350-501 Cisco Implementing and Operating Cisco Service Provider Network Core Technologies (350-501 SPCOR) Free Practice Exam Questions (2025 Updated)

 In this scenario, BGP is used in the core of the service provider network, while OSPF serves as the PE-CE routing protocol. To ensure communication between CE1 and CE2, which are located in different geographical locations, it’s essential for PE1 and PE2 to share routes. This can be achieved by configuring both PEs to mutually redistribute BGP and OSPF routes within the VRF dedicated for that customer, ensuring seamless communication between both customer endpoints. References: Implementing and Operating Cisco Service Provider Network Core Technologies

During the traceback phase of the six-phase approach to service provider security, the action that occurs is tracing the attack flows from the attacked sections of the network toward the network edges. This phase entails identifying the source of the attack by analyzing the path that the attack traffic has taken through the network.

Option D is the correct answer because, in the context of Auto-RP, sparse-dense mode allows the router to forward Auto-RP messages. Auto-RP uses dense mode multicast groups (224.0.1.39 and 224.0.1.40) to advertise RP mapping information, so enabling sparse-dense mode on the interface ensures that it can process both types of multicast traffic. References: Implementing and Operating Cisco Service Provider Network Core Technologies (SPCOR) official course materials, which can be found here.

In ISIS, routers can form neighbor relationships even with different system IDs, provided they are configured to be in the same area and the authentication between them is correctly set up.

References: For the most accurate answer, please consult the Implementing and Operating Cisco Service Provider Network Core Technologies (SPCOR) course materials and the official Cisco documentation on ISIS configuration.

 In the given configuration, “tacacs-server host 192.168.1.2 single-connection” indicates that Router 1 will maintain a single connection to the TACACS+ server at IP address 192.168.1.2 for multiple authorization requests instead of opening a new connection for each request. This can be efficient in scenarios where there are frequent authorization requests as it reduces the overhead associated with establishing a new TCP connection each time.

References := Implementing and Operating Cisco Service Provider Network Core Technologies

YANG (Yet Another Next Generation) is a data modeling language used primarily for the configuration and state data of network elements. It is closely associated with the NETCONF (Network Configuration Protocol) for which it models configuration data. YANG provides schemas that define how data is structured and transported by NETCONF operations. It also shapes the state data of network elements, allowing for a standardized format for representing the operational state of devices. References: YANG is defined in RFCs such as RFC 6020 and RFC 7950, which outline its role in NETCONF operations and its capabilities in modeling both configuration and state data.

The configuration in Option A is correct for enabling dial-out telemetry streams using gRPC on devices with TLS disabled.

It uses model-driven telemetry (MDT), which is a new method of monitoring network devices. Unlike traditional methods that pull data from the device, MDT pushes data from the device to the collector.

In this configuration:

Telemetry is model-driven.

It specifies a destination group with an IP address and port number where the telemetry data will be sent.

The encoding is self-describing-gpb (Google Protocol Buffers).

The protocol used is TCP.

This setup ensures that telemetry data is sent to the specified collector without requiring TLS encryption.

References: Implementing and Operating Cisco Service Provider Network Core Technologies

When a prefix list is applied to a BGP neighbor, it filters routes based on the specified conditions. In this scenario, the prefix list is designed to permit prefixes that are equal to or longer than /17 but shorter than or equal to /19. Therefore:

A: 192.168.0.0/19 is denied because it falls outside the specified range.

D: 192.168.0.0/16 is denied as it is shorter than the minimum length of /17.

E: 192.168.0.0/16 is permitted because it is the exact prefix specified in the prefix list, and the ge and le modifiers apply to more specific routes derived from this prefix. References: Implementing and Operating Cisco Service Provider Network Core Technologies (SPCOR) - Cisco official courseware.

In MPLS Layer 3 VPNs, shared services such as Internet access can be provided through the use of a shared services VRF (Virtual Routing and Forwarding). The customer VRF uses route targets to import routes from the shared services VRF, which contains the routes to the Internet. This allows the customer sites to access the Internet without compromising the isolation of their private networks. References: The concept of shared services VRF and the use of route targets for importing and exporting routes are common practices in MPLS VPN implementations.

The configuration snippet shows that MPLS and LDP are configured globally but not enabled on an interface. The commands include “mpls label protocol ldp,” “mpls ldp router-id loopback 0,” and “mpls ip,” which are necessary for global settings. However, to establish LDP neighbors and exchange labels, LDP must be enabled on the specific interface where it’s needed.

References:

Implementing and Operating Cisco Service Provider Network Core Technologies (SPCOR)

Cisco SPCOR Training resources available on the Cisco Learning Network Store.