1 - Implementing Ethernet VLANs

Question 1

6 Reasons for using VLANs

Answer 1

• Reduce CPU and broadcasts
• Reduce Security Risks
• Improve Security of sensitive data
• Flexible design by grouping users by department
• Troubleshoot quicker by reducing failure domain
• Reduce STP workload by keeping one VLAN per switch.

Question 2

What VLANs are in the normal range?

Answer 2

1 - 1005

Question 3

What VLANs are in the extended range?

Answer 3

1006 - 4094

Question 4

How does 802.1q tag a frame?

Answer 4

Adds a 4-byte header into the Ethernet header between the Source and Type fields.

Question 5

Is the native VLAN tagged?

Answer 5

No

Question 6

When configuring ROAS what are the two ways to define the native VLAN?

Answer 6

• Use the physical interface with no ENCAP command
• Use a subinterface with ‘encap dot1q 10 native’

Question 7

For ROAS, how do you configure the physical interface to use the native VLAN

Answer 7

Add IP address for native VLAN, NO ENCAP and NO VLAN parameter.

Question 8

For ROAS, what are the commands used to configure a subinterface to use the native VLAN?

Answer 8

• int fa0/0.1
  
  • encap dot1q 10 native
  • ip address 172.21.10.1 255.255.255.0

Question 9

What VLANs cannot be deleted?

Answer 9

1, and 1002 - 1005

Question 10

What commands can be used to disable VTP?

Answer 10

• vtp mode transparent
• vtp mode off

Question 11

If connecting two switches with a trunk and both switches support ISL and 802.1q, which protocol will they choose?

Answer 11

ISL

Question 12

Which protocol do switches use to negotiate trunking?

Answer 12

Dynamic Trunking Protocol (DTP)

Question 13

What 2 configuration options are negotiated by DTP?

Answer 13

• administrative mode (always trunk, never trunk, or negotiate)
• Type of Trunking: ISL or dot1q,

Question 14

What are possible administrative modes of a switchport?

Answer 14

• access
• trunk
• dynamic desireable
• dynamic auto

Question 15

What is the default administrative mode of a switchport?

Answer 15

dynamic auto

Question 16

What is the switchport command to disable DTP

Answer 16

switchport nonegotiate

Question 17

Will the ‘show interfaces trunk’ command show IP phone trunks?

Answer 17

No.

Question 18

What show command will show IP phone trunks?

Answer 18

show interfaces f0/4 trunk

Question 19

If VTP is disabled and a new VLAN is configured on a new switch, where will the VLAN configuration be seen?

Answer 19

show running-config’

Question 20

What range of VLANs do older low end switches support?

Answer 20

Normal-range 1 - 1005

Question 21

What range of VLANs do new switches and high-end switches support?

Answer 21

• Normal-range: 1 - 1005
• Extended-range: 1006 - 4094

Question 22

Assuming a default trunking configuration, what is the term that is used to reference the VLAN that will be used to transport the traffic between the hosts in the default VLAN?

Answer 22

Native

Question 23

In ‘show interfaces gig0/1 switchport’ cmd what does ‘Administrative Trunking Encapsulation: negotiate’ mean?

Answer 23

It means the switch supports both dot1q and ISL.

Question 24

How can you tell what trunking encapsulation is supported by a switch?

Answer 24

Run the cmd ‘show interfaces gig0/1 switchport’. Check the Administrative Trunking Encapsulation field.

Question 25

What is the command to configure a voice VLAN on a switchport?

Answer 25

switchport voice vlan 12

Question 26

What management protocol must be running on a switchport to enable it to be used by a Cisco phone?

Answer 26

CDP, which is enabled by default.

Question 27

In the dot1q header why does the 12-bit VLAN_ID field only support 4094 VLANs?

Answer 27

There are two reserved values: 0 and 4095.

Question 28

What are the fields in an 802.1q tag?

Answer 28

• TPI (Tag Protocol Identifier) always 0x8100 2 bytes
• TCI (Tag Control Information) made up of: PCP (Priority Code Point) 3 bits
• DEI (Drop Eligibility Indicator) 1 bit
• VID (VLAN Identifier) 12-bits

Question 29

What are the 5 different states a port transitions through?

Answer 29

1. Disabled
2. Blocking
3. Listening
4. Learning
5. Forwarding

Question 30

What is the Forward Delay?

Answer 30

The time it takes for a port to transition from Listening to Learning and from Learning to Forwarding. The default for Forward Delay is 15 seconds.

Question 31

In what states do port populate the MAC address table?

Answer 31

Learning and Forwarding only

Question 32

What causes STP convergence?

Answer 32

Topology Changes. Adding a switch or a link goes down.

Question 33

What happens during Convergence?

Answer 33

• All data stops until convergence is complete.
• Ports transition to forwarding or blocking state.
• With 802.1d STP this process takes 50 seconds.

Question 34

What is the difference between Port Cost and Path Cost?

Answer 34

• Port Cost is based on the speed of the link.
• Path cost is the sum of all the Port Costs all the way to the root.

Question 35

What are all ports called on the Root Bridge?

Answer 35

Designated Ports (DP)

Question 36

On a segment that doesn’t connect to the Root Bridge how is the Designated Port chosen?

Answer 36

The switch with the lowest (best) Bridge ID will be chosen to have the Designated Port for that segment. By default, the other port is placed in Blocking state.

Question 37

What is the advantage of PVST over Common STP?

Answer 37

Per VLAN Spanning Tree allows for multiple root bridges. (different root for each VLAN is possible).

Question 38

What are the 5 types of Spanning Tree Protocols?

Answer 38

1. Common Spanning Tree 802.1d (single root bridge)
2. PVST+ Cisco’s Default version
3. 802.1w IEEE version of Rapid Spanning Tree (single root bridge)
4. 802.1s MSTP (basically instances of STP running on top of one STP
5. Rapid PVST+

Question 39

In Rapid PVST+ how is the DP chosen?

Answer 39

1. Lowest accumulated Path Cost to the Root
2. If Path Cost is a tie then use Bridge ID
3. If a tie after Path Cost, Bridge ID, then interface with Lowest Number (Fa0/1 wins over FA0/2)

Question 40

In PVST+ what impact does the VLAN number have on the Bridge Priority?

Answer 40

Add VLAN # to Priority. 32,768 on VLAN 10 would be 32,778

Question 41

What is the command to enable Rapid PVST+?

Answer 41

spanning-tree mode rapid-pvst

Question 42

What are the two port-channel negotiating protocols?

Answer 42

PAgP and LACP

Question 43

What are the two possible Interface Modes for LACP?

Answer 43

Active or Passive

Question 44

What are the two Interface Modes for PAgP?

Answer 44

Auto or Desirable

Question 45

What is the difference between PAgP and LACP?

Answer 45

PAgP is Cisco Proprietary, LACP is IEEE Non-proprietary

Question 46

In a Port-channel does the Port-channel inherit its configuration from the Interfaces or do the Interfaces inherit their configurations from the Port-channel?

Answer 46

The Interfaces inherit their configurations from the port-channel

Question 47

What command will show you the STP root bridge for a VLAN?

Answer 47

show spanning-tree summary

Question 48

What command will you use to see information about a specific port channel interface?

Answer 48

show etherchannel port-channel

Question 49

What command would you use on a switch to make it the root bridge for VLAN 3?

Answer 49

spanning-tree vlan 3 root primary

Question 50

You need to find the VLANs for which your switch is the root bridge. What two commands can you use?

Answer 50

• ‘show spanning-tree summary’
• ‘show spanning-tree’ and then follow the root ports using CDP

Question 51

You want to create a port-channel. What command do you use? Assume PAgP.

Answer 51

• interface port-channel 1
• exit
• interface range gig0/12-13
• channel-group 1 mode desirable
  *

Question 52

You want to create a port-channel. What commands do you use to create the port-channel? Assume LACP.

Answer 52

• interface port-channel 1
• exit
• interface range gig0/12-13
• channel-group 1 mode active

Question 53

What are the commands to create a L3 port-channel on a switch using PAgP?

Answer 53

• interface port-channel 1
  
  • no switchport
  • ip address 172.21.7.42 255.255.255.0
  • exit
• interface range gig0/12-13
  
  • no switchport
  • channel-group 1 mode desirable

Question 54

When the command ‘spanning-tree vlan 3 root primary’ is issued what priority does it give that switch?

Answer 54

If current root base priority is higher than 24,576 it will set the base priority to 24,576 + VLAN. If the current root bridge is less than 24,576 it will set the new priority to the highest multiple of 4096 that still results in that switch becoming the new root.

Question 55

When the command ‘spanning-tree vlan 3 root secondary’ is issued what priority does it give that switch?

Answer 55

28,672 + 3

Question 56

How many bits is the sys-id-ext field in a BPDU?

Answer 56

12

Question 57

In RSTP what is an Alternate Port?

Answer 57

A port waiting to become a Root Port

Question 58

In RSTP what is a Backup Port?

Answer 58

A port waiting to become a Designated Port

Question 59

Which VLANs cannot be used?

Answer 59

1002 - 1005

Question 60

What command configures an switchport to use 802.1q encapsulation for trunking?

Answer 60

switchport trunk encapsulation dot1q

Question 61

What command configures a switchport to use ISL trunking?

Answer 61

switchport trunk encapsulation isl

Question 62

What command is used to tell a switchport to negotiate the type of trunking?

Answer 62

switchport trunk encapsulation negotiate

Question 63

What command tells an interface to begin trying to negotiate trunking?

Answer 63

switchport mode dynamic desirable