• Home
  • Articles
  • [May 16, 2026] Fully Updated CCNP Enterprise (300-420) Certification Sample Questions [Q36-Q59]

[May 16, 2026] Fully Updated CCNP Enterprise (300-420) Certification Sample Questions [Q36-Q59]

Share

[May 16, 2026] Fully Updated CCNP Enterprise (300-420) Certification Sample Questions

Latest Cisco 300-420 Real Exam Dumps PDF


Cisco 300-420 exam is a 90-minute test that consists of 60-70 multiple-choice questions, and it can be taken at any Pearson VUE testing center worldwide. 300-420 exam is available in English and Japanese language versions. Candidates must score at least 750 out of 1000 points to pass the exam.


Cisco 300-420 exam, also known as Designing Cisco Enterprise Networks, is a certification exam that is designed for professionals who work with enterprise networks. 300-420 exam is aimed at testing the knowledge and skills of the candidates in planning, designing, and implementing enterprise-level networks using Cisco technologies. 300-420 exam is part of the CCNP Enterprise certification track and is one of the core exams required to earn this certification.


Know about the cost of Cisco 300-420 Exam

  • The cost of the Cisco 300-420 Exam is $300.

 

NEW QUESTION # 36

Refer to the exhibit. An engineer Is designing a multicampus Layer 3 Infrastructure using EIGRP as the routing protocol. The design must provide quick replies to queries In the event of a downlink, prevent unnecessary queries, and ensure that traffic does not unnecessarily transit the access layer. Which two actions must the engineer take for the network design? (Choose two.)

  • A. Configure distribution layer switches to summarize routes to the core layer.
  • B. Configure core layer switches as stub routers.
  • C. Configure access layer and core layer switches as stub routers.
  • D. Configure access layer switches as stub routers.
  • E. Configure access layer switches to summarize routes to the distribution layer.

Answer: A,D


NEW QUESTION # 37
Refer to the exhibit. An architect is designing a hierarchical ISIS solution for a customer with these requirements:
- Routers will double in all areas within the next 24 months.
- Link flaps within areas 20 and 30 must not impact the backbone area.
- Traffic originating from A201 and A302 routers must connect to
application servers in the backbone.
Which design must the architect select?

  • A. C101 Level 1/2, A201 Level 1, and A101 Level 2
  • B. C302 Level 2, A302 Level 1/2, and A101 Level 2
  • C. C102 Level 2, A202 Level 2, and A102 Level 1
  • D. C201 Level 1/2, A301 Level 1/2, and A102 Level 1/2

Answer: A

Explanation:
An L2 router is similar to an OSPF backbone router. A router that has both Level 1 and 2 routes is similar to an OSPF area border router (ABR). IS-IS does not define a backbone area like OSPF's area 0, but you can consider the IS-IS backbone a continuous path of adjacencies among Level 2 ISs.


NEW QUESTION # 38

Refer to the exhibit. AS65533 and AS65530 are announcing a partial Internet routing table as well as their IP subnets. An architect must create a design that ensures AS64512 become a transit AS. Which filtering solution must the architect choose?

  • A. No-advertise
  • B. Maximum-prefix
  • C. Next-hop
  • D. No Export

Answer: D


NEW QUESTION # 39

Refer to the exhibit A customer requires maximum uptime for the data plane between R1 and R3 running OSPF Which solution must the design include for high availability if the routing process on R2 requires maintenance?

  • A. BFD on all routers
  • B. graceful restart on all routers
  • C. nonstop forwarding on R3 only
  • D. nonstop forwarding on R1 and R3

Answer: B


NEW QUESTION # 40
Refer to the exhibit. AS65533 and AS65530 are announcing a partial Internet routing table as well as their IP subnets. An architect must create a design that ensures AS64512 become a transit AS. Which filtering solution must the architect choose?

  • A. No-advertise
  • B. No Export
  • C. Maximum-prefix
  • D. Next-hop

Answer: C


NEW QUESTION # 41
NAT-PT translates between what address types?

  • A. IPv4 and IPv6 addresses
  • B. Network addresses and IPv6 ports
  • C. Private IPv6 addresses and public IPv6 addresses
  • D. RFC 1918 private addresses and public IPv4 addresses

Answer: A


NEW QUESTION # 42
An architect is designing a network that will utilize the spanning tree protocol to ensure a loop-free topology.
The network will support an engineering environment where it is necessary for end users to connect their own network switches for testing purposes. Which feature should the architect include in the design to ensure the spanning tree topology is not affected by these rogue switches?

  • A. loop guard
  • B. BPDU Skew Detection
  • C. BPDU guard
  • D. root guard

Answer: D


NEW QUESTION # 43
Refer to the exhibit. Which process does the Ethernet LMI protocol follow that is defined by the MEF 16 Technical Specification?

  • A. communicates ENI and EVC attributes to the CE
  • B. broadcasts to all subnets from the CE when an EVC is added
  • C. broadcasts multicast network routes from the CE to the PE
  • D. notifies the CE of the availability state of a configured EVC

Answer: A


NEW QUESTION # 44
Refer to the exhibit. A network engineer is designing an OSPF solution to connect a company's remote to a newly provisioned MPLS VPN backbone. Some of the branches have a direct dark fiber connection between each other. The engineer wants to ensure that the dark fibers are used only when the MPLS core is unavailable. Which solution must the engineer choose?

  • A. Sham link
  • B. NSSA
  • C. Virtual link
  • D. Stub area

Answer: A

Explanation:
https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/iproute_ospf/configuration/xe-16/iro-xe-16- book/iro-sham-link.html


NEW QUESTION # 45
Which design consideration must be made when using IPv6 overlay tunnels?

  • A. Overlay tunnels can be configured only between border devices and require only the IPv6 protocol stack.
  • B. Overlay tunnels should only be considered as a transition technique toward a permanent solution.
  • C. Overlay tunneling encapsulates IPv4 packets in IPv6 packets for delivery across an IPv6 infrastructure.
  • D. Overlay tunnels that connect isolated IPv6 networks can be considered a final IPv6 network architecture.

Answer: B

Explanation:
Overlay tunnels can be configured between border devices or between a border device and a host; however, both tunnel endpoints must support the IPv4 and IPv6 protocol stacks.
https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/ipv6/configuration/15-2mt/ipv6-15-2mt- book/ip6-tunnel.html


NEW QUESTION # 46

Refer to the exhibit. An engineer must design an automatic failover solution. The solution should allow HSRP to detect a WAN 1 failure and initiate an automatic failover, making router R2 the active HSRP router. Which two solutions should the engineer choose? (Choose two.)

  • A. Implement Enhanced Object Tracking on roster R1
  • B. use a floating static route
  • C. Implement IP SLA on router R1
  • D. use IP source routing
  • E. Implement PBR on router R1

Answer: A,C


NEW QUESTION # 47
Which component of Cisco SD-Access integrates with Cisco DNA Center to perform policy segmentation and enforcement through the use of security group access control lists and security group tags?

  • A. Cisco Network Data Platform
  • B. Cisco Identity Services Engine
  • C. Cisco Application Policy Infrastructure Controller Enterprise Module
  • D. Cisco TrustSec

Answer: D

Explanation:
Section: Advanced Enterprise Campus Networks


NEW QUESTION # 48
Drag and drop the characteristics from the left onto the configuration protocols they describe on the right.

Answer:

Explanation:


NEW QUESTION # 49
A network engineer must design a multicast solution to prevent the spoofing of multicast streams and ensure efficient bandwidth utilization. The network will be merged with another multicast domain in the future, and the merge must require minimum effort. Which two solutions meet the customer requirements? (Choose two.)

  • A. IGMPv2
  • B. PIM-SM
  • C. MSDP
  • D. PIM-SSM
  • E. IGMPv3

Answer: B,C

Explanation:
https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/ipmulti_pim/configuration/xe-16/imc-pim-xe-16-book/imc-msdp-im-pim-sim.html#GUID-4B201DB3-2C27-4F98-977A-A1AE9DC39C21 MSDP is a mechanism to connect multiple PIM-SM domains. The purpose of MSDP is to discover multicast sources in other PIM domains. The main advantage of MSDP is that it reduces the complexity of interconnecting multiple PIM-SM domains by allowing PIM-SM domains to use an interdomain source tree (rather than a common shared tree).


NEW QUESTION # 50
An enterprise customer has these requirements:
- end-to-end QoS for the business-critical applications and VoIP
services based on CoS marking.
- flexibility to offer services such as IPv6 and multicast without any
reliance on the service provider.
- support for full-mesh connectivity at Layer 2.
Which WAN connectivity option meets these requirements?

  • A. VPLS
  • B. DMVPN
  • C. VPWS
  • D. MPLS VPN

Answer: A

Explanation:
VPLS provides full mesh connectivity at Layer 2. Cos marking will be kept in the frames because it transits on layer 2 network.


NEW QUESTION # 51
A large chain of stores currently uses MPLS-based T1 lines to connect their stores to their data center. An architect must design a new solution to improve availability and reduce costs while keeping these considerations in mind:
- The company uses multicast to deliver training to the stores.
- The company uses dynamic routing protocols and has implemented QoS.
- To simplify deployments, tunnels should be created dynamically on the hub when additional stores open.
Which solution should be included in this design?

  • A. VPLS
  • B. GET VPN
  • C. IPsec
  • D. DMVPN

Answer: D

Explanation:
DMVPN can be run over MPLS, with all the benefits of QoS. Under the hood, DMVPN is GRE with IPSEC, and GRE will deliver multicast.


NEW QUESTION # 52

Refer to the exhibit. Where must an architect plan for route summarization for the topology?

  • A. from the core toward the aggregation and the aggregation toward the core
  • B. from the aggregation toward the access and the access toward the aggregation
  • C. from the aggregation toward the core and the aggregation toward the access
  • D. from the core toward the aggregation and the access toward the aggregation

Answer: C


NEW QUESTION # 53
When a network is designed using IS-IS protocol, which two circuit types are supported? (Choose two.)

  • A. nonbroadcast multiaccess
  • B. multiaccess
  • C. point-to-point
  • D. point-to-multipoint
  • E. nonbroadcast

Answer: B,C


NEW QUESTION # 54
What is the purpose of a control plane node in a Cisco SD-Access network fabric?

  • A. to detect endpoints in the fabric and inform the host tracking database of EID-to-fabric-edge node bindings
  • B. to act as the network gateway between the network fabric and outside networks
  • C. to identify and authenticate endpoints within the network fabric
  • D. to maintain the endpoint database and mapping between endpoints and edge nodes

Answer: A

Explanation:
Explanation
https://www.cisco.com/c/en/us/td/docs/solutions/CVD/Campus/cisco-sda-design-guide.html


NEW QUESTION # 55
Which nonproprietary mechanism can be used to automate rendezvous point distribution in a large PIM domain?

  • A. Static RP
  • B. Embedded RP
  • C. BSR
  • D. Auto-RP

Answer: C


NEW QUESTION # 56
Refer to the exhibit.

EIGRP has been configured on all links. The spoke nodes have been configured as EIGRP stubs, and the WAN links to R3 have higher bandwidth and lower delay than the links to R4. When a link failure occurs at the R1-R2 link, what happens to traffic on R1 that is destined for a subnet attached to R2?

  • A. R1 load-balances across the paths through R3 and R4 to reach R2
  • B. R1 forwards the traffic to R3 in order to reach R2
  • C. R1 forwards the traffic to R3, but R3 drops the traffic
  • D. R1 has no route to R2 and drops the traffic

Answer: D

Explanation:
Explanation
The EIGRP stub routing feature will prevent the remote device from advertising core routes back to the distribution devices. Routes learned by the remote device from Distribution 1 will not be advertised to Distribution 2. Therefore, Distribution 2 will not use the remote device as a transit for traffic destined to the network corehttps://www.cisco.com/c/en/us/td/docs/ios-xml/ios/iproute_eigrp/configuration/15-mt/ire-15-mt-book/ire-eig


NEW QUESTION # 57
An engineer is designing a Layer 3 campus network running EIGRP between the core, aggregation, and access layers. The access layer switches will be connected to the aggregation layer using Layer 3 copper connections. The engineer wants to improve convergence time for access layer switch failures. Which technique must the design include?

  • A. EIGRP summarization from access to aggregation layer
  • B. reducing the EIGRP Hello / Hold timer values
  • C. enabling BFD for EIGRP on the access layer uplinks
  • D. EIGRP summarization from core to aggregation layer

Answer: C


NEW QUESTION # 58
Refer to the exhibit.

An architect is designing a network for a customer supporting a Wake-on-LAN application. Which solution must the architect choose?

  • A. spanning-tree uplinkfast on SW2
  • B. IP directed-broadcasts on R2
  • C. IP directed-broadcasts on R1
  • D. spanning-tree uplinkfast on SW1

Answer: B

Explanation:
Explanation
"IP directed broadcast" must be supported on the last router to the destination subnet. Since the sleeping PC's dont have IP adresses, the machines must be calles awake by broadcast that behaves like an unicast untill they reach the destination network. There the directed broadcast is handled like a proper broadcast to wake all WOL machines.
https://www.cisco.com/c/en/us/support/docs/switches/catalyst-3750-series-switches/91672-catl3-wol-vlans.html


NEW QUESTION # 59
......

Cisco 300-420 Dumps - Secret To Pass in First Attempt: https://www.testvalid.com/300-420-exam-collection.html

300-420 Practice Test Questions Updated 341 Questions: https://drive.google.com/open?id=1n8yEz76aBFaMdywh_rvWc7oUIamw7avY

Related Articles

more
Cisco 300-420 Certification Practice Exam

Copyright © 2026 TestValid NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy