ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 350-401 All Questions

View all questions & answers for the 350-401 exam
Go to Exam

Exam 350-401 topic 1 question 207 discussion

Actual exam question from Cisco's 350-401
Question #: 207
Topic #: 1
[All 350-401 Questions]

A network engineer configures BGP between R1 and R2. Both routers use BGP peer group CORP and are set up to use MD5 authentication. This message is logged to the console of router R1:
`May 5 39:85:55.469: %TCP-6-BADAUTH` Invalid MD5 digest from 10.10.10.1 (29832) to 10.120.10.1 (179) tebleid -0
Which two configurations allow a peering session to form between R1 and R2? (Choose two.)

  • A. R1(config-router)#neighbor 10.10.10.1 peer-group CORP R1(config-router)#neighbor CORP password Cisco
  • B. R2(config-router)#neighbor 10.120.10.1 peer-group CORP R2(config-router)#neighbor CORP password Cisco
  • C. R2(config-router)#neighbor 10.10.10.1 peer-group CORP R2(config-router)#neighbor PEER password Cisco
  • D. R1(config-router)#neighbor 10.120.10.1 peer-group CORP R1(config-router)#neighbor CORP password Cisco
  • E. R2(config-router)#neighbor 10.10.10.1 peer-group CORP R2(config-router)#neighbor CORP password Cisco
Show Suggested Answer Hide Answer
Suggested Answer: AB 🗳️
by rpidcock at Sept. 5, 2021, 10:20 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
hex2
Highly Voted 3 years, 3 months ago
Answer is correct, AB. The question states the console output is from R1, which means that R1 is 10.120.10.1, and R2 is 10.10.10.1. If you missed that you may have assumed the reverse and picked DE.
upvoted 21 times
bk989
1 year, 11 months ago
because R1 is 10.120.10.1, according to the error message which states TCP port 179, which is DESTINATION port for BGP, hence A, B are the only possible answers in this case. The destination port 179 is referring to the incoming router 10.120.1.x
upvoted 7 times
...
andy_doesnt_like_uucp
1 year ago
vice versa: R2 is 10.10.10.1 . but AB is correct
upvoted 1 times
...
LanreDipeolu
1 year, 8 months ago
I think ED choice is more appropriate; all because the syslog message was obtained from R1 that indicated R1 is 10.10.0.1
upvoted 5 times
...
...
SandyIndia
Highly Voted 3 years, 6 months ago
if the two routers have different passwords configured, a message such as this is displayed: %TCP-6-BADAUTH: Invalid MD5 digest from [peer's IP address]:11004 to [local router's IP address]:179 https://www.cisco.com/c/en/us/support/docs/ip/border-gateway-protocol-bgp/112188-configure-md5-bgp-00.html
upvoted 15 times
outnumber_gargle024
1 year, 4 months ago
solid^ TY
upvoted 1 times
...
...
AbdullahMohammad251
Most Recent 8 months, 1 week ago
Selected Answer: AB
If a router has a password configured for a neighbor, but the neighbor router does not, a message such as this is displayed while the routers attempt to establish a BGP session between them: %TCP-6-BADAUTH: No MD5 digest from [peer's IP address]:11003 to [local router's IP address]:179 Similarly, if the two routers have different passwords configured, a message such as this is displayed: %TCP-6-BADAUTH: Invalid MD5 digest from [peer's IP address]:11004 to [local router's IP address]:179 https://www.cisco.com/c/en/us/support/docs/ip/border-gateway-protocol-bgp/112188-configure-md5-bgp-00.html#:~:text=on%20document%20conventions.-,Background%20Information,between%20the%20peers%20is%20verified.
upvoted 2 times
...
kismet99
10 months, 2 weeks ago
AB is correct. tested in EVENG
upvoted 1 times
...
[Removed]
11 months, 1 week ago
Selected Answer: AB
A & B are correct 10.120.10.1 (179) is the local router IP (R1) 10.10.10.1 (29832) is the peer router IP (R2) On R1, configure R2 (IP 10.10.10.1) as a neighbor with the password. On R2, configure R1 (IP 10.120.10.1) as a neighbor with the password. This is from cisco: if the two routers have different passwords configured, a message such as this is displayed: %TCP-6-BADAUTH: Invalid MD5 digest from [peer's IP address]:11004 to [local router's IP address]:179 https://www.cisco.com/c/en/us/support/docs/ip/border-gateway-protocol-bgp/112188-configure-md5-bgp-00.html#:~:text=if%20the%20two,IP%20address%5D%3A179
upvoted 2 times
...
ds0321
12 months ago
Selected Answer: DE
R1 is 10.10.0.1
upvoted 1 times
...
Jakubu1
1 year, 4 months ago
Selected Answer: AB
Answer is AB. Verified in my lab. R1 indicates it is receiving an Invalid MD5 digest from R2's IP/ R2 is sending that to port 179 of R1's IP.
upvoted 3 times
...
LanreDipeolu
1 year, 8 months ago
Selected Answer: DE
I think ED choice is more appropriate; all because the syslog message was obtained from R1 that indicated R1 is 10.10.0.1
upvoted 2 times
mgiuseppe86
1 year, 7 months ago
R1 is configured with the IP 10.10.10.1 while R2 is configured with 10.120.10.1. This is noticeable because BGP speaks over port 179. So the destination port is attached to the destination IP as noted in the error log. This way we can determine the destination IP is accurate (B).
upvoted 2 times
...
...
due
1 year, 9 months ago
i think alarm TCP-6-BADAUTH` Invalid MD5 digest. the local router in inspector and found that Invalid. Local router should be destination (port 179). So, local router R1 is 10.120
upvoted 1 times
...
Leoveil
1 year, 9 months ago
Selected Answer: AB
(29832) random port number represent source. (179) BGP default port number represent destination.
upvoted 3 times
...
nushadu
2 years, 4 months ago
Selected Answer: AB
cisco_R2#show running-config | section bgp router bgp 2 bgp router-id 2.2.2.2 bgp log-neighbor-changes neighbor GR_AS3 peer-group neighbor GR_AS3 remote-as 3 neighbor GR_AS3 password cisco neighbor 192.168.255.3 peer-group GR_AS3 ! address-family ipv4 redistribute connected neighbor 192.168.255.3 activate neighbor 192.168.255.3 soft-reconfiguration inbound exit-address-family cisco_R2#
upvoted 2 times
nushadu
2 years, 4 months ago
cisco_R3#show running-config | section bgp router bgp 3 bgp router-id 3.3.3.3 bgp log-neighbor-changes neighbor GR_AS2 peer-group neighbor GR_AS2 remote-as 2 neighbor GR_AS2 password 7 1511021F0725 neighbor 192.168.255.22 peer-group GR_AS2 neighbor 192.168.255.55 remote-as 5 ! address-family ipv4 redistribute connected neighbor GR_AS2 soft-reconfiguration inbound neighbor 192.168.255.22 activate neighbor 192.168.255.55 activate neighbor 192.168.255.55 soft-reconfiguration inbound neighbor 192.168.255.55 route-map to_R5 in exit-address-family cisco_R3#
upvoted 1 times
nushadu
2 years, 4 months ago
cisco_R3#show ip bgp summary | b Nei Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/PfxRcd 192.168.255.22 4 2 9 14 44 0 0 00:04:14 3 192.168.255.55 4 5 42 59 44 0 0 00:32:39 3 cisco_R3#
upvoted 1 times
...
...
...
bora4motion
2 years, 5 months ago
Selected Answer: AB
A,B is correct. The log is on R1.
upvoted 3 times
...
Qiaopuyun
2 years, 5 months ago
I confused, the TCP destination port is 179 and source port is dynamic. so the ip address for R1 is 10.10.10.1
upvoted 3 times
...
Japsurd
2 years, 6 months ago
Answer is correct. The port number used (179) also gives it away. But Cisco asking so many questions that are not in the OCG is breaking my spirit.
upvoted 2 times
...
rpidcock
3 years, 7 months ago
Given answer is correct. Verified in GNS3 lab.
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago