VPN connects customer sites that use the same AS number

Answer: A,B

Explanation:
Explanation
The configuration shown in the exhibit is for a Layer 3 VPN that connects customer sites that use different AS numbers. A Layer 3 VPN is a type of VPN that uses MPLS labels to forward packets across a provider network and BGP to exchange routing information between PE routers and CE routers. A Layer 3 VPN allows customers to use different routing protocols and AS numbers at their sites, as long as they can peer with BGP at the PE-CE interface. In this example, CE-1 is using AS 65530 and CE-2 is using AS 65531, but they can still communicate through the VPN because they have BGP sessions with PE-1 and PE-2, respectively.


NEW QUESTION # 48
Exhibit

You are examining an L3VPN route that includes the information shown in the exhibit Which statement is correct in this scenario?

  • A. The information shows a Type 1 route distinguisher.
  • B. The information shows a Type 0 route distinguisher
  • C. The information shows a route target
  • D. The information shows a Type 2 route distinguisher.

Answer: B

Explanation:
Explanation
The information shows a Type 0 route distinguisher, which is one of the three types of route distinguishers defined by RFC 4364. A route distinguisher is a 64-bit value that is prepended to an IPv4 address to create a VPN-IPv4 address, which is unique within a VPN routing and forwarding (VRF) table. A Type 0 route distinguisher has two fields: an administrator subfield (2 bytes) and an assigned number subfield (6 bytes). The administrator subfield can be an AS number or an IP address, and the assigned number subfield can be any value assigned by the administrator. In this example, the administrator subfield is 65530 (an AS number) and the assigned number subfield is 1.


NEW QUESTION # 49
Exhibit

Referring to the exhibit, which three statements are correct about route 10 0 0.0/16 when using the default BGP advertisement rules'? (Choose three.)

  • A. R2 will advertise 10.0.0.0/16 to R4 with 172.16.1.1 as the next hop
  • B. R2 will advertise 10.0.0.0/16 to R3 with 192.168.1 1 as the next hop
  • C. R1 will advertise 10.0.0.0/16 to R2 with 192 168 1 1 as the next hop.
  • D. R1 will prepend AS 65531 when advertising 10 0.0 0/16 to R2.
  • E. R4 will advertise 10 0.0 0/16 to R6 with 172.16 1 1 as the next hop

Answer: A,C,E

Explanation:
Explanation
The problem in this scenario is that R1 and R8 are not receiving each other's routes because of private AS numbers in the AS path. Private AS numbers are not globally unique and are not advertised to external BGP peers. To solve this problem, you need to do the following:
* Configure loops on routers in AS 65412 and advertise-peer-as on routers in AS 64498. This allows R5 and R6 to advertise their own AS number (65412) instead of their peer's AS number (64498) when sending updates to R7 and R8. This prevents a loop detection issue that would cause R7 and R8 to reject the routes from R5 and R62
* Configure remove-private on advertisements from AS 64497 toward AS 64498 and from AS 64500 toward AS 64499. This removes any private AS numbers from the AS path before sending updates to external BGP peers. This allows R2 and R3 to receive the routes from R1 and R4, respectively3.


NEW QUESTION # 50
Which two statements are correct about a sham link? (Choose two.)

  • A. The PEs exchange Type 1 OSPF LSAs instead of Type 3 OSPF LSAs for the L3VPN routes
  • B. The PEs exchange Type 3 OSPF LSAs instead of Type 1 OSPF LSAs for the L3VPN routes.
  • C. It creates an OSPF multihop neighborship between two PE routers.
  • D. It creates a BGP multihop neighborship between two PE routers.

Answer: A,C

Explanation:
Explanation
A sham link is a logical link between two PE routers that belong to the same OSPF area but are connected through an L3VPN. A sham link makes the PE routers appear as if they are directly connected, and prevents OSPF from preferring an intra-area back door link over the VPN backbone. A sham link creates an OSPF multihop neighborship between the PE routers using TCP port 646. The PEs exchange Type 1 OSPF LSAs instead of Type 3 OSPF LSAs for the L3VPN routes, which allows OSPF to use the correct metric for route selection1.


NEW QUESTION # 51
What is the correct order of packet flow through configurable components in the Junos OS CoS features?

  • A. Multifield Classifier -> Behavior Aggregate Classifier -> Input Policer -> Forwarding Policy Options -> Fabric Scheduler -> Output Policer -> Rewrite Marker -> Scheduler/Shaper/RED
  • B. Behavior Aggregate Classifier -> Input Policer -> Multifield Classifier -> Forwarding Policy Options -> Fabric Scheduler -> Output Policer -> Scheduler/Shaper/RED -> Rewrite Marker
  • C. Behavior Aggregate Classifier -> Multifield Classifier -> Input Policer -> Forwarding Policy Options -> Fabric Scheduler -> Scheduler/Shaper/RED -> Output Policer -> Rewrite Marker
  • D. Behavior Aggregate Classifier -> Multifield Classifier -> Input Policer -> Forwarding Policy Options -> Fabric Scheduler -> Output Policer -> Scheduler/Shaper/RED -> Rewrite Marker

Answer: B

Explanation:
Explanation
The correct order of packet flow through configurable components in the Junos OS CoS features is as follows:
* Behavior Aggregate Classifier: This component uses a single field in a packet header to classify traffic into different forwarding classes and loss priorities based on predefined or user-defined values.
* Input Policer: This component applies rate-limiting and marking actions to incoming traffic based on the forwarding class and loss priority assigned by the classifier.
* Multifield Classifier: This component uses multiple fields in a packet header to classify traffic into different forwarding classes and loss priorities based on user-defined values and filters.
* Forwarding Policy Options: This component applies actions such as load balancing, filtering, or routing to traffic based on the forwarding class and loss priority assigned by the classifier.
* Fabric Scheduler: This component schedules traffic across the switch fabric based on the forwarding class and loss priority assigned by the classifier.
* Output Policer: This component applies rate-limiting and marking actions to outgoing traffic based on the forwarding class and loss priority assigned by the classifier.
* Scheduler/Shaper/RED: This component schedules, shapes, and drops traffic at the egress interface based on the forwarding class and loss priority assigned by the classifier.
* Rewrite Marker: This component rewrites the code-point bits of packets leaving an interface based on the forwarding class and loss priority assigned by the classifier.


NEW QUESTION # 52
Which two statements are correct regarding bootstrap messages that are forwarded within a PIM sparse mode domain? (Choose two.)

  • A. Bootstrap messages distribute RP information dynamically during an RP election.
  • B. Bootstrap messages are forwarded to all routers within a PIM sparse-mode domain.
  • C. Bootstrap messages are used to notify which router is the PIM RP
  • D. Bootstrap messages are forwarded only to routers that explicitly requested the messages within the PIM sparse-mode domain

Answer: A,B

Explanation:
Explanation
Bootstrap messages are PIM messages that are used to distribute rendezvous point (RP) information dynamically during an RP election. Bootstrap messages are sent by bootstrap routers (BSRs), which are routers that are elected to perform the RP discovery function for a PIM sparse-mode domain. Bootstrap messages contain information about candidate RPs and their multicast groups, as well as BSR priority and hash mask length. Bootstrap messages are forwarded to all routers within a PIM sparse-mode domain using hop-by-hop flooding.


NEW QUESTION # 53
......

Download Real Juniper JN0-664 Exam Dumps Test Engine Exam Questions: https://testking.vceprep.com/JN0-664-latest-vce-prep.html

Related Articles

more
Juniper JN0-664 Certification Practice Exam