CCNA 4 R&S: Connecting Networks Flashcards

1
Q

Why is it useful to categorize networks by size when discussing network design?

Knowing the number of connected devices will define how many additional layers will be added to the three-tier hierarchical network design.

Knowing the number of connected devices will define how many multilayer switches will be necessary at the core layer.

A high-level redundancy at the access layer may be better implemented if the number of connected devices is know.

The complexity of networking infrastructure will vary according to the number of connected devices.

A

The complexity of networking infrastructure will vary according to the number of connected devices.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Which two statements are true regarding a PPP connection between two Cisco routers? (Choose two.)

Only a single NCP is allowed between the two routers.
NCP terminates the link when data exchange is complete.
With CHAP authentication, the routers exchange plain text passwords.
LCP tests the quality of the link.
LCP manages compression on the link.

A

LCP tests the quality of the link.

LCP manages compression on the link.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is a disadvantage of a packet-switched network compared to a circuit-switched network?

fixed capacity
higher latency
less flexibility
higher cost

A

higher latency

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Which statement describes a characteristic of dense wavelength division multiplexing (DWDM)?

it assigns incoming electrical signals to specific frequencies.
it can be used in long-range communications, like connections between ISPs.
it enables bidirectional communications over one pair of copper cables.
it supports the SONET standard, but not the SDH standard.

A

it can be used in long-range communications, like connections between ISPs.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Refer to the exhibit. A network administrator is troubleshooting the OSPF network. The 10.10.0.0/16 network is not showing up in the routing table of Router1. What is the probable cause of this problem?

The OSPF process is configured incorrectly on Router1.
There is an incorrect wildcard mask statement for network 10.10.0.0/16 on Router2.
The OSPF process is not running on Router2.
The serial interface on Router2 is down.

A

There is an incorrect wildcard mask statement for network 10.10.0.0/16 on Router2.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

The security policy in a company specifies that the staff in the sales department must use a VPN to connect to the corporate network to access the sales data when they travel to meet customers. What component is needed by the sales staff to establish a remote VPN connection?

VPN appliance
VPN concentrator
VPN client software
VPN gateway

A

VPN client software

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

A network administrator is troubleshooting the dynamic NAT that is configured on router R2. Which command can the administrator use to see the total number of active NAT translations and the number of addresses that are allocated from the NAT pool?

R2# show ip nat translations
R2# clear ip nat translation
R2# show running-config
R2# show ip nat statistics

A

R2# show ip nat statistics

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Which three parts of a Frame Relay Layer 2 PDU are used for congestion control? (Choose three.)

the FECN bit
the BECN bit
the C/R bit
the 10-bit DLCI
the Extended Address field
the DE bit
A

the DE bit
the FECN bit
the BECN bit

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Which two statements correctly describe asymmetric encryption used with an IPsec VPN? (Choose two.)

The same encryption keys must be manually configured on each device.
Public key encryption is a type of asymmetric encryption.
Encryption and decryption use a different key.
A shared secret key is used to perform encryption and descryption.
AES is an example of an asymmetric encryption protocol.

A

Public key encryption is a type of asymmetric encryption.

Encryption and decryption use a different key.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Which WAN technology can serve as the underlying network to carry multiple types of network traffic such as IP, ATM, Ethernet, and DSL?

MPLS
ISDN
Ethernet WAN
Frame Relay

A

MPLS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Which command can be used to check the information about congestion on a Frame Relay link?

show frame-relay lmi
show interfaces
show frame-relay pvc
show frame-relay map

A

show frame-relay pvc

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Which two statements describe remote access VPNs? (Choose two.)

Client software is usually required to be able to access the network.
Remote access VPNs are used to connect entire networks, such as a branch office to headquarters.
Remote access VPNs support the needs of telecommuters and mobile users.
A leased line is required to implement remote access VPNs.
End users are not aware that VPNs exists.

A

Client software is usually required to be able to access the network.
Remote access VPNs support the needs of telecommuters and mobile users.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Refer to the exhibit. Which three steps are required to configure Multilink PPP on the HQ router? (Choose three.)

Bind the multilink bundle to the Fast Ethernet interface.
Enable PPP encapsulation on the multilink interface.
Assign the serial interfaces to the multilink bundle.
Create and configure the multilink interface.
Assign the Fast Ethernet interface to the multilink bundle
Enable PPP encapsulation on the serial interfaces.

A

Create and configure the multilink interface.

Enable PPP encapsulation on the serial interfaces.

Assign the serial interfaces to the multilink bundle.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What are two examples of network problems that are found at the data link layer? (Choose two.)

incorrect interface clock rates
late collisions and jabber
framing errors
electromagnetic interface
encapsulation errors
A

encapsulation errors

framing errors

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What is the protocol that provides ISPs the ability to send PPP frames over DSL networks?

CHAP
ADSL
PPPoE
LTE

A

PPPoE

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What is required for a host to use an SSL VPN to connect to a remote network device?

The host must be connected to wired network.
A site-to-site VPN must be preconfigured.
A web browser must be installed on the host.
VPN client software must be installed.

A

A web browser must be installed on the host.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Refer to the exhibit. A network administrator has implemented the configuration in the displayed output. What is missing from the configuration that would be preventing OSPF routing updates from passing to the Frame Relay service provider?

The command to disable split horizon has not been issued.
The passive-interface command has not been issued on interface serial 0/1/0
The directly connected neighbor should have been identified by using static mapping.
The broadcast keyword has not been issued.

A

The broadcast keyword has not been issued.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

Refer to the exhibit. An administrator is configuring NAT to provide Internet access to the inside network. After the configurtation is completed, users are unable to access the internet. What is the cause of the problem?

The inside and outside interfaces are backwards.
The ACL is referencing the wrong network address.
The NAT inside source command is referring to the wrong ACL.
The NAT pool is using an invalid address range.

A

The NAT inside source command is referring to the wrong ACL.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

A company connects to one ISP via multiple connections. What is the name given to this type of connection?

multihomed
single-homed
dual-multihomed
dual-homed

A

dual-homed

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

Refer to the exhibit. On the basis of the output, which two statements about network connectivity are correct? (Choose two.)

There is connectivity between this device and the device at 192.168.100.1.
The average transmission time between the two hosts is 2 miliseconds.
This host does not have a default gateway configured.
The connectivity between these two hosts allows for videoconferencing calls.
There are 4 hops between this device and the device at 192.168.100.1.

A

There are 4 hops between this device and the device at 192.168.100.1.

There is connectivity between this device and the device at 192.168.100.1.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

A network administrator is configuring a PPP link with the commands:
R1(config-if)# encapsulation ppp
R1(config-if)# ppp quality 70

What is the effect of these commands?

The NCP will send a message to the sending device if the link usage reaches 70 percent.
The PPP link will be closed down if the link quality drops below 70 percent.
The LCP establishment phase will not start until the bandwidth reaches 70 percent or more.
The PPP link will not be established if more than 30 percent of options cannot be accepted.

A

The PPP link will be closed down if the link quality drops below 70 percent.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

Which IEEE standard defines the WiMax technology?

  1. 5
  2. 11
  3. 16
  4. 3
A

802.16

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

Which three flows associated with consumer applications are supported by NetFlow collectors? (Choose three.)

accounting
network monitoring
error correction
bandwidth regulation
quality of service
billing
A

billing
network monitoring
accounting

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

Refer to the exhibit. What kind of NAT is being configured on R1?

NAT overload
dynamic NAT
port forwarding
PAT

A

port forwarding

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

What is the default location for Cisco routers and switches to send critical logging events?

syslog server
virtual terminal
console port
auxiliary port

A

console port

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q

In the data gathering process, which type of device will listen for traffic, but only gather traffic statistics?

SNMP agent
NetFlow collector
syslog server
NMS

A

NetFlow collector

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
27
Q

What is a characteristic of Frame Relay that allows customer data transmissions to dynamically “burst” over their CIR for short periods of time?

The combination of LMI status messages and Inverse ARP messages enables the CIR to be exceeded.
The physical circuits of the Frame Relay network are shared between subscribers and there may be times when unused bandwidth is available.
BECN and FECN messages notify the router that the CIR can be exceeded.
Bursting is enabled by the configuration of multiple subinterfaces on one physical interface.

A

The physical circuits of the Frame Relay network are shared between subscribers and there may be times when unused bandwidth is available.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
28
Q

Which SNMP message type informs the network management system (NMS) immediately of certain specified events?

GET response
SET request
GET request
Trap

A

Trap

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
29
Q

Which statement is a characteristic of SNMP MIBs?

The SNMP agent uses the SNMP manager to access information within the MIB.
The MIB structure for a given device includes only variables that are specific to that device or vendor.
The MIB organizes variables in a flat manner.
The NMS must have access to the MIB in order for SNMP to operate properly.

A

The NMS must have access to the MIB in order for SNMP to operate properly.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
30
Q

What benefit does NAT64 provide?

It allows sites to connect IPv6 hosts to an IPv4 network by translating the IPv6 addresses to IPv4 addresses.
It allows sites to connect multiple IPv4 hosts to the Internet via the use of a single public IPv4 address.
It allows sites to use private IPv4 addresses, and thus hides the internal addressing structure form hosts on public IPv4 networks.
It allows sites to use private IPv6 addresses and translates them to global IPv6 addresses.

A

It allows sites to connect IPv6 hosts to an IPv4 network by translating the IPv6 addresses to IPv4 addresses.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
31
Q

What is the expected behavior of an ADSL service?

The user can select the upload and download rates based on need.
The download and upload rates are the same.
The upload rate is faster than the download rate.
The download rate is faster than the upload rate.

A

The download rate is faster than the upload rate.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
32
Q

The DLCI number assigned to a Frame Relay circuit is to be manually added on a point-to-point link. Which three subinterface commands could be used to complete the configuration? (Choose three.)

frame-relay map ip ip-address dlci
frame-relay map ip ip-address dlci broadcast
no shutdown
ip address ip-address mask
encapsulation farme-relay
bandwidth kilobits
frame-relay interface dlci dlci
A

frame-relay interface dlci dlci
bandwidth kilobits
ip address ip-address mask

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
33
Q

A group of Windows PCs in a new subnet has been added to an Ethernet network. When testing the connectivity, a technician finds that these PCs can access local network resources but not the Internet resources. To troubleshoot the problem, the technician wants to initially confirm the IP address and DNS configurations on the PCs, and also verify connectivity to the local router. Which three Windows CLI commands and utilities will provide the necesary information? (Choose three.)

tracert
telnet
ping
netsh interface ipv6 show neighbor
nslookup
arp -a
ipconfig
A

ipconfig
nslookup
ping

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
34
Q

Refer to the exhibit. Router R1 was configured by a network administrator to use SNMP version 2. The following commands were issued:

R1(config)# snmp-server community batonaug ro SNMP_ACL
R1(config)# snmp-server contact Wayne World
R1(config)# snmp-server host 192.168.1.3 version 2c batonaug
R1(config)# ip access-list standard SNMP_ACL
R1(config-std-nacl)# permit 192.168.10.3

Why is the administrator not able to get any information from R1?

The snmp-server community command needs to include the rw keyword.
The snmp-server location command is missing.
There is a problem with the ACL configuration.
The snmp-server enable traps command is missing.

A

There is a problem with the ACL configuration

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
35
Q

Which broadband technology would be best for a small office that requires fast upstream connections?

DSL
Cable
fiber-to-the-home
WiMax

A

fiber-to-the-home

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
36
Q

Refer to the exhibit. The inside local IP address of PC-A is 192.168.0.200. What will be the inside global address of packets from PC-A after they are translated by R1?

  1. 168.0.1
  2. 16.0.1
  3. 165.200.225
  4. 0.0.1
  5. 168.0.200
A

209.165.200.225

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
37
Q

What is a type of VPN that is generally transparent to the end user?

remote access
public
site-to-site
private

A

site-to-site

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
38
Q

Which two statements about DSL are true? (Choose two.)

user connections are aggregated at a DSLAM located at the CO
uses RF signal transmission
users are on a shared medium
local loop can be up to 3.5 miles (5.5km)
physical and data link layers are defined by DOCSIS

A

local loop can be up to 3.5 miles (5.5km)

user connections are aggregated at a DSLAM located at the CO

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
39
Q

Refer to the exhibit. Which three events will occur as a result of the configuration shown on R1? (Choose three.)

Only traffic that originates from the GigabitEthernet 0/1 interface will be monitored.
Messages that are sent to the syslog server will be limited to levels 3 or lower.
Messages that are sent to the syslog server will use 192.168.1.5 as the destination IP address.
The syslog messages will contain the IP address the GigabitEthernet 0/1 interface.
Messages that are sent to the syslog server will be limited to levels 3 and higher.
For multiple occurrences of the same error, only the first three messages will be sent to the server.

A

Messages that are sent to the syslog server will be limited to levels 3 or lower.

Messages that are sent to the syslog server will use 192.168.1.5 as the destination IP address.

The syslog messages will contain the IP address the GigabitEthernet 0/1 interface.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
40
Q

Which two characteristics describe time-division multiplexing? (Choose two.)

Traffic is allocated bandwidth across a single wire based on preassigned time slots.
Bandwidth is allocated to channels based on whether a station has data to transmit.
Encoding technology provides high data throughput in a minimum RF spectrum by supporting parallel data transmission.
Data capacity across a single link increases as bits from multiple sources are transmitted using interleaved slices of time.
Depending on the configured layer 2 protocol, data is transmitted across two or more channels via the use of time slots.

A

Traffic is allocated bandwidth across a single wire based on preassigned time slots.

Data capacity across a single link increases as bits from multiple sources are transmitted using interleaved slices of time.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
41
Q

Which two specialized troubleshooting tools can monitor the amount of traffic that passes through a switch? (Choose two.)

TDR
DTX cable analyzer
NAM
digital multimeter
portable network analyzer
A

portable network analyzer

NAM

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
42
Q

Which circumstance would result in an enterprise deciding to implement a corporate WAN?

when its employees become distributed across many branch locations
when the enterprise decides to secure its corporate LAN
when the network will span multiple buildings
when the number of employees exceeds the capacity of the LAN

A

when its employees become distributed across many branch locations

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
43
Q

Which algorithm is considered insecure for use in IPsec encryption?

RSA
3DES
SHA-1
AES

A

3DES

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
44
Q

What is one advantage to designing networks in building block fashion for large companies?

fewer required physical resources
increased network access time
coarse security control
failure isolation

A

failure isolation

45
Q

Which two technologies are implemented by organizations to support teleworker remote connections? (Choose two.)

CMTS
VPN
CDMA
IPsec
DOCSIS
A

IPsec

VPN

46
Q

A branch office uses a leased line to connect to the corporate network. The lead network engineer confirms connectivity between users in the branch office, but none of the users can access corporate headquarters. System logs indicate that nothing has changed in the branch office network. What should the engineer consider next to resolve this network outage?

The network technician for the branch office should troubleshoot the switched infrastructure.
The server administrator in the branch office should reconfigured the DHCP server.
The service provider for the branch office should troubleshoot the issue starting from the point of demarcation.
The system administrator in the branch office should reconfigure the default gateway on the user PCs.

A

The service provider for the branch office should troubleshoot the issue starting from the point of demarcation.

47
Q

Refer to the exhibit. Which IP address is configured on the physical interface of the CORP router?

  1. 1.1.1
  2. 165.202.134
  3. 1.1.2
  4. 165.202.133
A

209.165.202.133

48
Q

How many 64 kb/s voice channels are combined to produce a T1 line?

8
32
24
16

A

24

49
Q

Which network module maintains the resources that employees, partners, and customers rely on to effectively create, colaborate, and interact with information?

services
access-distribution
data-center
enterprise edge

A

data-center

50
Q

Which broadband solution is appropriate for a home user who needs a wired connection not limited by distance?

ADSL
cable
DSL
WiMax

A

cable

51
Q

A network administrator is asked to design a system to allow simultaneous access to the Internet for 250 users. The ISP can only supply five public IP addresses for this network. What technology can the administrator use to accomplish this task?

classless interdomain routing
variable length subnet masks
classful subnetting
port-based Network Address Translation

A

port-based Network Address Translation

52
Q

What is the purpose of a message hash in a VPN connection?

It ensures that the data is coming from the correct source.
It ensures that the data cannot be duplicated and replayed to the destination.
It ensures that the data has not changed while in transit.
It ensures that the data cannot be read in plain text.

A

It ensures that the data has not changed while in transit.

53
Q

Which type of traffic would most likely have problems when passing through a NAT device?

DNS
Telnet
HTTP
ICMP
IPsec
A

IPsec

54
Q

Users are reporting longer delays in authentication and in accessing network resources during certain time periods of the week. What kind of information should network engineers check to find out if this situation is part of a normal network behavior?

network configuration files
syslog records and messages
debug output and packet captures
the network performance baseline

A

the network performance baseline

55
Q

What are three benefits of using Frame Relay for WAN connectivity? (Choose three.)

mature technology
QoS support using the IP precedence field
integrated encryption
one physical interface that can be used for several circuits
reasonable cost
seamless direct connectivity to an Ethernet LAN

A

one physical interface that can be used for several circuits

reasonable cost

mature technology

56
Q

What type of information is collected by Cisco NetFlow?

interface errors
traffic statistics
memory usage
CPU usage

A

traffic statistics

57
Q

Which technology requires the use of PPPoE to provide PPP connections to customers?

dialup ISDN modem
T1
DSL
dialup analog modem

A

DSL

58
Q

Under which two categories of WAN connections does Frame Relay fit? (Choose two.)

packet-switched
private infrastructure
public infrastructure
Internet
dedicated
A

private infrastructure

packet-switched

59
Q

What are three characteristics of the generic routing encapsulation (GRE) protocol? (Choose three.)

GRE tunnels support multicast traffic.
GRE creates additional overload for packets that are traveling through the VPN.
GRE uses AES for encryption unless otherwise specified
By default, GRE does not include any flow control mechanisms.
Developed by the IETF, GRE is a secure tunneling protocol that was designed for Cisco routers.
GRE provides encapsulation for a single protocol type that is traveling through the VPN.

A

GRE tunnels support multicast traffic.
By default, GRE does not include any flow control mechanisms.
GRE creates additional overload for packets that are traveling through the VPN.

60
Q

An intercity bus company wants to offer constant Internet connectivity to the users traveling on the buses. Which two types of WAN infrastructure would meet the requirements? (Choose two.)

cellular
dedicated
private infrastructure
circuit-switched
public infrastructure
A

public infrastructure

cellular

61
Q

What is used as the default event logging destination for Cisco routers and switches?

syslog server
terminal line
workstation
console line

A

console line

62
Q

Refer to the exhibit. H1 can only ping H2, H3, and the Fa0/0 interface of router R1. H2 and H3 can ping H4 and H5. Why might H1 not be able to successfully ping H4 and H5?

The link between router R1 and switch S2 has failed.
Host H1 does not have a default gateway configured.
Router R1 does not have a route to the destination network.
Hosts H4 and H5 are members of a different VLAN than host H1.
Switch S1 does not have an IP address configured.

A

Host H1 does not have a default gateway configured.

63
Q

Which troubleshooting tool would a network administrator use to check the Layer 2 header of frames that are leaving a particular host?

Knowledge base
CiscoView
baselining tool
protocol analyzer

A

protocol analyzer

64
Q

Which structured engineering desing principle ensures that the network reamins available even under abnormal conditions?

resiliency
hierarchy
flexibility
modularity

A

resiliency

65
Q

Two corporations have just completed a merger. The network engineer has been asked to connect the two corporate networks without the expense of leased lines. Which solution would be the most cost effective method of providing a proper and secure connection between the two corporate networks?

Cisco Secure Mobility Clientless SSL VPN
Remote access VPN using IPsec
Cisco AnyConnect Secure Mobility Client with SSL
Frame Relay
site-to-siteVPN
A

site-to-siteVPN

66
Q

A team of engineers has identified a solution to a significant network problem. The proposed solution is likely to affect critical network infrastruture components. What should the team follow while implementing the solution to avoid interfering with other processes and infrastructure?

suslog messages and reports
one of the layered troubleshooting approaches
change-control procedures
knowledge base guidelines

A

change-control procedures

67
Q

Refer to the exhibit. A network administrator discovers that host A is having trouble with Internet connectivity, but the server farm has full connectivity. In addition, host A has full connectivity to the server farm. What is a possible cause of this problem?

NAT is required for the host A network.
Host A has an incorrect subnet mask.
Host A has an incorrect default gateway configured.
The router has an incorrect gateway.
Host A has an overlapping network address.

A

NAT is required for the host A network.

68
Q

Refer to the exhibit. Which two statements describe the results of entering these commands? (Choose two.)

R1 will not send critical system messages to the server until the command debug all is entered.
R1 will send system messages of levels 0 (emergencies) to level 4 (warnings) to a server.
The syslog server has the IPv4 address 192.168.10.10.
R1 will reset all the warnings to clear the log.
R1 will output the system messages to the local RAM.

A

R1 will send system messages of levels 0 (emergencies) to level 4 (warnings) to a server.

The syslog server has the IPv4 address 192.168.10.10.

69
Q

What is a Frame Relay feauture that supports the IP address-to-DLCI dynamic mapping?

FECN
Inverse ARP
ARP
BECN

A

Inverse ARP

70
Q

What term is used to identify the point where the customer network ends and the service provider network begins?

the central office
CSU/DSU
the local loop
the demarcation point

A

the demarcation point

71
Q

What is used as the default event logging destination for Cisco routers and switches?

syslog server
console line
terminal line
workstation

A

console line

72
Q
A small remote office needs to connect to headquarters through a secure IPsec VPN connection. The company is implementing the Cisco Easy VPN solution. Which Cisco Easy VPN component needs to be added on the Cisco router at the remote office?
Cisco AnyConnect
Cisco Easy VPN Server
Cisco Easy VPN Remote
Cisco VPN Client
A

Cisco Easy VPN Server

73
Q

Which scenario would require the use of static NAT?
when an internal corporate web server needs to be accessed from a home network
when there are more internal private IP addresses than available public IP addresses
when all public IP addresses have been exhausted
when an IPv4 site connects to an IPv6 site

A

when an internal corporate web server needs to be accessed from a home network

74
Q

An organization has purchased a Frame Relay service from a provider. The service agreement specifies that the access rate is 512 kbps, the CIR is 384 kbps, and the Bc is 32 kbps. What will happen when the customer sends a short burst of frames above 450 kbps?

The frames are marked with the DE bit set to 1 and are most likely forwarded.
The frames are marked with the DE bit set to 0 and are most likely forwarded.
The frames are marked with the DE bit set to 0 and are allowed to pass.
The frames are marked with the DE bit set to 1 and are most likely dropped

A

The frames are marked with the DE bit set to 1 and are most likely dropped

75
Q

What is a Frame Relay feature that supports the IP address-to-DLCI dynamic mapping?

Inverse ARP
ARP
BECN
FECN

A

Inverse ARP

76
Q

An administrator wants to configure a router so that users on the outside network can only establish HTTP connections to the internal web site by navigating to http://www.netacad.com:8888. Which feature would the administrator configure to accomplish this?

port forwarding
dynamic NAT
NAT overload
static NAT
PAT
A

port forwarding

77
Q

Which two components are needed to provide a DSL connection to a SOHO? (Choose two.)

PPPoE enabled switch
CMTS
transceiver
CM
DSLAM
A

DSLAM

transceiver

78
Q

A network engineer is troubleshooting an unsuccessful PPP multilink connection between two routers. That multilink interface has been created and assigned a number, the interface has been enabled for multilink PPP, and the interface has been assigned a multilink group number that matches the group assigned to the member physical serial interfaces. The physical serial interfaces have also been enabled for PPP multilink. Which additional command should to be issued on the multilink interface?

clock rate 4000000
encapsulation ppp
ip address 192.168.10.1 255.255.255.252
no ip address

A

clock rate 4000000

79
Q
What is the international standard defining cable-related technologies?
WiMax
DOCSIS
ADSL
PPPoE
A

DOCSIS

80
Q

Which three statements describe characteristics of converging corporate network architecture?
Server applications are housed within the physical corporate network.
Users connect their own devices to the corporate network.
Data types include data, and video.
Users have to use company-owned computers.
Networks are borderless.

A

Data types include data, and video.
Server applications are housed within the physical corporate network.
Users connect their own devices to the corporate network.

81
Q

Which inefficient feature of time-division multiplexing does statistical TDM overcome?
the unused high speed time slots
the buffering of data during peak periods
the use of channel identifiers
the use of a multiplexer at the transmitter and receiver

A

the unused high speed time slots

82
Q

What are three characteristics of SSL VPNs?

authentication can be one way
authentication uses shared secret or digital certificates
an ssl vpn supports web enable applications, e-mail and file sharing
connecting may challenge nontechnical users
encryption requires key lengths from 40 bits to 256 bits
an ssl vpn requires specific configuration of PCs to connect

A

an ssl vpn supports web enable applications, e-mail and file sharing
authentication uses shared secret or digital certificates
authentication can be one way

83
Q

A network engineer is designing an IPsec VPN between Cisco routers for a national bank. Which algorithm assures the highest level of confidentiality for data crossing the VPN?
256bit AES

512 bit RSA

SHA-1

3DES

A

256bit AES

84
Q

By the use of sequence numbers, which function of the IPsec security services prevents spoofing by verifying that each packet is non-duplicated and unique?

anti-replay protection

confidentiality

data integrity

authentication

A

anti-replay protection

85
Q

A small law firm wants to connect to the Internet at relatively high speed but with low cost. In addition, the firm prefers that the connection be through a dedicated link to the service provider. Which connection type should be selected?

leased line
ISDN
cable
DSL

A

leased line

86
Q

How can an administrator configure a Cisco Easy VPN Server to enable the company to manage many remote VPN connections efficiently?

by updating the client software in regular intervals
by preconfiguring IPsec parameters when deploying the client solution
by provisioning dedicated bandwidth for VPN connections
by pushing the IPsec security policies to the clients when establishing the tunnel

A

by pushing the IPsec security policies to the clients when establishing the tunnel

87
Q

How does QoS improve the effectiveness of teleworking?

It provides wireless data transmission over large urban areas.
It provides high speed connections over copper wires.
It provides better service for VoIP and video conferencing applications.
It provides authentication, accounting, and link management features for ISPs.

A

It provides better service for VoIP and video conferencing applications.

88
Q

Which two networking technologies enable businesses to use the Internet, instead of an enterprise WAN, to securely interconnect their distributed networks? (Choose two.)

DSL

remote LANs

remote access VPNs

site-to-site VPNs

Frame Relay

A

remote access VPNs

site-to-site VPNs

89
Q

What are two benefits of using SNMP traps? (Choose two.)

They eliminate the need for some periodic polling requests.

They reduce the load on network and agent resources.

They can provide statistics on TCP/IP packets that flow through Cisco devices.

They can passively listen for exported NetFlow datagrams.

They limit access for management systems only.

A

They eliminate the need for some periodic polling requests.

They reduce the load on network and agent resources.

90
Q

A network engineer has issued the show interfaces serial 0/0/0 command on a router to examine the open NCPs on a PPP link to another router. The command output displays that the encapsulation is PPP and that the LCP is open. However, the IPV6CP NCP is not shown as open. What does the engineer need to configure to open the IPV6CP NCP on the link?

Configure an IPv6 address on each interface on the link.

Configure PPP multilink interfaces on each router.

Issue the compress predictor command on each interface on the link.

Configure CHAP authentication on each router.

A

Configure an IPv6 address on each interface on the link.

91
Q

What address translation is performed by static NAT?

An inside local address is translated to a specified inside global address
An inside local address is translated to a specified outside local address
An inside local address is translated to a specified outside global address
An outside local address is translated to a specified outside global address

A

An inside local address is translated to a specified inside global address

92
Q

What are two advantages of using IPv4 NAT? (Choose two.)

provides consistent traceability when it is necessary to troubleshoot internal corporate network problems

conserves public IP addresses

provides consistency when an internal corporate IP addressing scheme is being designed

allows maintaining end-to-end addressing

increases network performance

A

conserves public IP addresses

provides consistency when an internal corporate IP addressing scheme is being designed

93
Q

Which network design module would not commonly connect to the service provider edge?

Remote Access and VPN

E-Commerce

Enterprise Branch

WAN Site-to-site VPN

A

Remote Access and VPN

94
Q

Whichtwo types of devices are specific to WAN environments and are not found ona LAN?(Choose two.)

Distribution layer router
Broadband modem
Core switch
Access layer switch
CSU/DSU
A

Broadband modem

95
Q

What is a plausible reason that an employee would become a teleworker for a company?
to become employed without having to share files or resources

to become employed in a traditional workplace

to keep employment during a time of rehabilitation

to keep employment without having to adhere to company regulations

A

to keep employment without having to adhere to company regulations

96
Q
Connecting offices at different locations using the Internet can be economical for a business. What are two important business policy issues that should be addressed when using the Internet for this purpose? (Choose two.)
WAN technology
bandwidth
security
privacy
addressing
A

addressing

security

97
Q

What is a primary difference between a company LAN and the WAN services that it uses?

The LAN may use a number of different network access layer standards whereas the WAN will use only one standard.

Each LAN has a specified demarcation point to clearly separate access layer and distribution layer equipment.

The company has direct control over its WAN links but not over its LAN.

The company must subscribe to an external WAN service provider.

A

The company must subscribe to an external WAN service provider.

98
Q

A technician at a remote location is troubleshooting a router and has emailed partial debug command output to a network engineer at the central office. The message that is received by the engineer only contains a number of LCP messages that relate to a serial interface. Which WAN protocol is being used on the link?

HDLC

VPN

Frame Relay

PPP

A

PPP

99
Q

What is a feature of physical point-to-point WAN links?

Point-to-point links are generally the least expensive type of WAN access.

The MAC address is not used in the address field of the point-to-point frame.

WAN operations focus primarily on the network layer (OSI Layer 3)​.

Point-to-point WAN services are circuit switched.

A

The MAC address is not used in the address field of the point-to-point frame.

100
Q

What are two types of WAN providers? (Choose two.)

DNS servers

telephone company

Internet search engine service

satellite service

web hosting service

A

telephone company

satellite service

101
Q

Which PPP protocol allows a device to specify an IP address for routing over the PPP link?

CHAP
LCP
PAP
IPCP

A

IPCP

102
Q

In which stage of the troubleshooting process would ownership be researched and documented?
Update the user and document the problem.
Implement corrective action.
Gather symptoms.
Isolate the problem.

A

Implement corrective action.

103
Q

A corporation is searching for an easy and low cost solution to provide teleworkers with a secure connection to headquarters. Which solution should be selected?

dial-up connection

leased line connection

remote access VPN over the Internet

site-to-site VPN over the Internet

A

leased line connection

104
Q

Which two statements describe benefits of NAT? (Choose two.)

NAT simplifies troubleshooting by removing the need for end-to-end traceability.
NAT can provide application port-level multiplexing in order to conserve public IP addresses.
NAT allows for easy readdressing when changing ISPs.
NAT makes tunneling protocols like IPsec more efficient by modifying the addresses in the headers.
NAT provides stateful packet filtering features similar to a firewall.
NAT increases router performance by reducing the number of routes needed in the routing table.

A

NAT provides stateful packet filtering features similar to a firewall.
NAT can provide application port-level multiplexing in order to conserve public IP addresses.

105
Q

What is one drawback to using the top-down method of troubleshooting?

trying to decide which device to check first

the amount of paperwork that is generated

the need to check every device and interface on the network and document them

the need to check every possible application problem and document it

A

the need to check every possible application problem and document it

106
Q

What are three functions provided by syslog service? (Choose three.)

to specify the destination of captured messages

to provide traffic analysis

to gather logging information for monitoring and troubleshooting

to select the type of logging information that is captured

to periodically poll agents for data

to provide statistics on packets that are flowing through a Cisco device

A

to gather logging information for monitoring and troubleshooting

to select the type of logging information that is captured

to specify the destination of captured messages

107
Q
What two advantages are associated with Frame Relay WAN technology when compared with leased lines? (Choose two.)
Dedicated data path between sites
Fixed and dedicated capacity
Flexibility
Globally unique DLCI for each site
Cost effectiveness
A

Cost effectiveness

Flexibility

108
Q

Which statement describes an advantage of deploying the Cisco SSL VPN solution rather than the Cisco Easy VPN solution?

It provides a stronger authentication mechanism.

It provides more network service access.

It provides a stronger encryption algorithm.

It supports clientless remote access.

A

It supports clientless remote access.