Tough question. Everyone would say - "Ask proctor if in doubt" but I heard from different people that tried their luck at different testing centers all around the world that proctors not always co-operative. I really want to believe that Cisco will leave us tiny clues. Options, fragments, DSCP values, ports and so on then it is an ACL Layer 2 details, i.e. ethertype, MAC address - vlan-map As for the second question it depends again. If they don't ask to configure logging to the syslog server for a device in question then I'd say logging locally will suffice
Eugene From: [email protected] [mailto:[email protected]] On Behalf Of Ben Shaw Sent: Thursday, September 06, 2012 1:28 AM To: [email protected] Subject: [OSL | CCIE_Security] Question Strategy Hi All I was wondering if anyone had a particular strategy for answering questions where it seems there could be more than one way to answer the question or one is not sure if the answer is option a or b but is sure it is one of them. For example, let's say a question asks to block a certain type of traffic from a specific host (A) connected to a switch before reaching another host (B) connected to the same switch. The question does not set any restrictions on any features you cannot use just that this traffic from host A should not reach host B. Now this is an intentionally simple example and in this case one could use an inbound ACL on the port connected to host A or a VLAN filter to block the traffic. Assuming there is nothing that states either option can't be used and both options meet the requirements would it be best to pick just one or actually configure both to be safe? Another slightly different example. Lets say the question asks to log every 3rd unsuccessful login attempt to the console but you are not sure which of the two following commands will do that: login on-failure log every 3 login on-failure trap every 3 Assuming from reading the documentation you are still not sure which one is the right one though obviously in this case only one is right - would it be best to pick one or actually just configure both? I suppose I am asking what peoples thoughts are about the marking strategy of the exam. Does anyone think that assuming one answers a question correctly that additional configuration that does not break the solution but obviously does nothing to answer the question will cause one to lose marks as in entering the two "login" commands above to achieve just one goal? Would configuring multiple solutions to a questions to cover bases be a good strategy as in configuring both the ACL and VLAN map as in the first example? Any thoughts would be appreciated Ben
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com
