Home » Cisco » 200-125 v.2 » Which two conditions is DNS spoofing enabled on the device?
After you configure the ip dns spoofing command globally on a device, under which two conditions is DNS spoofing enabled on the device? (Choose two.)
A. The ip host command is disabled
B. The ip dns spoofing command addresses are removed
C. All configured IP name server addresses are removed
D. The no ip domain lookup command is configured
E. The DNS server queue limit is disabled
Correct Answer: CD
Explanation/Reference:
DNS spoofing is designed to allow a router to act as a proxy DNS server and "spoof" replies to any DNS queries using either the configured IP address in the ip dns spoofing ip-address command or the IP address of the incoming interface for the query. This feature is useful for devices where the interface toward the Internet service provider (ISP) is not up. Once the interface to the ISP is up, the router forwards DNS queries to the real DNS servers.
This feature turns on DNS spoofing and is functional if any of the following conditions are true: The no ip domain lookup command is configured.
IP name server addresses are not configured.
There are no valid interfaces or routes for sending to the configured name server addresses.
FULL Printable PDF and Software. VALID exam to help you pass.
|
|
Hey yo @Mod_GuideK why you put up two versions of the same question with different answers the same day? What’s you aim? Pull down the wrong one and let’s be focused.
https://vceguide.com/which-two-conditions-is-dns-spoofing-enabled-on-the-device/