1-41 Flashcards
1,2,3,5,8,9,10,13,14,16,17,21,23,25,29,32
Review these questions with images
Which option shows a correctly configured IPv4 default static route?
-ip route 0.0.0.0 255.255.255.0 S0/0/0
-ip route 0.0.0.0 0.0.0.0 S0/0/0
-ip route 0.0.0.0 255.255.255.255 S0/0/0
-ip route 0.0.0.0 255.0.0.0 S0/0/0
ip route 0.0.0.0 0.0.0.0 S0/0/0
What is a method to launch a VLAN hopping attack?
-introducing a rogue switch and enabling trunking
-sending spoofed native VLAN information
-sending spoofed IP addresses from the attacking host
-flooding the switch with MAC addresses
introducing a rogue switch and enabling trunking
A cybersecurity analyst is using the macof tool to evaluate configurations of switches deployed in the backbone network of an organization. Which type of LAN attack is the analyst targeting during this evaluation?
-VLAN hopping
-DHCP spoofing
-MAC address table overflow
-VLAN double-tagging
MAC address table overflow
Which statement is correct about how a Layer 2 switch determines how to forward frames?
-Frame forwarding decisions are based on MAC address and port mappings in the CAM table.
-Only frames with a broadcast destination address are forwarded out all active switch ports.
-Unicast frames are always forwarded regardless of the destination MAC address.
-Cut-through frame forwarding ensures that invalid frames are always dropped.
Frame forwarding decisions are based on MAC address and port mappings in the CAM table.
Which statement describes a result after multiple Cisco LAN switches are interconnected?
-The broadcast domain expands to all switches.
-One collision domain exists per switch.
-There is one broadcast domain and one collision domain per switch.
-Frame collisions increase on the segments connecting the switches.
-Unicast frames are always forwarded regardless of the destination MAC address.
The broadcast domain expands to all switches.
An administrator is trying to remove configurations from a switch. After using the command erase startup-config and reloading the switch, the administrator finds that VLANs 10 and 100 still exist on the switch. Why were these VLANs not removed?
-Because these VLANs are stored in a file that is called vlan.dat that is located in flash memory, this file must be manually deleted.
-These VLANs cannot be deleted unless the switch is in VTP client mode.
-These VLANs are default VLANs that cannot be removed.
-These VLANs can only be removed from the switch by using the no vlan 10 and no vlan 100 commands.
Because these VLANs are stored in a file that is called vlan.dat that is located in flash memory, this file must be manually deleted.
What is a secure configuration option for remote access to a network device?
-Configure an ACL and apply it to the VTY lines.
-Configure 802.1x.
-Configure SSH.
-Configure Telnet.
Configure SSH.
Which wireless encryption method is the most secure?
-WPA2 with AES
-WPA2 with TKIP
-WEP
-WPA
WPA2 with AES
After attaching four PCs to the switch ports, configuring the SSID and setting authentication properties for a small office network, a technician successfully tests the connectivity of all PCs that are connected to the switch and WLAN. A firewall is then configured on the device prior to connecting it to the Internet. What type of network device includes all of the described features?
-firewall appliance
-wireless router
-switch
-standalone wireless access point
wireless router
What protocol or technology disables redundant paths to eliminate Layer 2 loops?
VTP
STP
EtherChannel
DTP
Which two VTP modes allow for the creation, modification, and deletion of VLANs on the local switch? (Choose two.)
-client
-master
-distribution
-slave
-server
-transparent
server
transparent
Which three steps should be taken before moving a Cisco switch to a new VTP management domain? (Choose three.)
-Configure the switch with the name of the new management domain.
-Reset the VTP counters to allow the switch to synchronize with the other switches in the domain.
-Configure the VTP server in the domain to recognize the BID of the new switch.
-Download the VTP database from the VTP server in the new domain.
-Select the correct VTP mode and version.
-Reboot the switch.
Configure the switch with the name of the new management domain.
Select the correct VTP mode and version.
Reboot the switch.
A network administrator is preparing the implementation of Rapid PVST+ on a production network. How are the Rapid PVST+ link types determined on the switch interfaces?
-Link types can only be configured on access ports configured with a single VLAN.
-Link types can only be determined if PortFast has been configured.
-Link types are determined automatically.
-Link types must be configured with specific port configuration commands.
Link types are determined automatically.
How will a router handle static routing differently if Cisco Express Forwarding is disabled?
-It will not perform recursive lookups.
-Ethernet multiaccess interfaces will require fully specified static routes to avoid routing inconsistencies.
-Static routes that use an exit interface will be unnecessary.
-Serial point-to-point interfaces will require fully specified static routes to avoid routing inconsistencies.
Ethernet multiaccess interfaces will require fully specified static routes to avoid routing inconsistencies.
Compared with dynamic routes, what are two advantages of using static routes on a router? (Choose two.)
-They improve network security.
-They take less time to converge when the network topology changes.
-They improve the efficiency of discovering neighboring networks.
-They use fewer router resources.
Improve Network security
use fewer resources
What is the effect of entering the spanning-tree portfast configuration command on a switch?
-It disables an unused port.
-It disables all trunk ports.
-It enables portfast on a specific switch interface.
-It checks the source L2 address in the Ethernet header against the sender L2 address in the ARP body.
It enables portfast on a specific switch interface.
What is the IPv6 prefix that is used for link-local addresses?
-FF01::/8
-2001::/3
-FC00::/7
-FE80::/10
FE80::/10
Which two statements are characteristics of routed ports on a multilayer switch? (Choose two.)
-In a switched network, they are mostly configured between switches at the core and distribution layers.
-The interface vlan command has to be entered to create a VLAN on routed ports.
-They support subinterfaces, like interfaces on the Cisco IOS routers.
-They are used for point-to-multipoint links.
-They are not associated with a particular VLAN.
In a switched network, they are mostly configured between switches at the core and distribution layers.
They are not associated with a particular VLAN.
Successful inter-VLAN routing has been operating on a network with multiple VLANs across multiple switches for some time. When an inter-switch trunk link fails and Spanning Tree Protocol brings up a backup trunk link, it is reported that hosts on two VLANs can access some, but not all the network resources that could be accessed previously. Hosts on all other VLANS do not have this problem. What is the most likely cause of this problem?
-The protected edge port function on the backup trunk interfaces has been disabled.
-The allowed VLANs on the backup link were not configured correctly.
-Dynamic Trunking Protocol on the link has failed.
-Inter-VLAN routing also failed when the trunk link failed.
The protected edge port function on the backup trunk interfaces has been disabled.
Which command will start the process to bundle two physical interfaces to create an EtherChannel group via LACP?
-interface port-channel 2
-channel-group 1 mode desirable
-interface range GigabitEthernet 0/4 – 5
-channel-group 2 mode auto
interface range GigabitEthernet 0/4 – 5
What action takes place when a frame entering a switch has a multicast destination MAC address?
-The switch will forward the frame out all ports except the incoming port.
-The switch forwards the frame out of the specified port.
-The switch adds a MAC address table entry mapping for the destination MAC address and the ingress port.
-The switch replaces the old entry and uses the more current port.
The switch will forward the frame out all ports except the incoming port.
A junior technician was adding a route to a LAN router. A traceroute to a device on the new network revealed a wrong path and unreachable status. What should be done or checked?
-Verify that there is not a default route in any of the edge router routing tables.
-Check the configuration on the floating static route and adjust the AD.
-Create a floating static route to that network.
-Check the configuration of the exit interface on the new static route.
Check the configuration of the exit interface on the new static route.
Select the three PAgP channel establishment modes. (Choose three.)
auto
default
passive
desirable
extended
on
auto
desirable
on
A static route has been configured on a router. However, the destination network no longer exists. What should an administrator do to remove the static route from the routing table?
-Remove the route using the no ip route command.
-Change the administrative distance for that route.
-Change the routing metric for that route.
-Nothing. The static route will go away on its own.
Remove the route using the no ip route command.
