CCNP ENCOR Vocab Flashcards

Question 1

Q

802.1p

Answer

A

An IEEE specification that defines the use of the 3-bit Priority Code Point (PCP) field to provide different classes of service. The PCP field is contained within the TCI field, which is part of the 802.1Q header.

Question 2

Q

802.1Q

Answer

A

An IEEE specification that defines two 2-byte fields, Tag Protocol Identifier (TPID) and Tag Control Information (TCI), that are inserted within an Ethernet frame.

Question 3

Q

802.1x

Answer

A

An IEEE standard for port-based network access control (PNAC) that provides an authentication mechanism for local area networks (LANs) and wireless LANs (WLANs).

Question 4

Q

access control list (ACL)

Answer

A

mechanism that provides packet classification for quality of service
(QoS), routing protocols, and basic firewall functionality.

Question 5

Q

access layer

Answer

A

The network layer that gives endpoints and users direct access to the network.

Question 6

Q

access port

Answer

A

A switch port that is configured for only one specific VLAN and generally connects end-user devices.

Question 7

Q

address family

Answer

A

A major classification of type of network protocol, such as IPv4, IPv6, or
VPNv4.

Question 8

Q

address resolution protocol (ARP)

Answer

A

protocol that resolves a MAC address to a specific
IP address.

Question 9

Q

administrative distance

Answer

A

rating of trustworthiness for a route. Generally, it is associated
with the routing process that installs the route into the RIB.

Question 10

Q

AMP for Networks

Answer

A

AMP running on Cisco Secure Firewall appliances and dedicated Cisco
AMP appliances for network malware defense.

Question 11

Q

amplitude

Answer

A

height from the top peak to the bottom peak of a signal’s waveform; also
known as the peak-to-peak amplitude.

Question 12

Q

anchor controller

Answer

A

The original controller a client was associated with before a Layer 3 intercontroller roam. An anchor controller can also be used for tunneling clients on a guest WLAN or with a static anchor. Traffic is tunneled from the client’s current controller (the foreign controller) back to the anchor.

Question 13

Q

application programming interface (API)

Answer

A

A set of functions and procedures used for configuring
or monitoring computer systems, network devices, or applications that involves programmatically interacting through software. It can be used for connecting to individual devices or multiple devices simultaneously.

Question 14

Q

area border router (ABR)

Answer

A

A router that connects an OSPF area to Area 0 (that is, the backbone
area).

Question 15

Q

AS_Path

Answer

A

BGP attribute used to track the autonomous systems a network has been advertised through as a loop-prevention mechanism.

Question 16

Q

AS path access control list (ACL)

Answer

A

An ACL based on regex for identifying BGP routes based on the AS path and used for direct filtering or conditional matching in a route map.

Question 17

Q

atomic aggregate

Answer

A

BGP path attribute which indicates that a prefix has been summarized,
and not all of the path information from component routes was included in the aggregate.

Question 18

Q

authentication, authorization, and accounting (AAA)

Answer

A

An architectural framework that enables secure network access control for users and devices.

Question 19

Q

authentication server (AS)

Answer

A

An 802.1x entity that authenticates users or clients based on
their credentials, as matched against a user database. In a wireless network, a RADIUS server is an AS.

Question 20

Q

authenticator

Answer

A

An 802.1x entity that exists as a network device that provides access to the network. In a wireless network, a WLC acts as an authenticator.

Question 21

Q

autonomous AP

Answer

A

A wireless AP operating in a standalone mode, such that it can provide a
fully functional BSS and connect to the DS.

Question 22

Q

autonomous system (AS)

Answer

A

A set of routers running the same routing protocol under a single
realm of control and authority.

Question 23

Q

backbone area

Answer

A

The OSPF Area 0, which connects to all other OSPF areas. The backbone area is the only area that should provide connectivity between all other OSPF areas.

Question 24

Q

backup designated router (BDR)

Answer

A

A backup pseudonode that maintains the network segment’s
state to replace the DR in the event of its failure.

Question 25

Q

band

Answer

A

A contiguous range of frequencies.

Question 26

Q

bandwidth

Answer

A

The range of frequencies used by a single channel or a single RF signal.

Question 27

Q

beamwidth

Answer

A

A measure of the angle of a radiation pattern in both the E and H planes, where the signal strength is 3 dB below the maximum value.

Question 28

Q

BGP community

Answer

A

A well-known BGP attribute that allows for identification of routes for later
actions such as identification of source or route filtering/modification.

Question 29

Q

BGP multihoming

Answer

A

method of providing redundancy and optimal routing that involves adding
multiple links to external autonomous systems.

Question 30

Q

BPDU filter

Answer

A

STP feature that filters BPDUs from being advertised/received across the configured port.

Question 31

Q

BPDU guard

Answer

A

STP feature that places a port into an ErrDisabled state if a BPDU is
received on a portfast-enabled port.

Question 32

Q

bridge protocol data unit (BPDU)

Answer

A

A network packet that is used to identify a hierarchy and
notify of changes in the topology.

Question 33

Q

broadcast domain

Answer

A

A portion of a network where a single broadcast can be advertised or
received.

Question 34

Q

building block

Answer

A

A distinct place in the network (PIN) such as the campus end-user/endpoint block, the WAN edge block, the Internet edge block, or the network services block. The components of each building block are the access layer, the distribution layer, and/or the core (backbone) layer. Also known as a network block or a place in the network (PIN).

Question 35

Q

CAPWAP

Answer

A

standards-based tunneling protocol that defines communication between a lightweight AP and a wireless LAN controller.

Question 36

Q

carrier signal

Answer

A

The basic, steady RF signal that is used to carry other useful information.

Question 37

Q

channel

Answer

A

An arbitrary index that points to a specific frequency within a band.

Question 38

Q

Cisco Advanced Malware Protection (AMP)

Answer

A

Cisco malware analysis and protection solution that goes beyond point-in-time detection and provides comprehensive protection for organizations across the full attack continuum: before, during, and after an attack.

Question 39

Q

Cisco Express Forwarding (CEF)

Answer

A

method of forwarding packets in hardware through the
use of the FIB and adjacency tables. CEF is much faster than process switching.

Question 40

Q

Cisco Identity Services Engine (ISE)

Answer

A

Cisco security policy management platform that provides highly secure network access control to users and devices across wired, wireless, and VPN connections. It allows for visibility into what is happening in the network, such as who is connected (endpoints, users, and devices), which applications are installed and running on endpoints (for posture assessment), and much more.

Question 41

Q

Cisco SAFE

Answer

A

A framework that helps design secure solutions for the campus, data center, cloud, WAN, branch, and edge.

Question 42

Q

Cisco Secure Client

Answer

A

VPN client that is an 802.1x supplicant that can perform posture
validations and that provides web security, network visibility into endpoint flows within Cisco Secure Network Analytics, and roaming protection with Cisco Umbrella.

Question 43

Q

Cisco Secure Email

Answer

A

Cisco solution that enables users to communicate securely via email
and helps organizations combat email security threats with a multilayered approach across the attack continuum.

Question 44

Q

Cisco Secure Firewall

Answer

A

next-generation firewall (NGFW) with legacy firewall capabilities
such as stateful inspection as well as integrated intrusion prevention, application-level inspection, and techniques to address evolving security threats, such as advanced malware and application-
layer attacks.

Question 45

Q

Cisco Secure Malware Analytics

Answer

A

malware sandbox solution.

Question 46

Q

Cisco Secure Network Analytics

Answer

A

Cisco collector and aggregator of network telemetry data (NetFlow data) that performs network security analysis and monitoring to automatically detect threats that manage to infiltrate a network as well as threats that originate within a network.

Question 47

Q

Cisco Secure Web Appliance

Answer

A

An all-in-one web gateway that includes a wide variety of protections that can block advanced threats from both suspicious and legitimate websites.

Question 48

Q

Cisco Talos

Answer

A

The Cisco threat intelligence organization

Question 49

Q

Cisco TrustSec

Answer

A

next-generation access control enforcement solution developed by
Cisco that performs network enforcement by using Security Group Tags (SGTs) instead of IP addresses and ports. In SD-Access, Cisco TrustSec Security Group Tags are referred to as Scalable Group Tags.

Question 50

Q

Cisco Umbrella

Answer

A

Cisco solution that blocks requests to malicious Internet destinations
(domains, IP addresses, URLs) using Domain Name System (DNS).

Question 51

Q

Client density

Answer

A

The relative number of client devices served by an AP and its antenna, as determined by the antenna’s RF coverage pattern.

Question 52

Q

collision domain

Answer

A

set of devices in a network that can transmit data packets that can collide with other packets sent by other devices (that is, devices that can detect traffic from other devices using CSMA/CD).

Question 53

Q

command-line interface (CLI)

Answer

A

A text-based user interface for configuring network devices
individually by inputting configuration commands.

Question 54

Q

Common Spanning Tree (CST)

Answer

A

single spanning-tree instance for the entire network, as
defined in the 802.1D standard.

Question 55

Q

configuration BPDU

Answer

A

The BPDU that is responsible for switches electing a root bridge and
communicating the root path cost so that a hierarchy can be built.

Question 56

Q

container

Answer

A

isolated environment where containerized applications run. It contains the application along with the dependencies that the application needs to run. It is created by a container engine running a container image.

Question 57

Q

container image

Answer

A

file created by a container engine that includes application code along with its dependencies. Container images become containers when they are run by a container engine.

Question 58

Q

content addressable memory (CAM)

Answer

A

high-performance table used to correlate MAC addresses to switch interfaces that they are attached to.

Question 59

Q

control plane policing (CoPP)

Answer

A

policy applied to the control plane of a router to protect
the CPU from high rates of traffic that could impact router stability

Question 60

Q

cookbook

Answer

A

Chef container that holds recipes.

Question 61

Q

core layer

Answer

A

network layer, also known as the backbone, that provides high-speed connectivity between distribution layers in large environments.

Question 62

Q

Datagram Transport Layer Security (DTLS)

Answer

A

communications protocol designed to provide authentication, data integrity, and confidentiality for communications between two
applications, over a datagram transport protocol such as User Datagram Protocol (UDP). DTLS is based on TLS, and it includes enhancements such as sequence numbers and retransmission
capability to compensate for the unreliable nature of UDP. DTLS is defined in IETF RFC 4347.

Question 63

Q

dBd

Answer

A

dB-dipole, the gain of an antenna, measured in dB, as compared to a simple dipole antenna.

Question 64

Q

dBi

Answer

A

dB-isotropic, the gain of an antenna, measured in dB, as compared to an isotropic reference antenna.

Answer 65

A

dB-milliwatt, the power level of a signal measured in dB, as compared to a reference signal power of 1 milliwatt.

Answer 66

A

The amount of time required for a hello packet to be received for the neighbor to be deemed healthy. Upon receipt, the value resets and decrements toward zero.

Answer 67

A

logarithmic function that compares one absolute measurement to another.

Answer 68

A

The receiver’s process of interpreting changes in the carrier signal to recover the original information being sent.

Answer 69

A

An omnidirectional antenna composed of two wire segments.

Answer 70

A

network port that receives and forwards BPDUs to other downstream
switches.

Answer 71

A

A pseudonode to manage the adjacency state with other routers on the broadcast network segment.

Answer 72

A

single place to go to enhance or increase skills with APIs, coding, Python, and even controller concepts.

Answer 73

A

Protocol Independent-Sparse Mode (PIM-SM) router that is elected in a LAN segment when multiple PIM-SM routers exist to prevent the sending of duplicate multicast traffic into the LAN or the RP.

Answer 74

A

wireless LAN method in which a transmitter uses a single fixed, wide channel to send data.

Answer 75

A

6-bit field within the DiffServ field that allows for classification of up to 64 values (0 to 63).

Answer 76

A

field that uses the same 8 bits of the IP header that
were previously used for the ToS and IPv6 Traffic Class fields. This allows it to be backward compatible with IP Precedence. The DiffServ field is composed of a 6-bit Differentiated Services Code Point (DSCP) field that allows for classification of up to 64 values (0 to 63) and a
2-bit Explicit Congestion Notification (ECN) field.

Answer 77

A

A type of antenna that propagates an RF signal in a narrow range of
directions.

Answer 78

A

static route that defines only the outbound interface for
the next-hop device.

Answer 79

A

OSPF network where Area 0 is not contiguous and generally
results in routes not being advertised pervasively through the OSPF routing domain.

Answer 80

A

protocol that selects the best path based on
next hop and hop count.
Distance-vector routing protocols use the Bellman–Ford algorithm to calculate the best route
Examples: RIP, RIPv2, IGRP, EIGRP

Answer 81

A

list used for filtering routes with an ACL for a specific BGP neighbor.

Answer 82

A

network layer that provides an aggregation point for the access layer
and acts as a services and control boundary between the access layer and the core layer.

Answer 83

A

Away from the source of a tree and toward the receivers.

Answer 84

A

interface that is used to forward multicast traffic down the tree,
also known as the outgoing interface (OIF).

Answer 85

A

mechanism used by an 802.11 device to change the modulation
coding scheme (MCS) according to dynamic RF signal conditions.

Answer 86

A

protocol that allows for the dynamic negotiation of trunk ports.

Answer 87

A

“elevation” plane, which passes through an antenna that shows a side view of the radiation pattern.

Answer 88

A

BGP session maintained with BGP peers from a different autonomous system.

Answer 89

A

resulting signal power level, measured in dBm, of the combination of a transmitter, cable, and an antenna, as measured at the antenna.

Answer 90

A

router that de-encapsulates LISP-encapsulated IP packets
coming from other sites and destined to EIDs within a LISP site.

Answer 91

A

An on-box automation tool that allows scripts to automatically
execute, based on the output of an action or an event on a device.

Answer 92

A

wireless network design that places a WLC in the access
layer, co-located with a LAN switch stack, near the APs it controls.

Answer 93

A

device that connects to a network, such as a laptop, tablet, IP phone, personal computer (PC), or Internet of Things (IoT) device.

Answer 94

A

The IP address of an endpoint within a LISP site.

Answer 95

A

routing protocol that selects the best path based on next hop, hop count, and other metrics, such as bandwidth and delay.

Answer 96

A

installation of multiple best paths from the same routing protocol
with the same metric that allows for load-balancing of traffic across the paths.

Answer 97

A

Encapsulated Remote Switched Port Analyzer, a tool for capturing network traffic on a remote device and sending the traffic to the local system via Layer 3 (routing) toward a local port that would be attached to some sort of traffic analyzer.

Answer 98

A

logical interface that consists of physical member links to increase a
link’s bandwidth while preventing forwarding loops.

Answer 99

A

standardized authentication framework defined by RFC 4187 that provides encapsulated transport for authentication parameters.

Answer 100

A

human-readable data format that is commonly used
with web services.

Answer 101

A

an EIGRP condition under which, for a route to be considered a backup route, the reported distance received for that route must be less than the feasible distance calculated locally. This logic guarantees a loop-free path.

Answer 102

A

an EIGRP route that satisfies the feasibility condition and is maintained as a backup route.

Answer 103

A

an EIGRP metric value for the lowest-metric path to reach a destination

Answer 104

A

single unified image in which the ASA software image and the Cisco Secure IPS image are merged. It is supported on all Cisco Secure Firewall and ASA 5500-X appliances (except the 5585-X).

Answer 105

A

protocol that creates a virtual IP address on a router or a multilayer device to ensure continuous access to a gateway when there are redundant devices.

Answer 106

A

router that is directly attached to the source, also known as the
root router. It is responsible for sending register messages to the RP.

Answer 107

A

static route with an elevated AD so that it is used only as a backup in
the event that a routing protocol fails or a lower-AD static route is removed from the RIB.

Answer 108

A

The current controller that a client is associated with after a Layer 3 intercontroller roam. Traffic is tunneled from the foreign controller back to an anchor controller so that the client retains connectivity to its original VLAN and subnet.

Answer 109

A

amount of time that a port stays in a listening and learning state.

Answer 110

A

The hardware programming of a forwarding table. The
FIB uses the RIB for programming.

Answer 111

A

The number of times a signal makes one complete up and down cycle in 1 second.

Answer 112

A

A static route that specifies the next-hop IP address and the outbound interface.

Answer 113

A

A measure of how effectively an antenna can focus RF energy in a certain direction.

Answer 114

A

An efficient and commonly adopted way of using version control for code and sharing code repositories.

Answer 115

A

In SaltStack, code that runs on nodes to gather system information and report back to the master.

Answer 116

A

The “azimuth” plane, which passes through an antenna that shows a top-down view of the radiation pattern.

Answer 117

A

The frequency at which hello packets are advertised out an interface.

Answer 118

A

Packets that are sent out at periodic intervals to detect neighbors for establishing adjacency and ensuring that neighbors are still available.

Answer 119

A

The time interval for which a BPDU is advertised out of a port.

Answer 120

A

The amount of time between the advertisement of hello packets and when they are sent out an interface.

Answer 121

A

A unit of frequency equaling one cycle per second.

Answer 122

A

The IP subnet, SVI, and VRF information assigned to a group of hosts that share the same policies.

Answer 123

A

Virtualization software that creates VMs and performs the hardware abstraction that allows multiple VMs to run concurrently.

Answer 124

A

A BGP session maintained with BGP peers from the same autonomous system.

Answer 125

A

A mechanism to prevent multicast flooding on a Layer 2 switch.

Answer 126

A

The condition when the cycles of two identical signals are in sync with each other.

Answer 127

A

The only type of interface that can accept multicast traffic coming
from the source. It is the same as the RPF interface.

Answer 128

A

A router that LISP-encapsulates IP packets coming from EIDs
that are destined outside the LISP site.

Answer 129

A

The public IP address that represents one or more inside local IP addresses to the outside.

Answer 130

A

The actual private IP address assigned to a device on the inside network(s).

Answer 131

A

very small omnidirectional antenna that is set inside a device’s outer
case.

Answer 132

A

An OSPF route learned from an ABR from another area. These routes are built based on type 3 LSAs.

Answer 133

A

Client roaming that occurs between two APs that are joined to two
different controllers.

Answer 134

A

The reference value for an interface to determine preference for being elected as the designated router.

Answer 135

A

The first MSTI in the MST protocol. The IST is responsible for building a CST across all VLANs, regardless of their VLAN membership. The IST contains advertisements for other MSTIs in its BPDUs.

Answer 136

A

The protocol used by receivers to join multicast groups and start receiving traffic from those groups.

Answer 137

A

A protocol that performs authentication between two endpoints
to establish security associations (SAs), also known as IKE tunnels. IKE is the implementation of ISAKMP using the Oakley and Skeme key exchange techniques.

Answer 138

A

A framework of open standards for creating highly secure VPNs using various protocols and technologies for secure communication across unsecure networks such as the Internet.

Answer 139

A

A framework for authentication and key exchange between two peers to establish, modify, and tear down SAs that is designed to support many different kinds of key exchanges. ISAKMP uses UDP port 500 to communicate between peers.

Answer 140

A

An OSPF route learned from a router within the same area. These routes are built based on type 1 and type 2 LSAs.

Answer 141

A

Client roaming that occurs between two APs joined to the same
controller.

Answer 142

A

An on-box diagnostic tool that executes probes to monitor network devices and application performance.

Answer 143

A

An ideal, theoretical antenna that radiates RF equally in every direction.

Answer 144

A

Notation used to store data in key/value pairs that is
said to be easier to work with and read than XML.

Answer 145

A

Values that EIGRP uses to calculate the best path.

Answer 146

A

An attribute assigned to a switch port on an LACP primary switch
to identify which member links are used when there is a maximum link.

Answer 147

A

An attribute in an LACP packet that provides priority to one switch
over another to control which links are used when there is a maximum link.

Answer 148

A

A router that is directly attached to the receivers, also known as a leaf
router. It is responsible for sending PIM joins upstream toward the RP or to the source after an SPT switchover.

Answer 149

A

The forwarding of packets based on the packets’ destination Layer 2
addresses, such as MAC addresses.

Answer 150

A

An intercontroller roam where the WLANs of the two controllers are configured for the same Layer 2 VLAN ID; also known as a local-to-local roam.

Answer 151

A

The forwarding of packets based on the packets’ destination IP
addresses.

Answer 152

A

An intercontroller roam where the WLANs of the two controllers are configured for different VLAN IDs; also known as a local-to-foreign roam. To support the roaming client, a tunnel is built between the controllers so that client data can pass between the client’s current controller and its original controller.

Answer 153

A

A wireless AP that performs real-time 802.11 functions to interface with wireless clients, while relying on a wireless LAN controller to handle all management functions.

Answer 154

A

The cumulative sum of gains and losses measured in dB over the complete RF signal path; a transmitter’s power level must overcome the link budget so that the signal can reach a receiver effectively.

Answer 155

A

A routing protocol that contains a complete view of the topology,
where every router can calculate the best path based on its copy of the topology.
Examples: OSPF, IS-IS

Answer 156

A

router that performs the functions of any or all of the following: ITR, ETR, PITR, and/or PETR.

Answer 157

A

A site where LISP routers and EIDs reside.

Answer 158

A

An algorithm for balancing network traffic across member links.

Answer 159

A

The main BGP table that contains all the active BGP prefixes and path attributes that is used to select the best path and install routes into the RIB.

Answer 160

A

A combination of the advertising switch’s bridge system MAC, the
system ID extension, and the system priority of the local bridge.

Answer 161

A

The default mode of a Cisco lightweight AP that offers one or more functioning BSSs on a specific channel.

Answer 162

A

routing architecture and data and control plane protocol that was created to address routing scalability problems on large networks.

Answer 163

A

A table on a switch that identifies the switch port and VLAN with
which a MAC address is associated for Layer 2 forwarding.

Brainscape's Knowledge GenomeTM

CCNP ENCOR Vocab Flashcards

Brainscape's Knowledge Genome^TM