New CCNA – NetFlow Questions
Question 1
What are the benefit of using Netflow? (Choose three)
A. Network, Application & User Monitoring
B. Network Planning
C. Security Analysis
D. Accounting/Billing
Answer: A C D
Explanation
NetFlow traditionally enables several key customer applications including:
+ Network Monitoring – NetFlow data enables extensive near real time network monitoring capabilities. Flow-based analysis techniques may be utilized to visualize traffic patterns associated with individual routers and switches as well as on a network-wide basis (providing aggregate traffic or application based views) to provide proactive problem detection, efficient troubleshooting, and rapid problem resolution.
+ Application Monitoring and Profiling – NetFlow data enables network managers to gain a detailed, time-based, view of application usage over the network. This information is used to plan, understand new services, and allocate network and application resources (e.g. Web server sizing and VoIP deployment) to responsively meet customer demands.
+ User Monitoring and Profiling – NetFlow data enables network engineers to gain detailed understanding of customer/user utilization of network and application resources. This information may then be utilized to efficiently plan and allocate access, backbone and application resources as well as to detect and resolve potential security and policy violations.
+ Network Planning – NetFlow can be used to capture data over a long period of time producing the opportunity to track and anticipate network growth and plan upgrades to increase the number of routing devices, ports, or higher- bandwidth interfaces. NetFlow services data optimizes network planning including peering, backbone upgrade planning, and routing policy planning. NetFlow helps to minimize the total cost of network operations while maximizing network performance, capacity, and reliability. NetFlow detects unwanted WAN traffic, validates bandwidth and Quality of Service (QOS) and allows the analysis of new network applications. NetFlow will give you valuable information to reduce the cost of operating your network.
+ Security Analysis – NetFlow identifies and classifies DDOS attacks, viruses and worms in real-time. Changes in network behavior indicate anomalies that are clearly demonstrated in NetFlow data. The data is also a valuable forensic tool to understand and replay the history of security incidents.
+ Accounting/Billing – NetFlow data provides fine-grained metering (e.g. flow data includes details such as IP addresses, packet and byte counts, timestamps, type-of-service and application ports, etc.) for highly flexible and detailed resource utilization accounting. Service providers may utilize the information for billing based on time-of-day, bandwidth usage, application usage, quality of service, etc. Enterprise customers may utilize the information for departmental charge-back or cost allocation for resource utilization.
Question 2
What are the three things that the NetFlow uses to consider the traffic to be in a same flow?
A. IP address
B. Interface name
C. Port numbers
D. L3 protocol type
E. MAC address
Answer: A C D
Explanation
What is an IP Flow?
Each packet that is forwarded within a router or switch is examined for a set of IP packet attributes. These attributes are the IP packet identity or fingerprint of the packet and determine if the packet is unique or similar to other packets.
Traditionally, an IP Flow is based on a set of 5 and up to 7 IP packet attributes.
IP Packet attributes used by NetFlow:
+ IP source address
+ IP destination address
+ Source port
+ Destination port
+ Layer 3 protocol type
+ Class of Service
+ Router or switch interface
(Reference: http://www.cisco.com/c/en/us/products/collateral/ios-nx-os-software/ios-netflow/prod_white_paper0900aecd80406232.html)
Question 3
What NetFlow component can be applied to an interface to track IPv4 traffic?
A. flow monitor
B. flow record
C. flow sampler
D. flow exporter
Answer: A
Explanation
Flow monitors are the Flexible NetFlow component that is applied to interfaces to perform network traffic monitoring. Flow monitors consist of a record and a cache. You add the record to the flow monitor after you create the flow monitor. The flow monitor cache is automatically created at the time the flow monitor is applied to the first interface. Flow data is collected from the network traffic during the monitoring process based on the key and nonkey fields in the record, which is configured for the flow monitor and stored in the flow monitor cache.
For example, the following example creates a flow monitor named FLOW-MONITOR-1 and enters Flexible NetFlow flow monitor configuration mode:
Router(config)# flow monitor FLOW-MONITOR-1
Router(config-flow-monitor)#
(Reference: http://www.cisco.com/c/en/us/td/docs/ios/fnetflow/command/reference/fnf_book/fnf_01.html#wp1314030)
Question 4
What command visualizes the general NetFlow data on the command line?
A. show ip flow export
B. show ip flow top-talkers
C. show ip cache flow
D. show mls sampling
E. show mls netflow ip
Answer: C
Explanation
The “show ip cache flow” command displays a summary of the NetFlow accounting statistics.
Question 5
What are three reasons to collect NetFlow data on a company network? (Choose three)
A. To identify applications causing congestion.
B. To authorize user network access.
C. To report and alert link up / down instances.
D. To diagnose slow network performance, bandwidth hogs, and bandwidth utilization.
E. To detect suboptimal routing in the network.
F. To confirm the appropriate amount of bandwidth that has been allocated to each Class of Service.
Answer: A D F
Explanation
NetFlow facilitates solutions to many common problems encountered by IT professionals.
+ Analyze new applications and their network impact
Identify new application network loads such as VoIP or remote site additions.
+ Reduction in peak WAN traffic
Use NetFlow statistics to measure WAN traffic improvement from application-policy changes; understand who is utilizing the network and the network top talkers.
+ Troubleshooting and understanding network pain points
Diagnose slow network performance, bandwidth hogs and bandwidth utilization quickly with command line interface or reporting tools. -> D is correct.
+ Detection of unauthorized WAN traffic
Avoid costly upgrades by identifying the applications causing congestion. -> A is correct.
+ Security and anomaly detection
NetFlow can be used for anomaly detection and worm diagnosis along with applications such as Cisco CS-Mars.
+ Validation of QoS parameters
Confirm that appropriate bandwidth has been allocated to each Class of Service (CoS) and that no CoS is over- or under-subscribed.-> F is correct.
(Reference: http://www.cisco.com/c/en/us/products/collateral/ios-nx-os-software/ios-netflow/prod_white_paper0900aecd80406232.html)
Question 6
What are three factors a network administrator must consider before implementing Netflow in the network? (Choose three)
A. CPU utilization
B. where Netflow data will be sent
C. number of devices exporting Netflow data
D. port availability
E. SNMP version
F. WAN encapsulation
Answer: A B C
Question 7
What Cisco IOS feature can be enabled to pinpoint an application that is causing slow network performance?
A. SNMP
B. Netflow
C. WCCP
D. IP SLA
Answer: B
Hi what other topics were covered in the exam im going to take the exam next week please email at Amy@securesp.com
Hi guys !! Just passed my CCNA with 1000/1000 score. If any one needs any help, I will be more than happy to help out and provide experience. Just email me at gattumania@outlook.com. Good luck !
hi… please send me a dump for CCNA 200-120.. thanks… rhea_salvino@hotmail.com
Zara, Can you please send me latest dumps for 200-120 to a_titanic_76@yahoo.com that would be great help… thanks…
hey, please send me latest dumps of 200-120 at ajitatambe@gmail.com .
Thank You
Hii guys.. please send me the dumps for 200-120 at vikasrana17@hotmail.com
hi Zara, Can you please send me latest dumps for 200-120 at irfan.myousuf@yahoo.com
hello, can you send me latest dumps 200-120. please .
Thanks in advance. pin700@yahoo.com
Zara, Can you please send me latest dumps for 200-120 to aldrinpsatsatin@gmail.com that would be great help… thanks…
Ques 5 and Ques 6 , in today exam
I’m going to take up ccna 200-120 by end of this month can anybody send me the latest dumps to my e-mail id jawidh.bca@gmail.com. Thanks in advance…
Passed Marks: 975, 99.8% from 9tut no need to exert effort for latest dumps. Labs EIGRP, ACL Sim 1 & 2, practice all modifications coz it was given on random. 9tut is enough to pass the exam. GoodLuck. .
Q1 is correct?
in my textbook i see that netflow is also used for network planning as well.
Cleared CCNA exam with 972/1000…Simulations were EIGRP, ACL 1 & 2, ActualTest dumps are 100% valid.
slight modifications in the sims but overall its the same
Anyone needing dumps or any other help mail me at: nihalshah1306@gmail.com
Nihal, please email the dumps. I just sent you an email.
Thanks.
Hi everyone,im planning to take my exam this coming oct. can anyone please send me a dumps thanks shyliepotpot@gmail.com here my email.. Nihal, i send an email tnx :)
im sorry its a wrong email this is the correct email shyliepotpot04@gmail.com
Is Q1 correct?
in my textbook i see that netflow is also used for network planning as well.
Q1 – Is my doubt as well. All answers look correct. Anybody Could explain?
Thanks!
Is Q1 correct? I see all 4 choices are the benefits of using Netflow..Can anyone explain why only A,C & D are correct?
zzzzzz
Plz send me latest dumps for ccna exam alialbakri2002@yahoo.com
Dear All,
Please send me the latest dump at sahu82@hotmail.com
Thank you , Stay blessed
Can someone please send me the latest dumps to qallout@yahoo.com
Can someone please send latest dump to dana-adams@hotmail.com? Thanks.
Send me latest dumps 200-120
shahsonic@hotmail.com
please send me a dump for CCNA 200-120.. thanks – brancohc@gmail.com
Please Send me the dump @hking7824@gmail.com
Can someone send me the latest accurate dumps for 200-120 as well please?
Email is siradam255@live.com
ear All
Regarding all CISCO exams CCNA CCNA Security CCNP (Route Switch Tshoot) updated valid dumps & Exam discount vouchers available globally.
1. CCNA 200-120 60 % discounted vouchers
2. CCNP (Route Switch TShoot) 25 % discounted Vouchers
3. CCNA Security 640-554 60 % discounted Vouchers
Ask any kind of technical and exam related questions from our CCIE experts.
Feel Free to Contact
Email Contact:dheprofessionals@gmail.com
Skype Id:net.rideplay
Just passed my CCNA with 958. Quuestion 4,5 & 7. Thanks to 9tut.
Passed CCNA on 5th September with 986. ACL1, ACL2(MOD.3) and Eigrp labs. All the question were from 9tut and Watson, thanks 9tut. Keep up the good work you are doing by providing study material.
Q4 and 7 were in the exam.
Q3 in 5th Sep 2014 exam
are there any place difference of a b c d … options between watson dump and exam question?
Hi,Can someone send me the latest dumps for 200-120 please at my email.
rajahassan76@yahoo.com
hi, everyone. hope u can share your dumps pls. ezrahjames@yahoo.com thank you :)
Why Q1 B is not a correct Answer ?
Dear All
Regarding all CISCO exams CCNA CCNA Security CCNP (Route Switch Tshoot) updated valid dumps & Exam discount vouchers available globally.
1. CCNA 200-120 60 % discounted vouchers
2. CCNP (Route Switch TShoot) 25 % discounted Vouchers
3. CCNA Security 640-554 60 % discounted Vouchers
Ask any kind of technical and exam related questions from our CCIE experts.
Feel Free to Contact
Email Contact:dheprofessionals@gmail.com
Skype Id:net.rideplay
Thanks
Best Regard
Admins
PLEASE NEED HELP –> send the latest dumps for CCNA 200-120 to pablo.sebastian.666@gmail.com Thanks . Going to exam next week
PASS MY EXAM TODAY SEPT 17 1000/1000
Q2, Q3 in exam today
what simulations you got?@ramos1987
Just wondering why B isn’t correct in Question 1 when it’s clearly listed in the explanation? I think the answer (A,C,D) is correct because I beleive CISCO doesn’t list NETFOLW as a Network Planning Tool, but I was just curious as to why Network Planning is listed in the explanation and as an option in the answers, but not correct. Any thoughts from the smart people out there? TIA.
Dear All
Regarding all CISCO exams CCNA CCNA Security CCNP (Route Switch Tshoot) updated valid dumps & Exam discount vouchers available globally.
1. CCNA 200-120 60 % discounted vouchers
2. CCNP (Route Switch TShoot) 25 % discounted Vouchers
3. CCNA Security 640-554 60 % discounted Vouchers
Ask any kind of technical and exam related questions from our CCIE experts.
Feel Free to Contact
Email Contact:dheprofessionals@gmail.com
Skype Id:net.rideplay
Thanks
Best Regard
Admins
Ques 1,3,6 today exam…Believe me, all the questions were from 9tut no need any dump.
A lot of thank my site 9tut>
Going to do my CCNA 200-120 this weekend. please send most recent dumps or tips.
theo1995@msn.com
Hello Guys I hope you will be fine there.Now New CCNA (200-120) and CCNA security (640-554) Vouchers on special discount of 58% for World wide, with six months expiry date till you purchase. Each voucher cost 70USD.
Details Required For CCNA Voucher For Discount Processing:
1-Full Name. 1st Name & Last Name (as you want to appear on certificate & documents)
2-Country.
3-City.
4-State.
5-Pin Code (or Area Code)
6-Residential Address (or where you can collect your Certificate or further correspondence
can be received)
7-Date of birth
Add me on Skype through this information which is written below:
Skype Name: rockon660
you can also email me at this email address which is written below:
madeelqaiser@gmail.com
If you have any Questions feel free to contact me.
Thanks,
Best regards,
Adeel
Hi All,
Why choice B is wrong in Q1?
The following is written on CCNA R& S module 4 chapter 8-Netflow portion.
NetFlow provides data to enable network and security monitoring, network planning, traffic analysis to include identification of network bottlenecks, and IP accounting for billing purposes.
In my understanding , the wrong choice may be C. Traffic analysis may not be for security purpose.
Hi All,
Why choice B is wrong in Q1?
The following is written on CCNA R& S module 4 chapter 8-Netflow portion.
NetFlow provides data to enable network and security monitoring, network planning, traffic analysis to include identification of network bottlenecks, and IP accounting for billing purposes.
In my understanding , the wrong choice may be C. Traffic analysis may not be for security purpose.
Hi All,
Why choice B is wrong in Q1?
The following is written on CCNA R& S module 4 chapter 8-Netflow portion.
NetFlow provides data to enable network and security monitoring, network planning, traffic analysis to include identification of network bottlenecks, and IP accounting for billing purposes.
In my understanding , the wrong choice may be C. Traffic analysis may not be for security purpose.
Or All the Choices are correct according to the explanation
please More comments…….