Answer: B. The default RIP import policy accepts RIP routes. To send direct routes, you need the direct protocol, and to readvertise RIP-learned routes, you need the RIP protocol. The default RIP export policy is to reject all.

Answer: A. A static route can never match from a protocol RIP condition, so it does not match the term. There is a logical AND for distinct conditions such as route-filter and protocol when listed under the same statement.

Answer: D. You cannot use policy to control LSA flooding. Import policy simply allows route filtering from the link state database (LSDB) to the RT.

Answer: A. The default action of the test policy command is to accept the route. For testing purposes, it makes sense to specify an action of reject when creating the policy.

Answer: A, B, D. Port, VLAN, and Layer 3 filters can be configured on an EX Series switch.

Answer: D. A total of 2,048 terms can be configured on a single filter.

Answer: D. In order to protect the switch itself, a filter should be applied to the loopback interface. This allows traffic coming in from any interface destined to the switch to be matched.

Answer: C. Port filters are evaluated first, then VLAN filters. There are no egress port filters.

Answer: B. The show firewall command displays all counters in all filters.

Answer: False. In an EX Series switch, policers must be referenced in a firewall filter, and then the filter is applied to the interface.

Answer: A, C. The show firewall and show policer