Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

CCNA 200-301 > 6. Basic Switch Management > Flashcards

6. Basic Switch Management Flashcards

1
Q

Imagine that you have configured the enable secret command, followed by the enable
password command, from the console. You log out of the switch and log back in at
the console. Which command defines the password that you had to enter to access
privileged mode?
a. enable password
b. enable secret
c. Neither
d. The password command, if it is configured

A

b. enable secret

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

An engineer wants to set up simple password protection with no usernames for some
switches in a lab, for the purpose of keeping curious coworkers from logging in to the
lab switches from their desktop PCs. Which of the following commands would be a
useful part of that configuration?
a. A login vty mode subcommand
b. A password password console subcommand
c. A login local vty subcommand
d. A transport input ssh vty subcommand

A

a. A login vty mode subcommand

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

An engineer had formerly configured a Cisco 2960 switch to allow Telnet access so
that the switch expected a password of mypassword from the Telnet user. The engineer
then changed the configuration to support Secure Shell. Which of the following
commands could have been part of the new configuration? (Choose two answers.)
a. A username name secret password vty mode subcommand
b. A username name secret password global configuration command
c. A login local vty mode subcommand
d. A transport input ssh global configuration command

A

b. A username name secret password global configuration command
c. A login local vty mode subcommand

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

An engineer’s desktop PC connects to a switch at the main site. A router at the main
site connects to each branch office through a serial link, with one small router and
switch at each branch. Which of the following commands must be configured on the
branch office switches, in the listed configuration mode, to allow the engineer to telnet
to the branch office switches and supply only a password to login? (Choose three
answers.)
a. The ip address command in interface configuration mode
b. The ip address command in global configuration mode
c. The ip default-gateway command in VLAN configuration mode
d. The ip default-gateway command in global configuration mode
e. The password command in console line configuration mode
f. The password command in vty line configuration mode

A

a. The ip address command in interface configuration mode
d. The ip default-gateway command in global configuration mode
f. The password command in vty line configuration mode

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

A Layer 2 switch configuration places all its physical ports into VLAN 2. The IP
addressing plan shows that address 172.16.2.250 (with mask 255.255.255.0) is reserved
for use by this new LAN switch and that 172.16.2.254 is already configured on the
router connected to that same VLAN. The switch needs to support SSH connections
into the switch from any subnet in the network. Which of the following commands are
part of the required configuration in this case? (Choose two answers.)
a. The ip address 172.16.2.250 255.255.255.0 command in interface vlan 1 configuration
mode.
b. The ip address 172.16.2.250 255.255.255.0 command in interface vlan 2 configuration
mode.
c. The ip default-gateway 172.16.2.254 command in global configuration mode.
d. The switch cannot support SSH because all its ports connect to VLAN 2, and the
IP address must be configured on interface VLAN 1.

A

b. The ip address 172.16.2.250 255.255.255.0 command in interface vlan 2 configuration
mode.
c. The ip default-gateway 172.16.2.254 command in global configuration mode.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Which of the following line subcommands tells a switch to wait until a show command’s
output has completed before displaying log messages on the screen?
a. logging synchronous
b. no ip domain-lookup
c. exec-timeout 0 0
d. history size 15

A

a. logging synchronous

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is a shared password

A

password with no username

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

How do you set the password ‘faith’ on for the console

A

line con 0
login
password faith

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

How do you set the password ‘hope’ for telnet

A

line vty 0 15
login
password hope

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

How do you set the password ‘love’ for the enable mode

A

enable secret love

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

How do you set the username wendell and password odem to use for the console

A

username wendell secret odem
line con 0
login local

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

How do you remove all passwords from the vty lines

A

no password

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What can a user use instead of configuring multiple switches with local logins

A

AAA servers for authentication

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What protocols do a AAA server generally use

A

RADIUS

TACACS+

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Is SSH able to support shared passwords

A

No. SSH only supports authentication methods that use a username

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

How do you configure SSH for SW1 in using the example.com domain

A 
(config)# hostname SW1
ip domain-name example.com
crypto key generate rsa
username wendell secret odem
line vty 0 15
login local
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

How can you set the SSH to version 2

A

(config)# ip ssh version 2

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

What informaiton does a switch need to configure SSH

A

hostname and domain name for the switches FQDN

19
Q

what is the lowest modulus value that is needed to support SSH v2

A

768 bit

20
Q

How do you allow both SSH and Telnet

A 
line vty 0 15
transport input all     
or 
line vty 0 15
transput input telnet ssh
21
Q

How do you support neither SSH and Telnet

A

line vty 0 15

transport input none

22
Q

What is the default transport input option for most switches

A

all

23
Q

What is the transport input default for most routers

A

none

24
Q

What are the general steps to configure SSH

A
  1. Configure public and private key pair with hostname and domain name and use crypto key generate rsa to generate the keys. Use modulus value of at least 768
  2. Optional - set the ssh to version 2
  3. Configure vty lines to accept ssh, telnet, both or none
  4. Configure local logins
25
Q

How can you see which version of SSH is being used

A

show ip ssh

26
Q

What information does ‘show ssh’ give

A

Info about each SSH client currently connected

27
Q

Why should you not use a VLAN interface where there are no physical ports connected

A

VLAN will not reach up/up state and switch will not have physical ability to communicate outside of switch

28
Q

How do you set the IP address for VLAN 1 to 192.168.0.4

A

conf t
int vlan 1
ip address 192.168.0.4
no shut down

29
Q

How do you bring up an interface

A

no shutdown

30
Q

How do you configure the default gateway for the switch to 172.16.31.1

A

conf t

ip default-gateway 172.16.31.1

31
Q

How do you add the DNS server with IP 10.10.10.10 to VLAN 2

A

conf t
int vlan 2
ip name-server 10.10.10.10

32
Q

What command is used to set a DNS server

A

ip name-server ipaddress

33
Q

How do you configure an IP address for a switch using DHCP

A

conf t
int vlan 1
ip address dhcp
no shutdown

34
Q

How do you see the dhcp address the switch is using

A

show dhcp lease

35
Q

How will you know if DHCP fails

A

if you do show interface and no IP address shows up for the VLAN

36
Q

How do you see the history of commands that have been entered in the current session

A

show history

37
Q

how do you set the size of the history buffer for the current session to 10

A

terminal history size 10

38
Q

how do you set the default number of commands saved in the history buffer for users

A

of the console or vty lines

history size x

39
Q

How do you have console users not get logged off for inactivity

A

line con 0

exec-timeout 0 0

40
Q

How do you stop a switch from trying to resolve an IP address when you mistype a command

A

conf t

no ip domain lookup

41
Q

How do you have log messages not interrupt while you are trying to type

A

conf t

logging synchronous

42
Q

How do you disable display of log messages to the console

A

no logging console

43
Q

How do you see the key generated with SSH

A

show crypto key mypubkey rsa

44
Q

Where is the SSH keys stored

A

flash

CCNA 200-301 (8 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions